security update fixing: - Incorrect DigestInfo validation in NSS (CVE-2014-1568) - RSA signature verification vulnerabilities in parsing of DigestInfo (see https://www.mozilla.org/security/announce/2014/mfsa2014-73.html)diff -r1.86 -r1.87 pkgsrc/devel/nss/Makefile
(spz)
@@ -1,17 +1,17 @@ | @@ -1,17 +1,17 @@ | |||
1 | # $NetBSD: Makefile,v 1.86 2014/08/12 09:43:06 markd Exp $ | 1 | # $NetBSD: Makefile,v 1.87 2014/09/26 03:25:22 spz Exp $ | |
2 | 2 | |||
3 | DISTNAME= nss-${NSS_RELEASE:S/.0$//} | 3 | DISTNAME= nss-${NSS_RELEASE:S/.0$//} | |
4 | NSS_RELEASE= 3.16.4 | 4 | NSS_RELEASE= 3.16.5 | |
5 | CATEGORIES= security | 5 | CATEGORIES= security | |
6 | MASTER_SITES= ${MASTER_SITE_MOZILLA_ALL:=security/nss/releases/NSS_${NSS_RELEASE:S/.0$//:S/./_/g}_RTM/src/} | 6 | MASTER_SITES= ${MASTER_SITE_MOZILLA_ALL:=security/nss/releases/NSS_${NSS_RELEASE:S/.0$//:S/./_/g}_RTM/src/} | |
7 | 7 | |||
8 | MAINTAINER= pkgsrc-users@NetBSD.org | 8 | MAINTAINER= pkgsrc-users@NetBSD.org | |
9 | HOMEPAGE= http://www.mozilla.org/projects/security/pki/nss/ | 9 | HOMEPAGE= http://www.mozilla.org/projects/security/pki/nss/ | |
10 | COMMENT= Libraries to support development of security-enabled applications | 10 | COMMENT= Libraries to support development of security-enabled applications | |
11 | LICENSE= mpl-2.0 | 11 | LICENSE= mpl-2.0 | |
12 | 12 | |||
13 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}nss/tests/libpkix/libpkix.sh | 13 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}nss/tests/libpkix/libpkix.sh | |
14 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}nss/tests/multinit/multinit.sh | 14 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}nss/tests/multinit/multinit.sh | |
15 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}js/src/configure | 15 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}js/src/configure | |
16 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}configure | 16 | CHECK_PORTABILITY_SKIP+=${MOZILLA_DIR}configure | |
17 | 17 |
@@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
1 | @comment $NetBSD: PLIST,v 1.12 2012/12/15 09:48:00 ryoon Exp $ | 1 | @comment $NetBSD: PLIST,v 1.13 2014/09/26 03:25:22 spz Exp $ | |
2 | include/nss/dbm/cdefs.h | 2 | include/nss/dbm/cdefs.h | |
3 | include/nss/dbm/mcom_db.h | 3 | include/nss/dbm/mcom_db.h | |
4 | include/nss/dbm/ncompat.h | 4 | include/nss/dbm/ncompat.h | |
5 | include/nss/dbm/winfile.h | 5 | include/nss/dbm/winfile.h | |
6 | include/nss/nss/base64.h | 6 | include/nss/nss/base64.h | |
7 | include/nss/nss/blapit.h | 7 | include/nss/nss/blapit.h | |
8 | include/nss/nss/cert.h | 8 | include/nss/nss/cert.h | |
9 | include/nss/nss/certdb.h | 9 | include/nss/nss/certdb.h | |
10 | include/nss/nss/certt.h | 10 | include/nss/nss/certt.h | |
11 | include/nss/nss/ciferfam.h | 11 | include/nss/nss/ciferfam.h | |
12 | include/nss/nss/cmmf.h | 12 | include/nss/nss/cmmf.h | |
13 | include/nss/nss/cmmft.h | 13 | include/nss/nss/cmmft.h | |
