diff options
Diffstat (limited to 'security')
30 files changed, 344 insertions, 98 deletions
diff --git a/security/Makefile b/security/Makefile index 176dfc48ad3f..67f44efbc33a 100644 --- a/security/Makefile +++ b/security/Makefile @@ -36,6 +36,7 @@ SUBDIR += assh SUBDIR += authenticator SUBDIR += authoscope + SUBDIR += autofirma SUBDIR += autossh SUBDIR += aws-c-auth SUBDIR += aws-c-cal diff --git a/security/autofirma/Makefile b/security/autofirma/Makefile new file mode 100644 index 000000000000..034ca3b487e2 --- /dev/null +++ b/security/autofirma/Makefile @@ -0,0 +1,47 @@ +PORTNAME= autofirma +DISTVERSION= 1.9 +CATEGORIES= security +MASTER_SITES= https://firmaelectronica.gob.es/content/dam/firmaelectronica/descargas-software/autofirma19/ +DISTNAME= Autofirma_Linux_Debian + +MAINTAINER= fernape@FreeBSD.org +COMMENT= Spanish Government digital signature application +WWW= https://sedediatid.digital.gob.es/es-es/firmaelectronica/Paginas/AutoFirma.aspx + +LICENSE= GPLv2 EUPL11 +LICENSE_COMB= dual +LICENSE_FILE= ${WRKSRC}/usr/share/common-licenses/eupl-1.1.txt + +LIB_DEPENDS= libnss3.so:security/nss + +USES= desktop-file-utils java zip +JAVA_VERSION= 24 +JAVA_VENDOR= openjdk + +DATADIR= ${JAVASHAREDIR}/${PORTNAME} + +NO_BUILD= yes + +SUB_FILES= ${PORTNAME} \ + Autofirma.js \ + afirma.desktop \ + pkg-message +SUB_LIST+= JAVA_HOME=${JAVA_HOME} \ + JAVA=${JAVA} + +WRKSRC=${WRKDIR} + +post-extract: + ${TAR} -C ${WRKDIR} -xvzf ${WRKDIR}/autofirma_1_9.deb + ${TAR} -C ${WRKDIR} -xvzf ${WRKDIR}/data.tar.gz + ${ZIP_CMD} -d ${PORTNAME}.jar "nss/WINDOWS/*" "windows/*" "osx/*" "linux/*" + +do-install: + ${MKDIR} ${STAGEDIR}${DATADIR} + ${INSTALL_SCRIPT} ${WRKDIR}/${PORTNAME} ${STAGEDIR}${PREFIX}/bin/ + ${INSTALL_DATA} ${WRKSRC}/usr/lib/Autofirma/autofirma.jar ${STAGEDIR}${JAVAJARDIR} + ${INSTALL_DATA} ${WRKSRC}/usr/lib/Autofirma/Autofirma.png ${STAGEDIR}${DATADIR} + ${INSTALL_DATA} ${WRKDIR}/afirma.desktop ${STAGEDIR}${PREFIX}/share/applications/ + ${INSTALL_DATA} ${WRKDIR}/Autofirma.js ${STAGEDIR}${DATADIR} + +.include <bsd.port.mk> diff --git a/security/autofirma/distinfo b/security/autofirma/distinfo new file mode 100644 index 000000000000..451ef847a707 --- /dev/null +++ b/security/autofirma/distinfo @@ -0,0 +1,3 @@ +TIMESTAMP = 1762021451 +SHA256 (Autofirma_Linux_Debian.zip) = c29c251f2ee9f00dfc87f9582677dbd436a83565986ab0417ff065ceae716798 +SIZE (Autofirma_Linux_Debian.zip) = 67295518 diff --git a/security/autofirma/files/Autofirma.js.in b/security/autofirma/files/Autofirma.js.in new file mode 100644 index 000000000000..3a5451fe2bbc --- /dev/null +++ b/security/autofirma/files/Autofirma.js.in @@ -0,0 +1,4 @@ +pref("network.protocol-handler.app.afirma","%%LOCALBASE%%/bin/autofirma"); +pref("network.protocol-handler.warn-external.afirma",false); +pref("network.protocol-handler.external.afirma",true); + diff --git a/security/autofirma/files/afirma.desktop.in b/security/autofirma/files/afirma.desktop.in new file mode 100644 index 000000000000..6005ea9bde1a --- /dev/null +++ b/security/autofirma/files/afirma.desktop.in @@ -0,0 +1,16 @@ +[Desktop Entry] +Encoding=UTF-8 +Version=1.9 +Name=Autofirma +Type=Application +Terminal=false +Categories=Office;Utilities;Signature;Java +Exec=%%LOCALBASE%%/bin/autofirma %u +Icon=%%DATADIR%%/Autofirma.png +GenericName=Herramienta de firma +Comment=Herramienta de firma +MimeType=x-scheme-handler/afirma; +StartupNotify=true +StartupWMClass=autofirma +Name[es_ES]=Autofirma + diff --git a/security/autofirma/files/autofirma.in b/security/autofirma/files/autofirma.in new file mode 100644 index 000000000000..b124586a67d7 --- /dev/null +++ b/security/autofirma/files/autofirma.in @@ -0,0 +1,5 @@ +#!/bin/sh +export AFIRMA_NSS_HOME_ENV=%%LOCALBASE%%/lib/ +JAVA_OPTS="-Djdk.tls.maxHandshakeMessageSize=65536 \ + -Des.gob.afirma.keystores.mozilla.UseEnvironmentVariables=true" +%%JAVA%% ${JAVA_OPTS} -jar %%JAVAJARDIR%%/autofirma.jar "$@" diff --git a/security/autofirma/files/pkg-message.in b/security/autofirma/files/pkg-message.in new file mode 100644 index 000000000000..df006385bd4b --- /dev/null +++ b/security/autofirma/files/pkg-message.in @@ -0,0 +1,9 @@ +[ +{ type: install + message: <<EOM +You can install the preferences file Autofirma.js in your Firefox profile: + +ln -s %%DATADIR%%/Autofirma.js ~/.mozilla/firefox/xxxxxxx.default-release/ +EOM +} +] diff --git a/security/autofirma/pkg-descr b/security/autofirma/pkg-descr new file mode 100644 index 000000000000..cbda164f3fd1 --- /dev/null +++ b/security/autofirma/pkg-descr @@ -0,0 +1,4 @@ +AutoFirma is a desktop application that allows signing documents with digital +certificates. +It is the official digital signature application of the Spanish Government and a +requirement for many digital procedures. diff --git a/security/autofirma/pkg-plist b/security/autofirma/pkg-plist new file mode 100644 index 000000000000..17a03206e75e --- /dev/null +++ b/security/autofirma/pkg-plist @@ -0,0 +1,5 @@ +bin/autofirma +share/applications/afirma.desktop +%%DATADIR%%/Autofirma.js +%%DATADIR%%/Autofirma.png +%%JAVAJARDIR%%/autofirma.jar diff --git a/security/gopass/Makefile b/security/gopass/Makefile index e7315766cad3..cf039b1ba5e9 100644 --- a/security/gopass/Makefile +++ b/security/gopass/Makefile @@ -1,7 +1,6 @@ PORTNAME= gopass DISTVERSIONPREFIX= v -DISTVERSION= 1.16.0 -PORTREVISION= 1 +DISTVERSION= 1.16.1 CATEGORIES= security MAINTAINER= eduardo@FreeBSD.org diff --git a/security/gopass/distinfo b/security/gopass/distinfo index e5d1cb1862ef..488d719100c2 100644 --- a/security/gopass/distinfo +++ b/security/gopass/distinfo @@ -1,7 +1,7 @@ -TIMESTAMP = 1763065093 -SHA256 (go/security_gopass/gopass-v1.16.0/v1.16.0.mod) = 5f041be3279b6b57fec531111be9e5cd6c1ae2959b2174a34cc67d4ed0da7583 -SIZE (go/security_gopass/gopass-v1.16.0/v1.16.0.mod) = 4391 -SHA256 (go/security_gopass/gopass-v1.16.0/v1.16.0.zip) = de4f605cee86ecf4537fbf33e52d18e1e6fff2230b5e8dd57a519275b8e1df83 -SIZE (go/security_gopass/gopass-v1.16.0/v1.16.0.zip) = 3305237 -SHA256 (go/security_gopass/gopass-v1.16.0/gopasspw-password-store-example-8db75ba3b69c_GH0.tar.gz) = e2866f4749e844ea9f7d31386f971dd8bbf19acab2c0a06fe7c4e99462eda1c5 -SIZE (go/security_gopass/gopass-v1.16.0/gopasspw-password-store-example-8db75ba3b69c_GH0.tar.gz) = 1392 +TIMESTAMP = 1765644299 +SHA256 (go/security_gopass/gopass-v1.16.1/v1.16.1.mod) = 5f041be3279b6b57fec531111be9e5cd6c1ae2959b2174a34cc67d4ed0da7583 +SIZE (go/security_gopass/gopass-v1.16.1/v1.16.1.mod) = 4391 +SHA256 (go/security_gopass/gopass-v1.16.1/v1.16.1.zip) = 320b4611f72cf04cebdf99a1475c34e8213f58a11c5402eca64200f1a7e9f90f +SIZE (go/security_gopass/gopass-v1.16.1/v1.16.1.zip) = 3305415 +SHA256 (go/security_gopass/gopass-v1.16.1/gopasspw-password-store-example-8db75ba3b69c_GH0.tar.gz) = e2866f4749e844ea9f7d31386f971dd8bbf19acab2c0a06fe7c4e99462eda1c5 +SIZE (go/security_gopass/gopass-v1.16.1/gopasspw-password-store-example-8db75ba3b69c_GH0.tar.gz) = 1392 diff --git a/security/kanidm/Makefile b/security/kanidm/Makefile index 8ab39a055750..ade3cb10da08 100644 --- a/security/kanidm/Makefile +++ b/security/kanidm/Makefile @@ -1,6 +1,6 @@ PORTNAME= kanidm DISTVERSIONPREFIX= v -DISTVERSION= 1.8.4 +DISTVERSION= 1.8.5 CATEGORIES= security net # implicit-approval+: dtxdf diff --git a/security/kanidm/Makefile.crates b/security/kanidm/Makefile.crates index 61fef74c089b..870cf0f07dee 100644 --- a/security/kanidm/Makefile.crates +++ b/security/kanidm/Makefile.crates @@ -26,7 +26,7 @@ CARGO_CRATES= addr2line-0.25.1 \ asn1-rs-0.6.2 \ asn1-rs-derive-0.5.1 \ asn1-rs-impl-0.2.0 \ - async-compression-0.4.35 \ + async-compression-0.4.36 \ async-stream-0.3.6 \ async-stream-impl-0.3.6 \ async-trait-0.1.89 \ @@ -47,7 +47,7 @@ CARGO_CRATES= addr2line-0.25.1 \ base64-0.21.7 \ base64-0.22.1 \ base64ct-1.8.1 \ - base64urlsafedata-0.5.3 \ + base64urlsafedata-0.5.4 \ basic-toml-0.1.10 \ bindgen-0.66.1 \ bindgen-0.72.1 \ @@ -88,12 +88,12 @@ CARGO_CRATES= addr2line-0.25.1 \ clap_derive-4.5.49 \ clap_lex-0.7.6 \ clru-0.6.2 \ - cmake-0.1.54 \ + cmake-0.1.55 \ color_quant-1.1.0 \ colorchoice-1.0.4 \ combine-4.6.7 \ compact_jwt-0.5.3-dev \ - compression-codecs-0.4.34 \ + compression-codecs-0.4.35 \ compression-core-0.4.31 \ concread-0.5.7 \ console-0.16.1 \ @@ -311,7 +311,7 @@ CARGO_CRATES= addr2line-0.25.1 \ itoa-1.0.15 \ jiff-0.2.16 \ jiff-static-0.2.16 \ - jiff-tzdb-0.1.4 \ + jiff-tzdb-0.1.5 \ jiff-tzdb-platform-0.1.3 \ jni-0.21.1 \ jni-sys-0.3.0 \ @@ -338,7 +338,7 @@ CARGO_CRATES= addr2line-0.25.1 \ libsqlite3-sys-0.35.0 \ libudev-0.2.0 \ libudev-sys-0.1.4 \ - libz-rs-sys-0.5.3 \ + libz-rs-sys-0.5.4 \ linux-raw-sys-0.4.15 \ linux-raw-sys-0.11.0 \ litemap-0.7.5 \ @@ -543,7 +543,7 @@ CARGO_CRATES= addr2line-0.25.1 \ sha2-0.10.9 \ sha2-0.11.0-rc.3 \ sharded-slab-0.1.7 \ - shell-words-1.1.0 \ + shell-words-1.1.1 \ shellexpand-3.1.1 \ shlex-1.3.0 \ signal-hook-registry-1.4.7 \ @@ -558,7 +558,7 @@ CARGO_CRATES= addr2line-0.25.1 \ spin-0.9.8 \ spki-0.7.3 \ sptr-0.3.2 \ - sshkey-attest-0.5.3 \ + sshkey-attest-0.5.4 \ sshkeys-0.3.4 \ stable_deref_trait-1.2.1 \ stacker-0.1.22 \ @@ -653,11 +653,11 @@ CARGO_CRATES= addr2line-0.25.1 \ wasm-bindgen-shared-0.2.106 \ web-sys-0.3.83 \ web-time-1.1.0 \ - webauthn-attestation-ca-0.5.3 \ - webauthn-authenticator-rs-0.5.3 \ - webauthn-rs-0.5.3 \ - webauthn-rs-core-0.5.3 \ - webauthn-rs-proto-0.5.3 \ + webauthn-attestation-ca-0.5.4 \ + webauthn-authenticator-rs-0.5.4 \ + webauthn-rs-0.5.4 \ + webauthn-rs-core-0.5.4 \ + webauthn-rs-proto-0.5.4 \ webdriver-0.53.0 \ webpki-root-certs-0.26.11 \ webpki-root-certs-1.0.4 \ @@ -748,7 +748,7 @@ CARGO_CRATES= addr2line-0.25.1 \ zerovec-derive-0.10.3 \ zerovec-derive-0.11.2 \ zip-3.0.0 \ - zlib-rs-0.5.3 \ + zlib-rs-0.5.4 \ zopfli-0.8.3 \ zune-core-0.5.0 \ zune-jpeg-0.5.6 \ diff --git