[pkgsrc/trunk]: pkgsrc/security/polkit polkit: update to 0.116.

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/security/polkit polkit: update to 0.116.
From: wiz <wiz%pkgsrc.org@localhost>
Date: Sun, 05 Apr 2020 07:03:00 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/294f4b5c3614
branches:  trunk
changeset: 414928:294f4b5c3614
user:      wiz <wiz%pkgsrc.org@localhost>
date:      Sun Apr 05 06:14:07 2020 +0000

description:
polkit: update to 0.116.

This is polkit 0.116.

Highlights:
 Fix of CVE-2018-19788, high UIDs caused overflow in polkit;
 Fix of CVE-2019-6133, kernel vulnerability (Slowfork) allowed local privilege escalation.

Changes since polkit 0.115:

 Kyle Walker:
    Leaking zombie child processes

 Jan Rybar:
    Possible resource leak found by static analyzer
    Output messages tuneup
    Sanity fixes
    pkttyagent tty echo disabled on SIGINT

 Ray Strode:
    HACKING: add link to Code of Conduct

 Philip Withnall:
    polkitbackend: comment typos fix

 Zbigniew J?drzejewski-Szmek:
    configure.ac: fix detection of systemd with cgroups v2
    CVE-2018-19788 High UIDs overflow fix

 Colin Walters:
    CVE-2019-6133 Slowfork vulnerability fix

 Matthew Leeds:
    Allow unset process-uid

 Emmanuele Bassi
    Port the JS authority to mozjs-60

 G?ran Uddeborg:
    Use JS_EncodeStringToUTF8

Many thanks to all contributors!

Jan Rybar et al.,
April 25, 2019

diffstat:

 security/polkit/Makefile                                |   7 +++----
 security/polkit/PLIST                                   |   5 +++--
 security/polkit/distinfo                                |  12 ++++++------
 security/polkit/patches/patch-src_programs_pkttyagent.c |  10 +++++-----
 4 files changed, 17 insertions(+), 17 deletions(-)

diffs (101 lines):

diff -r 8ce9ef921f59 -r 294f4b5c3614 security/polkit/Makefile
--- a/security/polkit/Makefile  Sun Apr 05 06:11:40 2020 +0000
+++ b/security/polkit/Makefile  Sun Apr 05 06:14:07 2020 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.18 2020/03/26 16:07:57 nia Exp $
+# $NetBSD: Makefile,v 1.19 2020/04/05 06:14:07 wiz Exp $
 
-DISTNAME=      polkit-0.115
-PKGREVISION=   4
+DISTNAME=      polkit-0.116
 CATEGORIES=    security
 MASTER_SITES=  http://www.freedesktop.org/software/polkit/releases/
 
@@ -72,7 +71,7 @@
 SUBST_SED.paths+=      -e 's,/usr/bin/,${PREFIX}/bin/,g'
 
 
-.include "../../lang/spidermonkey52/buildlink3.mk"
+.include "../../lang/mozjs60/buildlink3.mk"
 .include "../../devel/gettext-lib/buildlink3.mk"
 .include "../../devel/glib2/buildlink3.mk"
 .include "../../textproc/expat/buildlink3.mk"
diff -r 8ce9ef921f59 -r 294f4b5c3614 security/polkit/PLIST
--- a/security/polkit/PLIST     Sun Apr 05 06:11:40 2020 +0000
+++ b/security/polkit/PLIST     Sun Apr 05 06:14:07 2020 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.2 2018/04/29 05:14:36 wiz Exp $
+@comment $NetBSD: PLIST,v 1.3 2020/04/05 06:14:07 wiz Exp $
 bin/pk-example-frobnicate
 bin/pkaction
 bin/pkcheck
@@ -47,8 +47,8 @@
 man/man8/polkit.8
 man/man8/polkitd.8
 share/dbus-1/system-services/org.freedesktop.PolicyKit1.service
+${PLIST.pam}share/examples/pam.d/polkit-1
 share/examples/polkit/dbus-1/system.d/org.freedesktop.PolicyKit1.conf
-${PLIST.pam}share/examples/pam.d/polkit-1
 share/examples/polkit/polkit-1/rules.d/50-default.rules
 share/gettext/its/polkit.its
 share/gettext/its/polkit.loc
@@ -60,6 +60,7 @@
 share/locale/hr/LC_MESSAGES/polkit-1.mo
 share/locale/hu/LC_MESSAGES/polkit-1.mo
 share/locale/id/LC_MESSAGES/polkit-1.mo
+share/locale/it/LC_MESSAGES/polkit-1.mo
 share/locale/pl/LC_MESSAGES/polkit-1.mo
 share/locale/pt_BR/LC_MESSAGES/polkit-1.mo
 share/locale/sk/LC_MESSAGES/polkit-1.mo
diff -r 8ce9ef921f59 -r 294f4b5c3614 security/polkit/distinfo
--- a/security/polkit/distinfo  Sun Apr 05 06:11:40 2020 +0000
+++ b/security/polkit/distinfo  Sun Apr 05 06:14:07 2020 +0000
@@ -1,15 +1,15 @@
-$NetBSD: distinfo,v 1.9 2019/03/14 10:15:19 jperkin Exp $
+$NetBSD: distinfo,v 1.10 2020/04/05 06:14:07 wiz Exp $
 
