pkgsrc-Users archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Update to vsftpd
Hi everyone,
Attached is an update to the most current vsftpd version 2.3.4 which
gets rid of the nasty security issues. Please note that the MASTER_SITE
has changed to an SSL-only site, thus the Makefile contains a
FETCH_USING=curl (thanks to Jan Smydke for the hint). Tested on Solaris
10/x86.
Here's the list of changes:
- Avoid consuming excessive CPU when matching filenames to patterns.
Thanks to
Maksymilian Arciemowicz <cxib%securityreason.com@localhost>.
- Some bugfixes from Rapha<EB>l Rigo <raphael.rigo%syscall.eu@localhost> -- good
bugs but
no apparent security impact.
At this point: v2.3.3 released!
===============================
- Fix compile. Extreme suckage.
At this point: v2.3.4 released!
===============================
Patch:
cvs diff: Diffing .
Index: Makefile
===================================================================
RCS file: /cvsroot/pkgsrc/net/vsftpd/Makefile,v
retrieving revision 1.33
diff -u -r1.33 Makefile
--- Makefile 15 Apr 2011 08:34:01 -0000 1.33
+++ Makefile 9 Sep 2011 11:43:29 -0000
@@ -1,9 +1,11 @@
# $NetBSD: Makefile,v 1.33 2011/04/15 08:34:01 obache Exp $
#
-DISTNAME= vsftpd-2.3.2
+DISTNAME= vsftpd-2.3.4
CATEGORIES= net
-MASTER_SITES= ftp://vsftpd.beasts.org/users/cevans/
+MASTER_SITES= http://security.appspot.com/downloads/
+
+FETCH_USING= curl
MAINTAINER= pkgsrc-users%NetBSD.org@localhost
HOMEPAGE= http://vsftpd.beasts.org/
Index: distinfo
===================================================================
RCS file: /cvsroot/pkgsrc/net/vsftpd/distinfo,v
retrieving revision 1.12
diff -u -r1.12 distinfo
--- distinfo 8 Nov 2010 17:10:55 -0000 1.12
+++ distinfo 9 Sep 2011 11:43:29 -0000
@@ -1,8 +1,8 @@
$NetBSD: distinfo,v 1.12 2010/11/08 17:10:55 abs Exp $
-SHA1 (vsftpd-2.3.2.tar.gz) = d525974514ecf61cbbf9cb51066aa68d5a52033b
-RMD160 (vsftpd-2.3.2.tar.gz) = 27bdc9d3065390a9dc85b3ef5926ad16d3544d2d
-Size (vsftpd-2.3.2.tar.gz) = 187229 bytes
+SHA1 (vsftpd-2.3.4.tar.gz) = b774cc6b4c50e20f4fe9ca7f6aa74169ce7fe5ea
+RMD160 (vsftpd-2.3.4.tar.gz) = 4097b495b5b03833e18b1639931939c3176e498b
+Size (vsftpd-2.3.4.tar.gz) = 187043 bytes
SHA1 (patch-aa) = ed5c8834137c28c63cf12505969e0500985d5909
SHA1 (patch-ab) = df9252f99d06a4742713c36ce6bff8908da171f7
SHA1 (patch-ac) = 2dcfae2eb16b2053f07eb3ee8f6d4af4b30d9799
Best regards,
Stephan
--
Stephan Tesch Phone + 49 (0)7071-9457-608
science + computing ag FAX + 49 (0)7071-9457-511
Hagellocher Weg 73
D-72070 Tuebingen Email: s.tesch%science-computing.de@localhost
--
Vorstand/Board of Management:
Dr. Bernd Finkbeiner, Dr. Roland Niemeier,
Dr. Arno Steitz, Dr. Ingrid Zech
Vorsitzender des Aufsichtsrats/
Chairman of the Supervisory Board:
Philippe Miltin
Sitz/Registered Office: Tuebingen
Registergericht/Registration Court: Stuttgart
Registernummer/Commercial Register No.: HRB 382196
Home |
Main Index |
Thread Index |
Old Index