1 |
commit: 69c7c3a6972811fa55db4e302dc11fd72dd8eacc |
2 |
Author: Fabian Groffen <grobian <AT> gentoo <DOT> org> |
3 |
AuthorDate: Thu Sep 10 08:21:06 2020 +0000 |
4 |
Commit: Fabian Groffen <grobian <AT> gentoo <DOT> org> |
5 |
CommitDate: Thu Sep 10 08:21:06 2020 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=69c7c3a6 |
7 |
|
8 |
mail-filter/opendmarc-1.3.3: version bump for security, bug #734158 |
9 |
|
10 |
Bug: https://bugs.gentoo.org/734158 |
11 |
Package-Manager: Portage-2.3.103, Repoman-2.3.23 |
12 |
Signed-off-by: Fabian Groffen <grobian <AT> gentoo.org> |
13 |
|
14 |
mail-filter/opendmarc/Manifest | 1 + |
15 |
.../files/opendmarc-1.3.3-CVE-2020-12460.patch | 41 ++++++++++++ |
16 |
mail-filter/opendmarc/opendmarc-1.3.3.ebuild | 78 ++++++++++++++++++++++ |
17 |
3 files changed, 120 insertions(+) |
18 |
|
19 |
diff --git a/mail-filter/opendmarc/Manifest b/mail-filter/opendmarc/Manifest |
20 |
index fab6b479efb..905f6981f43 100644 |
21 |
--- a/mail-filter/opendmarc/Manifest |
22 |
+++ b/mail-filter/opendmarc/Manifest |
23 |
@@ -1 +1,2 @@ |
24 |
DIST opendmarc-1.3.2.tar.gz 593448 BLAKE2B 80f47a82e38c6cdc5791a695485262c50e9363b81537a52d7af204bd6a830df6eea9e9b6f710b72b7934c3ab7df800def7d4b3e54f53b8908a7f1b42bcea2b2d SHA512 6045fb7d2be8f0ffdeca07324857d92908a41c6792749017c2fcc1058f05f55317b1919c67c780827dd7094ec8fff2e1fa4aeb5bab7ff7461537957af2652748 |
25 |
+DIST opendmarc-1.3.3.tar.gz 575319 BLAKE2B 72dae5553fea9a51d860aaac6d85171a245584a74134df2249217a88f3da04c4eb518141f6342e281c6a9186345d69a34b585dc3ed18bdb53313374db505f4f5 SHA512 bb4bf8e3ad2d1732b07e55316819d4fd708e529b54a336d7d00763e13bfc62580bb1b30f132fa786dbca15e526e8dd5e146c7be454e1c42714a9f57126fc5e12 |
26 |
|
27 |
diff --git a/mail-filter/opendmarc/files/opendmarc-1.3.3-CVE-2020-12460.patch b/mail-filter/opendmarc/files/opendmarc-1.3.3-CVE-2020-12460.patch |
28 |
new file mode 100644 |
29 |
index 00000000000..334c11d5302 |
30 |
--- /dev/null |
31 |
+++ b/mail-filter/opendmarc/files/opendmarc-1.3.3-CVE-2020-12460.patch |
32 |
@@ -0,0 +1,41 @@ |
33 |
+From 50d28af25d8735504b6103537228ce7f76ad765f Mon Sep 17 00:00:00 2001 |
34 |
+From: "Murray S. Kucherawy" <msk@××××××××.org> |
35 |
+Date: Wed, 5 Aug 2020 21:56:01 +0000 |
36 |
+Subject: [PATCH] In opendmarc_xml_parse(), ensure NULL-termination of the |
37 |
+ buffer passed to opendmarc_xml(). |
38 |
+ |
39 |
+--- |
40 |
+ libopendmarc/opendmarc_xml.c | 6 +++--- |
41 |
+ 1 file changed, 3 insertions(+), 3 deletions(-) |
42 |
+ |
43 |
+diff --git a/libopendmarc/opendmarc_xml.c b/libopendmarc/opendmarc_xml.c |
44 |
+index 26bb9dc..b3ac55a 100644 |
45 |
+--- a/libopendmarc/opendmarc_xml.c |
46 |
++++ b/libopendmarc/opendmarc_xml.c |
47 |
+@@ -158,7 +158,7 @@ opendmarc_xml(char *b, size_t blen, char *e, size_t elen) |
48 |
+ if (*cp != '<') |
49 |
+ continue; |
50 |
+ ++cp; |
51 |
+- for(sp = cp; *sp != '\0'; ++sp) |
52 |
++ for (sp = cp; *sp != '\0'; ++sp) |
53 |
+ { |
54 |
+ if (*sp == '?') |
55 |
+ break; |
56 |
+@@ -546,7 +546,7 @@ opendmarc_xml_parse(char *fname, char *err_buf, size_t err_len) |
57 |
+ if (fname == NULL) |
58 |
+ { |
59 |
+ xerror = errno; |
60 |
+- (void) snprintf(err_buf, err_len, "%s: %s", fname, "File name was NULL"); |
61 |
