Mon Feb 8 06:08:02 2021 UTC ()
py-cryptography, py-cryptography_vectors: updated to 3.3.2

3.3.2:
SECURITY ISSUE: Fixed a bug where certain sequences of update() calls when symmetrically encrypting very large payloads (>2GB) could result in an integer overflow, leading to buffer overflows. CVE-2020-36242


(adam)
diff -r1.82 -r1.83 pkgsrc/security/py-cryptography/Makefile
diff -r1.65 -r1.66 pkgsrc/security/py-cryptography/distinfo
diff -r1.27 -r1.28 pkgsrc/security/py-cryptography_vectors/Makefile
diff -r1.27 -r1.28 pkgsrc/security/py-cryptography_vectors/distinfo
cvs diff -r1.82 -r1.83 pkgsrc/security/py-cryptography/Makefile (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography/Makefile 2020/12/14 07:31:18 1.82
+++ pkgsrc/security/py-cryptography/Makefile 2021/02/08 06:08:02 1.83
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.82 2020/12/14 07:31:18 adam Exp $ 1# $NetBSD: Makefile,v 1.83 2021/02/08 06:08:02 adam Exp $
2 2
3DISTNAME= cryptography-3.3.1 3DISTNAME= cryptography-3.3.2
4PKGNAME= ${PYPKGPREFIX}-${DISTNAME} 4PKGNAME= ${PYPKGPREFIX}-${DISTNAME}
5CATEGORIES= security python 5CATEGORIES= security python
6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography/} 6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography/}
7 7
8MAINTAINER= pkgsrc-users@NetBSD.org 8MAINTAINER= pkgsrc-users@NetBSD.org
9HOMEPAGE= https://github.com/pyca/cryptography 9HOMEPAGE= https://github.com/pyca/cryptography
10COMMENT= Cryptographic recipes and primitives for Python 10COMMENT= Cryptographic recipes and primitives for Python
11LICENSE= apache-2.0 OR modified-bsd 11LICENSE= apache-2.0 OR modified-bsd
12 12
13DEPENDS+= ${PYPKGPREFIX}-cffi>=1.11.4:../../devel/py-cffi 13DEPENDS+= ${PYPKGPREFIX}-cffi>=1.11.4:../../devel/py-cffi
14DEPENDS+= ${PYPKGPREFIX}-six>=1.4.1:../../lang/py-six 14DEPENDS+= ${PYPKGPREFIX}-six>=1.4.1:../../lang/py-six
15TEST_DEPENDS+= ${PYPKGPREFIX}-cryptography_vectors-[0-9]*:../../security/py-cryptography_vectors 15TEST_DEPENDS+= ${PYPKGPREFIX}-cryptography_vectors-[0-9]*:../../security/py-cryptography_vectors
16TEST_DEPENDS+= ${PYPKGPREFIX}-iso8601-[0-9]*:../../time/py-iso8601 16TEST_DEPENDS+= ${PYPKGPREFIX}-iso8601-[0-9]*:../../time/py-iso8601
cvs diff -r1.65 -r1.66 pkgsrc/security/py-cryptography/distinfo (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography/distinfo 2020/12/14 07:31:18 1.65
+++ pkgsrc/security/py-cryptography/distinfo 2021/02/08 06:08:02 1.66
@@ -1,6 +1,6 @@ @@ -1,6 +1,6 @@
1$NetBSD: distinfo,v 1.65 2020/12/14 07:31:18 adam Exp $ 1$NetBSD: distinfo,v 1.66 2021/02/08 06:08:02 adam Exp $
2 2
3SHA1 (cryptography-3.3.1.tar.gz) = f63b7bbf6ae3b6f4c178d1e8c1f89aac9507ba38 3SHA1 (cryptography-3.3.2.tar.gz) = eb8be696115458f9368432525e9cae11d0f6bebf
4RMD160 (cryptography-3.3.1.tar.gz) = 2c2f9ad13d298bf5cbdf1375f9d7737da9714639 4RMD160 (cryptography-3.3.2.tar.gz) = 6eda77c15ea0801bbfee5af9b990d414096d8563
