Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_1586067248192660"
MIME-Version: 1.0
Date: Sun, 5 Apr 2020 06:14:08 +0000
From: "Thomas Klausner" <wiz@netbsd.org>
Subject: CVS commit: pkgsrc/security/polkit
To: pkgsrc-changes@NetBSD.org
Reply-To: wiz@netbsd.org
Message-Id: <20200405061408.3CF99FB27@cvs.NetBSD.org>
Sender: pkgsrc-changes-owner@NetBSD.org
Precedence: bulk

This is a multi-part message in MIME format.

--_----------=_1586067248192660
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="UTF-8"

Module Name:	pkgsrc
Committed By:	wiz
Date:		Sun Apr  5 06:14:08 UTC 2020

Modified Files:
	pkgsrc/security/polkit: Makefile PLIST distinfo
	pkgsrc/security/polkit/patches: patch-src_programs_pkttyagent.c

Log Message:
polkit: update to 0.116.

This is polkit 0.116.

Highlights:
 Fix of CVE-2018-19788, high UIDs caused overflow in polkit;
 Fix of CVE-2019-6133, kernel vulnerability (Slowfork) allowed local privilege escalation.

Changes since polkit 0.115:

 Kyle Walker:
    Leaking zombie child processes

 Jan Rybar:
    Possible resource leak found by static analyzer
    Output messages tuneup
    Sanity fixes
    pkttyagent tty echo disabled on SIGINT

 Ray Strode:
    HACKING: add link to Code of Conduct

 Philip Withnall:
    polkitbackend: comment typos fix

 Zbigniew Jędrzejewski-Szmek:
    configure.ac: fix detection of systemd with cgroups v2
    CVE-2018-19788 High UIDs overflow fix

 Colin Walters:
    CVE-2019-6133 Slowfork vulnerability fix

 Matthew Leeds:
    Allow unset process-uid

 Emmanuele Bassi
    Port the JS authority to mozjs-60

 Göran Uddeborg:
    Use JS_EncodeStringToUTF8

Many thanks to all contributors!

Jan Rybar et al.,
April 25, 2019


To generate a diff of this commit:
cvs rdiff -u -r1.18 -r1.19 pkgsrc/security/polkit/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/security/polkit/PLIST
cvs rdiff -u -r1.9 -r1.10 pkgsrc/security/polkit/distinfo
cvs rdiff -u -r1.2 -r1.3 \
    pkgsrc/security/polkit/patches/patch-src_programs_pkttyagent.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_1586067248192660
Content-Disposition: inline
Content-Length: 5261
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/security/polkit/Makefile
diff -u pkgsrc/security/polkit/Makefile:1.18 pkgsrc/security/polkit/Makefile:1.19
--- pkgsrc/security/polkit/Makefile:1.18	Thu Mar 26 16:07:57 2020
+++ pkgsrc/security/polkit/Makefile	Sun Apr  5 06:14:07 2020
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.18 2020/03/26 16:07:57 nia Exp $
+# $NetBSD: Makefile,v 1.19 2020/04/05 06:14:07 wiz Exp $
 
-DISTNAME=	polkit-0.115
-PKGREVISION=	4
+DISTNAME=	polkit-0.116
 CATEGORIES=	security
 MASTER_SITES=	http://www.freedesktop.org/software/polkit/releases/
 
@@ -72,7 +71,7 @@ SUBST_FILES.paths+=	src/examples/org.fre
 SUBST_SED.paths+=	-e 's,/usr/bin/,${PREFIX}/bin/,g'
 
 
-.include "../../lang/spidermonkey52/buildlink3.mk"
+.include "../../lang/mozjs60/buildlink3.mk"
 .include "../../devel/gettext-lib/buildlink3.mk"
 .include "../../devel/glib2/buildlink3.mk"
 .include "../../textproc/expat/buildlink3.mk"

Index: pkgsrc/security/polkit/PLIST
diff -u pkgsrc/security/polkit/PLIST:1.2 pkgsrc/security/polkit/PLIST:1.3
--- pkgsrc/security/polkit/PLIST:1.2	Sun Apr 29 05:14:36 2018
+++ pkgsrc/security/polkit/PLIST	Sun Apr  5 06:14:07 2020
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.2 2018/04/29 05:14:36 wiz Exp $
+@comment $NetBSD: PLIST,v 1.3 2020/04/05 06:14:07 wiz Exp $
 bin/pk-example-frobnicate
 bin/pkaction
 bin/pkcheck
@@ -47,8 +47,8 @@ man/man1/pkttyagent.1
 man/man8/polkit.8
 man/man8/polkitd.8
 share/dbus-1/system-services/org.freedesktop.PolicyKit1.service
-share/examples/polkit/dbus-1/system.d/org.freedesktop.PolicyKit1.conf
 ${PLIST.pam}share/examples/pam.d/polkit-1
+share/examples/polkit/dbus-1/system.d/org.freedesktop.PolicyKit1.conf
 share/examples/polkit/polkit-1/rules.d/50-default.rules
 share/gettext/its/polkit.its
 share/gettext/its/polkit.loc
@@ -60,6 +60,7 @@ share/locale/de/LC_MESSAGES/polkit-1.mo
 share/locale/hr/LC_MESSAGES/polkit-1.mo
 share/locale/hu/LC_MESSAGES/polkit-1.mo
 share/locale/id/LC_MESSAGES/polkit-1.mo
+share/locale/it/LC_MESSAGES/polkit-1.mo
 share/locale/pl/LC_MESSAGES/polkit-1.mo
 share/locale/pt_BR/LC_MESSAGES/polkit-1.mo
 share/locale/sk/LC_MESSAGES/polkit-1.mo

