Subject: CVS commit: [pkgsrc-2017Q1] pkgsrc/net/rabbitmq
From: S.P.Zeidler
Date: 2017-04-08 20:06:51
Message id: 20170408180652.106B7FBE4@cvs.NetBSD.org

Log Message:
Pullup ticket #5250 - requested by bsiegert
net/rabbitmq: security update

Revisions pulled up:
- net/rabbitmq/Makefile                                         1.29
- net/rabbitmq/distinfo                                         1.33

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	fhajny
   Date:		Thu Mar 30 15:19:04 UTC 2017

   Modified Files:
   	pkgsrc/net/rabbitmq: Makefile distinfo

   Log Message:
   Update net/rabbitmq to 3.6.9.

   Management and Management Agent Plugins
   - Security Vulnerability Patches
    - CVE-2017-4965: XSS vulnerabilities in management UI
    - CVE-2017-4966: authentication details are stored in browser-local
      storage without expiration
    - CVE-2017-4967: XSS vulnerabilities in management UI
   - Bug Fixes
    - Certain TCP and TLS listener configuration settings could break
      JSON serialisation of GET /api/overview responses.

   Federation Plugin
   - More numerical types are now handled for the "hops" property.

   .NET Client
   - Calling ExchangeBind more than once with the same arguments threw an
    exception.

   To generate a diff of this commit:
   cvs rdiff -u -r1.28 -r1.29 pkgsrc/net/rabbitmq/Makefile
   cvs rdiff -u -r1.32 -r1.33 pkgsrc/net/rabbitmq/distinfo

Files:
RevisionActionfile
1.28.2.1modifypkgsrc/net/rabbitmq/Makefile
1.32.2.1modifypkgsrc/net/rabbitmq/distinfo