diff options
author | Eray Aslan <eras@gentoo.org> | 2014-09-19 12:05:57 +0000 |
---|---|---|
committer | Eray Aslan <eras@gentoo.org> | 2014-09-19 12:05:57 +0000 |
commit | c5ebc705ecf5b0df442d4f76882b9874b45d9127 (patch) | |
tree | 7e6be49ef8effa9cc2d216c69a24705c9b1b381c /app-crypt/mit-krb5 | |
parent | Remove vulnerable versions (diff) | |
download | historical-c5ebc705ecf5b0df442d4f76882b9874b45d9127.tar.gz historical-c5ebc705ecf5b0df442d4f76882b9874b45d9127.tar.bz2 historical-c5ebc705ecf5b0df442d4f76882b9874b45d9127.zip |
Remove vulnerable version
Package-Manager: portage-2.2.13/cvs/Linux x86_64
Manifest-Sign-Key: 0x77F1F175586A3B1F
Diffstat (limited to 'app-crypt/mit-krb5')
-rw-r--r-- | app-crypt/mit-krb5/ChangeLog | 6 | ||||
-rw-r--r-- | app-crypt/mit-krb5/Manifest | 32 | ||||
-rw-r--r-- | app-crypt/mit-krb5/files/CVE-2014-4343.patch | 11 | ||||
-rw-r--r-- | app-crypt/mit-krb5/files/CVE-2014-4344.patch | 12 | ||||
-rw-r--r-- | app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild | 150 |
5 files changed, 19 insertions, 192 deletions
diff --git a/app-crypt/mit-krb5/ChangeLog b/app-crypt/mit-krb5/ChangeLog index b8d3084678db..4222d823ee74 100644 --- a/app-crypt/mit-krb5/ChangeLog +++ b/app-crypt/mit-krb5/ChangeLog @@ -1,6 +1,10 @@ # ChangeLog for app-crypt/mit-krb5 # Copyright 1999-2014 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/app-crypt/mit-krb5/ChangeLog,v 1.428 2014/09/19 10:34:32 ago Exp $ +# $Header: /var/cvsroot/gentoo-x86/app-crypt/mit-krb5/ChangeLog,v 1.429 2014/09/19 12:05:45 eras Exp $ + + 19 Sep 2014; Eray Aslan <eras@gentoo.org> -files/CVE-2014-4343.patch, + -files/CVE-2014-4344.patch, -mit-krb5-1.12.1-r2.ebuild: + Remove vulnerable version 19 Sep 2014; Agostino Sarubbo <ago@gentoo.org> mit-krb5-1.12.2.ebuild: Stable for sparc, wrt bug #519518 diff --git a/app-crypt/mit-krb5/Manifest b/app-crypt/mit-krb5/Manifest index 3cc8d46ed149..731e7ded258f 100644 --- a/app-crypt/mit-krb5/Manifest +++ b/app-crypt/mit-krb5/Manifest @@ -1,34 +1,30 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 -AUX CVE-2014-4343.patch 344 SHA256 d5c18765dbb0d770b78b4214ef20bf9018bf93344d3f29ab8268408d76dd874d SHA512 8024b2685d4ac54df8b3ab162afd2cec58432f090a663703045dd58f80dea1f3314b63b61dbf1d43788579cf0a35a6bc711e8ba7a8bf26f50b38a28ea640af87 WHIRLPOOL 8da60a3753bc973728e9bfefa0cf45b53957939b0d928a0573de2cb12839a8fc4d6bbc5d383ded0099df518c4cfae6d9eae273666c22c2918faa4f008a4995c1 -AUX CVE-2014-4344.patch 325 SHA256 