Wednesday, September 16, 2020

[security update] net/synapse -> 1.19.2

? patch
Index: Makefile
===================================================================
RCS file: /cvs/ports/net/synapse/Makefile,v
retrieving revision 1.12
diff -u -p -r1.12 Makefile
--- Makefile 20 Aug 2020 15:12:57 -0000 1.12
+++ Makefile 16 Sep 2020 13:15:37 -0000
@@ -2,7 +2,7 @@

COMMENT = open network for secure, decentralized communication

-MODPY_EGG_VERSION = 1.19.0
+MODPY_EGG_VERSION = 1.19.2

GH_ACCOUNT = matrix-org
GH_PROJECT = synapse
Index: distinfo
===================================================================
RCS file: /cvs/ports/net/synapse/distinfo,v
retrieving revision 1.10
diff -u -p -r1.10 distinfo
--- distinfo 20 Aug 2020 15:12:57 -0000 1.10
+++ distinfo 16 Sep 2020 13:15:37 -0000
@@ -1,2 +1,2 @@
-SHA256 (synapse-1.19.0.tar.gz) = G76EkvumN5Dve06CfAAG6+thpHaf2kk5pKwkKKns+rY=
-SIZE (synapse-1.19.0.tar.gz) = 6777147
+SHA256 (synapse-1.19.2.tar.gz) = 4h1zPwZnS07oBF7PICFCLfrW/GDsY6CauT3V8TGb0Ws=
+SIZE (synapse-1.19.2.tar.gz) = 6778447
Hello,

Here is a straightforward diff for net/synapse to 1.19.2 to solve a
security issue when joining rooms over federation that include malformed
events. (https://github.com/matrix-org/synapse/issues/8324)

Best Regards

No comments:

Post a Comment