a/security/kanidm/distinfo b/security/kanidm/distinfo index 6a4cf1b2d5a4..41de10443b90 100644 --- a/security/kanidm/distinfo +++ b/security/kanidm/distinfo @@ -1,4 +1,4 @@ -TIMESTAMP = 1765392668 +TIMESTAMP = 1765644843 SHA256 (rust/crates/addr2line-0.25.1.crate) = 1b5d307320b3181d6d7954e663bd7c774a838b8220fe0593c86d9fb09f498b4b SIZE (rust/crates/addr2line-0.25.1.crate) = 43134 SHA256 (rust/crates/adler2-2.0.1.crate) = 320119579fcad9c21884f5c4861d16174d0e06250625266f50fe6898340abefa @@ -55,8 +55,8 @@ SHA256 (rust/crates/asn1-rs-derive-0.5.1.crate) = 965c2d33e53cb6b267e148a4cb0760 SIZE (rust/crates/asn1-rs-derive-0.5.1.crate) = 9692 SHA256 (rust/crates/asn1-rs-impl-0.2.0.crate) = 7b18050c2cd6fe86c3a76584ef5e0baf286d038cda203eb6223df2cc413565f7 SIZE (rust/crates/asn1-rs-impl-0.2.0.crate) = 2261 -SHA256 (rust/crates/async-compression-0.4.35.crate) = 07a926debf178f2d355197f9caddb08e54a9329d44748034bba349c5848cb519 -SIZE (rust/crates/async-compression-0.4.35.crate) = 96339 +SHA256 (rust/crates/async-compression-0.4.36.crate) = 98ec5f6c2f8bc326c994cb9e241cc257ddaba9afa8555a43cffbb5dd86efaa37 +SIZE (rust/crates/async-compression-0.4.36.crate) = 96373 SHA256 (rust/crates/async-stream-0.3.6.crate) = 0b5a71a6f37880a80d1d7f19efd781e4b5de42c88f0722cc13bcb6cc2cfe8476 SIZE (rust/crates/async-stream-0.3.6.crate) = 13823 SHA256 (rust/crates/async-stream-impl-0.3.6.crate) = c7c24de15d275a1ecfd47a380fb4d5ec9bfe0933f309ed5e705b775596a3574d @@ -97,8 +97,8 @@ SHA256 (rust/crates/base64-0.22.1.crate) = 72b3254f16251a8381aa12e40e3c4d2f0199f SIZE (rust/crates/base64-0.22.1.crate) = 81597 SHA256 (rust/crates/base64ct-1.8.1.crate) = 0e050f626429857a27ddccb31e0aca21356bfa709c04041aefddac081a8f068a SIZE (rust/crates/base64ct-1.8.1.crate) = 31807 -SHA256 (rust/crates/base64urlsafedata-0.5.3.crate) = 215ee31f8a88f588c349ce2d20108b2ed96089b96b9c2b03775dc35dd72938e8 -SIZE (rust/crates/base64urlsafedata-0.5.3.crate) = 7059 +SHA256 (rust/crates/base64urlsafedata-0.5.4.crate) = 42f7f6be94fa637132933fd0a68b9140bcb60e3d46164cb68e82a2bb8d102b3a +SIZE (rust/crates/base64urlsafedata-0.5.4.crate) = 7061 SHA256 (rust/crates/basic-toml-0.1.10.crate) = ba62675e8242a4c4e806d12f11d136e626e6c8361d6b829310732241652a178a SIZE (rust/crates/basic-toml-0.1.10.crate) = 50648 SHA256 (rust/crates/bindgen-0.66.1.crate) = f2b84e06fc203107bfbad243f4aba2af864eb7db3b1cf46ea0a023b0b433d2a7 @@ -179,8 +179,8 @@ SHA256 (rust/crates/clap_lex-0.7.6.crate) = a1d728cc89cf3aee9ff92b05e62b19ee65a0 SIZE (rust/crates/clap_lex-0.7.6.crate) = 13466 SHA256 (rust/crates/clru-0.6.2.crate) = cbd0f76e066e64fdc5631e3bb46381254deab9ef1158292f27c8c57e3bf3fe59 SIZE (rust/crates/clru-0.6.2.crate) = 16497 -SHA256 (rust/crates/cmake-0.1.54.crate) = e7caa3f9de89ddbe2c607f4101924c5abec803763ae9534e4f4d7d8f84aa81f0 -SIZE (rust/crates/cmake-0.1.54.crate) = 18955 +SHA256 (rust/crates/cmake-0.1.55.crate) = d49d74c227b6cc9f3c51a2c7c667a05b6453f7f0f952a5f8e4493bb9e731d68e +SIZE (rust/crates/cmake-0.1.55.crate) = 19839 SHA256 (rust/crates/color_quant-1.1.0.crate) = 3d7b894f5411737b7867f4827955924d7c254fc9f4d91a6aad6b097804b1018b SIZE (rust/crates/color_quant-1.1.0.crate) = 6649 SHA256 (rust/crates/colorchoice-1.0.4.crate) = b05b61dc5112cbb17e4b6cd61790d9845d13888356391624cbe7e41efeac1e75 @@ -189,8 +189,8 @@ SHA256 (rust/crates/combine-4.6.7.crate) = ba5a308b75df32fe02788e748662718f03fde SIZE (rust/crates/combine-4.6.7.crate) = 134808 SHA256 (rust/crates/compact_jwt-0.5.3-dev.crate) = 23812e87894027686e22bc5b0940522315b1f0ba9347383cc41016ec0caf6c35 SIZE (rust/crates/compact_jwt-0.5.3-dev.crate) = 69491 -SHA256 (rust/crates/compression-codecs-0.4.34.crate) = 34a3cbbb8b6eca96f3a5c4bf6938d5b27ced3675d69f95bb51948722870bc323 -SIZE (rust/crates/compression-codecs-0.4.34.crate) = 25059 +SHA256 (rust/crates/compression-codecs-0.4.35.crate) = b0f7ac3e5b97fdce45e8922fb05cae2c37f7bbd63d30dd94821dacfd8f3f2bf2 +SIZE (rust/crates/compression-codecs-0.4.35.crate) = 25351 SHA256 (rust/crates/compression-core-0.4.31.crate) = 75984efb6ed102a0d42db99afb6c1948f0380d1d91808d5529916e6c08b49d8d SIZE (rust/crates/compression-core-0.4.31.crate) = 5749 SHA256 (rust/crates/concread-0.5.7.crate) = 07fd8c4b53f0aafeec114fa1cd863f323880f790656f2d7508af83a9b5110e8d @@ -625,8 +625,8 @@ SHA256 (rust/crates/jiff-0.2.16.crate) = 49cce2b81f2098e7e3efc35bc2e0a6b7abec9d3 SIZE (rust/crates/jiff-0.2.16.crate) = 731814 SHA256 (rust/crates/jiff-static-0.2.16.crate) = 980af8b43c3ad5d8d349ace167ec8170839f753a42d233ba19e08afe1850fa69 SIZE (rust/crates/jiff-static-0.2.16.crate) = 77672 -SHA256 (rust/crates/jiff-tzdb-0.1.4.crate) = c1283705eb0a21404d2bfd6eef2a7593d240bc42a0bdb39db0ad6fa2ec026524 -SIZE (rust/crates/jiff-tzdb-0.1.4.crate) = 62435 +SHA256 (rust/crates/jiff-tzdb-0.1.5.crate) = 68971ebff725b9e2ca27a601c5eb38a4c5d64422c4cbab0c535f248087eda5c2 +SIZE (rust/crates/jiff-tzdb-0.1.5.crate) = 62215 SHA256 (rust/crates/jiff-tzdb-platform-0.1.3.crate) = 