Hi,
This is a simple update to libgcrypt to plug a recently uncovered
vulnerability:
https://lists.gnupg.org/pipermail/gnupg-announce/2017q2/000408.html
I've only tested very lightly, but will continue to test over the next
day or so.
OK?
P.S.
If this looks good, I will also patch -stable. The source code patch is
here:
https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=8725c99ffa41778f382ca97233183bcd687bb0ce
Index: Makefile
===================================================================
RCS file: /home/edd/cvsync/ports/security/libgcrypt/Makefile,v
retrieving revision 1.54
diff -u -p -r1.54 Makefile
--- Makefile 5 Jun 2017 07:34:12 -0000 1.54
+++ Makefile 4 Jul 2017 13:45:03 -0000
@@ -2,10 +2,10 @@
COMMENT= crypto library based on code used in GnuPG
-DISTNAME= libgcrypt-1.7.7
+DISTNAME= libgcrypt-1.7.8
CATEGORIES= security
-SHARED_LIBS += gcrypt 19.3 # 21.7
+SHARED_LIBS += gcrypt 19.4 # 21.8
HOMEPAGE= http://www.gnupg.org/
Index: distinfo
===================================================================
RCS file: /home/edd/cvsync/ports/security/libgcrypt/distinfo,v
retrieving revision 1.27
diff -u -p -r1.27 distinfo
--- distinfo 5 Jun 2017 07:34:12 -0000 1.27
+++ distinfo 4 Jul 2017 13:40:57 -0000
@@ -1,2 +1,2 @@
-SHA256 (libgcrypt-1.7.7.tar.gz) = DnLpEpDVU8MDCVpQ6mYCedjxG3bGyG6Cb0cEQvzfHt0=
-SIZE (libgcrypt-1.7.7.tar.gz) = 3368687
+SHA256 (libgcrypt-1.7.8.tar.gz) = ywdrLvx7p1Lz1MZjye4FiamLHWFP6Qh4sfrNYHpF/UM=
+SIZE (libgcrypt-1.7.8.tar.gz) = 3479910
--
Best Regards
Edd Barrett
http://www.theunixzoo.co.uk
No comments:
Post a Comment