summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorEray Aslan <eras@gentoo.org>2014-09-19 12:05:57 +0000
committerEray Aslan <eras@gentoo.org>2014-09-19 12:05:57 +0000
commitc5ebc705ecf5b0df442d4f76882b9874b45d9127 (patch)
tree7e6be49ef8effa9cc2d216c69a24705c9b1b381c /app-crypt/mit-krb5
parentRemove vulnerable versions (diff)
downloadhistorical-c5ebc705ecf5b0df442d4f76882b9874b45d9127.tar.gz
historical-c5ebc705ecf5b0df442d4f76882b9874b45d9127.tar.bz2
historical-c5ebc705ecf5b0df442d4f76882b9874b45d9127.zip
Remove vulnerable version
Package-Manager: portage-2.2.13/cvs/Linux x86_64 Manifest-Sign-Key: 0x77F1F175586A3B1F
Diffstat (limited to 'app-crypt/mit-krb5')
-rw-r--r--app-crypt/mit-krb5/ChangeLog6
-rw-r--r--app-crypt/mit-krb5/Manifest32
-rw-r--r--app-crypt/mit-krb5/files/CVE-2014-4343.patch11
-rw-r--r--app-crypt/mit-krb5/files/CVE-2014-4344.patch12
-rw-r--r--app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild150
5 files changed, 19 insertions, 192 deletions
diff --git a/app-crypt/mit-krb5/ChangeLog b/app-crypt/mit-krb5/ChangeLog
index b8d3084678db..4222d823ee74 100644
--- a/app-crypt/mit-krb5/ChangeLog
+++ b/app-crypt/mit-krb5/ChangeLog
@@ -1,6 +1,10 @@
# ChangeLog for app-crypt/mit-krb5
# Copyright 1999-2014 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/app-crypt/mit-krb5/ChangeLog,v 1.428 2014/09/19 10:34:32 ago Exp $
+# $Header: /var/cvsroot/gentoo-x86/app-crypt/mit-krb5/ChangeLog,v 1.429 2014/09/19 12:05:45 eras Exp $
+
+ 19 Sep 2014; Eray Aslan <eras@gentoo.org> -files/CVE-2014-4343.patch,
+ -files/CVE-2014-4344.patch, -mit-krb5-1.12.1-r2.ebuild:
+ Remove vulnerable version
19 Sep 2014; Agostino Sarubbo <ago@gentoo.org> mit-krb5-1.12.2.ebuild:
Stable for sparc, wrt bug #519518
diff --git a/app-crypt/mit-krb5/Manifest b/app-crypt/mit-krb5/Manifest
index 3cc8d46ed149..731e7ded258f 100644
--- a/app-crypt/mit-krb5/Manifest
+++ b/app-crypt/mit-krb5/Manifest
@@ -1,34 +1,30 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
-AUX CVE-2014-4343.patch 344 SHA256 d5c18765dbb0d770b78b4214ef20bf9018bf93344d3f29ab8268408d76dd874d SHA512 8024b2685d4ac54df8b3ab162afd2cec58432f090a663703045dd58f80dea1f3314b63b61dbf1d43788579cf0a35a6bc711e8ba7a8bf26f50b38a28ea640af87 WHIRLPOOL 8da60a3753bc973728e9bfefa0cf45b53957939b0d928a0573de2cb12839a8fc4d6bbc5d383ded0099df518c4cfae6d9eae273666c22c2918faa4f008a4995c1
-AUX CVE-2014-4344.patch 325 SHA256 f9d0b9d4d13a294338e1ac683f6d065cb00a37df354c6f8824814aeea4504d23 SHA512 e5e9cdd3f246584461cc1c96813bb7ead404d09a6c949ad0a82e82ed3f99f5067e4cfa2d088b3ae6379754e06dd0a787b94e4d3edd7aa278b60662af6b6a0d7a WHIRLPOOL 931539c8e68516b5ff8182bb44fe503c74127ed16451592eadb8d712527cef58b5f1eb41860a92a485787b37549f7a4367a0e799229e8fa8c484caa0ad54e9e8