14 | include/nss/nss/cms.h | 14 | include/nss/nss/cms.h | |
@@ -56,26 +56,27 @@ include/nss/nss/p12t.h | @@ -56,26 +56,27 @@ include/nss/nss/p12t.h | |||
56 | include/nss/nss/pk11func.h | 56 | include/nss/nss/pk11func.h | |
57 | include/nss/nss/pk11pqg.h | 57 | include/nss/nss/pk11pqg.h | |
58 | include/nss/nss/pk11priv.h | 58 | include/nss/nss/pk11priv.h | |
59 | include/nss/nss/pk11pub.h | 59 | include/nss/nss/pk11pub.h | |
60 | include/nss/nss/pk11sdr.h | 60 | include/nss/nss/pk11sdr.h | |
61 | include/nss/nss/pkcs11.h | 61 | include/nss/nss/pkcs11.h | |
62 | include/nss/nss/pkcs11f.h | 62 | include/nss/nss/pkcs11f.h | |
63 | include/nss/nss/pkcs11n.h | 63 | include/nss/nss/pkcs11n.h | |
64 | include/nss/nss/pkcs11p.h | 64 | include/nss/nss/pkcs11p.h | |
65 | include/nss/nss/pkcs11t.h | 65 | include/nss/nss/pkcs11t.h | |
66 | include/nss/nss/pkcs11u.h | 66 | include/nss/nss/pkcs11u.h | |
67 | include/nss/nss/pkcs12.h | 67 | include/nss/nss/pkcs12.h | |
68 | include/nss/nss/pkcs12t.h | 68 | include/nss/nss/pkcs12t.h | |
69 | include/nss/nss/pkcs1sig.h | |||
69 | include/nss/nss/pkcs7t.h | 70 | include/nss/nss/pkcs7t.h | |
70 | include/nss/nss/portreg.h | 71 | include/nss/nss/portreg.h | |
71 | include/nss/nss/preenc.h | 72 | include/nss/nss/preenc.h | |
72 | include/nss/nss/secasn1.h | 73 | include/nss/nss/secasn1.h | |
73 | include/nss/nss/secasn1t.h | 74 | include/nss/nss/secasn1t.h | |
74 | include/nss/nss/seccomon.h | 75 | include/nss/nss/seccomon.h | |
75 | include/nss/nss/secder.h | 76 | include/nss/nss/secder.h | |
76 | include/nss/nss/secdert.h | 77 | include/nss/nss/secdert.h | |
77 | include/nss/nss/secdig.h | 78 | include/nss/nss/secdig.h | |
78 | include/nss/nss/secdigt.h | 79 | include/nss/nss/secdigt.h | |
79 | include/nss/nss/secerr.h | 80 | include/nss/nss/secerr.h | |
80 | include/nss/nss/sechash.h | 81 | include/nss/nss/sechash.h | |
81 | include/nss/nss/secitem.h | 82 | include/nss/nss/secitem.h | |
@@ -88,22 +89,22 @@ include/nss/nss/secpkcs5.h | @@ -88,22 +89,22 @@ include/nss/nss/secpkcs5.h | |||
88 | include/nss/nss/secpkcs7.h | 89 | include/nss/nss/secpkcs7.h | |
89 | include/nss/nss/secport.h | 90 | include/nss/nss/secport.h | |
90 | include/nss/nss/shsign.h | 91 | include/nss/nss/shsign.h | |
91 | include/nss/nss/smime.h | 92 | include/nss/nss/smime.h | |
92 | include/nss/nss/ssl.h | 93 | include/nss/nss/ssl.h | |
93 | include/nss/nss/sslerr.h | 94 | include/nss/nss/sslerr.h | |
94 | include/nss/nss/sslproto.h | 95 | include/nss/nss/sslproto.h | |
95 | include/nss/nss/sslt.h | 96 | include/nss/nss/sslt.h | |
96 | include/nss/nss/utilmodt.h | 97 | include/nss/nss/utilmodt.h | |
97 | include/nss/nss/utilpars.h | 98 | include/nss/nss/utilpars.h | |
98 | include/nss/nss/utilparst.h | 99 | include/nss/nss/utilparst.h | |
99 | include/nss/nss/utilrename.h | 100 | include/nss/nss/utilrename.h | |
100 | lib/nss/libcrmf.a | 101 | lib/nss/libcrmf.a | |