875a5a69ac2bab1a891711cf5eccbec1ce0341ea805560dcd90b7a2e925132e8 SIZE (rust/crates/jiff-tzdb-platform-0.1.3.crate) = 3179 SHA256 (rust/crates/jni-0.21.1.crate) = 1a87aa2bb7d2af34197c04845522473242e1aa17c12f4935d5856491a7fb8c97 @@ -679,8 +679,8 @@ SHA256 (rust/crates/libudev-0.2.0.crate) = ea626d3bdf40a1c5aee3bcd4f40826970cae8 SIZE (rust/crates/libudev-0.2.0.crate) = 8833 SHA256 (rust/crates/libudev-sys-0.1.4.crate) = 3c8469b4a23b962c1396b9b451dda50ef5b283e8dd309d69033475fa9b334324 SIZE (rust/crates/libudev-sys-0.1.4.crate) = 6177 -SHA256 (rust/crates/libz-rs-sys-0.5.3.crate) = 8b484ba8d4f775eeca644c452a56650e544bf7e617f1d170fe7298122ead5222 -SIZE (rust/crates/libz-rs-sys-0.5.3.crate) = 47421 +SHA256 (rust/crates/libz-rs-sys-0.5.4.crate) = 15413ef615ad868d4d65dce091cb233b229419c7c0c4bcaa746c0901c49ff39c +SIZE (rust/crates/libz-rs-sys-0.5.4.crate) = 47952 SHA256 (rust/crates/linux-raw-sys-0.4.15.crate) = d26c52dbd32dccf2d10cac7725f8eae5296885fb5703b261f7d0a0739ec807ab SIZE (rust/crates/linux-raw-sys-0.4.15.crate) = 2150898 SHA256 (rust/crates/linux-raw-sys-0.11.0.crate) = df1d3c3b53da64cf5760482273a98e575c651a67eec7f77df96b5b642de8f039 @@ -1089,8 +1089,8 @@ SHA256 (rust/crates/sha2-0.11.0-rc.3.crate) = 19d43dc0354d88b791216bb5c1bfbb60c0 SIZE (rust/crates/sha2-0.11.0-rc.3.crate) = 33258 SHA256 (rust/crates/sharded-slab-0.1.7.crate) = f40ca3c46823713e0d4209592e8d6e826aa57e928f09752619fc696c499637f6 SIZE (rust/crates/sharded-slab-0.1.7.crate) = 58227 -SHA256 (rust/crates/shell-words-1.1.0.crate) = 24188a676b6ae68c3b2cb3a01be17fbf7240ce009799bb56d5b1409051e78fde -SIZE (rust/crates/shell-words-1.1.0.crate) = 9871 +SHA256 (rust/crates/shell-words-1.1.1.crate) = dc6fe69c597f9c37bfeeeeeb33da3530379845f10be461a66d16d03eca2ded77 +SIZE (rust/crates/shell-words-1.1.1.crate) = 10012 SHA256 (rust/crates/shellexpand-3.1.1.crate) = 8b1fdf65dd6331831494dd616b30351c38e96e45921a27745cf98490458b90bb SIZE (rust/crates/shellexpand-3.1.1.crate) = 25904 SHA256 (rust/crates/shlex-1.3.0.crate) = 0fda2ff0d084019ba4d7c6f371c95d8fd75ce3524c3cb8fb653a3023f6323e64 @@ -1119,8 +1119,8 @@ SHA256 (rust/crates/spki-0.7.3.crate) = d91ed6c858b01f942cd56b37a94b3e0a17982903 SIZE (rust/crates/spki-0.7.3.crate) = 16409 SHA256 (rust/crates/sptr-0.3.2.crate) = 3b9b39299b249ad65f3b7e96443bad61c02ca5cd3589f46cb6d610a0fd6c0d6a SIZE (rust/crates/sptr-0.3.2.crate) = 14598 -SHA256 (rust/crates/sshkey-attest-0.5.3.crate) = 72965d596d924d77abcd2d59c15ef8f58f325c71a49dc38dcd1462471357be70 -SIZE (rust/crates/sshkey-attest-0.5.3.crate) = 19148 +SHA256 (rust/crates/sshkey-attest-0.5.4.crate) = e96ed05af7b994897d460de87333974147e206a45f791994a44c226b0ab9f846 +SIZE (rust/crates/sshkey-attest-0.5.4.crate) = 19179 SHA256 (rust/crates/sshkeys-0.3.4.crate) = 43dd24cd9c70e02c48882a32b74e784d8f2aaddba2a3a30c403d5a6e416fa117 SIZE (rust/crates/sshkeys-0.3.4.crate) = 33720 SHA256 (rust/crates/stable_deref_trait-1.2.1.crate) = 6ce2be8dc25455e1f91df71bfa12ad37d7af1092ae736f3a6cd0e37bc7810596 @@ -1309,16 +1309,16 @@ SHA256 (rust/crates/web-sys-0.3.83.crate) = 9b32828d774c412041098d182a8b38b16ea8 SIZE (rust/crates/web-sys-0.3.83.crate) = 644431 SHA256 (rust/crates/web-time-1.1.0.crate) = 5a6580f308b1fad9207618087a65c04e7a10bc77e02c8e84e9b00dd4b12fa0bb SIZE (rust/crates/web-time-1.1.0.crate) = 18026 -SHA256 (rust/crates/webauthn-attestation-ca-0.5.3.crate) = f77a2892ec44032e6c48dad9aad1b05fada09c346ada11d8d32db119b4b4f205 -SIZE (rust/crates/webauthn-attestation-ca-0.5.3.crate) = 6571 -SHA256 (rust/crates/webauthn-authenticator-rs-0.5.3.crate) = 45f8fe3811c8d6c6830d263452670a608fd4dcdfc481349bd4d1e6a46d6c7a0f -SIZE (rust/crates/webauthn-authenticator-rs-0.5.3.crate) = 211387 -SHA256 (rust/crates/webauthn-rs-0.5.3.crate) = eb7c3a2f9c8bddd524e47bbd427bcf3a28aa074de55d74470b42a91a41937b8e -SIZE (rust/crates/webauthn-rs-0.5.3.crate) = 27818 -SHA256 (rust/crates/webauthn-rs-core-0.5.3.crate) = 19f1d80f3146382529fe70a3ab5d0feb2413a015204ed7843f9377cd39357fc4 -SIZE (rust/crates/webauthn-rs-core-0.5.3.crate) = 122784 -SHA256 (rust/crates/webauthn-rs-proto-0.5.3.crate) = 9e786894f89facb9aaf1c5f6559670236723c98382e045521c76f3d5ca5047bd -SIZE (rust/crates/webauthn-rs-proto-0.5.3.crate) = 18559 +SHA256 (rust/crates/webauthn-attestation-ca-0.5.4.crate) = fafcf13f7dc1fb292ed4aea22cdd3757c285d7559e9748950ee390249da4da6b +SIZE (rust/crates/webauthn-attestation-ca-0.5.4.crate) = 6559 +SHA256 (rust/crates/webauthn-authenticator-rs-0.5.4.crate) = 78b41ed08aba475a969094226ae0691a286686210ae497bb2c5d0ed722d8d526 +SIZE (rust/crates/webauthn-authenticator-rs-0.5.4.crate) = 212226 +SHA256 (rust/crates/webauthn-rs-0.5.4.crate) = 1b24d082d3360258fefb6ffe56123beef7d6868c765c779f97b7a2fcf06727f8 +SIZE (rust/crates/webauthn-rs-0.5.4.crate) = 27549 +SHA256 (rust/crates/webauthn-rs-core-0.5.4.crate) = 15784340a24c170ce60567282fb956a0938742dbfbf9eff5df793a686a009b8b +SIZE (rust/crates/webauthn-rs-core-0.5.4.crate) = 122828 +SHA256 (rust/crates/webauthn-rs-proto-0.5.4.crate) = 16a1fb2580ce73baa42d3011a24de2ceab0d428de1879ece06e02e8c416e497c +SIZE (rust/crates/webauthn-rs-proto-0.5.4.crate) = 18573 SHA256 (rust/crates/webdriver-0.53.0.crate) = 91d53921e1bef27512fa358179c9a22428d55778d2c2ae3c5c37a52b82ce6e92 SIZE (rust/crates/webdriver-0.53.0.crate) = 41533 SHA256 (rust/crates/webpki-root-certs-0.26.11.crate) = 75c7f0ef91146ebfb530314f5f1d24528d7f0767efbfd31dce919275413e393e @@ -1499,8 +1499,8 @@ SHA256 (rust/crates/zerovec-derive-0.11.2.crate) = eadce39539ca5cb3985590102671f SIZE (rust/crates/zerovec-derive-0.11.2.crate) = 21421 SHA256 (rust/crates/zip-3.0.0.crate) = 12598812502ed0105f607f941c386f43d441e00148fce9dec3ca5ffb0bde9308 SIZE (rust/crates/zip-3.0.0.crate) = 112450 -SHA256 (rust/crates/zlib-rs-0.5.3.crate) = 36134c44663532e6519d7a6dfdbbe06f6f8192bde8ae9ed076e9b213f0e31df7 -SIZE (rust/crates/zlib-rs-0.5.3.crate) = 206418 +SHA256 (rust/crates/zlib-rs-0.5.4.crate) = 51f936044d677be1a1168fae1d03b583a285a5dd9d8cbf7b24c23aa1fc775235 +SIZE (rust/crates/zlib-rs-0.5.4.crate) = 206980 SHA256 (rust/crates/zopfli-0.8.3.crate) = f05cd8797d63865425ff89b5c4a48804f35ba0ce8d125800027ad6017d2b5249 SIZE (rust/crates/zopfli-0.8.3.crate) = 51589 SHA256 (rust/crates/zune-core-0.5.0.crate) = 111f7d9820f05fd715df3144e254d6fc02ee4088b0644c0ffd0efc9e6d9d2773 @@ -1509,5 +1509,5 @@ SHA256 (rust/crates/zune-jpeg-0.5.6.crate) = f520eebad972262a1dde0ec455bce4f8b29 SIZE (rust/crates/zune-jpeg-0.5.6.crate) = 81203 SHA256 (rust/crates/zxcvbn-3.1.0.crate) = ad76e35b00ad53688d6b90c431cabe3cbf51f7a4a154739e04b63004ab1c736c SIZE (rust/crates/zxcvbn-3.1.0.crate) = 424952 -SHA256 (kanidm-kanidm-v1.8.4_GH0.tar.gz) = d0876402acc9515f68f001f95d1704448b0702db652ec1b44ff042425aca5d0b -SIZE (kanidm-kanidm-v1.8.4_GH0.tar.gz) = 8915325 +SHA256 (kanidm-kanidm-v1.8.5_GH0.tar.gz) = 3ca020a20ff54967498b3b4f5174e2a0e5ff04ea9d326480568ac3c084a441a4 +SIZE (kanidm-kanidm-v1.8.5_GH0.tar.gz) = 8915443 diff --git a/security/keysmith/distinfo b/security/keysmith/distinfo index 4dce0e73627c..22f240e9b82d 100644 --- a/security/keysmith/distinfo +++ b/security/keysmith/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1762264759 -SHA256 (KDE/release-service/25.08.3/keysmith-25.08.3.tar.xz) = c188bcecbe0657b7cd53a6dc64a2f2cafbde147e7c9bd2c90b5845afd08c1525 -SIZE (KDE/release-service/25.08.3/keysmith-25.08.3.tar.xz) = 237876 +TIMESTAMP = 1765478759 +SHA256 (KDE/release-service/25.12.0/keysmith-25.12.0.tar.xz) = 2a12250a26c11825e24a50ceb2ea538f85f9a51bd1722e5d6554da725f6dce90 +SIZE (KDE/release-service/25.12.0/keysmith-25.12.0.tar.xz) = 237840 diff --git a/security/kgpg/distinfo b/security/kgpg/distinfo index ea99f3ce5b34..cb83c452fd9a 100644 --- a/security/kgpg/distinfo +++ b/security/kgpg/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1762264761 -SHA256 (KDE/release-service/25.08.3/kgpg-25.08.3.tar.xz) = e41e9f6e146886534cd86f149e5816ca2cf66dabc7b824f0f35006931842f8af -SIZE (KDE/release-service/25.08.3/kgpg-25.08.3.tar.xz) = 3049876 +TIMESTAMP = 1765478762 +SHA256 (KDE/release-service/25.12.0/kgpg-25.12.0.tar.xz) = 5e322ebd49571fa381c4f1b99b3ef441d7ffaedc3564e38f355fc536a485a5e0 +SIZE (KDE/release-service/25.12.0/kgpg-25.12.0.tar.xz) = 3049216 diff --git a/security/kleopatra/distinfo b/security/kleopatra/distinfo index 318c574c9f70..4c9b37942936 100644 --- a/security/kleopatra/distinfo +++ b/security/kleopatra/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1762264764 -SHA256 (KDE/release-service/25.08.3/kleopatra-25.08.3.tar.xz) = 3c2f65207ecacd6f72631e832a93342a6c43260e897afcc285d1803b51cc6766 -SIZE (KDE/release-service/25.08.3/kleopatra-25.08.3.tar.xz) = 2881980 +TIMESTAMP = 1765478764 +SHA256 (KDE/release-service/25.12.0/kleopatra-25.12.0.tar.xz) = 035c977d62e6b263587b969e7defa318b017bb9a60b73cd81299075358d2bbda +SIZE (KDE/release-service/25.12.0/kleopatra-25.12.0.tar.xz) = 2886484 diff --git a/security/kpkpass/distinfo b/security/kpkpass/distinfo index 1f6f5b9a255f..b9e82174557b 100644 --- a/security/kpkpass/distinfo +++ b/security/kpkpass/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1762264766 -SHA256 (KDE/release-service/25.08.3/kpkpass-25.08.3.tar.xz) = 3802a6f23edd901be975c03b3eb63e478e9384386d883b2289fb598edf3e758b -SIZE (KDE/release-service/25.08.3/kpkpass-25.08.3.tar.xz) = 31892 +TIMESTAMP = 1765478767 +SHA256 (KDE/release-service/25.12.0/kpkpass-25.12.0.tar.xz) = 592cfa16e8f7c7ab69c7498c0facde972c5d98e9cf3e199d9f5d3da99b3f53f6 +SIZE (KDE/release-service/25.12.0/kpkpass-25.12.0.tar.xz) = 34564 diff --git a/security/kpkpass/pkg-plist b/security/kpkpass/pkg-plist index 2a9900509815..057277725a45 100644 --- a/security/kpkpass/pkg-plist +++ b/security/kpkpass/pkg-plist @@ -3,6 +3,7 @@ include/KPim6/KPkPass/BoardingPass include/KPim6/KPkPass/Field include/KPim6/KPkPass/Location include/KPim6/KPkPass/Pass +include/KPim6/KPkPass/Passes include/KPim6/KPkPass/barcode.h include/KPim6/KPkPass/boardingpass.h include/KPim6/KPkPass/field.h @@ -10,6 +11,7 @@ include/KPim6/KPkPass/kpkpass_export.h include/KPim6/KPkPass/kpkpass_version.h include/KPim6/KPkPass/location.h include/KPim6/KPkPass/pass.h +include/KPim6/KPkPass/passes.h lib/cmake/KPim6PkPass/KPim6PkPassConfig.cmake lib/cmake/KPim6PkPass/KPim6PkPassConfigVersion.cmake lib/cmake/KPim6PkPass/KPim6PkPassTargets-%%CMAKE_BUILD_TYPE%%.cmake @@ -17,4 +19,9 @@ lib/cmake/KPim6PkPass/KPim6PkPassTargets.cmake lib/libKPim6PkPass.so lib/libKPim6PkPass.so.6 lib/libKPim6PkPass.so.