AUX kpropd.xinetd 194 SHA256 eaa3838a6ca8db901db359cac3435d4f703a9a10534f02eeb37f494dd21a1736 SHA512 c9bbd13f2fadfd2a925bfae834ba61f227cd4386b4c4466b5227d93c792f4549778ef4d6e08353372df99804459277c71f61b41ec71f3afcc600d73c5705f72f WHIRLPOOL d77ae7b0094c4f42a7ea9cee5d36d0dba844a9ed5d59c621e47c7fa4b75c84fec3414e079c570513711b378d1b0fef61156f675a0df79ee61540d9492416fe42
AUX mit-krb5-1.12_warn_cflags.patch 448 SHA256 67d3c91061933bd5393b9a6ee8fe2e3f5cd287c4eee7b92798cc2e201712c681 SHA512 42364d9cd8c0a6fd28ae661eeac4d0dd3f2001fe290bf9731ee99c2c786a6488805fc93057d59e201e2cef1e5280af4c170187aa5603f4cf542906abc0fccc2b WHIRLPOOL 9fa704dde00b0201d765199893bf787c5c104070596b05bc12e7f41ae21c4c60c8d25b21fe8573ecd3e63ab769238a78c5cf70f4d086a23f71423b1cad283eaa
AUX mit-krb5-config_LDFLAGS.patch 466 SHA256 fbb4d9be71ef536a344d415b9c56ea42c5c2a2ef02ec3a866d9da47b3acd93d3 SHA512 9a1ca9b33e7708346eda78d199fdc51f0d7bd08d3d65ea15a19955a6155ab71b8ee0c8989859d6dff293a141f197ea19394a91b3b641181140a289b743e0f0e7 WHIRLPOOL f6c58e652c4c365c4f28894d404413a075cc6c5323f83b18d711dc831bb574623db371ccbc1a5aae0ddf030a1b85e1ad50c06f5904ae5554bb4026e464a2c75f
AUX mit-krb5kadmind.initd-r1 592 SHA256 3e55c79f19aaa6ef6b64a621c03dbb2eac3ad923916dc803f4c1bfe48ce89fbb SHA512 f0595e9bbcd85badb403af7febce1fa28278bd7fc8118498948171ea12a27ce8b3c479a34b36639d7370193bc69a0b093ae7e3b66473078dabc38864fec931e9 WHIRLPOOL 16147fc873ad16c16410e82df817fdb7ff068ef5cc1c50d9bb5558f134db36d516ab80628714e836a20883d0d1dfd17bfca5a41225be4ecca270580f2db28e70
AUX mit-krb5kdc.initd-r1 556 SHA256 709309dea043aa306c2fcf0960e0993a6db540c220de64cf92d6b85f1cca23c5 SHA512 d6d0076886ce284fc395fafc2dc253b4b3ee97b2986dea51388d96a1e1294680fb171f475efc7844559e2c6aac44b26678a9255921db9a58dcf2e7164f0aeec5 WHIRLPOOL 87e54c3df6b8b45058fe0c90c25946e37228aba32077ebcb595a82a0a6fc7268a516dcb1cfd0ce3fd82afedf19b5df2399ac05931f207d0f3d2e26afd590abef
AUX mit-krb5kpropd.initd-r1 595 SHA256 c374ea05d7e9f15e10c8f9dbd0cad6548e0f92aef7de33e5dbc27222e9407e7b SHA512 a18c523aebbb6b8512cd261eac2149c7422214ef6a233e1ceb1b4da9187eeca317ddd75a153b13382571778931bbed00b1803ed015ff01875c8d565b3f3a593f WHIRLPOOL 869f8aec4764a12b5b5506a2fab8ea2641b58cb347a1db60110cccbb011dc51ab9115824828184abc55efccf540d6b014a57e0891b1d6d4ce28ff35405197aeb
-DIST krb5-1.12.1-signed.tar 11950080 SHA256 72f1b6c166cb42c0b03814ab7ea10f91926d8a665a5ba1cee430a3f31e62c580 SHA512 bdb1541f6906e86fb00336a8d7c58f32c1203d1b23fe72bf6e943197a0d85a48a0b847cc2cf18388d3eec0b22aecc206ce804fd1009bb73423bac76900052a9e WHIRLPOOL 19021c52df7ceb64703c25e2cb9e643d2c62f180b65bf99aab04caeb2e0014b3c0e486609f4c36e618a00621c57d1291075299ea34b8550b255fe1000484291e
DIST krb5-1.12.2-signed.tar 11991040 SHA256 09bd180107b5c2b3b7378c57c023fb02a103d4cac39d6f2dd600275d7a4f3744 SHA512 27ea2e4810e3770695865aa2bbc9d39793fe3eba82ff1ca85ccbcfa0272a3fe13de21bfff15dc5eef6b7c9d91f7f8d1c42fa4b85fa71958d2b38f867d55c5dff WHIRLPOOL 5f403c262fbb18cb50e80bb599344b9dc3bddca9fe5361db5352b49c88cbd312fb086cd112ca4a38d84b2c6a18954371772471b6379c4e055da762e89997c90d
