Fri Oct 7 16:34:10 2022 UTC ()

Pullup ticket #6681 - requested by taca
net/isc-dhcp4: security fix

Revisions pulled up:
- net/isc-dhcp4/Makefile.common                                 1.45
- net/isc-dhcp4/distinfo                                        1.34

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Wed Oct  5 16:16:54 UTC 2022

   Modified Files:
   	pkgsrc/net/isc-dhcp4: Makefile.common distinfo

   Log Message:
   net/isc-dhcp4: update to 4.4.3p1

   4.4.3p1 (ISC DHCP 4.4.3-P1), 2022-10-05

   		Changes since 4.4.3 (Bug Fixes)

   ! Corrected a reference count leak that occurs when the server builds
     responses to leasequery packets. Thanks to VictorV of Cyber Kunlun
     Lab for reporting the issue.
     [Gitlab #253]
     CVE: CVE-2022-2928

   ! Corrected a memory leak that occurs when unpacking a packet that has an
     FQDN option (81) that contains a label with length greater than 63 bytes.
     Thanks to VictorV of Cyber Kunlun Lab for reporting the issue.
     [Gitlab #254]
     CVE: CVE-2022-2929


(bsiegert)

diff -r1.44 -r1.44.4.1 pkgsrc/net/isc-dhcp4/Makefile.common
diff -r1.33 -r1.33.6.1 pkgsrc/net/isc-dhcp4/distinfo

--- pkgsrc/net/isc-dhcp4/Makefile.common 2022/03/31 09:50:54 1.44
+++ pkgsrc/net/isc-dhcp4/Makefile.common 2022/10/07 16:34:09 1.44.4.1

 @@ -1,33 +1,33 @@
-# $NetBSD: Makefile.common,v 1.44 2022/03/31 09:50:54 jperkin Exp $
+# $NetBSD: Makefile.common,v 1.44.4.1 2022/10/07 16:34:09 bsiegert Exp $
+#
 # used by net/isc-dhcp4/Makefile
 # used by net/isc-dhcpd4/Makefile
 # used by net/isc-dhclient4/Makefile
 # used by net/isc-dhcrelay4/Makefile
 DISTNAME=		dhcp-${VERSION}
 DHVER=			${DISTNAME:S/dhcp-//:S/-P/p/}
 CATEGORIES=		net
 MASTER_SITES=		ftp://ftp.isc.org/isc/dhcp/${VERSION}/
 MASTER_SITES+=		http://ftp.isc.org/isc/dhcp/${VERSION}/
 MAINTAINER=		pkgsrc-users@NetBSD.org
 HOMEPAGE=		https://www.isc.org/dhcp/
 LICENSE=		mpl-2.0
 CONFLICTS+=		isc-dhcp-base-3.*
-VERSION=		4.4.3
+VERSION=		4.4.3-P1
 .include "../../mk/bsd.prefs.mk"
 GNU_CONFIGURE=		yes
 GNU_CONFIGURE_STRICT=	no # has several configure programs
 DHCP_HOME?=		${VARBASE}/db/isc-dhcp
 DHCP_PID?=		${VARBASE}/run/isc-dhcp
 PKG_SYSCONFSUBDIR=	dhcp
 USE_TOOLS+=		gmake gunzip gzip tar
 USE_LANGUAGES+=		c99 c++
 PATCHDIR=		${.CURDIR}/../../net/isc-dhcp4/patches

--- pkgsrc/net/isc-dhcp4/distinfo 2022/03/13 15:24:37 1.33
+++ pkgsrc/net/isc-dhcp4/distinfo 2022/10/07 16:34:09 1.33.6.1

 @@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.33 2022/03/13 15:24:37 taca Exp $
+$NetBSD: distinfo,v 1.33.6.1 2022/10/07 16:34:09 bsiegert Exp $
-BLAKE2s (dhcp-4.4.3.tar.gz) = 21d9898366e34a4cdede90eb01eee456acdf33937a0e7f1bca7033dd4850c5ee
+BLAKE2s (dhcp-4.4.3-P1.tar.gz) = 7c257ac33cdf8d5fd4be0787fcd98045febe92679acbef2bb88340dd745cdfee
-SHA512 (dhcp-4.4.3.tar.gz) = 4472d6794af80b482560956cee6895889cc1aca39980f851faf56824627e95731f2983cf7c7454bc3decb0a12c874fcbd29bd6c5a9695412def6bc14c6df17e0
+SHA512 (dhcp-4.4.3-P1.tar.gz) = d14dc44d1c015780ae19769816cb01015959927a1ad7a3e84b89e0463253aaf46451af88e3260347196373906d5b438c7c616fee45ec3f128aa82af6702b7154
-Size (dhcp-4.4.3.tar.gz) = 10078953 bytes
+Size (dhcp-4.4.3-P1.tar.gz) = 10081055 bytes
 SHA1 (patch-aa) = da090b3b824f5d437f8d05ce00e2ac4dfc65d6af
 SHA1 (patch-ab) = 0683dd2259e48184713559aa0356ee352aa52c39
 SHA1 (patch-ac) = a7e6808a6e1e93c520eb085f31259f6c142750f4
 SHA1 (patch-common_dlpi.c) = a4258a6bc7a2b12fab45a10054bca83e235acfbd