%%KDE_APPLICATIONS_SHLIB_VER%% +%%QT_QMLDIR%%/org/kde/pkpass/kde-qmlmodule.version +%%QT_QMLDIR%%/org/kde/pkpass/kpkpassqmlplugin.qmltypes +%%QT_QMLDIR%%/org/kde/pkpass/libkpkpassqmlplugin.so +%%QT_QMLDIR%%/org/kde/pkpass/qmldir +share/mime/packages/application-vnd-apple-pkpasses.xml share/qlogging-categories6/org_kde_kpkpass.categories diff --git a/security/kwalletmanager/distinfo b/security/kwalletmanager/distinfo index 147f8f04c7a5..22d126dfd3a9 100644 --- a/security/kwalletmanager/distinfo +++ b/security/kwalletmanager/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1762264769 -SHA256 (KDE/release-service/25.08.3/kwalletmanager-25.08.3.tar.xz) = 54b6b63eb55fd554d31215319c20bbafd2e1bf948ab6b4fa4d84b5614b6dc52d -SIZE (KDE/release-service/25.08.3/kwalletmanager-25.08.3.tar.xz) = 1053124 +TIMESTAMP = 1765478769 +SHA256 (KDE/release-service/25.12.0/kwalletmanager-25.12.0.tar.xz) = 5f652fe962539d891ddb9cc3eaa87e0ac9cc13408d976586e3391cf831c49d78 +SIZE (KDE/release-service/25.12.0/kwalletmanager-25.12.0.tar.xz) = 1053004 diff --git a/security/libgpg-error/Makefile b/security/libgpg-error/Makefile index 7647c8d654cc..5246259bef82 100644 --- a/security/libgpg-error/Makefile +++ b/security/libgpg-error/Makefile @@ -1,5 +1,5 @@ PORTNAME= libgpg-error -DISTVERSION= 1.57 +DISTVERSION= 1.58 CATEGORIES= security devel MASTER_SITES= GNUPG diff --git a/security/libgpg-error/distinfo b/security/libgpg-error/distinfo index 6f56a789e987..504ee7c0c468 100644 --- a/security/libgpg-error/distinfo +++ b/security/libgpg-error/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1765445283 -SHA256 (libgpg-error-1.57.tar.bz2) = ab807c81fbd2b8e1d6e3377383be802147c08818f87a82e87f85e5939c939def -SIZE (libgpg-error-1.57.tar.bz2) = 1123531 +TIMESTAMP = 1765611004 +SHA256 (libgpg-error-1.58.tar.bz2) = f943aea9a830a8bd938e5124b579efaece24a3225ff4c3d27611a80ce1260c27 +SIZE (libgpg-error-1.58.tar.bz2) = 1123899 diff --git a/security/libgpg-error/pkg-plist b/security/libgpg-error/pkg-plist index 3663d767b79f..25837d026902 100644 --- a/security/libgpg-error/pkg-plist +++ b/security/libgpg-error/pkg-plist @@ -7,7 +7,7 @@ include/gpgrt.h lib/libgpg-error.a lib/libgpg-error.so lib/libgpg-error.so.0 -lib/libgpg-error.so.0.41.0 +lib/libgpg-error.so.0.41.1 libdata/pkgconfig/gpg-error.pc share/man/man1/gpg-error-config.1.gz share/man/man1/gpgrt-config.1.gz diff --git a/security/libkleo/distinfo b/security/libkleo/distinfo index 4edc6286f620..31a2ad83fe47 100644 --- a/security/libkleo/distinfo +++ b/security/libkleo/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1762264771 -SHA256 (KDE/release-service/25.08.3/libkleo-25.08.3.tar.xz) = 0553b18a295cb5fbff5fae99034a782ae4d07d43d2c1637eaf67a31ca650b816 -SIZE (KDE/release-service/25.08.3/libkleo-25.08.3.tar.xz) = 668176 +TIMESTAMP = 1765478772 +SHA256 (KDE/release-service/25.12.0/libkleo-25.12.0.tar.xz) = ffba9bd563ed23baddc62474760afa262a201064ce1f514c1f269103f135aad9 +SIZE (KDE/release-service/25.12.0/libkleo-25.12.0.tar.xz) = 678384 diff --git a/security/libkleo/pkg-plist b/security/libkleo/pkg-plist index 3d504d3d50ec..d3998f2dfd32 100644 --- a/security/libkleo/pkg-plist +++ b/security/libkleo/pkg-plist @@ -1,5 +1,6 @@ etc/xdg/libkleopatrarc include/KPim6/Libkleo/Libkleo/Algorithm +include/KPim6/Libkleo/Libkleo/AnimatedExpander include/KPim6/Libkleo/Libkleo/ApplicationPaletteWatcher include/KPim6/Libkleo/Libkleo/Assuan include/KPim6/Libkleo/Libkleo/AuditLogEntry @@ -28,6 +29,7 @@ include/KPim6/Libkleo/Libkleo/ExpiryCheckerConfig include/KPim6/Libkleo/Libkleo/ExpiryCheckerSettings include/KPim6/Libkleo/Libkleo/FileNameRequester include/KPim6/Libkleo/Libkleo/FileSystemWatcher +include/KPim6/Libkleo/Libkleo/FormTextInput include/KPim6/Libkleo/Libkleo/Formatting include/KPim6/Libkleo/Libkleo/GnuPG include/KPim6/Libkleo/Libkleo/Hex @@ -78,6 +80,7 @@ include/KPim6/Libkleo/Libkleo/UserIDProxyModel include/KPim6/Libkleo/Libkleo/UserIDSelectionCombo include/KPim6/Libkleo/Libkleo/Validation include/KPim6/Libkleo/libkleo/algorithm.h +include/KPim6/Libkleo/libkleo/animatedexpander.h include/KPim6/Libkleo/libkleo/applicationpalettewatcher.h include/KPim6/Libkleo/libkleo/assuan.h include/KPim6/Libkleo/libkleo/auditlogentry.h @@ -109,6 +112,7 @@ include/KPim6/Libkleo/libkleo/expirycheckersettings.h include/KPim6/Libkleo/libkleo/filenamerequester.h include/KPim6/Libkleo/libkleo/filesystemwatcher.h include/KPim6/Libkleo/libkleo/formatting.h +include/KPim6/Libkleo/libkleo/formtextinput.h include/KPim6/Libkleo/libkleo/gnupg.h include/KPim6/Libkleo/libkleo/hex.h include/KPim6/Libkleo/libkleo/kconfigbasedkeyfilter.h diff --git a/security/qt-sudo/Makefile b/security/qt-sudo/Makefile index 8352e8d014d6..b2c038b94c32 100644 --- a/security/qt-sudo/Makefile +++ b/security/qt-sudo/Makefile @@ -1,5 +1,5 @@ PORTNAME= qt-sudo -DISTVERSION= 2.2.0 +DISTVERSION= 2.3.0 CATEGORIES= security MASTER_SITES= https://github.com/aarnt/${PORTNAME}/releases/download/v${DISTVERSION}/ diff --git a/security/qt-sudo/distinfo b/security/qt-sudo/distinfo index f0b0b52402c9..4530f3a57484 100644 --- a/security/qt-sudo/distinfo +++ b/security/qt-sudo/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1757877523 -SHA256 (qt-sudo-2.2.0.tar.gz) = c79b0662da4b51b70d8ac92ff996062638d579097d7798f744681c891c2142bf -SIZE (qt-sudo-2.2.0.tar.gz) = 38284 +TIMESTAMP = 1765636178 +SHA256 (qt-sudo-2.3.0.tar.gz) = 7e88291272844e0bed96d820075b3eb05bef70d4d3da312bf0dfea9935ae71b7 +SIZE (qt-sudo-2.3.0.tar.gz) = 45310 diff --git a/security/vuxml/vuln/2025.xml b/security/vuxml/vuln/2025.xml index 767b18947386..a8de633d3221 100644 --- a/security/vuxml/vuln/2025.xml +++ b/security/vuxml/vuln/2025.xml @@ -1,3 +1,146 @@ + <vuln vid="7a1bd1ca-cf40-41e2-9c5f-143a0d4b17af"> + <topic>github-release-monitor -- multiple vulnerabilities</topic> + <affects> + <package> + <name>github-release-monitor</name> + <range><lt>1.4.1</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>https://nextjs.org/blog/security-update-2025-12-11 reports:</p> + <blockquote cite="https://nextjs.org/blog/security-update-2025-12-11"> + <h1>Description</h1> + <h5>(Medium) Source Code Exposure: CVE-2025-55183</h5> + <p>A specifically crafted HTTP request can cause a Server Function to + return the compiled source code of other Server Functions in your + application. This could reveal business logic. Secrets could also be exposed + if they are defined directly in your code (rather than accessed via environment + variables at runtime) and referenced within a Server Function. + Depending on your bundler configuration, these values may be inlined into the + compiled function output.</p> + <h5>(High) Denial of Service: CVE-2025-55184</h5> + <p>A specifically crafted HTTP request can be sent to any App Router endpoint + that, when deserialized, can cause an infinite loop that hangs the server + process and prevents future HTTP requests from being served.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2025-55183</cvename> + <cvename>CVE-2025-55184</cvename> + <url>https://nextjs.org/blog/security-update-2025-12-11</url> + </references> + <dates> + <discovery>2025-12-11</discovery> + <entry>2025-12-13</entry> + </dates> + </vuln> + + <vuln vid="64bec4c7-d785-11f0-a1c0-0050569f0b83"> + <topic>www/varnish-libvmod-digest -- base64 decoding vulnerability</topic> + <affects> + <package> + <name>varnish-libvmod-digest</name> + <range><lt>1.0.3</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>varnish developers report:</p> + <blockquote cite="https://vinyl-cache.org/security/VSV00012.html"> + <p>Common usage of vmod-digest is for basic HTTP authentication, in + which case it may be possible for an attacker to circumvent the + authentication check. If the decoded result string is somehow + being made visible to the attacker (for example the result of + the decoding is added to a response header), then there is the + potential for information disclosure from reading out of band + workspace data.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2023-41104</cvename> + <url>https://vinyl-cache.org/security/VSV00012.html</url> + </references> + <dates> + <discovery>2023-08-17</discovery> + <entry>2025-12-12</entry> + </dates> + </vuln> + + <vuln vid="2956aba3-1fcb-4c39-9cea-d88a46a3bf93"> + <topic>jenkins -- multiple vulnerabilities</topic> + <affects> + <package> + <name>jenkins</name> + <range><lt>2.541</lt></range> + </package> + <package> + <name>jenkins-lts</name> + <range><lt>2.528.3</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Jenkins Security Advisory:</p> + <blockquote cite="https://www.jenkins.io/security/advisory/2025-12-10/"> + <h1>Description</h1> + <h5>(High) SECURITY-3630 / CVE-2025-67635</h5> + <p>Denial of service vulnerability in HTTP-based CLI</p> + <h5>(Medium) SECURITY-1809 / CVE-2025-67636</h5> + <p>Missing permission check on password fields</p> + <h5>(Medium) SECURITY-783 / CVE-2025-67637 (storage), CVE-2025-67638 (masking)</h5> + <p>Build authorization token stored and displayed in plain text</p> + <h5>(Low) SECURITY-1166 / CVE-2025-67639</h5> + <p>CSRF vulnerability on the login