f9d0b9d4d13a294338e1ac683f6d065cb00a37df354c6f8824814aeea4504d23 SHA512 e5e9cdd3f246584461cc1c96813bb7ead404d09a6c949ad0a82e82ed3f99f5067e4cfa2d088b3ae6379754e06dd0a787b94e4d3edd7aa278b60662af6b6a0d7a WHIRLPOOL 931539c8e68516b5ff8182bb44fe503c74127ed16451592eadb8d712527cef58b5f1eb41860a92a485787b37549f7a4367a0e799229e8fa8c484caa0ad54e9e8 AUX kpropd.xinetd 194 SHA256 eaa3838a6ca8db901db359cac3435d4f703a9a10534f02eeb37f494dd21a1736 SHA512 c9bbd13f2fadfd2a925bfae834ba61f227cd4386b4c4466b5227d93c792f4549778ef4d6e08353372df99804459277c71f61b41ec71f3afcc600d73c5705f72f WHIRLPOOL d77ae7b0094c4f42a7ea9cee5d36d0dba844a9ed5d59c621e47c7fa4b75c84fec3414e079c570513711b378d1b0fef61156f675a0df79ee61540d9492416fe42 AUX mit-krb5-1.12_warn_cflags.patch 448 SHA256 67d3c91061933bd5393b9a6ee8fe2e3f5cd287c4eee7b92798cc2e201712c681 SHA512 42364d9cd8c0a6fd28ae661eeac4d0dd3f2001fe290bf9731ee99c2c786a6488805fc93057d59e201e2cef1e5280af4c170187aa5603f4cf542906abc0fccc2b WHIRLPOOL 9fa704dde00b0201d765199893bf787c5c104070596b05bc12e7f41ae21c4c60c8d25b21fe8573ecd3e63ab769238a78c5cf70f4d086a23f71423b1cad283eaa AUX mit-krb5-config_LDFLAGS.patch 466 SHA256 fbb4d9be71ef536a344d415b9c56ea42c5c2a2ef02ec3a866d9da47b3acd93d3 SHA512 9a1ca9b33e7708346eda78d199fdc51f0d7bd08d3d65ea15a19955a6155ab71b8ee0c8989859d6dff293a141f197ea19394a91b3b641181140a289b743e0f0e7 WHIRLPOOL f6c58e652c4c365c4f28894d404413a075cc6c5323f83b18d711dc831bb574623db371ccbc1a5aae0ddf030a1b85e1ad50c06f5904ae5554bb4026e464a2c75f AUX mit-krb5kadmind.initd-r1 592 SHA256 3e55c79f19aaa6ef6b64a621c03dbb2eac3ad923916dc803f4c1bfe48ce89fbb SHA512 f0595e9bbcd85badb403af7febce1fa28278bd7fc8118498948171ea12a27ce8b3c479a34b36639d7370193bc69a0b093ae7e3b66473078dabc38864fec931e9 WHIRLPOOL 16147fc873ad16c16410e82df817fdb7ff068ef5cc1c50d9bb5558f134db36d516ab80628714e836a20883d0d1dfd17bfca5a41225be4ecca270580f2db28e70 AUX mit-krb5kdc.initd-r1 556 SHA256 709309dea043aa306c2fcf0960e0993a6db540c220de64cf92d6b85f1cca23c5 SHA512 d6d0076886ce284fc395fafc2dc253b4b3ee97b2986dea51388d96a1e1294680fb171f475efc7844559e2c6aac44b26678a9255921db9a58dcf2e7164f0aeec5 WHIRLPOOL 87e54c3df6b8b45058fe0c90c25946e37228aba32077ebcb595a82a0a6fc7268a516dcb1cfd0ce3fd82afedf19b5df2399ac05931f207d0f3d2e26afd590abef AUX mit-krb5kpropd.initd-r1 595 SHA256 c374ea05d7e9f15e10c8f9dbd0cad6548e0f92aef7de33e5dbc27222e9407e7b SHA512 a18c523aebbb6b8512cd261eac2149c7422214ef6a233e1ceb1b4da9187eeca317ddd75a153b13382571778931bbed00b1803ed015ff01875c8d565b3f3a593f WHIRLPOOL 