Use a vendor-provided patch for a XSS vulnerability until 1.4.5 is

released. Bump PORT_REVISION accordingly. See http://www.squirrelmail.org/security/issue/2005-06-15 for details of the vulnerabilities.
svn path=/head/; revision=137820
2024-11-27 00:57:50 +00:00 · 2005-06-21 20:47:30 +00:00 · 2005-06-21 20:47:30 +00:00 · 49435dd10f · 2021-03-31 03:12:20 +00:00
commit 49435dd10f
parent 7fa2526418
2 changed files with 6 additions and 1 deletions
--- a/mail/squirrelmail/Makefile
+++ b/mail/squirrelmail/Makefile
@ -7,13 +7,16 @@

 PORTNAME=	squirrelmail
 PORTVERSION?=	1.4.4
-PORTREVISION?=	0
+PORTREVISION?=	1
 CATEGORIES?=	mail www
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE}
 MASTER_SITE_SUBDIR=	squirrelmail
 DISTFILES=	${DISTNAME}${EXTRACT_SUFX} \
 		all_locales-${PORTVERSION}-20050122${EXTRACT_SUFX}
 DIST_SUBDIR=	squirrelmail
+PATCHFILES=	${DIST_SUBDIR}/sqm-144-xss.patch
+PATCH_SITES=	${MASTER_SITE_SOURCEFORGE}
+PATCH_DIST_STRIP=	-p1

 MAINTAINER?=	simond@irrelevant.org
 COMMENT?=	A webmail system which accesses mail over IMAP
--- a/mail/squirrelmail/distinfo
+++ b/mail/squirrelmail/distinfo
@ -2,3 +2,5 @@ MD5 (squirrelmail/squirrelmail-1.4.4.tar.bz2) = 285b42bec8967b88ef3c083fcad18634
 SIZE (squirrelmail/squirrelmail-1.4.4.tar.bz2) = 468790
 MD5 (squirrelmail/all_locales-1.4.4-20050122.tar.bz2) = ec7f97d77c706135571732ac7accf961
 SIZE (squirrelmail/all_locales-1.4.4-20050122.tar.bz2) = 2804548
+MD5 (squirrelmail/squirrelmail/sqm-144-xss.patch) = 24d2c376b37edcfa4c2264351e1152e5
+SIZE (squirrelmail/squirrelmail/sqm-144-xss.patch) = 26551