head 1.5; access; symbols pkgsrc-2013Q2:1.5.0.8 pkgsrc-2013Q2-base:1.5 pkgsrc-2012Q4:1.5.0.6 pkgsrc-2012Q4-base:1.5 pkgsrc-2011Q4:1.5.0.4 pkgsrc-2011Q4-base:1.5 pkgsrc-2011Q2:1.5.0.2 pkgsrc-2011Q2-base:1.5 pkgsrc-2010Q4:1.4.0.26 pkgsrc-2010Q4-base:1.4 pkgsrc-2010Q3:1.4.0.24 pkgsrc-2010Q3-base:1.4 pkgsrc-2010Q2:1.4.0.22 pkgsrc-2010Q2-base:1.4 pkgsrc-2010Q1:1.4.0.20 pkgsrc-2010Q1-base:1.4 pkgsrc-2009Q4:1.4.0.18 pkgsrc-2009Q4-base:1.4 pkgsrc-2009Q3:1.4.0.16 pkgsrc-2009Q3-base:1.4 pkgsrc-2009Q2:1.4.0.14 pkgsrc-2009Q2-base:1.4 pkgsrc-2009Q1:1.4.0.12 pkgsrc-2009Q1-base:1.4 pkgsrc-2008Q4:1.4.0.10 pkgsrc-2008Q4-base:1.4 pkgsrc-2008Q3:1.4.0.8 pkgsrc-2008Q3-base:1.4 cube-native-xorg:1.4.0.6 cube-native-xorg-base:1.4 pkgsrc-2008Q2:1.4.0.4 pkgsrc-2008Q2-base:1.4 cwrapper:1.4.0.2 pkgsrc-2008Q1:1.2.0.24 pkgsrc-2008Q1-base:1.2 pkgsrc-2007Q4:1.2.0.22 pkgsrc-2007Q4-base:1.2 pkgsrc-2007Q3:1.2.0.20 pkgsrc-2007Q3-base:1.2 pkgsrc-2007Q2:1.2.0.18 pkgsrc-2007Q2-base:1.2 pkgsrc-2007Q1:1.2.0.16 pkgsrc-2007Q1-base:1.2 pkgsrc-2006Q4:1.2.0.14 pkgsrc-2006Q4-base:1.2 pkgsrc-2006Q3:1.2.0.12 pkgsrc-2006Q3-base:1.2 pkgsrc-2006Q2:1.2.0.10 pkgsrc-2006Q2-base:1.2 pkgsrc-2006Q1:1.2.0.8 pkgsrc-2006Q1-base:1.2 pkgsrc-2005Q4:1.2.0.6 pkgsrc-2005Q4-base:1.2 pkgsrc-2005Q3:1.2.0.4 pkgsrc-2005Q3-base:1.2 pkgsrc-2005Q2:1.2.0.2 pkgsrc-2005Q2-base:1.2 pkgsrc-2005Q1:1.1.1.1.0.8 pkgsrc-2005Q1-base:1.1.1.1 pkgsrc-2004Q4:1.1.1.1.0.6 pkgsrc-2004Q4-base:1.1.1.1 pkgsrc-2004Q3:1.1.1.1.0.4 pkgsrc-2004Q3-base:1.1.1.1 pkgsrc-2004Q2:1.1.1.1.0.2 pkgsrc-2004Q2-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.5 date 2011.03.22.23.35.59; author tez; state dead; branches; next 1.4; 1.4 date 2008.06.07.20.22.18; author tonnerre; state Exp; branches; next 1.3; 1.3 date 2008.06.07.18.36.06; author tonnerre; state Exp; branches; next 1.2; 1.2 date 2005.04.10.07.15.25; author jlam; state dead; branches 1.2.24.1; next 1.1; 1.1 date 2004.03.30.18.07.18; author jlam; state Exp; branches 1.1.1.1; next ; 1.2.24.1 date 2008.06.08.11.47.13; author tron; state Exp; branches; next ; 1.1.1.1 date 2004.03.30.18.07.18; author jlam; state Exp; branches 1.1.1.1.8.1; next ; 1.1.1.1.8.1 date 2005.05.13.10.08.52; author salo; state dead; branches; next ; desc @@ 1.5 log @remove 3 more old patches that got missed @ text @$NetBSD: patch-ai,v 1.4 2008/06/07 20:22:18 tonnerre Exp $ --- appl/telnet/telnetd/sys_term.c.orig 2008-06-07 15:55:51.000000000 +0200 +++ appl/telnet/telnetd/sys_term.c @@@@ -1287,6 +1287,16 @@@@ start_login(host, autologin, name) #endif #if defined (AUTHENTICATION) if (auth_level >= 0 && autologin == AUTH_VALID) { + if (name[0] == '-') { + /* Authenticated and authorized to log in to an + account starting with '-'? Even if that + unlikely case comes to pass, the current login + program will not parse the resulting command + line properly. */ + syslog(LOG_ERR, "user name cannot start with '-'"); + fatal(net, "user name cannot start with '-'"); + exit(1); + } # if !defined(NO_LOGIN_F) #if defined(LOGIN_CAP_F) argv = addarg(argv, "-F"); @@@@ -1377,12 +1387,20 @@@@ start_login(host, autologin, name) } else #endif if (getenv("USER")) { - argv = addarg(argv, getenv("USER")); + char *user = getenv("USER"); + if (user[0] == '-') { + /* "telnet -l-x ..." */ + syslog(LOG_ERR, "user name cannot start with '-'"); + fatal(net, "user name cannot start with '-'"); + exit(EXIT_FAILURE); + } + argv = addarg(argv, user); #if