869f8aec4764a12b5b5506a2fab8ea2641b58cb347a1db60110cccbb011dc51ab9115824828184abc55efccf540d6b014a57e0891b1d6d4ce28ff35405197aeb -DIST krb5-1.12.1-signed.tar 11950080 SHA256 72f1b6c166cb42c0b03814ab7ea10f91926d8a665a5ba1cee430a3f31e62c580 SHA512 bdb1541f6906e86fb00336a8d7c58f32c1203d1b23fe72bf6e943197a0d85a48a0b847cc2cf18388d3eec0b22aecc206ce804fd1009bb73423bac76900052a9e WHIRLPOOL 19021c52df7ceb64703c25e2cb9e643d2c62f180b65bf99aab04caeb2e0014b3c0e486609f4c36e618a00621c57d1291075299ea34b8550b255fe1000484291e DIST krb5-1.12.2-signed.tar 11991040 SHA256 09bd180107b5c2b3b7378c57c023fb02a103d4cac39d6f2dd600275d7a4f3744 SHA512 27ea2e4810e3770695865aa2bbc9d39793fe3eba82ff1ca85ccbcfa0272a3fe13de21bfff15dc5eef6b7c9d91f7f8d1c42fa4b85fa71958d2b38f867d55c5dff WHIRLPOOL 5f403c262fbb18cb50e80bb599344b9dc3bddca9fe5361db5352b49c88cbd312fb086cd112ca4a38d84b2c6a18954371772471b6379c4e055da762e89997c90d -EBUILD mit-krb5-1.12.1-r2.ebuild 4045 SHA256 eca95a2100b6cf2e2dc6ac0939affa231077ca6e15ff36b42cf2b3777373bf2e SHA512 60754fb232c9fa10578e3a3fc287daefdc54d4f2a0a8f14b5da9e156fb76faf529f43130d57a00d2d4d8fdec2599bcfce0e171333c9eb6158564f09997af2cb8 WHIRLPOOL d46fa5c52a75d93b093b09ed2569838edf36231600215424cbe75a93d90571436bf79f7274c32f3c22d91d91b1bbf80ef5ebef6f40267a382791aea32735351a EBUILD mit-krb5-1.12.2.ebuild 3830 SHA256 cd5402367a808545e5bae5ff612dfae897bf003d852b4c3a273c8a188ad77730 SHA512 50aaa6cef65d76f6fb0e01089c600ffb617df51838ff4ffb894762c1a5e9c34abf573428997dd317d2e229acebb0adbd56a26b89611d160532a2e465bda1526c WHIRLPOOL c750d0d20d7b022cdb041753317280ce298f088020758a14a8ec77d484c472cd581539e7570b40835e1a9e8e51e908332279c992839cfea179800284de7c5078 -MISC ChangeLog 65390 SHA256 667b847fe6ba62cdcc35415306568e3b6a448da90e12a6661fb1d40a9bd22ad6 SHA512 4c53a027c66787b7b565f790f2973105307b703b9e82c2582cdfaf7959e1ec4e82fc849de2215ea9998d8c992580d55e571f2f2c8c17cf1790f2208158f358ed WHIRLPOOL a7f5a0d7c51c9bae74ce911609a7c03ab30758776fb7a5ec4275269f68f70bd74f2d20e4633a676a6ca0f4658e317ddbc4c5bf4b846db662d162ef1935f5f211 +MISC ChangeLog 65550 SHA256 1039a4e58745c2839837671050b54258b14e6f2702268a52292b927c7879eee4 SHA512 4ecfee97840858ad78705367e972e63bd65ba53ad197e510a0e7bc162b4977ccb980d8afe7f89ad8efcddc8b9c0b22ae64ac795c78a673b3ba20028e88ec1fff WHIRLPOOL fdaeaac3fd2d2e51d7ce86253f54e4934f98ec958962f376abcd40b36ea675a33f9c0810be10f98db5f8d3d276568c0a594d6c63a8a0333c78a5e709b2de45d1 MISC metadata.xml 668 SHA256 da5862dde92f34b882870961cb9f1e4aa8209fc549e32a43d99770a9de8b232d