Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.netbsd.org", Issuer "Postmaster NetBSD.org" (verified OK)) by mollari.NetBSD.org (Postfix) with ESMTPS id 19F65CE448 for ; Wed, 17 Sep 2014 22:41:12 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id 1842814A1DC; Wed, 17 Sep 2014 22:41:09 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id B9B6C14A1DB for ; Wed, 17 Sep 2014 22:41:06 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id HycQFewS1aWA for ; Wed, 17 Sep 2014 22:41:06 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id 3559114A1DA for ; Wed, 17 Sep 2014 22:41:06 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 29FE898; Wed, 17 Sep 2014 22:41:06 +0000 (UTC) Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="UTF-8" MIME-Version: 1.0 Date: Wed, 17 Sep 2014 22:41:06 +0000 From: "Thomas Klausner" Subject: CVS commit: pkgsrc/net/py-twisted To: pkgsrc-changes@NetBSD.org Reply-To: wiz@netbsd.org X-Mailer: log_accum Message-Id: <20140917224106.29FE898@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: wiz Date: Wed Sep 17 22:41:06 UTC 2014 Modified Files: pkgsrc/net/py-twisted: Makefile.common distinfo Log Message: Update to 14.0.1 -- security update: On behalf of Twisted Matrix Laboratories, Iâm releasing Twisted 14.0.1, a security release for Twisted 14.0. It is strongly suggested that users of 14.0.0 upgrade to this release. This patches a bug in Twisted Webâs Agent, where BrowserLikePolicyForHTTPS would not honour the trust root given, and would use the system trust root instead. This would have broken, for example, attempting to pin the issuer for your HTTPS application because you only trust one issuer. Note: on OS X, with the system OpenSSL, you still can't fully rely on this API for issuer pinning, due to modifications by Apple â please see https://hynek.me/articles/apple-openssl-verification-surprises/ for more details. To generate a diff of this commit: cvs rdiff -u -r1.16 -r1.17 pkgsrc/net/py-twisted/Makefile.common cvs rdiff -u -r1.14 -r1.15 pkgsrc/net/py-twisted/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.