-SHA1 (polkit-0.115.tar.gz) = 208b7e44fcf0f515d067d37307af9ea1419eb305
-RMD160 (polkit-0.115.tar.gz) = fd98c3a4faf76c6adc021dff63f9a6cfd1804959
-SHA512 (polkit-0.115.tar.gz) = 1153011fa93145b2c184e6b3446d3ca21b38918641aeccd8fac3985ac3e30ec6bc75be6973985fde90f2a24236592f1595be259155061c2d33358dd17c4ee4fc
-Size (polkit-0.115.tar.gz) = 1550932 bytes
+SHA1 (polkit-0.116.tar.gz) = 7fafbf4d2b9a308ad4ad3a174b01970b78c09eea
+RMD160 (polkit-0.116.tar.gz) = 2cbf1170514cd2d4c2bac82927bc2669990b28e1
+SHA512 (polkit-0.116.tar.gz) = b66b01cc2bb4349de70147f41f161f0f6f41e7230b581dfb054058b48969ec57041ab05b51787c749ccfc36aa5f317952d7e7ba337b4f6f6c0a923ed5866c2d5
+Size (polkit-0.116.tar.gz) = 1548311 bytes
 SHA1 (patch-src_polkit_polkitunixprocess.c) = 88818b7b64502f64eade34ad379c07f2b0fd1aea
 SHA1 (patch-src_polkitbackend_polkitbackendinteractiveauthority.c) = dd91b4e74e6c39f24e0f5a9b3150fdac12899cb5
 SHA1 (patch-src_polkitbackend_polkitbackendjsauthority.cpp) = 432a3d7d082ba6e596ba164d91408fc521b84422
 SHA1 (patch-src_polkitbackend_polkitd.c) = b8e11b40e2b171d4f030eb4c4cbc6fdc7a96b2c2
 SHA1 (patch-src_programs_pkexec.c) = bfc0414c7a943c8e8b8412566a2519198eab8abd
-SHA1 (patch-src_programs_pkttyagent.c) = 4dbffd02c7e66910d4104a75d6f5f437bd51acc9
+SHA1 (patch-src_programs_pkttyagent.c) = 2c249b61501a1ad2c077bc83fd497e45f2db69a8
 SHA1 (patch-test_mocklib_src_netdb.c) = 0fe71068a6261d5e2c8874f2b4507e7e3c002526
 SHA1 (patch-test_mocklibc_src_grp.c) = 435ff94fd4c7f5511d74d03839fad453dd841633
 SHA1 (patch-test_mocklibc_src_pwd.c) = c65b02209db1bd1d531444026822fcca73d5027a
diff -r 8ce9ef921f59 -r 294f4b5c3614 security/polkit/patches/patch-src_programs_pkttyagent.c
--- a/security/polkit/patches/patch-src_programs_pkttyagent.c   Sun Apr 05 06:11:40 2020 +0000
+++ b/security/polkit/patches/patch-src_programs_pkttyagent.c   Sun Apr 05 06:14:07 2020 +0000
@@ -1,8 +1,8 @@
-$NetBSD: patch-src_programs_pkttyagent.c,v 1.2 2018/04/29 05:14:37 wiz Exp $
+$NetBSD: patch-src_programs_pkttyagent.c,v 1.3 2020/04/05 06:14:08 wiz Exp $
 
 Avoid %m usage in printf.
 
---- src/programs/pkttyagent.c.orig     2018-04-03 18:16:17.000000000 +0000
+--- src/programs/pkttyagent.c.orig     2019-04-02 11:20:42.000000000 +0000
 +++ src/programs/pkttyagent.c
 @@ -24,6 +24,7 @@
  #endif
@@ -10,9 +10,9 @@
  #include <stdio.h>
 +#include <errno.h>
  #include <stdlib.h>
- #include <glib/gi18n.h>
- #include <polkit/polkit.h>
-@@ -206,7 +207,7 @@ main (int argc, char *argv[])
+ #include <signal.h>
+ #include <termios.h>
+@@ -242,7 +243,7 @@ main (int argc, char *argv[])
      {
        if (close (opt_notify_fd) != 0)
          {

Prev by Date: [pkgsrc/trunk]: pkgsrc/lang/mozjs60 lang/mozjs60: import mozjs60-60.8.0
Next by Date: [pkgsrc/trunk]: pkgsrc/doc doc: Updated security/polkit to 0.116
Previous by Thread: [pkgsrc/trunk]: pkgsrc/lang/mozjs60 lang/mozjs60: import mozjs60-60.8.0
Next by Thread: [pkgsrc/trunk]: pkgsrc/doc doc: Updated security/polkit to 0.116
Indexes:

Home | Main Index | Thread Index | Old Index