5SHA512 (cryptography-3.3.1.tar.gz) = 62192fe0fd3bb8844ccc0056ab72a42b038db2a4ecb0928543c520b85e1de93066dab0d604acf23d37395d68172b9618f81c6022a59ec49725bc1862096d15d1 5SHA512 (cryptography-3.3.2.tar.gz) = 55f6ee13342b3209b1fcb310f4c4d33d22856ee785cb2347e6ad36c34e9b42f6e0d5bece8e458b09663a5b78e34c4567fe7a211b51ca71f55ccc93e3f62dc5e4
6Size (cryptography-3.3.1.tar.gz) = 539756 bytes 6Size (cryptography-3.3.2.tar.gz) = 539883 bytes
cvs diff -r1.27 -r1.28 pkgsrc/security/py-cryptography_vectors/Makefile (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography_vectors/Makefile 2020/12/14 07:31:18 1.27
+++ pkgsrc/security/py-cryptography_vectors/Makefile 2021/02/08 06:08:02 1.28
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.27 2020/12/14 07:31:18 adam Exp $ 1# $NetBSD: Makefile,v 1.28 2021/02/08 06:08:02 adam Exp $
2 2
3DISTNAME= cryptography_vectors-3.3.1 3DISTNAME= cryptography_vectors-3.3.2
4PKGNAME= ${PYPKGPREFIX}-${DISTNAME} 4PKGNAME= ${PYPKGPREFIX}-${DISTNAME}
5CATEGORIES= security python 5CATEGORIES= security python
6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography_vectors/} 6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography_vectors/}
7 7
8MAINTAINER= pkgsrc-users@NetBSD.org 8MAINTAINER= pkgsrc-users@NetBSD.org
9HOMEPAGE= https://github.com/pyca/cryptography 9HOMEPAGE= https://github.com/pyca/cryptography
10COMMENT= Cryptographic test vectors 10COMMENT= Cryptographic test vectors
11LICENSE= apache-2.0 OR modified-bsd 11LICENSE= apache-2.0 OR modified-bsd
12 12
13USE_LANGUAGES= # none 13USE_LANGUAGES= # none
14 14
15.include "../../lang/python/egg.mk" 15.include "../../lang/python/egg.mk"
16.include "../../mk/bsd.pkg.mk" 16.include "../../mk/bsd.pkg.mk"
cvs diff -r1.27 -r1.28 pkgsrc/security/py-cryptography_vectors/distinfo (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography_vectors/distinfo 2020/12/14 07:31:18 1.27
+++ pkgsrc/security/py-cryptography_vectors/distinfo 2021/02/08 06:08:02 1.28
@@ -1,6 +1,6 @@ @@ -1,6 +1,6 @@
1$NetBSD: distinfo,v 1.27 2020/12/14 07:31:18 adam Exp $ 1$NetBSD: distinfo,v 1.28 2021/02/08 06:08:02 adam Exp $
2 2
3SHA1 (cryptography_vectors-3.3.1.tar.gz) = ad07ab39aba22759033f6df467db1949673bae62 3SHA1 (cryptography_vectors-3.3.2.tar.gz) = fa74cbf7b02345695506365127476b939f5c5c3c
4RMD160 (cryptography_vectors-3.3.1.tar.gz) = 93b4f69fe609d8ab702f89cf42da6d8c501c980c 4RMD160 (cryptography_vectors-3.3.2.tar.gz) = faedef1167266ebb91df419a017f79d0035330d9
5SHA512 (cryptography_vectors-3.3.1.tar.gz) = a102535bd3cf72118106ca7268d5a9921738d41f81247940c550961d61cb0d1869095b7891c39e8dc15816f7d38230622846747b4b7a3f226f09306cf86220bd 5SHA512 (cryptography_vectors-3.3.2.tar.gz) = 18590adb96a6f04b8a41d4346b126b8adfc854cbcec85f8c1c0a23b1b363f215b37da60ea94a481b8fd7752f07fba515b08fc18faf2e29fb858e133129971f7c
6Size (cryptography_vectors-3.3.1.tar.gz) = 35168171 bytes 6Size (cryptography_vectors-3.3.2.tar.gz) = 35168168 bytes