[pkgsrc/trunk]: pkgsrc/net/lftp SECURITY: add a patch to prevent saving of un...

[bsiegert <bsiegert%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/74b1865a79ca
branches:  trunk
changeset: 648868:74b1865a79ca
user:      bsiegert <bsiegert%pkgsrc.org@localhost>
date:      Sat Mar 21 20:04:39 2015 +0000

description:
SECURITY: add a patch to prevent saving of unknown host keys without user
intervention.
Bump PKGREVISION.

diffstat:

 net/lftp/Makefile                         |   4 ++--
 net/lftp/distinfo                         |   3 ++-
 net/lftp/patches/patch-src_SSH__Access.cc |  16 ++++++++++++++++
 3 files changed, 20 insertions(+), 3 deletions(-)

diffs (48 lines):

diff -r b4f27b3fd127 -r 74b1865a79ca net/lftp/Makefile
--- a/net/lftp/Makefile Sat Mar 21 19:39:44 2015 +0000
+++ b/net/lftp/Makefile Sat Mar 21 20:04:39 2015 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.108 2014/10/09 14:06:45 wiz Exp $
+# $NetBSD: Makefile,v 1.109 2015/03/21 20:04:39 bsiegert Exp $
 
 DISTNAME=      lftp-4.4.6
-PKGREVISION=   3
+PKGREVISION=   4
 CATEGORIES=    net
 MASTER_SITES=  http://ftp.yar.ru/pub/source/lftp/ \
                ftp://ftp.tuwien.ac.at/infosys/browsers/ftp/lftp/ \
diff -r b4f27b3fd127 -r 74b1865a79ca net/lftp/distinfo
--- a/net/lftp/distinfo Sat Mar 21 19:39:44 2015 +0000
+++ b/net/lftp/distinfo Sat Mar 21 20:04:39 2015 +0000
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.61 2013/05/18 20:23:03 adam Exp $
+$NetBSD: distinfo,v 1.62 2015/03/21 20:04:39 bsiegert Exp $
 
 SHA1 (lftp-4.4.6.tar.xz) = 76a61015adec55c0d6d5eb013d4cf3f108fd96a0
 RMD160 (lftp-4.4.6.tar.xz) = 14ed0f6f5076750cb0661364a6e0a751d4512697
@@ -10,4 +10,5 @@
 SHA1 (patch-ae) = 4e2506bbadbda97feeabb208cd43c0dff70ed7d3
 SHA1 (patch-configure.ac) = 3264108e79adf637fa631dfe3787aa64c6f84743
 SHA1 (patch-lib_inttypes.in.h) = 36d4cabc7fd9beef8f93973370ef5125c38ca121
+SHA1 (patch-src_SSH__Access.cc) = 6f5f340f625bad1358b19dfdf5280ab4fef61586
 SHA1 (patch-src_module.cc) = 236fe2ce4ff215ddfe44fc86ed43ed00849280b8
diff -r b4f27b3fd127 -r 74b1865a79ca net/lftp/patches/patch-src_SSH__Access.cc
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/net/lftp/patches/patch-src_SSH__Access.cc Sat Mar 21 20:04:39 2015 +0000
@@ -0,0 +1,16 @@
+$NetBSD: patch-src_SSH__Access.cc,v 1.1 2015/03/21 20:04:39 bsiegert Exp $
+
+Do not save fingerprints of unknown hosts.
+--- src/SSH_Access.cc.orig     2015-03-21 19:58:58.000000000 +0000
++++ src/SSH_Access.cc
+@@ -69,8 +69,8 @@ int SSH_Access::HandleSSHMessage()
+       }
+       if(s>=y_len && !strncasecmp(b+s-y_len,y,y_len))
+       {
+-       pty_recv_buf->Put("yes\n");
+-       pty_send_buf->Put("yes\n");
++       pty_recv_buf->Put("no\n");
++       pty_send_buf->Put("no\n");
+        return m;
+       }
+       if(!received_greeting && recv_buf->Size()>0)