Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client CN "mail.NetBSD.org", Issuer "Postmaster NetBSD.org" (verified OK))
	by mollari.NetBSD.org (Postfix) with ESMTPS id C29D271912
	for <mhonarc+pkgsrc-changes@mail-index.netbsd.org>; Wed, 21 Aug 2013 19:40:19 +0000 (UTC)
Received: by mail.netbsd.org (Postfix, from userid 605)
	id C04EB14A23E; Wed, 21 Aug 2013 19:40:18 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by mail.netbsd.org (Postfix) with ESMTP id 44B1814A239
	for <pkgsrc-changes@NetBSD.org>; Wed, 21 Aug 2013 19:40:14 +0000 (UTC)
X-Virus-Scanned: amavisd-new at NetBSD.org
Received: from mail.netbsd.org ([127.0.0.1])
	by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025)
	with ESMTP id IMy-aYB_60hz for <pkgsrc-changes@NetBSD.org>;
	Wed, 21 Aug 2013 19:40:13 +0000 (UTC)
Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd])
	by mail.netbsd.org (Postfix) with ESMTP id 8D5D014A235
	for <pkgsrc-changes@NetBSD.org>; Wed, 21 Aug 2013 19:40:13 +0000 (UTC)
Received: by cvs.netbsd.org (Postfix, from userid 500)
	id 85C8296; Wed, 21 Aug 2013 19:40:13 +0000 (UTC)
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"
MIME-Version: 1.0
Date: Wed, 21 Aug 2013 19:40:13 +0000
From: "Matthias Scheler" <tron@netbsd.org>
Subject: CVS commit: [pkgsrc-2013Q2] pkgsrc/security/putty
To: pkgsrc-changes@NetBSD.org
Reply-To: tron@netbsd.org
X-Mailer: log_accum
Message-Id: <20130821194013.85C8296@cvs.netbsd.org>
Sender: pkgsrc-changes-owner@NetBSD.org
List-Id: pkgsrc-changes.NetBSD.org
Precedence: bulk

Module Name:	pkgsrc
Committed By:	tron
Date:		Wed Aug 21 19:40:13 UTC 2013

Modified Files:
	pkgsrc/security/putty [pkgsrc-2013Q2]: Makefile distinfo
	pkgsrc/security/putty/patches [pkgsrc-2013Q2]: patch-import.c
	    patch-timing.c patch-unix_gtkwin.c patch-unix_uxnet.c
	    patch-unix_uxucs.c patch-windows_window.c
Removed Files:
	pkgsrc/security/putty/patches [pkgsrc-2013Q2]: patch-terminal.c
	    patch-unix_gtkfont_c

Log Message:
Pullup ticket #4216 - requested by drochner
security/putty: security update

Revisions pulled up:
- security/putty/Makefile                                       1.34-1.35
- security/putty/distinfo                                       1.14-1.15
- security/putty/patches/patch-CVE-2013-4852-1                  deleted
- security/putty/patches/patch-CVE-2013-4852-2                  deleted
- security/putty/patches/patch-import.c                         1.2-1.3
- security/putty/patches/patch-terminal.c                       deleted
- security/putty/patches/patch-timing.c                         1.2
- security/putty/patches/patch-unix_gtkfont_c                   deleted
- security/putty/patches/patch-unix_gtkwin.c                    1.3
- security/putty/patches/patch-unix_uxnet.c                     1.2
- security/putty/patches/patch-unix_uxucs.c                     1.2
- security/putty/patches/patch-windows_window.c                 1.2

---
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Tue Aug  6 12:23:37 UTC 2013

   Modified Files:
           pkgsrc/security/putty: Makefile distinfo
           pkgsrc/security/putty/patches: patch-import.c
   Added Files:
           pkgsrc/security/putty/patches: patch-CVE-2013-4852-1
               patch-CVE-2013-4852-2

   Log Message:
   add patch from upstream to fix possible heap overflow in SSH handshake
   due to integer overflow (CVE-2013-4852)
   bump PKGREV

---
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Wed Aug  7 11:06:39 UTC 2013

   Modified Files:
           pkgsrc/security/putty: Makefile distinfo
           pkgsrc/security/putty/patches: patch-import.c patch-timing.c
               patch-unix_gtkwin.c patch-unix_uxnet.c patch-unix_uxucs.c
               patch-windows_window.c
   Removed Files:
           pkgsrc/security/putty/patches: patch-CVE-2013-4852-1
               patch-CVE-2013-4852-2 patch-terminal.c patch-unix_gtkfont_c

   Log Message:
   update to 0.63
   This fixes a buffer overflow which was patched in pkgsrc
   (CVE-2013-4852), two other buffer overflows (CVE-2013-4206,
   CVE-2013-4207), and it clears private keys after use now
   (CVE-2013-4208). Other than that, there are mostly bug fixes from 0.62
   and a few small features.


To generate a diff of this commit:
cvs rdiff -u -r1.33 -r1.33.2.1 pkgsrc/security/putty/Makefile
cvs rdiff -u -r1.13 -r1.13.6.1 pkgsrc/security/putty/distinfo
cvs rdiff -u -r1.1 -r1.1.14.1 pkgsrc/security/putty/patches/patch-import.c \
    pkgsrc/security/putty/patches/patch-unix_uxnet.c \
    pkgsrc/security/putty/patches/patch-windows_window.c
cvs rdiff -u -r1.2 -r0 pkgsrc/security/putty/patches/patch-terminal.c
cvs rdiff -u -r1.1 -r1.1.6.1 pkgsrc/security/putty/patches/patch-timing.c \
    pkgsrc/security/putty/patches/patch-unix_uxucs.c
cvs rdiff -u -r1.1 -r0 pkgsrc/security/putty/patches/patch-unix_gtkfont_c
cvs rdiff -u -r1.2 -r1.2.6.1 \
    pkgsrc/security/putty/patches/patch-unix_gtkwin.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.