defined(LOGIN_ARGS) && defined(NO_LOGIN_P) { register char **cpp; for (cpp = environ; *cpp; cpp++) - argv = addarg(argv, *cpp); + if ((*cpp)[0] != '-') + argv = addarg(argv, *cpp); } #endif /* @ 1.4 log @Remove parts of a different security patch which slipped in but are not supported yet. Don't bump revision as the package didn't build before. @ text @d1 1 a1 1 $NetBSD: patch-ai,v 1.3 2008/06/07 18:36:06 tonnerre Exp $ @ 1.3 log @Add security patches for 3 Kerberos vulnerabilities: - telnetd username and environment sanitizing vulnerabilities ("-f root") as described in MIT Kerberos advisory 2007-001. - krb5_klog_syslog() problems with overly long log strings as described in MIT Kerberos advisory 2007-002. - GSS API kg_unseal_v1() double free vulnerability as described in the MIT Kerberos advisory 2007-003. @ text @d1 1 a1 1 $NetBSD$ d3 2 a4 2 --- src/appl/telnet/telnetd/sys_term.c.orig 2008-06-07 15:55:51.000000000 +0200 +++ src/appl/telnet/telnetd/sys_term.c @ 1.2 log @Updated security/mit-krb5 to krb5-1.4. Changes from version 1.3.6 include: * Merged Athena telnetd changes for creating a new option for requiring encryption. * Add implementation of the RPCSEC_GSS authentication flavor to the RPC library. * The kadmind4 backwards-compatibility admin server and the v5passwdd backwards-compatibility password-changing server have been removed. * Thread safety for krb5 libraries. * Yarrow code now uses AES. * Merged Athena changes to allow ftpd to require encrypted passwords. * Incorporate gss_krb5_set_allowable_enctypes() and gss_krb5_export_lucid_sec_context(), which are needed for NFSv4. * Fix heap buffer overflow in password history mechanism. [MITKRB5-SA-2004-004] @ text @d1 1 a1 1 $NetBSD: patch-ai,v 1.1 2004/03/30 18:07:18 jlam Exp $ d3 42 a44 11 --- kadmin/cli/Makefile.in.orig Fri Feb 7 16:41:20 2003 +++ kadmin/cli/Makefile.in @@@@ -21,7 +21,7 @@@@ kadmin_ct.o: kadmin_ct.c install:: $(INSTALL_PROGRAM) $(PROG).local ${DESTDIR}$(ADMIN_BINDIR)/$(PROG).local $(INSTALL_PROGRAM) $(PROG) ${DESTDIR}$(ADMIN_BINDIR)/$(PROG) - $(INSTALL_PROGRAM) $(srcdir)/k5srvutil.sh ${DESTDIR}$(ADMIN_BINDIR)/k5srvutil + $(INSTALL_SCRIPT) $(srcdir)/k5srvutil.sh ${DESTDIR}$(ADMIN_BINDIR)/k5srvutil $(INSTALL_DATA) $(srcdir)/k5srvutil.M ${DESTDIR}$(ADMIN_MANDIR)/k5srvutil.8 $(INSTALL_DATA) $(srcdir)/$(PROG).M ${DESTDIR}$(ADMIN_MANDIR)/$(PROG).8 $(INSTALL_DATA) $(srcdir)/$(PROG).local.M ${DESTDIR}$(ADMIN_MANDIR)/$(PROG).local.8 @ 1.2.24.1 log @Pullup ticket #2417 - requested by tonnerre Security patches for mit-krb5 Revisions pulled up: - security/mit-krb5/Makefile 1.42 - security/mit-krb5/distinfo 1.17-1.19 - security/mit-krb5/patches/patch-ai 1.3-1.4 - security/mit-krb5/patches/patch-au 1.1-1.2 - security/mit-krb5/patches/patch-av 1.1-1.2 - security/mit-krb5/patches/patch-aw 1.1-1.2 - security/mit-krb5/patches/patch-ax 1.1-1.2 - security/mit-krb5/patches/patch-ay 1.1-1.2 - security/mit-krb5/patches/patch-az 1.1-1.2 - security/mit-krb5/patches/patch-ba 1.1-1.3 - security/mit-krb5/patches/patch-bb 1.1-1.2 - security/mit-krb5/patches/patch-bc 1.1-1.2 - security/mit-krb5/patches/patch-bd 1.1-1.2 - security/mit-krb5/patches/patch-be 1.1-1.2 - security/mit-krb5/patches/patch-bf 1.1 - security/mit-krb5/patches/patch-bg 1.1 --- Module Name: pkgsrc Committed By: tonnerre Date: Sat Jun 7 18:36:07 UTC 2008 Modified Files: pkgsrc/security/mit-krb5: Makefile distinfo Added Files: pkgsrc/security/mit-krb5/patches: patch-ai patch-au patch-av patch-aw patch-ax patch-ay patch-az patch-ba patch-bb patch-bc patch-bd patch-be Log Message: Add security patches for 3 Kerberos vulnerabilities: - telnetd username and environment sanitizing vulnerabilities ("-f root") as described in MIT Kerberos advisory 2007-001. - krb5_klog_syslog() problems with overly long log strings as described in MIT Kerberos advisory 2007-002. - GSS API kg_unseal_v1() double free vulnerability as described in the MIT Kerberos advisory 2007-003. --- Module Name: pkgsrc Committed By: tonnerre Date: Sat Jun 7 20:22:18 UTC 2008 Modified Files: pkgsrc/security/mit-krb5: distinfo pkgsrc/security/mit-krb5/patches: patch-ai patch-au patch-av patch-aw patch-ax patch-ay patch-az patch-ba patch-bb patch-bc patch-bd patch-be Log Message: Remove parts of a different security patch which slipped in but are not supported yet. Don't bump revision as the package didn't build before. --- Module Name: pkgsrc Committed By: tonnerre Date: Sat Jun 7 22:26:10 UTC 2008 Modified Files: pkgsrc/security/mit-krb5: distinfo pkgsrc/security/mit-krb5/patches: patch-ba Added Files: pkgsrc/security/mit-krb5/patches: patch-bf patch-bg Log Message: Add patches for MITKRB5-SA-2007-004 and MITKRB5-SA-2007-005. PKGREVISION will be bumped again once some other patches are in. @ text @d1 1 a1 1 $NetBSD$ d3 11 a13 42 --- appl/telnet/telnetd/sys_term.c.orig 2008-06-07 15:55:51.000000000 +0200 +++ appl/telnet/telnetd/sys_term.c @@@@ -1287,6 +1287,16 @@@@ start_login(host, autologin, name) #endif #if defined (AUTHENTICATION) if (auth_level >= 0 && autologin == AUTH_VALID) { + if (name[0] == '-') { + /* Authenticated and authorized to log in to an + account starting with '-'? Even if that + unlikely case comes to pass, the current login + program will not parse the resulting command + line properly. */ + syslog(LOG_ERR, "user name cannot start with '-'"); + fatal(net, "user name cannot start with '-'"); + exit(1); + } # if !defined(NO_LOGIN_F) #if defined(LOGIN_CAP_F) argv = addarg(argv, "-F"); @@@@ -1377,12 +1387,20 @@@@ start_login(host, autologin, name) } else #endif if (getenv("USER")) { - argv = addarg(argv, getenv("USER")); + char *user = getenv("USER"); + if (user[0] == '-') { + /* "telnet -l-x ..." */ + syslog(LOG_ERR, "user name cannot start with '-'"); + fatal(net, "user name cannot start with '-'"); + exit(EXIT_FAILURE); + } + argv = addarg(argv, user); #if defined(LOGIN_ARGS) && defined(NO_LOGIN_P) { register char **cpp; for (cpp = environ; *cpp; cpp++) - argv = addarg(argv, *cpp); + if ((*cpp)[0] != '-') + argv = addarg(argv, *cpp); } #endif /* @ 1.1 log @Initial revision @ text @d1 1 a1 1 $NetBSD$ @ 1.1.1.1 log @Import MIT Kerberos 5 as security/mit-krb5. This package is partly based on the wip/mit-krb5 package by Jeremy Reed, but heavily modified by me to libtoolize the build. Kerberos V5 is an authentication system developed at MIT. It is a network authentication protocol designed to provide strong authentication for client/server applications by using secret-key cryptography. (Kerberos 5 is discussed in RFC 1510.) This package provides Kerberos and GSSAPI (Generic Security Services Application Programming Interface) development headers and libraries. It also includes Kerberos ticket and principal tools, and Kerberized r-services, telnet and ftp services. @ text @@ 1.1.1.1.8.1 log @Pullup