[Bug 197107] [PATCH MAINTAINER] security/bro, security/broccoli: Update to 2.3.2 (includes two CVE fixes)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon Jan 26 21:50:02 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=197107
Bug ID: 197107
Summary: [PATCH MAINTAINER] security/bro, security/broccoli:
Update to 2.3.2 (includes two CVE fixes)
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Many People
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: leres at ee.lbl.gov
Created attachment 152209
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=152209&action=edit
Patchset for security/bro and security/broccoli
This updates bro and broccoli from 2.3 and 2.3.2, which is a security update.
Changes to the bro port:
* Rework openssl option logic
* Remove obsolete
* pkgng related changes
Changes to the broccoli port:
* Remove unused DOCS option
* Enable PYTHON by default
* pkgng related changes
* Minor portlint changes
Changes in 2.3.2:
* DNP3: fix reachable assertion and buffer over-read/overflow.
CVE number pending. (Travis Emmert, Jon Siwek)
* Update binpac: Fix potential out-of-bounds memory reads in
generated code. CVE-2014-9586. (John Villamil and Chris Rohlf
- Yahoo Paranoids, Jon Siwek)
* BIT-1234: Fix build on systems that already have ntohll/htonll.
(Jon Siwek)
* BIT-1291: Delete prebuilt python bytecode files from git. (Jon Siwek)
* Adding call to new binpac::init() function. (Robin Sommer)
Changes in 2.3.1:
* Fix a reference counting bug in ListVal ctor. (Jon Siwek)
* Fix possible buffer over-read in DNS TSIG parsing. (Jon Siwek)
* Change EDNS parsing code to use rdlength more cautiously. (Jon Siwek)
* Fix null pointer dereference in OCSP verification code in
case no certificate is sent as part as the ocsp reply. Addresses
BIT-1212. (Johanna Amann)
* Fix OCSP reply validation. Addresses BIT-1212 (Johanna Amann)
* Make links in documentation templates protocol relative. (Johanna Amann)
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list