head 1.8; access; symbols pkgsrc-2026Q1:1.8.0.4 pkgsrc-2026Q1-base:1.8 pkgsrc-2025Q4:1.8.0.2 pkgsrc-2025Q4-base:1.8 pkgsrc-2025Q3:1.6.0.26 pkgsrc-2025Q3-base:1.6 pkgsrc-2025Q2:1.6.0.24 pkgsrc-2025Q2-base:1.6 pkgsrc-2025Q1:1.6.0.22 pkgsrc-2025Q1-base:1.6 pkgsrc-2024Q4:1.6.0.20 pkgsrc-2024Q4-base:1.6 pkgsrc-2024Q3:1.6.0.18 pkgsrc-2024Q3-base:1.6 pkgsrc-2024Q2:1.6.0.16 pkgsrc-2024Q2-base:1.6 pkgsrc-2024Q1:1.6.0.14 pkgsrc-2024Q1-base:1.6 pkgsrc-2023Q4:1.6.0.12 pkgsrc-2023Q4-base:1.6 pkgsrc-2023Q3:1.6.0.10 pkgsrc-2023Q3-base:1.6 pkgsrc-2023Q2:1.6.0.8 pkgsrc-2023Q2-base:1.6 pkgsrc-2023Q1:1.6.0.6 pkgsrc-2023Q1-base:1.6 pkgsrc-2022Q4:1.6.0.4 pkgsrc-2022Q4-base:1.6 pkgsrc-2022Q3:1.6.0.2 pkgsrc-2022Q3-base:1.6 pkgsrc-2022Q2:1.5.0.6 pkgsrc-2022Q2-base:1.5 pkgsrc-2022Q1:1.5.0.4 pkgsrc-2022Q1-base:1.5 pkgsrc-2021Q4:1.5.0.2 pkgsrc-2021Q4-base:1.5 pkgsrc-2021Q3:1.2.0.6 pkgsrc-2021Q3-base:1.2 pkgsrc-2021Q2:1.2.0.4 pkgsrc-2021Q2-base:1.2 pkgsrc-2021Q1:1.2.0.2 pkgsrc-2021Q1-base:1.2; locks; strict; comment @# @; 1.8 date 2025.12.18.19.46.12; author vins; state Exp; branches; next 1.7; commitid xI70EJMSdbm1yVmG; 1.7 date 2025.12.07.12.21.56; author vins; state Exp; branches; next 1.6; commitid d04ngu9GRlswrtlG; 1.6 date 2022.07.04.08.25.58; author pin; state Exp; branches; next 1.5; commitid hGntWsCmco7InyKD; 1.5 date 2021.11.26.08.40.40; author pin; state Exp; branches; next 1.4; commitid FzvTlYOplXu9xhiD; 1.4 date 2021.10.26.11.17.22; author nia; state Exp; branches; next 1.3; commitid PNswNV9GDLZeojeD; 1.3 date 2021.10.07.14.54.05; author nia; state Exp; branches; next 1.2; commitid nfjKlj1wTplMcTbD; 1.2 date 2021.01.29.07.53.38; author jperkin; state Exp; branches; next 1.1; commitid wG0N35NZpW4EWAFC; 1.1 date 2021.01.01.14.28.56; author pin; state Exp; branches; next ; commitid PlsNQcmR4e2222CC; desc @@ 1.8 log @opendoas: one more fix @ text @$NetBSD: distinfo,v 1.7 2025/12/07 12:21:56 vins Exp $ BLAKE2s (opendoas-6.8.2.tar.gz) = c1d3b95656013d11fcf629f06dfeda6e80e33907ed25c9488d4d30755423c71f SHA512 (opendoas-6.8.2.tar.gz) = 4a93ff477413c859ba2702e688fa4f83248fff85e61e12336838a1e9aa1a8d9963a9782e4bc5e58e8d04b86c2c8ceb6b235ae9d3b32b3e548a2514a43653137d Size (opendoas-6.8.2.tar.gz) = 32430 bytes SHA1 (patch-GNUmakefile) = a4cbff5e9a20440db9a20a81f8b629df7230b1c2 SHA1 (patch-configure) = c149e8a75cf1f471f0b77c17dd921b0c4d8a1b8a SHA1 (patch-doas.c) = 9226e8a3a6e6766b5b884e493b8dccba0d8f31ff SHA1 (patch-doas.h) = 2c1088eac51aed8df485f509917d9c61416273d7 SHA1 (patch-pam.c) = 49fc2b8746add906c3b0547bc131f854315a8b9f @ 1.7 log @security/opendoas: some fixes @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.6 2022/07/04 08:25:58 pin Exp $ d7 1 a7 1 SHA1 (patch-configure) = 5e94ee35eb6a1392adf7e41b1524ab64cf4e6eb7 d10 1 @ 1.6 log @security/opendoas: update to 6.8.2 This release adds a patch from PR#92 to aborting early if argv is not set or empty. Nothing else has changed in this patch release. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.5 2021/11/26 08:40:40 pin Exp $ d6 4 a9 1 SHA1 (patch-GNUmakefile) = d301c0334ce6ac7992d61681e1852a301557d300 @ 1.5 log @security/opendoas: update to 6.8.1 -This release fixes one major issue that has been assigned CVE-2019-25016. Rules that allowed the user to execute any command would inherit the executing users PATH instead of resetting it to a default PATH. The path will now be correctly reset (d5acd52) to the defined default PATH. Those rules still allow the user to execute any program from their PATH but executed commands won't inherit the users PATH anymore. Rules that limit the user to execute only a specific command are not affected by this and are only executed from the default PATH and with the PATH environment variable set to the safe default. Other changes are: -apply missing man page changes -Fixes to the configuration parser 2d7431c, 01ac841 and 36cc28e -Minor documentation and error message wording changes. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.4 2021/10/26 11:17:22 nia Exp $ d3 3 a5 3 BLAKE2s (opendoas-6.8.1.tar.gz) = b85a68323ab88d02d9a0a1e6eb5591ae46fd9080d5657c466bb14ccd1541f581 SHA512 (opendoas-6.8.1.tar.gz) = d96fe1cdd70e9211de9996ad05bcf7a127facd02af48f7ab2561869d9d16708f1b61722c6e6b9fe15a62e9ef501e09b1ba444b7b43a066f1895e543ebc9402e7 Size (opendoas-6.8.1.tar.gz) = 32398 bytes @ 1.4 log @security: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Unfetchable distfiles (fetched conditionally?): ./security/cyrus-sasl/distinfo cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.3 2021/10/07 14:54:05 nia Exp $ d3 3 a5 3 BLAKE2s (opendoas-6.8.tar.gz) = e3880bf703bbc0d038da43edc032ab927aeac8ed3a86d417f6d7da226476e065 SHA512 (opendoas-6.8.tar.gz) = 4a57079bba353247e645bc07a5d4e78fd01471d193e83751fd87b72cffa4e152c0f7ea172563f767a7193b14489f57bc066b4fee50842d30b5b7f7ce918434bb Size (opendoas-6.8.tar.gz) = 32307 bytes a6 1 SHA1 (patch-doas.c) = 3c4e734e3c8f7bf38e2a58ddb1ba4e1eefe99087 @ 1.3 log @security: Remove SHA1 hashes for distfiles @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.2 2021/01/29 07:53:38 jperkin Exp $ d3 1 a3 1 RMD160 (opendoas-6.8.tar.gz) = 56f9c02d81f6ad9925323f1b44d7f7087f1108f0 @ 1.2 log @opendoas: Apply patch for CVE-2019-25016. Patch from __skn on IRC. Thanks! Bump PKGREVISION. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.1 2021/01/01 14:28:56 pin Exp $ a2 1 SHA1 (opendoas-6.8.tar.gz) = 11963ee647b7166972512740bc7f648c8aa1272f @ 1.1 log @security/opendoas: import package Packaged in wip by Sunil Nimmagadda. An unofficial, portable fork of the OpenBSD doas command. doas is a minimal replacement for the venerable sudo. It was initially written by Ted Unangst of the OpenBSD project to provide 95% of the features of sudo with a fraction of the codebase. @ text @d1 1 a1 1 $NetBSD$ d8 1 @