-EBUILD mit-krb5-1.12.1-r2.ebuild 4045 SHA256 eca95a2100b6cf2e2dc6ac0939affa231077ca6e15ff36b42cf2b3777373bf2e SHA512 60754fb232c9fa10578e3a3fc287daefdc54d4f2a0a8f14b5da9e156fb76faf529f43130d57a00d2d4d8fdec2599bcfce0e171333c9eb6158564f09997af2cb8 WHIRLPOOL d46fa5c52a75d93b093b09ed2569838edf36231600215424cbe75a93d90571436bf79f7274c32f3c22d91d91b1bbf80ef5ebef6f40267a382791aea32735351a
EBUILD mit-krb5-1.12.2.ebuild 3830 SHA256 cd5402367a808545e5bae5ff612dfae897bf003d852b4c3a273c8a188ad77730 SHA512 50aaa6cef65d76f6fb0e01089c600ffb617df51838ff4ffb894762c1a5e9c34abf573428997dd317d2e229acebb0adbd56a26b89611d160532a2e465bda1526c WHIRLPOOL c750d0d20d7b022cdb041753317280ce298f088020758a14a8ec77d484c472cd581539e7570b40835e1a9e8e51e908332279c992839cfea179800284de7c5078
-MISC ChangeLog 65390 SHA256 667b847fe6ba62cdcc35415306568e3b6a448da90e12a6661fb1d40a9bd22ad6 SHA512 4c53a027c66787b7b565f790f2973105307b703b9e82c2582cdfaf7959e1ec4e82fc849de2215ea9998d8c992580d55e571f2f2c8c17cf1790f2208158f358ed WHIRLPOOL a7f5a0d7c51c9bae74ce911609a7c03ab30758776fb7a5ec4275269f68f70bd74f2d20e4633a676a6ca0f4658e317ddbc4c5bf4b846db662d162ef1935f5f211
+MISC ChangeLog 65550 SHA256 1039a4e58745c2839837671050b54258b14e6f2702268a52292b927c7879eee4 SHA512 4ecfee97840858ad78705367e972e63bd65ba53ad197e510a0e7bc162b4977ccb980d8afe7f89ad8efcddc8b9c0b22ae64ac795c78a673b3ba20028e88ec1fff WHIRLPOOL fdaeaac3fd2d2e51d7ce86253f54e4934f98ec958962f376abcd40b36ea675a33f9c0810be10f98db5f8d3d276568c0a594d6c63a8a0333c78a5e709b2de45d1
MISC metadata.xml 668 SHA256 da5862dde92f34b882870961cb9f1e4aa8209fc549e32a43d99770a9de8b232d SHA512 0038aeb7cda74161d2e2fe97c5124ee6cc86a24b9503714c128cd8b9af8b8050a89cf5dd3aadd66b1714c1d1aeb8564d50479547a586200793ea485e9f9c6c8b WHIRLPOOL 52394a4f4d5acb11f3bf2e76e036707c7f7741990d70bafb5c87a6da5d191b6aee3cb8383f6e66694cbda7458eb1a869c7ec8758750741835e2f1af4e028378c
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-iQIcBAEBCAAGBQJUHAa5AAoJELp701BxlEWfdokP/1CpvY4g09DORvU7JwAgxYtD
-BTg91pAIdtJbCweRN20dtIJ+RDmp8SyB/cUcEmoZz11Ixq9OOIecaNnHqzjkaIU7
-LpAxtVlJCBgBknnY1oTXuilo4tX/bILpENUfBq5nKLsqLlGGMoG/v7zwHNZZLyiq
-QKVP2qnBWOOiLGNaXa8CWTX2u/E2Y3Es/U7mM2aucQRr+LZfiunvANrUhDEA8a03
-5pxD8a59kNMrfJrlmasEaWjNdlEQpwGqpC5zrgtLuSuIHZChNaZ8+Mn80o1407A3
-4et5TqAnrPTXvdbfRZXV1sP5p24admF6T+EF5xXSeYB4hsMo2jBW1iQs5tTwufXu
-svWOW4FQKHEbUBR+Synup7We0Y2fQgZSKG3RJFXQiBh2fQPU+5mH+WfuHsDdUCdd
-KU6zlOr1B0++RAz3AsW1aRYUuRX0HcnB6GMQgTpVsff1SbHqFJDha7AaakE+3GZi
-luErtACghx12NBbaqVNcR6T6JItAEYRDGDzDybDXh8EVQBDLdJrBKExyZoixUfru
-pwVk+rqYjCsuP2XrKg8HKQzrAHS3DmO3gsaCmPvcp97gwInIarV7hTrYNlYjM539
-UqzadTTsIe6umUcXy+hNWsGSL+KrWx7M1sD8cP+XaN1KIvMGlI9c5JY47s5FnnWS