Index: pkgsrc/security/polkit/distinfo
diff -u pkgsrc/security/polkit/distinfo:1.9 pkgsrc/security/polkit/distinfo:1.10
--- pkgsrc/security/polkit/distinfo:1.9	Thu Mar 14 10:15:19 2019
+++ pkgsrc/security/polkit/distinfo	Sun Apr  5 06:14:07 2020
@@ -1,15 +1,15 @@
-$NetBSD: distinfo,v 1.9 2019/03/14 10:15:19 jperkin Exp $
+$NetBSD: distinfo,v 1.10 2020/04/05 06:14:07 wiz Exp $
 
-SHA1 (polkit-0.115.tar.gz) = 208b7e44fcf0f515d067d37307af9ea1419eb305
-RMD160 (polkit-0.115.tar.gz) = fd98c3a4faf76c6adc021dff63f9a6cfd1804959
-SHA512 (polkit-0.115.tar.gz) = 1153011fa93145b2c184e6b3446d3ca21b38918641aeccd8fac3985ac3e30ec6bc75be6973985fde90f2a24236592f1595be259155061c2d33358dd17c4ee4fc
-Size (polkit-0.115.tar.gz) = 1550932 bytes
+SHA1 (polkit-0.116.tar.gz) = 7fafbf4d2b9a308ad4ad3a174b01970b78c09eea
+RMD160 (polkit-0.116.tar.gz) = 2cbf1170514cd2d4c2bac82927bc2669990b28e1
+SHA512 (polkit-0.116.tar.gz) = b66b01cc2bb4349de70147f41f161f0f6f41e7230b581dfb054058b48969ec57041ab05b51787c749ccfc36aa5f317952d7e7ba337b4f6f6c0a923ed5866c2d5
+Size (polkit-0.116.tar.gz) = 1548311 bytes
 SHA1 (patch-src_polkit_polkitunixprocess.c) = 88818b7b64502f64eade34ad379c07f2b0fd1aea
 SHA1 (patch-src_polkitbackend_polkitbackendinteractiveauthority.c) = dd91b4e74e6c39f24e0f5a9b3150fdac12899cb5
 SHA1 (patch-src_polkitbackend_polkitbackendjsauthority.cpp) = 432a3d7d082ba6e596ba164d91408fc521b84422
 SHA1 (patch-src_polkitbackend_polkitd.c) = b8e11b40e2b171d4f030eb4c4cbc6fdc7a96b2c2
 SHA1 (patch-src_programs_pkexec.c) = bfc0414c7a943c8e8b8412566a2519198eab8abd
-SHA1 (patch-src_programs_pkttyagent.c) = 4dbffd02c7e66910d4104a75d6f5f437bd51acc9
+SHA1 (patch-src_programs_pkttyagent.c) = 2c249b61501a1ad2c077bc83fd497e45f2db69a8
 SHA1 (patch-test_mocklib_src_netdb.c) = 0fe71068a6261d5e2c8874f2b4507e7e3c002526
 SHA1 (patch-test_mocklibc_src_grp.c) = 435ff94fd4c7f5511d74d03839fad453dd841633
 SHA1 (patch-test_mocklibc_src_pwd.c) = c65b02209db1bd1d531444026822fcca73d5027a

Index: pkgsrc/security/polkit/patches/patch-src_programs_pkttyagent.c
diff -u pkgsrc/security/polkit/patches/patch-src_programs_pkttyagent.c:1.2 pkgsrc/security/polkit/patches/patch-src_programs_pkttyagent.c:1.3
--- pkgsrc/security/polkit/patches/patch-src_programs_pkttyagent.c:1.2	Sun Apr 29 05:14:37 2018
+++ pkgsrc/security/polkit/patches/patch-src_programs_pkttyagent.c	Sun Apr  5 06:14:08 2020
@@ -1,8 +1,8 @@
-$NetBSD: patch-src_programs_pkttyagent.c,v 1.2 2018/04/29 05:14:37 wiz Exp $
+$NetBSD: patch-src_programs_pkttyagent.c,v 1.3 2020/04/05 06:14:08 wiz Exp $
 
 Avoid %m usage in printf.
 
---- src/programs/pkttyagent.c.orig	2018-04-03 18:16:17.000000000 +0000
+--- src/programs/pkttyagent.c.orig	2019-04-02 11:20:42.000000000 +0000
 +++ src/programs/pkttyagent.c
 @@ -24,6 +24,7 @@
  #endif
@@ -10,9 +10,9 @@ Avoid %m usage in printf.
  #include <stdio.h>
 +#include <errno.h>
  #include <stdlib.h>
- #include <glib/gi18n.h>
- #include <polkit/polkit.h>
-@@ -206,7 +207,7 @@ main (int argc, char *argv[])
+ #include <signal.h>
+ #include <termios.h>
+@@ -242,7 +243,7 @@ main (int argc, char *argv[])
      {
        if (close (opt_notify_fd) != 0)
          {


--_----------=_1586067248192660--