aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorNatanael Copa <ncopa@alpinelinux.org>2023-08-08 12:37:55 +0200
committerNatanael Copa <ncopa@alpinelinux.org>2023-08-08 12:51:31 +0200
commitcffc777f86c1f6455dfa36dc5118e9176b3c9ed0 (patch)
tree3e67d07ad04cf8cbc2b1760083b450a8a3a0aaef
parent47b832b307e559fbeb72e1a1982c920b69787af6 (diff)
main/freeradius: security upgrade to 3.0.26
- CVE-2022-41859 - CVE-2022-41860 - CVE-2022-41861 ref https://gitlab.alpinelinux.org/alpine/aports/-/issues/15176
-rw-r--r--main/freeradius/APKBUILD12
-rw-r--r--main/freeradius/remove-eap-from-default-mods.patch2
2 files changed, 9 insertions, 5 deletions
diff --git a/main/freeradius/APKBUILD b/main/freeradius/APKBUILD
index 60b64a3dec4..0ccb15726f4 100644
--- a/main/freeradius/APKBUILD
+++ b/main/freeradius/APKBUILD
@@ -4,8 +4,8 @@
# Contributor: Jakub Jirutka <jakub@jirutka.cz>
# Maintainer: Leonardo Arena <rnalrd@alpinelinux.org>
pkgname=freeradius
-pkgver=3.0.25
-pkgrel=1
+pkgver=3.0.26
+pkgrel=0
pkgdesc="RADIUS (Remote Authentication Dial-In User Service) server"
url="https://freeradius.org/"
arch="all"
@@ -83,6 +83,10 @@ source="ftp://ftp.freeradius.org/pub/freeradius/freeradius-server-$pkgver.tar.gz
builddir="$srcdir/$pkgname-server-$pkgver"
# secfixes:
+# 3.0.26-r0:
+# - CVE-2022-41859
+# - CVE-2022-41860
+# - CVE-2022-41861
# 3.0.19-r3:
# - CVE-2019-10143
# 3.0.19-r0:
@@ -391,7 +395,7 @@ _enable_mod() {
}
sha512sums="
-30a2125f1b823acb3c6f32158e327f4d49503b11e4d9cde64f12ba6e94cbd02d52d7b947d2d68f66f4c71374dcd2435f06e2067404515cd27a610dcd316127a3 freeradius-server-3.0.25.tar.gz
+5ffc7389ed76c40eb249f4588b8b1199f21537fe2718585d6886eefe16871055e4602c841e278c557879766df45d5f3ac351e36037dfbbdfed3c2381ad748855 freeradius-server-3.0.26.tar.gz
52ecccd479bb22c80d5cc298d9d1c12bd2d1a9d80e1265ba032201f3942370910fa78f3bb429031d91bc89712fa2127f16cd68814489cbc99d174fbf5789875f freeradius.logrotated
bb3df1fa2c9ed95514ae090e0f6619c4e3280f424c4351bc79f5254bf1a327fa7d27e5fe3add5ab8d9e5ba3792c9553bd9a0481fe9c5bc34945ce46627ef2638 radiusd.confd
5a8579f06e905117c67f87f0833d0760e81e64f97de7672ecee45775733fae05763edb91c472e313bf58523c713f86815e47cc39c841f4c141aa59a5930113c6 radiusd.initd
@@ -403,7 +407,7 @@ bb3df1fa2c9ed95514ae090e0f6619c4e3280f424c4351bc79f5254bf1a327fa7d27e5fe3add5ab8
c49e5eec7497fccde5fd09dba1ea9b846e57bc88015bd81640aa531fb5c9b449f37136f42c85fe1d7940c5963aed664b85da28442b388c9fb8cc27873df03b2d musl-fix-headers.patch
41d478c0e40ff82fc36232964037c1ab8ffca9fdbb7dca02ed49319906e751c133b5d7bc7773c645cec6d9d39d1de69cba25e8d59afa8d6662563dd17f35f234 fix-scopeid.patch
caf85ffb96e08ad8314fe72aac052948b2461f94bb21e20ea34925534ee1ef682284457318d50df813ba167a8cb4b520c5a0f38d86de21cd56e8391f299a5dd6 default-config.patch
-f96b7b2e0fc614cb8b70bd500933538e98e05b58718af931a62bc7ba2307600cf8c2a8a99de856ad2e18101dd5bfe95c50ee34de20eef21ba0ad795577a6619b remove-eap-from-default-mods.patch
+5fba0394073cd32a0cd80dea0c27e4474cd44c7d52fdf4e1dafb98025ffa3439bbab6112e091ca5e548713d071c026b280b1f205e8e51e57e4fda4bb6336b020 remove-eap-from-default-mods.patch
55e179d5e6b31d289c2da7f907e494a6a6f5900483fdff8d3bb25ee15a583b8705942eca1f0d5390e91376966e66e457dce9b2cf1a1f61c8eac6d8fb825404dd readme-setup-script.patch
908c4408ab6538ddd96577e47d5e509b19e227e144655eaa0fd7569ddadbe5b2298e6599b8370847b3bcb5e788067b163b0cb66e1b3afa4d83dc3f724e058674 dont-install-test-tools.patch
"
diff --git a/main/freeradius/remove-eap-from-default-mods.patch b/main/freeradius/remove-eap-from-default-mods.patch
index f741543f2df..cfeafa121da 100644
--- a/main/freeradius/remove-eap-from-default-mods.patch
+++ b/main/freeradius/remove-eap-from-default-mods.patch
@@ -4,7 +4,7 @@ Because we move eap into a subpackage.
@@ -8,7 +8,7 @@
LOCAL_SITES := $(addprefix raddb/sites-enabled/,$(DEFAULT_SITES))
- DEFAULT_MODULES := always attr_filter cache_eap chap date \
+ DEFAULT_MODULES := always attr_filter chap date \
- detail detail.log digest dynamic_clients eap \
+ detail detail.log digest dynamic_clients \
echo exec expiration expr files linelog logintime \