ticket 444 - requested by Johnny C. Lam security update for mit-krb5 Revisions pulled up: - pkgsrc/security/mit-krb5/Makefile 1.17-1.18, 1.20 - pkgsrc/security/mit-krb5/PLIST 1.6-1.8 - pkgsrc/security/mit-krb5/buildlink3.mk 1.4 - pkgsrc/security/mit-krb5/distinfo 1.9-1.10 - pkgsrc/security/mit-krb5/files/kadmind.sh 1.2 - pkgsrc/security/mit-krb5/files/kdc.sh 1.2 - pkgsrc/security/mit-krb5/patches/patch-aa 1.2 - pkgsrc/security/mit-krb5/patches/patch-ab 1.2 - pkgsrc/security/mit-krb5/patches/patch-ac 1.2 - pkgsrc/security/mit-krb5/patches/patch-ad 1.2 - pkgsrc/security/mit-krb5/patches/patch-ae 1.2 - pkgsrc/security/mit-krb5/patches/patch-af 1.3 - pkgsrc/security/mit-krb5/patches/patch-ag 1.3 - pkgsrc/security/mit-krb5/patches/patch-ai removed - pkgsrc/security/mit-krb5/patches/patch-aj 1.2 - pkgsrc/security/mit-krb5/patches/patch-ak 1.1 - pkgsrc/security/mit-krb5/patches/patch-al 1.1 Module Name: pkgsrc Committed By: jlam Date: Sun Apr 10 07:15:25 UTC 2005 Modified Files: pkgsrc/security/mit-krb5: Makefile PLIST distinfo pkgsrc/security/mit-krb5/files: kadmind.sh kdc.sh pkgsrc/security/mit-krb5/patches: patch-aa patch-ab patch-ac patch-ad patch-ae patch-af patch-ag patch-aj Added Files: pkgsrc/security/mit-krb5/patches: patch-ak Removed Files: pkgsrc/security/mit-krb5/patches: patch-ai Log Message: Updated security/mit-krb5 to krb5-1.4. Changes from version 1.3.6 include: * Merged Athena telnetd changes for creating a new option for requiring encryption. * Add implementation of the RPCSEC_GSS authentication flavor to the RPC library. * The kadmind4 backwards-compatibility admin server and the v5passwdd backwards-compatibility password-changing server have been removed. * Thread safety for krb5 libraries. * Yarrow code now uses AES. * Merged Athena changes to allow ftpd to require encrypted passwords. * Incorporate gss_krb5_set_allowable_enctypes() and gss_krb5_export_lucid_sec_context(), which are needed for NFSv4. * Fix heap buffer overflow in password history mechanism. [MITKRB5-SA-2004-004] --- Module Name: pkgsrc Committed By: jlam Date: Sun Apr 10 07:45:31 UTC 2005 Modified Files: pkgsrc/security/mit-krb5: PLIST Log Message: Remove the examples directory on deinstallation. --- Module Name: pkgsrc Committed By: jlam Date: Sun Apr 10 07:46:51 UTC 2005 Modified Files: pkgsrc/security/mit-krb5: Makefile distinfo Added Files: pkgsrc/security/mit-krb5/patches: patch-al Log Message: Patch from http://web.mit.edu/kerberos/advisories/2005-001-patch_1.4.txt which fixes MITKRB5-SA-2005-001 (CAN-2005-0468 & CAN-2005-0469) relating to buffer overflows in the telnet client. Bump PKGREVISION to 1. --- Module Name: pkgsrc Committed By: jlam Date: Mon Apr 11 22:44:54 UTC 2005 Modified Files: pkgsrc/security/mit-krb5: PLIST Log Message: The FTP daemon is always named "kftpd" regardless of whether prefix-cmds is a PKG_OPTION. --- Module Name: pkgsrc Committed By: jlam Date: Thu Apr 14 23:07:55 UTC 2005 Modified Files: pkgsrc/security/mit-krb5: Makefile Log Message: Remove unused section... MIT krb5 apparently now detects NetBSD's utmpx implementation correctly on NetBSD>=2.0. --- Module Name: pkgsrc Committed By: salo Date: Sat Apr 16 14:32:53 UTC 2005 Modified Files: pkgsrc/security/mit-krb5: buildlink3.mk Log Message: Bump BUILDLINK_RECOMMENDED for latest security fix. (hi jlam!) @ text @d1 1 a1 1 $NetBSD: patch-ai,v 1.1.1.1 2004/03/30 18:07:18 jlam Exp $ @