From 49435dd10f9b2a4ccf0a59d636aa17312aba6965 Mon Sep 17 00:00:00 2001 From: Nik Clayton Date: Tue, 21 Jun 2005 20:47:30 +0000 Subject: [PATCH] Use a vendor-provided patch for a XSS vulnerability until 1.4.5 is released. Bump PORT_REVISION accordingly. See http://www.squirrelmail.org/security/issue/2005-06-15 for details of the vulnerabilities. --- mail/squirrelmail/Makefile | 5 ++++- mail/squirrelmail/distinfo | 2 ++ 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/mail/squirrelmail/Makefile b/mail/squirrelmail/Makefile index ff77952caaa8..35e285077f75 100644 --- a/mail/squirrelmail/Makefile +++ b/mail/squirrelmail/Makefile @@ -7,13 +7,16 @@ PORTNAME= squirrelmail PORTVERSION?= 1.4.4 -PORTREVISION?= 0 +PORTREVISION?= 1 CATEGORIES?= mail www MASTER_SITES= ${MASTER_SITE_SOURCEFORGE} MASTER_SITE_SUBDIR= squirrelmail DISTFILES= ${DISTNAME}${EXTRACT_SUFX} \ all_locales-${PORTVERSION}-20050122${EXTRACT_SUFX} DIST_SUBDIR= squirrelmail +PATCHFILES= ${DIST_SUBDIR}/sqm-144-xss.patch +PATCH_SITES= ${MASTER_SITE_SOURCEFORGE} +PATCH_DIST_STRIP= -p1 MAINTAINER?= simond@irrelevant.org COMMENT?= A webmail system which accesses mail over IMAP diff --git a/mail/squirrelmail/distinfo b/mail/squirrelmail/distinfo index 0bf2fa1c9848..3e8c19df0f2a 100644 --- a/mail/squirrelmail/distinfo +++ b/mail/squirrelmail/distinfo @@ -2,3 +2,5 @@ MD5 (squirrelmail/squirrelmail-1.4.4.tar.bz2) = 285b42bec8967b88ef3c083fcad18634 SIZE (squirrelmail/squirrelmail-1.4.4.tar.bz2) = 468790 MD5 (squirrelmail/all_locales-1.4.4-20050122.tar.bz2) = ec7f97d77c706135571732ac7accf961 SIZE (squirrelmail/all_locales-1.4.4-20050122.tar.bz2) = 2804548 +MD5 (squirrelmail/squirrelmail/sqm-144-xss.patch) = 24d2c376b37edcfa4c2264351e1152e5 +SIZE (squirrelmail/squirrelmail/sqm-144-xss.patch) = 26551