Diffusion FreeBSD ports repository e8b825e62c8e

security/easy-rsa: report weak build-ca crypto on CA private keys
e8b825e62c8e
Actions

Description

security/easy-rsa: report weak build-ca crypto on CA private keys

By adding to UPDATING and pkg-message, and bumping PORTREVISION so
as to trigger updates that show these messages so that
easyrsa users can re-encrypt their CA private keys with AES instead of
Triple-DES.

It is pointless to add vuln.xml, supported port branch versions,
main and 2025Q1, already carry a bugfixed Easy-RSA version.

Reported by: pkelsey@
Security: CVE-2024-13454
MFH: 2025Q1

(cherry picked from commit d8c76b98576f28d468d2aa9ecd6b7d8cad93046f)
(cherry picked from commit cccf1379f3cfc4148193c63927393bcf9eda1264)

Details

Provenance

mandree

Authored on Fri, Jan 31, 9:10 PM

Parents

R11:b961cb6dc27b: www/firefox: update to 135.0 (rc2)

Branches

Unknown

Tags

Unknown

Event Timeline

mandree committed R11:e8b825e62c8e: security/easy-rsa: report weak build-ca crypto on CA private keys (authored by mandree).Fri, Jan 31, 9:11 PM

Changes (3)

Path

Size

UPDATING

security/

easy-rsa/

Makefile

files/

pkg-message.in

R11:e8b825e62c8e

View Options

UPDATING

View Options

security/easy-rsa/Makefile

View Options

security/easy-rsa/files/pkg-message.in

security/easy-rsa: report weak build-ca crypto on CA private keyse8b825e62c8eActions

Description

Details

Event Timeline

Changes (3)

R11:e8b825e62c8e

UPDATING

security/easy-rsa/Makefile

security/easy-rsa/files/pkg-message.in

security/easy-rsa: report weak build-ca crypto on CA private keys
e8b825e62c8e
Actions