form</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2025-67635</cvename> + <cvename>CVE-2025-67636</cvename> + <cvename>CVE-2025-67637</cvename> + <cvename>CVE-2025-67638</cvename> + <cvename>CVE-2025-67639</cvename> + <url>https://www.jenkins.io/security/advisory/2025-12-10/</url> + </references> + <dates> + <discovery>2025-12-10</discovery> + <entry>2025-12-12</entry> + </dates> + </vuln> + + <vuln vid="1adf9ece-d4a3-11f0-83a2-843a4b343614"> + <topic>c-ares -- Use After Free</topic> + <affects> + <package> + <name>c-ares</name> + <range><ge>1.32.3</ge><lt>1.34.6</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>https://github.com/c-ares/c-ares/security/advisories/GHSA-jq53-42q6-pqr5 reports:</p> + <blockquote cite="https://github.com/c-ares/c-ares/security/advisories/GHSA-jq53-42q6-pqr5"> + <p>c-ares is an asynchronous resolver library. Versions + 1.32.3 through 1.34.5 terminate a query after maximum + attempts when using read_answer() and process_answer(), + which can cause a Denial of Service. This issue is fixed in + version 1.34.6.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2025-62408</cvename> + <url>https://cveawg.mitre.org/api/cve/CVE-2025-62408</url> + </references> + <dates> + <discovery>2025-12-08</discovery> + <entry>2025-12-09</entry> + </dates> + </vuln> + <vuln vid="ff25a369-d730-11f0-a15a-a8a1599412c6"> <topic>chromium -- multiple security fixes</topic> <affects> diff --git a/security/xray-core/Makefile b/security/xray-core/Makefile index f05694d43282..640655ebc505 100644 --- a/security/xray-core/Makefile +++ b/security/xray-core/Makefile @@ -1,10 +1,9 @@ PORTNAME= xray-core DISTVERSIONPREFIX= v -DISTVERSION= 25.7.26 -PORTREVISION= 6 +DISTVERSION= 25.12.8 CATEGORIES= security -MASTER_SITES= https://github.com/v2fly/geoip/releases/download/202507050144/:geoip \ - https://github.com/v2fly/domain-list-community/releases/download/20250627153051/:geosite +MASTER_SITES= https://github.com/v2fly/geoip/releases/download/202512050148/:geoip \ + https://github.com/v2fly/domain-list-community/releases/download/20251212112114/:geosite DISTFILES= geoip.dat:geoip \ dlc.dat:geosite EXTRACT_ONLY= XTLS-Xray-core-v${DISTVERSION}_GH0.tar.gz @@ -16,7 +15,7 @@ WWW= https://github.com/XTLS/Xray-core LICENSE= MPL20 LICENSE_FILE= ${WRKSRC}/LICENSE -USES= go:1.24,modules +USES= go:1.25,modules USE_GITHUB= yes GH_ACCOUNT= XTLS GH_PROJECT= Xray-core @@ -35,8 +34,8 @@ USERS= v2ray GROUPS= v2ray post-install: - ${MKDIR} ${STAGEDIR}${ETCDIR} - ${MKDIR} ${STAGEDIR}${DATADIR} + ${MKDIR} ${STAGEDIR}${ETCDIR} \ + ${STAGEDIR}${DATADIR} ${INSTALL_DATA} ${DISTDIR}/${DIST_SUBDIR}/geoip.dat ${STAGEDIR}${DATADIR}/geoip.dat ${INSTALL_DATA} ${DISTDIR}/${DIST_SUBDIR}/dlc.dat ${STAGEDIR}${DATADIR}/geosite.dat ${INSTALL_DATA} ${FILESDIR}/*.json.sample ${STAGEDIR}${ETCDIR}/ diff --git a/security/xray-core/distinfo b/security/xray-core/distinfo index b45dbb2b62d6..036b64d94dfc 100644 --- a/security/xray-core/distinfo +++ b/security/xray-core/distinfo @@ -1,9 +1,9 @@ -TIMESTAMP = 1754196929 -SHA256 (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/geoip.dat) = d77289a7465b6e59df39a2d46bd02b30b4fa7dd70939c13d431fd2bd8f448e10 -SIZE (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/geoip.dat) = 19714962 -SHA256 (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/dlc.dat) = 01dae2a9c31b5c74ba7e54d8d51e0060688ed22da493eaf09f6eeeec89db395e -SIZE (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/dlc.dat) = 2322647 -SHA256 (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/go.mod) = 3cf5ece8975cb15c011cd8246c89278ca78ce945f8f2e7d8a1e042a23c93f5e4 -SIZE (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/go.mod) = 2260 -SHA256 (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/XTLS-Xray-core-v25.7.26_GH0.tar.gz) = 99f9bc67fd22a6e4fde277a4ba05fd873146154851aeebb6b4f406a59d3b0bc3 -SIZE (go/security_xray-core/XTLS-Xray-core-v25.7.26_GH0/XTLS-Xray-core-v25.7.26_GH0.tar.gz) = 689474 +TIMESTAMP = 1765588665 +SHA256 (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/geoip.dat) = 6878dbacfb1fcb1ee022f63ed6934bcefc95a3c4ba10c88f1131fb88dbf7c337 +SIZE (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/geoip.dat) = 19525512 +SHA256 (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/dlc.dat) = 0a52ba2eeeef6fe9bd1f96238a51ff6ccb519436c5f7a9f021460fef722e84c3 +SIZE (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/dlc.dat) = 2034759 +SHA256 (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/go.mod) = 91b99e5671bbe96ace938dd264fe4d80e5f249ce0681e9e05185b31e176926e9 +SIZE (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/go.mod) = 2223 +SHA256 (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/XTLS-Xray-core-v25.12.8_GH0.tar.gz) = d4519b2d9bb1871f4d7612aa7a8db1c451573b5a44ac824219bb44d63f404e61 +SIZE (go/security_xray-core/XTLS-Xray-core-v25.12.8_GH0/XTLS-Xray-core-v25.12.8_GH0.tar.gz) = 712436 |