101 | lib/nss/libfreebl3.${SO_SUFFIX} | 102 | lib/nss/libfreebl3.so | |
102 | lib/nss/libnss3.${SO_SUFFIX} | 103 | lib/nss/libnss3.so | |
103 | lib/nss/libnssckbi.${SO_SUFFIX} | 104 | lib/nss/libnssckbi.so | |
104 | lib/nss/libnssdbm3.${SO_SUFFIX} | 105 | lib/nss/libnssdbm3.so | |
105 | lib/nss/libnssutil3.${SO_SUFFIX} | 106 | lib/nss/libnssutil3.so | |
106 | lib/nss/libsmime3.${SO_SUFFIX} | 107 | lib/nss/libsmime3.so | |
107 | lib/nss/libsoftokn3.${SO_SUFFIX} | 108 | lib/nss/libsoftokn3.so | |
108 | lib/nss/libssl3.${SO_SUFFIX} | 109 | lib/nss/libssl3.so | |
109 | lib/pkgconfig/nss.pc | 110 | lib/pkgconfig/nss.pc |
@@ -1,17 +1,17 @@ | @@ -1,17 +1,17 @@ | |||
1 | $NetBSD: distinfo,v 1.40 2014/08/12 09:43:06 markd Exp $ | 1 | $NetBSD: distinfo,v 1.41 2014/09/26 03:25:22 spz Exp $ | |
2 | 2 | |||
3 | SHA1 (nss-3.16.4.tar.gz) = ee2c8601041b938ecfcba520280dc3059b6cbffd | 3 | SHA1 (nss-3.16.5.tar.gz) = bec488835954698e7b19149a15205db299cd13de | |
4 | RMD160 (nss-3.16.4.tar.gz) = 958e1ed8fa110f1adeb149c164338cf42f281ce3 | 4 | RMD160 (nss-3.16.5.tar.gz) = 19630a0815d69ee5959b562d7849d35d677c6329 | |
5 | Size (nss-3.16.4.tar.gz) = 6428795 bytes | 5 | Size (nss-3.16.5.tar.gz) = 6429830 bytes | |
6 | SHA1 (patch-am) = ee4c4beeb120397852fc4b06b7dd54534d0d5ac5 | 6 | SHA1 (patch-am) = ee4c4beeb120397852fc4b06b7dd54534d0d5ac5 | |
7 | SHA1 (patch-an) = 4ab22f2a575676b5b640bc9a760b83eb05c75e69 | 7 | SHA1 (patch-an) = 4ab22f2a575676b5b640bc9a760b83eb05c75e69 | |
8 | SHA1 (patch-md) = 0a09fd2abb8674a2d301f1b6a5331af5db94178f | 8 | SHA1 (patch-md) = 0a09fd2abb8674a2d301f1b6a5331af5db94178f | |
9 | SHA1 (patch-me) = e785e4e12b54f2618746a550a09593c2eede5f65 | 9 | SHA1 (patch-me) = e785e4e12b54f2618746a550a09593c2eede5f65 | |
10 | SHA1 (patch-mf) = 64d3b2cc09ffbc9c4e8ffdb68cb2fa89b6897e8c | 10 | SHA1 (patch-mf) = 64d3b2cc09ffbc9c4e8ffdb68cb2fa89b6897e8c | |
11 | SHA1 (patch-mg) = 3c878548c98bdea559a3e653e63e0ed22a2a8834 | 11 | SHA1 (patch-mg) = 3c878548c98bdea559a3e653e63e0ed22a2a8834 | |
12 | SHA1 (patch-mh) = a46d3098a85c3a4a57895a9845bc1741fc5e9561 | 12 | SHA1 (patch-mh) = a46d3098a85c3a4a57895a9845bc1741fc5e9561 | |
13 | SHA1 (patch-mj) = 08ca1a37afce99e0292a20348fc6855547f44e8a | 13 | SHA1 (patch-mj) = 08ca1a37afce99e0292a20348fc6855547f44e8a | |
14 | SHA1 (patch-mn) = ab5820ecca7e1a3aef7785763115d38fa55109b4 | 14 | SHA1 (patch-mn) = ab5820ecca7e1a3aef7785763115d38fa55109b4 | |
15 | SHA1 (patch-nss_coreconf_OpenBSD.mk) = fa545c993038e99bf9f59b59ec1d0bd1f6c192a9 | 15 | SHA1 (patch-nss_coreconf_OpenBSD.mk) = fa545c993038e99bf9f59b59ec1d0bd1f6c192a9 | |
16 | SHA1 (patch-nss_lib_freebl_config.mk) = 1c198177da8ba7928cbfbd23e385503be99ebe27 | 16 | SHA1 (patch-nss_lib_freebl_config.mk) = 1c198177da8ba7928cbfbd23e385503be99ebe27 | |
17 | SHA1 (patch-security_nss_cmd_shlibsign_sign.sh) = 7948b7b502a4c148ee185836dde8a84d3aa388af | 17 | SHA1 (patch-security_nss_cmd_shlibsign_sign.sh) = 7948b7b502a4c148ee185836dde8a84d3aa388af |