security/aide: Update to 0.17.4

Update aide to 0.17.4, fixing CVE-2021-45417. PR: 261407 Reported by: Yonas Yanfa <yonas.yanfa@gmail.com> MFH: 2022Q1 Security: CVE-2021-45417
2025-07-18 01:39:16 -04:00 · 2022-01-23 14:51:09 -08:00 · 2022-01-23 14:51:09 -08:00 · 8fbfc5f931
commit 8fbfc5f931
parent f67392e69b
5 changed files with 27 additions and 18 deletions
--- a/security/aide/Makefile
+++ b/security/aide/Makefile
@ -1,7 +1,7 @@
 # Created by: Cy Schubert (Cy.Schubert@uumail.gov.bc.ca)

 PORTNAME=	aide
-PORTVERSION=	0.16.1
+PORTVERSION=	0.17.4
 CATEGORIES=	security
 MASTER_SITES=	https://github.com/aide/aide/releases/download/v${PORTVERSION}/

--- a/security/aide/distinfo
+++ b/security/aide/distinfo
@ -1,3 +1,3 @@
-TIMESTAMP = 1555181364
-SHA256 (aide-0.16.1.tar.gz) = 0f2b7cecc70c1a27d35c06c98804fcdb9f326630de5d035afc447122186010b7
-SIZE (aide-0.16.1.tar.gz) = 391531
+TIMESTAMP = 1642975384
+SHA256 (aide-0.17.4.tar.gz) = c81505246f3ffc2e76036d43a77212ae82895b5881d9b9e25c1361b1a9b7a846
+SIZE (aide-0.17.4.tar.gz) = 331783
--- a/security/aide/files/patch-doc_aide.1
+++ b/security/aide/files/patch-doc_aide.1
@ -1,14 +0,0 @@
--- doc/aide.1.orig	2016-07-25 14:09:52.000000000 -0700
-+++ doc/aide.1	2016-07-26 12:35:55.894637000 -0700
-@@ -103,9 +103,9 @@
- .SH FILES
- .IP \fB${prefix}/etc/aide.conf\fR
- Default aide configuration file.
-.IP \fB${prefix}/etc/aide.db\fR
-+.IP \fB/var/db/aide/aide.db\fR
- Default aide database.
-.IP \fB${prefix}/etc/aide.db.new\fR
-+.IP \fB/var/db/aide/aide.db.new\fR
- Default aide output database.
- .SH SEE ALSO
- .BR aide.conf (5)
--- a/security/aide/files/patch-include_util.h
+++ b/security/aide/files/patch-include_util.h
@ -0,0 +1,10 @@
+--- include/util.h.orig	2022-01-19 12:03:06.000000000 -0800
+++ include/util.h	2022-01-23 14:44:04.712694000 -0800
+@@ -24,6 +24,7 @@
+ #include <string.h>
+ #include <stdbool.h>
+ #include <sys/types.h>
+#include "config.h"
+ #include "url.h"
+ 
+ #define HEXD2ASC(x) (((x) < 10) ? ((x) + '0') : ((x) - 10 + 'A'))
--- a/security/aide/files/patch-src_commandconf.c
+++ b/security/aide/files/patch-src_commandconf.c
@ -0,0 +1,13 @@
+--- src/commandconf.c.orig	2022-01-19 12:03:06.000000000 -0800
+++ src/commandconf.c	2022-01-23 14:49:37.915576000 -0800
+@@ -226,8 +226,8 @@
+       c=fgetc(db->fp);
+       if(c==(unsigned char)'\213'){
+     log_msg(LOG_LEVEL_DEBUG,"db_input_wrapper(): handle gzip header");
+-    lseek(fileno(db->fp),0L,SEEK_SET);
+-    db->gzp=gzdopen(fileno(db->fp),"rb");
+    lseek(fileno((FILE *)(db->fp)),0L,SEEK_SET);
+    db->gzp=gzdopen(fileno((FILE *)(db->fp)),"rb");
+     c=gzgetc(db->gzp);
+     log_msg(LOG_LEVEL_DEBUG, "db_input_wrapper(): first character after gzip header is: %c(%#X)\n",c,c);
+   if(c==-1) {