-lsxIxZikaPI2h/Xgch90
-=4pjb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+=34c+
-----END PGP SIGNATURE-----
diff --git a/app-crypt/mit-krb5/files/CVE-2014-4343.patch b/app-crypt/mit-krb5/files/CVE-2014-4343.patch
deleted file mode 100644
index cb229f99ad46..000000000000
--- a/app-crypt/mit-krb5/files/CVE-2014-4343.patch
+++ /dev/null
@@ -1,11 +0,0 @@
---- a/src/lib/gssapi/spnego/spnego_mech.c
-+++ b/src/lib/gssapi/spnego/spnego_mech.c
-@@ -818,7 +818,6 @@ init_ctx_reselect(OM_uint32 *minor_status, spnego_gss_ctx_id_t sc,
- OM_uint32 tmpmin;
- size_t i;
-
-- generic_gss_release_oid(&tmpmin, &sc->internal_mech);
- gss_delete_sec_context(&tmpmin, &sc->ctx_handle,
- GSS_C_NO_BUFFER);
-
-
diff --git a/app-crypt/mit-krb5/files/CVE-2014-4344.patch b/app-crypt/mit-krb5/files/CVE-2014-4344.patch
deleted file mode 100644
index 241d3ee5588a..000000000000
--- a/app-crypt/mit-krb5/files/CVE-2014-4344.patch
+++ /dev/null
@@ -1,12 +0,0 @@
---- a/src/lib/gssapi/spnego/spnego_mech.c
-+++ b/src/lib/gssapi/spnego/spnego_mech.c
-@@ -1468,7 +1468,7 @@ acc_ctx_cont(OM_uint32 *minstat,
-
- ptr = bufstart = buf->value;
- #define REMAIN (buf->length - (ptr - bufstart))
-- if (REMAIN > INT_MAX)
-+ if (REMAIN == 0 || REMAIN > INT_MAX)
- return GSS_S_DEFECTIVE_TOKEN;
-
- /*
-
diff --git a/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild b/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild
deleted file mode 100644
index 699c88035092..000000000000
--- a/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild
+++ /dev/null
@@ -1,150 +0,0 @@
-# Copyright 1999-2014 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild,v 1.10 2014/08/10 17:25:27 ago Exp $
-
-EAPI=5
-
-PYTHON_COMPAT=( python{2_6,2_7} )
-inherit autotools eutils flag-o-matic multilib-minimal python-any-r1 versionator
-
-MY_P="${P/mit-}"
-P_DIR=$(get_version_component_range 1-2)
-DESCRIPTION="MIT Kerberos V"
-HOMEPAGE="http://web.mit.edu/kerberos/www/"
-SRC_URI="http://web.mit.edu/kerberos/dist/krb5/${P_DIR}/${MY_P}-signed.tar"
-
-LICENSE="openafs-krb5-a BSD MIT OPENLDAP BSD-2 HPND BSD-4 ISC RSA CC-BY-SA-3.0 || ( BSD-2 GPL-2+ )"
-SLOT="0"
-KEYWORDS="alpha amd64 arm ~arm64 hppa ia64 ~mips ppc ppc64 ~s390 ~sh sparc x86"
-IUSE="doc +keyutils openldap +pkinit selinux +threads test xinetd"
-
-RDEPEND="!!app-crypt/heimdal
- >=sys-libs/e2fsprogs-libs-1.42.9[${MULTILIB_USEDEP}]
- || ( >=dev-libs/libverto-0.2.5[libev,${MULTILIB_USEDEP}]
- >=dev-libs/libverto-0.2.5[libevent,${MULTILIB_USEDEP}]
- >=dev-libs/libverto-0.2.5[tevent,${MULTILIB_USEDEP}] )
- keyutils? ( >=sys-apps/keyutils-1.5.8[${MULTILIB_USEDEP}] )
- openldap? ( >=net-nds/openldap-2.4.38-r1[${MULTILIB_USEDEP}] )
- pkinit? ( >=dev-libs/openssl-1.0.1h-r2[${MULTILIB_USEDEP}] )
- selinux? ( sec-policy/selinux-kerberos )
- xinetd? ( sys-apps/xinetd )
