From 78e0a7b82978f9b8d9f459658fe86282e46f7776 Mon Sep 17 00:00:00 2001 From: cube Date: Sun, 14 Dec 2003 15:48:36 +0000 Subject: Update to version 2.6.10. This version contains a fix for a buffer overflow vulnerability in the HTML parser code affecting "ls" command on malicious HTTP server. See http://lists.netsys.com/pipermail/full-disclosure/2003-December/014824.html Version 2.6.10 - 2003-12-11 * security fixes in html parsing code. * fxp between ftps session is now possible (unencrypted yet). * fixed a rare bug with access to freed memory in ftp. * fixed a bug in mirror, now it does not incorrectly append directory name when target directory is the root. * fixed compilation on AIX. * Polish translation updated. --- net/lftp/Makefile | 4 ++-- net/lftp/distinfo | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-) (limited to 'net/lftp') diff --git a/net/lftp/Makefile b/net/lftp/Makefile index f2e8a920137..3b9a69ef719 100644 --- a/net/lftp/Makefile +++ b/net/lftp/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.29 2003/12/03 09:06:56 salo Exp $ +# $NetBSD: Makefile,v 1.30 2003/12/14 15:48:36 cube Exp $ # -DISTNAME= lftp-2.6.9 +DISTNAME= lftp-2.6.10 CATEGORIES= net MASTER_SITES= ftp://ftp.yars.free.net/pub/software/unix/net/ftp/client/lftp/ \ ftp://ftp.yars.free.net/pub/software/unix/net/ftp/client/lftp/old/ diff --git a/net/lftp/distinfo b/net/lftp/distinfo index c36c0fcb631..319075bdfca 100644 --- a/net/lftp/distinfo +++ b/net/lftp/distinfo @@ -1,7 +1,7 @@ -$NetBSD: distinfo,v 1.13 2003/12/03 09:06:56 salo Exp $ +$NetBSD: distinfo,v 1.14 2003/12/14 15:48:36 cube Exp $ -SHA1 (lftp-2.6.9.tar.bz2) = b271992454a57836134a5b3b36562769d918d256 -Size (lftp-2.6.9.tar.bz2) = 1197695 bytes +SHA1 (lftp-2.6.10.tar.bz2) = 78a7e726401278c847b78b190cadc6d8a6243b23 +Size (lftp-2.6.10.tar.bz2) = 1198513 bytes SHA1 (patch-aa) = 007249b3b1235cc8b163f95324ad94ac75284915 SHA1 (patch-ab) = 4312c2878b6e553bdadfab8528906f811cd9d381 SHA1 (patch-ac) = 6df164610322c4dcfa82b8cb92e6a0845a75aee2 -- cgit v1.2.3