svn commit: r527062 - branches/2020Q1/mail/opensmtpd

Dima Panov fluffy at FreeBSD.org
Tue Feb 25 03:23:01 UTC 2020 

Author: fluffy
Date: Tue Feb 25 03:22:59 2020
New Revision: 527062
URL: https://svnweb.freebsd.org/changeset/ports/527062

Log:
  MFH: r527012
  
  mail/opensmtpd: update to 6.6.4p1 security releaase
  
  SECURITY RELEASE
  
  An out of bounds read in smtpd allows an attacker to inject arbitrary commands into the envelope file which are then executed as root. Separately, missing privilege revocation in smtpctl allows arbitrary commands to be run with the _smtpq group.
  
  Approved by:	ports-secteam (joneum)
  Security:	CVE-2020-8793, CVE-2020-8794

Modified:
  branches/2020Q1/mail/opensmtpd/Makefile
  branches/2020Q1/mail/opensmtpd/distinfo
  branches/2020Q1/mail/opensmtpd/pkg-plist
Directory Properties:
  branches/2020Q1/   (props changed)

Modified: branches/2020Q1/mail/opensmtpd/Makefile
==============================================================================
--- branches/2020Q1/mail/opensmtpd/Makefile	Tue Feb 25 03:20:58 2020	(r527061)
+++ branches/2020Q1/mail/opensmtpd/Makefile	Tue Feb 25 03:22:59 2020	(r527062)
@@ -2,7 +2,7 @@
 # $FreeBSD$
 
 PORTNAME=	opensmtpd
-PORTVERSION=	6.6.3
+PORTVERSION=	6.6.4
 DISTVERSIONSUFFIX=	p1
 PORTEPOCH=	1
 PORTREVISION=	0
@@ -55,7 +55,10 @@ TABLE_DB_CONFIGURE_WITH=	table-db
 
 CONFIGURE_ARGS+=	--with-libasr=${LOCALBASE} \
 			--with-libevent=${LOCALBASE} \
-			--sysconfdir=${PREFIX}/etc/mail/
+			--sysconfdir=${PREFIX}/etc/mail/ \
+			--with-user-smtpd=_smtpd \
+			--with-user-queue=_smtpq \
+			--with-group-queue=_smtpq
 
 .include <bsd.port.pre.mk>
 

Modified: branches/2020Q1/mail/opensmtpd/distinfo
==============================================================================
--- branches/2020Q1/mail/opensmtpd/distinfo	Tue Feb 25 03:20:58 2020	(r527061)
+++ branches/2020Q1/mail/opensmtpd/distinfo	Tue Feb 25 03:22:59 2020	(r527062)
@@ -1,3 +1,3 @@
-TIMESTAMP = 1581434283
-SHA256 (opensmtpd-6.6.3p1.tar.gz) = 9ef7c0eb7ffc5c84dca7651cec69bd7b180014cd5227f6dbc7a303eaa9d41eb7
-SIZE (opensmtpd-6.6.3p1.tar.gz) = 787196
+TIMESTAMP = 1582566329
+SHA256 (opensmtpd-6.6.4p1.tar.gz) = e2f9962a6b99b3cc1572b63a10db648fdca4ad2b58079b680b4202cc7c82d7cf
+SIZE (opensmtpd-6.6.4p1.tar.gz) = 790754

Modified: branches/2020Q1/mail/opensmtpd/pkg-plist
==============================================================================
--- branches/2020Q1/mail/opensmtpd/pkg-plist	Tue Feb 25 03:20:58 2020	(r527061)
+++ branches/2020Q1/mail/opensmtpd/pkg-plist	Tue Feb 25 03:22:59 2020	(r527062)
@@ -8,7 +8,7 @@ libexec/opensmtpd/mail.maildir
 libexec/opensmtpd/mail.mboxfile
 libexec/opensmtpd/mail.mda
 %%TABLE_DB%%libexec/opensmtpd/makemap
-@(,,2555) sbin/smtpctl
+@(,_smtpq,2555) sbin/smtpctl
 sbin/smtpd
 man/man1/smtp.1.gz
 man/man5/aliases.5.gz

More information about the svn-ports-branches mailing list