- Security update to 1.0.21

Security: CVE-2013-1428
svn path=/head/; revision=316276
2024-11-23 00:43:28 +00:00 · 2013-04-22 20:57:03 +00:00 · 2013-04-22 20:57:03 +00:00 · 210b7af2b2 · 2021-03-31 03:12:20 +00:00
commit 210b7af2b2
parent cc71ebcc0e
3 changed files with 28 additions and 3 deletions
--- a/security/tinc/Makefile
+++ b/security/tinc/Makefile
@ -2,7 +2,7 @@
 # $FreeBSD$

 PORTNAME=	tinc
-PORTVERSION=	1.0.20
+PORTVERSION=	1.0.21
 CATEGORIES=	security
 MASTER_SITES=	http://www.tinc-vpn.org/packages/ \
 		ftp://ftp.wiretapped.net/pub/security/network-security/tinc/ \
--- a/security/tinc/distinfo
+++ b/security/tinc/distinfo
@ -1,2 +1,2 @@
-SHA256 (tinc-1.0.20.tar.gz) = 62230cdfcb9c3218df0be53b2e3a268a595d28b25dcb1ba190d25db91ae3d132
-SIZE (tinc-1.0.20.tar.gz) = 466906
+SHA256 (tinc-1.0.21.tar.gz) = 6ac15eab766c021629992053aa1a23f31a0c429eb0f3eb8f49c923476eea618b
+SIZE (tinc-1.0.21.tar.gz) = 467114
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@ -51,6 +51,31 @@ Note:  Please add new entries to the beginning of this file.

 -->
 <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+  <vuln vid="aeb962f6-ab8d-11e2-b3f5-003067c2616f">
+    <topic>tinc -- Buffer overflow</topic>
+    <affects>
+      <package>
+	<name>tinc</name>
+	<range><lt>1.0.21</lt></range>
+      </package>
+    </affects>
+    <description>
+      <body xmlns="http://www.w3.org/1999/xhtml">
+	<p>tinc-vpn.org reports:</p>
+	<blockquote cite="http://www.tinc-vpn.org/news/">
+	  <p>Drop packets forwarded via TCP if they are too big.</p>
+	</blockquote>
+      </body>
+    </description>
+    <references>
+      <cvename>CVE-2013-1428</cvename>
+    </references>
+    <dates>
+      <discovery>2013-01-26</discovery>
+      <entry>2013-04-22</entry>
+    </dates>
+  </vuln>
+
  <vuln vid="7280c3f6-a99a-11e2-8cef-6805ca0b3d42">
    <topic>phpMyAdmin -- XSS due to unescaped HTML output in GIS visualisation page</topic>
    <affects>