security/krb5-121: Update to 1.21.2

Major changes in 1.21.2 (2023-08-14) ==================================== This is a bug fix release. * Fix double-free in KDC TGS processing [CVE-2023-39975]. MFH: 2023Q3
2025-05-12 15:21:51 -04:00 · 2023-08-16 07:11:13 -07:00 · 2023-08-16 07:11:13 -07:00 · 8522ddedb8
commit 8522ddedb8
parent 7418bfa0e6
3 changed files with 4 additions and 19 deletions
--- a/security/krb5-121/Makefile
+++ b/security/krb5-121/Makefile
@ -1,6 +1,5 @@
 PORTNAME=		krb5
-PORTVERSION=		1.21.1
-PORTREVISION=		1
+PORTVERSION=		1.21.2
 CATEGORIES=		security
 MASTER_SITES=		http://web.mit.edu/kerberos/dist/${PORTNAME}/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/
 .if !defined(MASTERDIR)
--- a/security/krb5-121/distinfo
+++ b/security/krb5-121/distinfo
@ -1,3 +1,3 @@
-TIMESTAMP = 1689066284
-SHA256 (krb5-1.21.1.tar.gz) = 7881c3aaaa1b329bd27dbc6bf2bf1c85c5d0b6c7358aff2b35d513ec2d50fa1f
-SIZE (krb5-1.21.1.tar.gz) = 8623049
+TIMESTAMP = 1692194668
+SHA256 (krb5-1.21.2.tar.gz) = 9560941a9d843c0243a71b17a7ac6fe31c7cebb5bce3983db79e52ae7e850491
+SIZE (krb5-1.21.2.tar.gz) = 8622513
--- a/security/krb5-121/files/patch-kdc_dotgsreq.c
+++ b/security/krb5-121/files/patch-kdc_dotgsreq.c
@ -1,14 +0,0 @@
--- kdc/do_tgs_req.c.orig	2023-07-10 13:58:20.000000000 -0700
-+++ kdc/do_tgs_req.c	2023-08-14 07:23:14.383349000 -0700
-@@ -1010,8 +1010,9 @@
-     }
- 
-     if (t->req->kdc_options & (KDC_OPT_VALIDATE | KDC_OPT_RENEW)) {
-        /* Copy the whole header ticket except for authorization data. */
-        ticket_reply = *t->header_tkt;
-+        /* Copy the header ticket server and all enc-part fields except for
-+         * authorization data. */
-+        ticket_reply.server = t->header_tkt->server;
-         enc_tkt_reply = *t->header_tkt->enc_part2;
-         enc_tkt_reply.authorization_data = NULL;
-     } else {