svn commit: r441129 - branches/2017Q2/security/openvpn23
Matthias Andree
mandree at FreeBSD.org
Thu May 18 07:17:00 UTC 2017
Author: mandree
Date: Thu May 18 07:16:58 2017
New Revision: 441129
URL: https://svnweb.freebsd.org/changeset/ports/441129
Log:
Disable download site carrying botched tarball.
The smaller tarball at build.openvpn.net is a pre-release version that
somehow escaped to the public and would not carry the fix for
CVE-2017-7478.
I had grabbed the bigger tarball from swupdate.openvpn.net that does
carry the fix, so we're safe.
The bigger tarball does carry garbage files (pre-compiled .so files, which
we do not install or use in the build, and *~ backup files) which do not
end up in our build.
The issue has been reported upstream.
If someone gets download failures due to the size differences, "make
distclean" should fix things.
This commit invokes the "Fixes that do not result in a change in
contents of the resulting package." blanket approval per
<https://wiki.freebsd.org/ports-secteam>, checked today.
Reported by: garga@
Approved by: ports-secteam@ (blanket)
Modified:
branches/2017Q2/security/openvpn23/Makefile
Modified: branches/2017Q2/security/openvpn23/Makefile
==============================================================================
--- branches/2017Q2/security/openvpn23/Makefile Thu May 18 07:09:17 2017 (r441128)
+++ branches/2017Q2/security/openvpn23/Makefile Thu May 18 07:16:58 2017 (r441129)
@@ -4,8 +4,7 @@
PORTNAME= openvpn
DISTVERSION= 2.3.15
CATEGORIES= security net
-MASTER_SITES= http://swupdate.openvpn.net/community/releases/ \
- http://build.openvpn.net/downloads/releases/
+MASTER_SITES= http://swupdate.openvpn.net/community/releases/
PKGNAMESUFFIX?= 23
MAINTAINER= mandree at FreeBSD.org
More information about the svn-ports-all
mailing list