++ (void) snprintf(err_buf, err_len, "%s", "File name was NULL"); |
62 |
+ errno = EINVAL; |
63 |
+ return NULL; |
64 |
+ } |
65 |
+@@ -572,7 +572,7 @@ opendmarc_xml_parse(char *fname, char *err_buf, size_t err_len) |
66 |
+ return NULL; |
67 |
+ } |
68 |
+ |
69 |
+- bufp = calloc(statb.st_size, 1); |
70 |
++ bufp = calloc(statb.st_size + 1, 1); |
71 |
+ if (bufp == NULL) |
72 |
+ { |
73 |
+ xerror = errno; |
74 |
|
75 |
diff --git a/mail-filter/opendmarc/opendmarc-1.3.3.ebuild b/mail-filter/opendmarc/opendmarc-1.3.3.ebuild |
76 |
new file mode 100644 |
77 |
index 00000000000..c572a891d2e |
78 |
--- /dev/null |
79 |
+++ b/mail-filter/opendmarc/opendmarc-1.3.3.ebuild |
80 |
@@ -0,0 +1,78 @@ |
81 |
+# Copyright 1999-2020 Gentoo Authors |
82 |
+# Distributed under the terms of the GNU General Public License v2 |
83 |
+ |
84 |
+EAPI=7 |
85 |
+ |
86 |
+inherit autotools user multilib systemd |
87 |
+ |
88 |
+DESCRIPTION="Open source DMARC implementation " |
89 |
+HOMEPAGE="http://www.trusteddomain.org/opendmarc/" |
90 |
+SRC_URI="https://github.com/trusteddomainproject/OpenDMARC/archive/rel-${PN}-${PV//./-}.tar.gz -> ${P}.tar.gz" |
91 |
+ |
92 |
+LICENSE="BSD" |
93 |
+SLOT="0" |
94 |
+KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
95 |
+IUSE="spf +reports static-libs" |
96 |
+ |
97 |
+DEPEND="reports? ( dev-perl/DBI ) |
98 |
+ || ( mail-filter/libmilter mail-mta/sendmail )" |
99 |
+RDEPEND="${DEPEND} |
100 |
+ reports? ( |
101 |
+ dev-perl/DBD-mysql |
102 |
+ dev-perl/HTTP-Message |
103 |
+ dev-perl/Switch |
104 |
+ ) |
105 |
+ spf? ( mail-filter/libspf2 )" |
106 |
+ |
107 |
+PATCHES=( |
108 |
+ "${FILESDIR}"/${PN}-1.3.2-multiple-From.patch |
109 |
+ "${FILESDIR}"/${PN}-1.3.3-CVE-2020-12460.patch |
110 |
+) |
111 |
+ |
112 |
+S=${WORKDIR}/OpenDMARC-rel-${PN}-${PV//./-} |
113 |
+ |
114 |
+pkg_setup() { |
115 |
+ enewgroup milter |
116 |
+ enewuser milter -1 -1 /var/lib/milter milter |
117 |
+} |
118 |
+ |
119 |
+src_prepare() { |
120 |
+ default |
121 |
+ |
122 |
+ # fix issue after they removed docs |
123 |
+ sed -i -e '/^\s\+docs\/Makefile/d' configure.ac || die |
124 |
+ |
125 |
+ eautoreconf |
126 |
+ if use !reports ; then |
127 |
+ sed -i -e '/^SUBDIRS =/s/reports//' Makefile.in || die |
128 |
+ fi |
129 |
+} |
130 |
+ |
131 |
+src_configure() { |
132 |
+ econf \ |
133 |
+ $(use_with spf) \ |
134 |
+ $(use_with spf spf2-include "${EPREFIX}"/usr/include/spf2) \ |
135 |
+ $(use_with spf spf2-lib "${EPREFIX}"/usr/$(get_libdir)) \ |
136 |
+ $(use_enable static-libs static) |
137 |
+} |
138 |
+ |
139 |
+src_install() { |
140 |
+ default |
141 |
+ |
142 |
+ use static-libs || rm -f "${ED}"/usr/$(get_libdir)/*.la |
143 |
+ |
144 |
+ newinitd "${FILESDIR}"/opendmarc.initd opendmarc |
145 |
+ newconfd "${FILESDIR}"/opendmarc.confd opendmarc |
146 |
+ systemd_dounit "${FILESDIR}/${PN}.service" |
147 |
+ |
148 |
+ dodir /etc/opendmarc |
149 |
+ |
150 |
+ # create config file |
151 |
+ sed \ |
152 |
+ -e 's:^# UserID .*$:UserID milter:' \ |
153 |
+ -e "s:^# PidFile .*:PidFile ${EPREFIX}/var/run/opendmarc/opendmarc.pid:" \ |
154 |
+ -e '/^# Socket /s:^# ::' \ |
155 |
+ "${S}"/opendmarc/opendmarc.conf.sample \ |
156 |
+ > "${ED}"/etc/opendmarc/opendmarc.conf \ |
157 |
+ || die |
158 |
+} |