Subject: CVS commit: [pkgsrc-2008Q4] pkgsrc/www/privoxy
From: Tyler R. Retzlaff
Date: 2009-02-28 13:47:22
Message id: 20090228124722.75510175D0@cvs.netbsd.org

Log Message:
pullup ticket #2711 - requested by drochner
privoxy: update for security fix

revisions pulled up:
pkgsrc/www/privoxy/Makefile		1.35,1.36
pkgsrc/www/privoxy/files/privoxy.sh	1.4,1.5
pkgsrc/www/privoxy/distinfo		1.9
pkgsrc/www/privoxy/patches/patch-af	1.1

   Module Name:    pkgsrc
   Committed By:   jnemeth
   Date:           Mon Feb  2 20:00:41 UTC 2009

   Modified Files:
           pkgsrc/www/privoxy: Makefile
           pkgsrc/www/privoxy/files: privoxy.sh

   Log Message:
   PR/40532 - Cem Kayali -- group permissions too broad
   Just fixing security issue, will leave pkg update for MAINTAINER for now.

------------------------------------------------------------------------
   Module Name:   pkgsrc
   Committed By:  drochner
   Date:          Wed Feb  4 21:20:39 UTC 2009

   Modified Files:
          pkgsrc/www/privoxy: Makefile distinfo
          pkgsrc/www/privoxy/files: privoxy.sh
   Added Files:
          pkgsrc/www/privoxy/patches: patch-af

   Log Message:
   give up supplementary group memberships on uid/gid switch, fixes
   unexpected privileges reported in PR pkg/40532 by Cem Kayali,
   the issue is being discussed with upstream,
   thanks to Cem for detailed reports,
   also back out explicit passing of PRIVOXY_GROUP to the program --
   while it does not hurt it is redundant because PRIVOXY_GROUP is already
   the primary group of PRIVOXY_USER

Files:
RevisionActionfile
1.34.12.1modifypkgsrc/www/privoxy/Makefile
1.8.10.1modifypkgsrc/www/privoxy/distinfo
1.2.2.2addpkgsrc/www/privoxy/patches/patch-af