CVS commit: pkgsrc/security/putty

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/putty
From: "Ryo ONODERA" <ryoon%netbsd.org@localhost>
Date: Tue, 23 Jun 2026 13:23:31 +0000

Module Name:    pkgsrc
Committed By:   ryoon
Date:           Tue Jun 23 13:23:31 UTC 2026

Modified Files:
        pkgsrc/security/putty: Makefile distinfo
Added Files:
        pkgsrc/security/putty/patches: patch-unix_utils_subprocess__waiter.c

Log Message:
security/putty: Update to 0.84

Changelog:
These features are new in 0.84 (released 2026-05-22):

* Security issue: fixed a remotely triggerable double-free in RSA
key exchange. (We don't know of any way it is exploitable to execute
code.)

* Minor security issue: fixed a remotely triggerable crash in NIST
ECDSA signature verification. (An assertion failure – definitely
not exploitable to execute code.)

* Minor security issue: fixed marking of Telnet and Rlogin session
data with a trust sigil after you authenticated to a proxy (possibly
allowing a server to spoof a repeat proxy password prompt).

* Ability to run a specified command before starting the connection,
e.g. to perform wake-on-LAN or a port knock.

* On Unix: display 'pre-edit text', showing the progress of using
multiple keystrokes to compose a single Unicode character.

* On Unix: improved support for to running the GUI tools on Wayland
(fixed startup issues and tuned performance).

* Bug fix: configuring a SSH certificate authority on Unix would
fail unless you manually made a config directory.

* Bug fix: spurious "Network error: Socket is not connected" when
authenticating to some HTTP proxies.

* Bug fix: disabling cursor blinking in the Windows Control Panel
but enabling it in PuTTY would lead to a tight loop.


To generate a diff of this commit:
cvs rdiff -u -r1.95 -r1.96 pkgsrc/security/putty/Makefile
cvs rdiff -u -r1.41 -r1.42 pkgsrc/security/putty/distinfo
cvs rdiff -u -r0 -r1.1 \
    pkgsrc/security/putty/patches/patch-unix_utils_subprocess__waiter.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/putty/Makefile
diff -u pkgsrc/security/putty/Makefile:1.95 pkgsrc/security/putty/Makefile:1.96
--- pkgsrc/security/putty/Makefile:1.95 Thu Jun 11 07:17:36 2026
+++ pkgsrc/security/putty/Makefile      Tue Jun 23 13:23:31 2026
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.95 2026/06/11 07:17:36 wiz Exp $
+# $NetBSD: Makefile,v 1.96 2026/06/23 13:23:31 ryoon Exp $
 
-DISTNAME=      putty-0.83
-PKGREVISION=   5
+DISTNAME=      putty-0.84
 CATEGORIES=    security
 MASTER_SITES=  http://the.earth.li/~sgtatham/putty/${PKGVERSION_NOREV}/
 
@@ -10,7 +9,6 @@ HOMEPAGE=      https://www.chiark.greenend.or
 COMMENT=       Free implementation of Telnet and SSH for Win32 and Unix platforms
 LICENSE=       mit
 
-USE_CMAKE=     yes
 USE_TOOLS+=    perl pkg-config
 
 # error: 'for' loop initial declarations are only allowed in C99 mode
@@ -37,6 +35,7 @@ CFLAGS.NetBSD+=       -DHAVE_FUTIMES -DHAVE_NO
 CFLAGS.Linux+= -DHAVE_FUTIMES -DHAVE_NO_SETRESUID
 LDFLAGS.Linux+=        -ldl
 
+.include "../../devel/cmake/build.mk"
 .include "../../x11/gtk3/buildlink3.mk"
 .if ${PKG_BUILD_OPTIONS.gtk3:Mquartz}
 BUILDLINK_TRANSFORM+=  rm:-lX11 rm:-lXext

Index: pkgsrc/security/putty/distinfo
diff -u pkgsrc/security/putty/distinfo:1.41 pkgsrc/security/putty/distinfo:1.42
--- pkgsrc/security/putty/distinfo:1.41 Tue Feb 11 10:28:46 2025
+++ pkgsrc/security/putty/distinfo      Tue Jun 23 13:23:31 2026
@@ -1,8 +1,9 @@
-$NetBSD: distinfo,v 1.41 2025/02/11 10:28:46 ryoon Exp $
+$NetBSD: distinfo,v 1.42 2026/06/23 13:23:31 ryoon Exp $
 
-BLAKE2s (putty-0.83.tar.gz) = 959ff7edbea4b320a3f1d54b8c92334e1a846a1c2c3f7608e29ed9bc66cb8372
-SHA512 (putty-0.83.tar.gz) = 4781616b7e9c5a779a54e6a8486513e0aa947d4a36e9dbfd4ffc0d32981a5ad4868cddbde0363467236ed67c43f990408a9326d10354954be716a270d587c0a6
-Size (putty-0.83.tar.gz) = 3007178 bytes
+BLAKE2s (putty-0.84.tar.gz) = f4932c8c979e99aa8a55ec550b6c5f3a6d0a7e0d447add7f1aa14561f4029141
+SHA512 (putty-0.84.tar.gz) = 647c84490c01f8c0f9cf02f565081d80ea2ea4fb90207cfb2fbe13ba5e8c3cea7c4807504363d3d3a851df5edb6087c3b39084820bf20e818dd551db54af0765
+Size (putty-0.84.tar.gz) = 3005843 bytes
 SHA1 (patch-terminal.c) = 690d9021b14947ae24c68ecff6781ad255ab7a70
 SHA1 (patch-timing.c) = a6a492fc8b22c58e2973c854bffa4c8bf71eb6a7
+SHA1 (patch-unix_utils_subprocess__waiter.c) = a1d1ff9b69e73720d012e77aa73c6a18842c4dc8
 SHA1 (patch-unix_window.c) = 8b8556cb076bdfb1d15b7f365696b1617f9d0afe

Added files:

Index: pkgsrc/security/putty/patches/patch-unix_utils_subprocess__waiter.c
diff -u /dev/null pkgsrc/security/putty/patches/patch-unix_utils_subprocess__waiter.c:1.1
--- /dev/null   Tue Jun 23 13:23:31 2026
+++ pkgsrc/security/putty/patches/patch-unix_utils_subprocess__waiter.c Tue Jun 23 13:23:31 2026
@@ -0,0 +1,14 @@
+$NetBSD: patch-unix_utils_subprocess__waiter.c,v 1.1 2026/06/23 13:23:31 ryoon Exp $
+
+* For SIGCHLD.
+
+--- unix/utils/subprocess_waiter.c.orig        2026-06-23 13:17:12.197007819 +0000
++++ unix/utils/subprocess_waiter.c
+@@ -8,6 +8,7 @@
+ #include "putty.h"
+ #include "tree234.h"
+ 
++#include <signal.h>
+ #include <unistd.h>
+ #include <sys/wait.h>
+

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index