SHA512 0038aeb7cda74161d2e2fe97c5124ee6cc86a24b9503714c128cd8b9af8b8050a89cf5dd3aadd66b1714c1d1aeb8564d50479547a586200793ea485e9f9c6c8b WHIRLPOOL 52394a4f4d5acb11f3bf2e76e036707c7f7741990d70bafb5c87a6da5d191b6aee3cb8383f6e66694cbda7458eb1a869c7ec8758750741835e2f1af4e028378c -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 -iQIcBAEBCAAGBQJUHAa5AAoJELp701BxlEWfdokP/1CpvY4g09DORvU7JwAgxYtD -BTg91pAIdtJbCweRN20dtIJ+RDmp8SyB/cUcEmoZz11Ixq9OOIecaNnHqzjkaIU7 -LpAxtVlJCBgBknnY1oTXuilo4tX/bILpENUfBq5nKLsqLlGGMoG/v7zwHNZZLyiq -QKVP2qnBWOOiLGNaXa8CWTX2u/E2Y3Es/U7mM2aucQRr+LZfiunvANrUhDEA8a03 -5pxD8a59kNMrfJrlmasEaWjNdlEQpwGqpC5zrgtLuSuIHZChNaZ8+Mn80o1407A3 -4et5TqAnrPTXvdbfRZXV1sP5p24admF6T+EF5xXSeYB4hsMo2jBW1iQs5tTwufXu -svWOW4FQKHEbUBR+Synup7We0Y2fQgZSKG3RJFXQiBh2fQPU+5mH+WfuHsDdUCdd -KU6zlOr1B0++RAz3AsW1aRYUuRX0HcnB6GMQgTpVsff1SbHqFJDha7AaakE+3GZi -luErtACghx12NBbaqVNcR6T6JItAEYRDGDzDybDXh8EVQBDLdJrBKExyZoixUfru -pwVk+rqYjCsuP2XrKg8HKQzrAHS3DmO3gsaCmPvcp97gwInIarV7hTrYNlYjM539 -UqzadTTsIe6umUcXy+hNWsGSL+KrWx7M1sD8cP+XaN1KIvMGlI9c5JY47s5FnnWS -lsxIxZikaPI2h/Xgch90 -=4pjb +iQIcBAEBCAAGBQJUHBwlAAoJEHfx8XVYajsfp20P/Aq6lgqwjQMPqeQulMnL5onZ +Pv6FSkOEC+uvZR5juWvqhbLLxkMrNxd2/+uJJAx5nr4NFY5mm46cQvE8wYJTTNWR +DxArr/yuUcTXFhRwZ4UqXddviiUpPKDwoO+7ivsulql9DE7vmmbez4BaJQOcmVVE +wwMFTvfqxTqJ61WO1tKG65SF1294flWMJ9HE2yxoHTH6LVaORt1Ih0IYYHujGKSP +1iEl7HacGvEfx20iFulkOcQTjXqJDXsyyULiC+aqddK0MUqQdjU7N/SXs8/jTd4n +sj0tNW1WHzxmvyEsWxj2JN+pMfUWj0AlK5nE88C5j9vP79SwJ3gRskOI6IRuh6uG +hRQZhOso+NnZ0FU7PznzJyJ+JoMkdm1T7rSL0NywxDYwthjWMa69Yx+IO0FIgu9t +RlHWFKYS2QoatbAGHo6/WhG+Gnq6ONNAhiOCWSj7In0fafze+1XBcCooTm+b4PEX +DerNFv9t6EGm18iXP9CNPWKwvpPwAJDNylxCenRSaQIXQpO2fVUCYCynY2tW0TRw +IoMVpYIjCSg/x0SZ4jB6XwQ2IwrIl7IWKktziIucVoI6vuaQ3HTOoXo7NYiAtEuC +3Cv7/DFq1YxGpT5wwSQ4ofdCM40SdmFZa5f3HHVro7r3DuwDANof7E8a+MbekoVF +eFO14DQgmHvl8BGI31n4 +=34c+ -----END PGP SIGNATURE----- diff --git a/app-crypt/mit-krb5/files/CVE-2014-4343.patch b/app-crypt/mit-krb5/files/CVE-2014-4343.patch deleted file mode 100644 index cb229f99ad46..000000000000 --- a/app-crypt/mit-krb5/files/CVE-2014-4343.patch +++ /dev/null @@ -1,11 +0,0 @@ ---- a/src/lib/gssapi/spnego/spnego_mech.c -+++ b/src/lib/gssapi/spnego/spnego_mech.c -@@ -818,7 +818,6 @@ init_ctx_reselect(OM_uint32 *minor_status, spnego_gss_ctx_id_t sc, - OM_uint32 tmpmin; - size_t i; - -- generic_gss_release_oid(&tmpmin, &sc->internal_mech); - gss_delete_sec_context(&tmpmin, &sc->ctx_handle, - GSS_C_NO_BUFFER); - - diff --git a/app-crypt/mit-krb5/files/CVE-2014-4344.patch b/app-crypt/mit-krb5/files/CVE-2014-4344.patch deleted file mode 100644 index 241d3ee5588a..000000000000 --- a/app-crypt/mit-krb5/files/CVE-2014-4344.patch +++ /dev/null @@ -1,12 +0,0 @@ ---- a/src/lib/gssapi/spnego/spnego_mech.c -+++ b/src/lib/gssapi/spnego/spnego_mech.c -@@ -1468,7 +1468,7 @@ acc_ctx_cont(OM_uint32 *minstat, - - ptr = bufstart = buf->value; - #define REMAIN (buf->length - (ptr - bufstart)) -- if (REMAIN > INT_MAX) -+ if (REMAIN == 0 || REMAIN > INT_MAX) - return GSS_S_DEFECTIVE_TOKEN; - - /* - diff --git a/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild b/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild deleted file mode 100644 index 699c88035092..000000000000 --- a/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild +++ /dev/null @@ -1,150 +0,0 @@ -# Copyright 1999-2014 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/app-crypt/mit-krb5/mit-krb5-1.12.1-r2.ebuild,v 1.10 2014/08/10 17:25:27 ago Exp $ - -EAPI=5 - -PYTHON_COMPAT=( python{2_6,2_7} ) -inherit autotools eutils flag-o-matic multilib-minimal python-any-r1 versionator - -MY_P="${P/mit-}" -P_DIR=$(get_version_component_range 1-2) -DESCRIPTION="MIT Kerberos V" -HOMEPAGE="http://web.mit.edu/kerberos/www/" -SRC_URI="http://web.mit.edu/kerberos/dist/krb5/${P_DIR}/${MY_P}-signed.tar" - -LICENSE="openafs-krb5-a BSD MIT OPENLDAP BSD-2 HPND BSD-4 ISC RSA CC-BY-SA-3.0 || ( BSD-2 GPL-2+ )" -SLOT="0" -KEYWORDS="alpha amd64 arm ~arm64 hppa ia64 ~mips ppc ppc64 ~s390 ~sh sparc x86" -IUSE="doc +keyutils openldap +pkinit selinux +threads test xinetd" - -RDEPEND="!!app-crypt/heimdal - >=sys-libs/e2fsprogs-libs-1.42.9[${MULTILIB_USEDEP}] - || ( >=dev-libs/libverto-0.2.5[libev,${MULTILIB_USEDEP}] - >=dev-libs/libverto-0.2.5[libevent,${MULTILIB_USEDEP}] - >=dev-libs/libverto-0.2.5[tevent,${MULTILIB_USEDEP}] ) - keyutils? ( >=sys-apps/keyutils-1.5.8[${MULTILIB_USEDEP}] ) - openldap? ( >=net-nds/openldap-2.4.38-r1[${MULTILIB_USEDEP}] ) - pkinit? ( >=dev-libs/openssl-1.0.1h-r2[${MULTILIB_USEDEP}] ) - selinux? ( sec-policy/selinux-kerberos ) - xinetd? ( sys-apps/xinetd ) - abi_x86_32? ( - !