- abi_x86_32? (
- !<=app-emulation/emul-linux-x86-baselibs-20140508-r1
- !app-emulation/emul-linux-x86-baselibs[-abi_x86_32(-)]
- )"
-DEPEND="${RDEPEND}
- ${PYTHON_DEPS}
- virtual/yacc
- doc? ( virtual/latex-base )
- test? ( ${PYTHON_DEPS}
- dev-lang/tcl
- dev-util/dejagnu )"
-
-S=${WORKDIR}/${MY_P}/src
-
-MULTILIB_CHOST_TOOLS=(
- /usr/bin/krb5-config
-)
-
-src_unpack() {
- unpack ${A}
- unpack ./"${MY_P}".tar.gz
-}
-
-src_prepare() {
- epatch "${FILESDIR}/${PN}-1.12_warn_cflags.patch"
- epatch "${FILESDIR}/${PN}-config_LDFLAGS.patch"
- epatch "${FILESDIR}/CVE-2014-4343.patch"
- epatch "${FILESDIR}/CVE-2014-4344.patch"
-
- # tcl-8.6 compatibility
- sed -i -e 's/interp->result/Tcl_GetStringResult(interp)/' \
- kadmin/testing/util/tcl_kadm5.c || die
-
- eautoreconf
-}
-
-src_configure() {
- append-cppflags "-I${EPREFIX}/usr/include/et"
- # QA
- append-flags -fno-strict-aliasing
- append-flags -fno-strict-overflow
-
- multilib-minimal_src_configure
-}
-
-multilib_src_configure() {
- use keyutils || export ac_cv_header_keyutils_h=no
- ECONF_SOURCE=${S} \
- WARN_CFLAGS="set" \
- econf \
- $(use_with openldap ldap) \
- "$(multilib_native_use_with test tcl "${EPREFIX}/usr")" \
- $(use_enable pkinit) \
- $(use_enable threads thread-support) \
- --without-hesiod \
- --enable-shared \
- --with-system-et \
- --with-system-ss \
- --enable-dns-for-realm \
- --enable-kdc-lookaside-cache \
- --with-system-verto \
- --disable-rpath
-}
-
-multilib_src_compile() {
- emake -j1
-}
-
-multilib_src_test() {
- multilib_is_native_abi && emake -j1 check
-}
-
-multilib_src_install() {
- emake \
- DESTDIR="${D}" \
- EXAMPLEDIR="${EPREFIX}/usr/share/doc/${PF}/examples" \
- install
-}
-
-multilib_src_install_all() {
- # default database dir
- keepdir /var/lib/krb5kdc
-
- cd ..
- dodoc README
-
- if use doc; then
- dohtml -r doc/html/*
- docinto pdf
- dodoc doc/pdf/*.pdf
- fi
-
- newinitd "${FILESDIR}"/mit-krb5kadmind.initd-r1 mit-krb5kadmind
- newinitd "${FILESDIR}"/mit-krb5kdc.initd-r1 mit-krb5kdc
- newinitd "${FILESDIR}"/mit-krb5kpropd.initd-r1 mit-krb5kpropd
-
- insinto /etc
- newins "${ED}/usr/share/doc/${PF}/examples/krb5.conf" krb5.conf.example
- insinto /var/lib/krb5kdc
- newins "${ED}/usr/share/doc/${PF}/examples/kdc.conf" kdc.conf.example
-
- if use openldap ; then
- insinto /etc/openldap/schema
- doins "${S}/plugins/kdb/ldap/libkdb_ldap/kerberos.schema"
- fi
-
- if use xinetd ; then
- insinto /etc/xinetd.d
- newins "${FILESDIR}/kpropd.xinetd" kpropd
- fi
-}
-
-pkg_preinst() {
- if has_version "<${CATEGORY}/${PN}-1.8.0" ; then
- elog "MIT split the Kerberos applications from the base Kerberos"
- elog "distribution. Kerberized versions of telnet, rlogin, rsh, rcp,"
- elog "ftp clients and telnet, ftp deamons now live in"
- elog "\"app-crypt/mit-krb5-appl\" package."
- fi
-}