| Port details on branch 2020Q3 |
- trousers Open-source TCG Software Stack
- 0.3.14_3 security
 =0      0.3.14_3Version of this port present on the latest quarterly branch. - Maintainer: hrs@FreeBSD.org
- Port Added: 2020-08-19 08:38:02
- Last Update: 2020-08-19 08:37:56
- Commit Hash: 24f4959
- License: BSD3CLAUSE
- WWW:
- https://sourceforge.net/projects/trousers/
- Description:
- TrouSerS is an CPL (Common Public License) licensed Trusted Computing
Software Stack. It is mostly compliant with the TSS 1.2 specification.
WWW: https://sourceforge.net/projects/trousers/
  ¦  ¦  ¦  ¦ 
- Manual pages:
- FreshPorts has no man page information for this port.
- pkg-plist: as obtained via:
make generate-plist - USE_RC_SUBR (Service Scripts)
- no SUBR information found for this port
- Dependency lines:
-
- trousers>0:security/trousers
- To install the port:
- cd /usr/ports/security/trousers/ && make install clean
- To add the package, run one of these commands:
- pkg install security/trousers
- pkg install trousers
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: trousers
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1501436543
SHA256 (trousers-0.3.14.tar.gz) = ce50713a261d14b735ec9ccd97609f0ad5ce69540af560e8c3ce9eb5f2d28f47
SIZE (trousers-0.3.14.tar.gz) = 1378438
Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- tpm-emulator>=0.7.4_1 : emulators/tpm-emulator
- gmake>=4.3 : devel/gmake
- pkgconf>=1.3.0_1 : devel/pkgconf
- autoconf>=2.69 : devel/autoconf
- automake>=1.16.1 : devel/automake
- libtoolize : devel/libtool
- Runtime dependencies:
-
- tpm-emulator>=0.7.4_1 : emulators/tpm-emulator
- This port is required by:
- for Libraries
-
- security/gnutls
Configuration Options:- ===> The following configuration options are available for trousers-0.3.14_3:
DEBUG=off: Build with debugging support
===> Use 'make config' to modify these settings
- Options name:
- security_trousers
- USES:
- dos2unix alias autoreconf gmake iconv libtool pkgconfig ssl
- FreshPorts was unable to extract/find any pkg message
- Master Sites:
|
Number of commits found: 2
| Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
| Commit | Credits | Log message |
|---|
0.3.14_3
19 Aug 2020 08:37:56
 |
Niclas Zeising (zeising) |
MFH: r545264
security/trousers: fix security issues
Fix three security issues in security/trousers:
* CVE-2020-24332
If the tcsd daemon is started with root privileges,
the creation of the system.data file is prone to symlink attacks
* CVE-2020-24330
If the tcsd daemon is started with root privileges,
it fails to drop the root gid after it is no longer needed
* CVE-2020-24331
If the tcsd daemon is started with root privileges,
the tss user has read and write access to the /etc/tcsd.conf file
Add patches to fix potential use-after-free
Fix build with -fno-common
Security: e37a0a7b-e1a7-11ea-9538-0c9d925bbbc0
Approved by: ports-secteam (joenum) |
0.3.14_3
19 Aug 2020 08:37:56
 |
zeising |
MFH: r545264
security/trousers: fix security issues
Fix three security issues in security/trousers:
* CVE-2020-24332
If the tcsd daemon is started with root privileges,
the creation of the system.data file is prone to symlink attacks
* CVE-2020-24330
If the tcsd daemon is started with root privileges,
it fails to drop the root gid after it is no longer needed
* CVE-2020-24331
If the tcsd daemon is started with root privileges,
the tss user has read and write access to the /etc/tcsd.conf file
Add patches to fix potential use-after-free
Fix build with -fno-common
Security: e37a0a7b-e1a7-11ea-9538-0c9d925bbbc0
Approved by: ports-secteam (joenum) |
Number of commits found: 2
|
As an Amazon Associate I earn from qualifying purchases.