<=app-emulation/emul-linux-x86-baselibs-20140508-r1 - !app-emulation/emul-linux-x86-baselibs[-abi_x86_32(-)] - )" -DEPEND="${RDEPEND} - ${PYTHON_DEPS} - virtual/yacc - doc? ( virtual/latex-base ) - test? ( ${PYTHON_DEPS} - dev-lang/tcl - dev-util/dejagnu )" - -S=${WORKDIR}/${MY_P}/src - -MULTILIB_CHOST_TOOLS=( - /usr/bin/krb5-config -) - -src_unpack() { - unpack ${A} - unpack ./"${MY_P}".tar.gz -} - -src_prepare() { - epatch "${FILESDIR}/${PN}-1.12_warn_cflags.patch" - epatch "${FILESDIR}/${PN}-config_LDFLAGS.patch" - epatch "${FILESDIR}/CVE-2014-4343.patch" - epatch "${FILESDIR}/CVE-2014-4344.patch" - - # tcl-8.6 compatibility - sed -i -e 's/interp->result/Tcl_GetStringResult(interp)/' \ - kadmin/testing/util/tcl_kadm5.c || die - - eautoreconf -} - -src_configure() { - append-cppflags "-I${EPREFIX}/usr/include/et" - # QA - append-flags -fno-strict-aliasing - append-flags -fno-strict-overflow - - multilib-minimal_src_configure -} - -multilib_src_configure() { - use keyutils || export ac_cv_header_keyutils_h=no - ECONF_SOURCE=${S} \ - WARN_CFLAGS="set" \ - econf \ - $(use_with openldap ldap) \ - "$(multilib_native_use_with test tcl "${EPREFIX}/usr")" \ - $(use_enable pkinit) \ - $(use_enable threads thread-support) \ - --without-hesiod \ - --enable-shared \ - --with-system-et \ - --with-system-ss \ - --enable-dns-for-realm \ - --enable-kdc-lookaside-cache \ - --with-system-verto \ - --disable-rpath -} - -multilib_src_compile() { - emake -j1 -} - -multilib_src_test() { - multilib_is_native_abi && emake -j1 check -} - -multilib_src_install() { - emake \ - DESTDIR="${D}" \ - EXAMPLEDIR="${EPREFIX}/usr/share/doc/${PF}/examples" \ - install -} - -multilib_src_install_all() { - # default database dir - keepdir /var/lib/krb5kdc - - cd .. - dodoc README - - if use doc; then - dohtml -r doc/html/* - docinto pdf - dodoc doc/pdf/*.pdf - fi - - newinitd "${FILESDIR}"/mit-krb5kadmind.initd-r1 mit-krb5kadmind - newinitd "${FILESDIR}"/mit-krb5kdc.initd-r1 mit-krb5kdc - newinitd "${FILESDIR}"/mit-krb5kpropd.initd-r1 mit-krb5kpropd - - insinto /etc - newins "${ED}/usr/share/doc/${PF}/examples/krb5.conf" krb5.conf.example - insinto /var/lib/krb5kdc - newins "${ED}/usr/share/doc/${PF}/examples/kdc.conf" kdc.conf.example - - if use openldap ; then - insinto /etc/openldap/schema - doins "${S}/plugins/kdb/ldap/libkdb_ldap/kerberos.schema" - fi - - if use xinetd ; then - insinto /etc/xinetd.d - newins "${FILESDIR}/kpropd.xinetd" kpropd - fi -} - -pkg_preinst() { - if has_version "<${CATEGORY}/${PN}-1.8.0" ; then - elog "MIT split the Kerberos applications from the base Kerberos" - elog "distribution. Kerberized versions of telnet, rlogin, rsh, rcp," - elog "ftp clients and telnet, ftp deamons now live in" - elog "\"app-crypt/mit-krb5-appl\" package." - fi -} |