summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorbsiegert <bsiegert>2015-11-19 20:39:15 +0000
committerbsiegert <bsiegert>2015-11-19 20:39:15 +0000
commit1f7cff7a541f86facc02101e338509c9acd8e795 (patch)
treeef45e02b11c077c8135739eca2316811ad14ad03
parent4d46eca4c69b2cc6af7d4903852a11ff97e61417 (diff)
downloadpkgsrc-1f7cff7a541f86facc02101e338509c9acd8e795.tar.gz
Pullup ticket #4853 - requested by he
devel/nss: security fix Revisions pulled up: - devel/nss/Makefile 1.103 - devel/nss/distinfo 1.52 --- Module Name: pkgsrc Committed By: ryoon Date: Tue Nov 3 16:55:07 UTC 2015 Modified Files: pkgsrc/devel/nss: Makefile distinfo Log Message: Update to 3.20.1 Changelog: The following security-relevant bugs have been resolved in NSS 3.20.1. Users are encouraged to upgrade immediately. * Bug 1192028 (CVE-2015-7181) and Bug 1202868 (CVE-2015-7182): Several issues existed within the ASN.1 decoder used by NSS for handling streaming BER data. While the majority of NSS uses a separate, unaffected DER decoder, several public routines also accept BER data, and thus are affected. An attacker that successfully exploited these issues can overflow the heap and may be able to obtain remote code execution.
-rw-r--r--devel/nss/Makefile4
-rw-r--r--devel/nss/distinfo9
2 files changed, 7 insertions, 6 deletions
diff --git a/devel/nss/Makefile b/devel/nss/Makefile
index e53bbe6b99b..ed6ea3c1ff1 100644
--- a/devel/nss/Makefile
+++ b/devel/nss/Makefile
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.100 2015/08/20 10:54:24 ryoon Exp $
+# $NetBSD: Makefile,v 1.100.2.1 2015/11/19 20:39:15 bsiegert Exp $
DISTNAME= nss-${NSS_RELEASE:S/.0$//}
-NSS_RELEASE= 3.20.0
+NSS_RELEASE= 3.20.1
CATEGORIES= security
MASTER_SITES= ${MASTER_SITE_MOZILLA_ALL:=security/nss/releases/NSS_${NSS_RELEASE:S/.0$//:S/./_/g}_RTM/src/}
diff --git a/devel/nss/distinfo b/devel/nss/distinfo
index f1c08df5d73..e00a5691a24 100644
--- a/devel/nss/distinfo
+++ b/devel/nss/distinfo
@@ -1,8 +1,9 @@
-$NetBSD: distinfo,v 1.50 2015/08/20 10:54:24 ryoon Exp $
+$NetBSD: distinfo,v 1.50.2.1 2015/11/19 20:39:15 bsiegert Exp $
-SHA1 (nss-3.20.tar.gz) = f5830e2db3303965abad66d9a3318a059c706387
-RMD160 (nss-3.20.tar.gz) = 69064b78a2db3de42018d77874c28a9c9656cca7
-Size (nss-3.20.tar.gz) = 6955552 bytes
+SHA1 (nss-3.20.1.tar.gz) = 6f123d05a8184cdc5ab4c903250f3c9b5b96dea4
+RMD160 (nss-3.20.1.tar.gz) = f7cd3b4d84ecad80c22126db49ce46cff1d64d42
+SHA512 (nss-3.20.1.tar.gz) = c8db693a81b8ddb4d2a742c2fce3f23dd40736e54c55c0de072f84572fcdad8fb7646e4b8ea696e4c97ea6c9cb0fa144f573f8776c2839eb25c4075b50d01d74
+Size (nss-3.20.1.tar.gz) = 6958956 bytes
SHA1 (patch-am) = ee4c4beeb120397852fc4b06b7dd54534d0d5ac5
SHA1 (patch-an) = 4ab22f2a575676b5b640bc9a760b83eb05c75e69
SHA1 (patch-md) = 0a09fd2abb8674a2d301f1b6a5331af5db94178f