security/krb5-118: CVE-2022-42898: IGNORE and accelerate removal

krb5-118 was desupported by MIT when krb5-120 was released. CVE-2022-42898 now requires its accelerated removal from the tree. It is now flagged IGNORE until its removal on Nov 30, 2022. MFH: 2022Q4 Security: CVE-2022-42898
2022-11-15 08:32:20 -08:00 · 2022-11-15 08:32:20 -08:00 · c49050564f
commit c49050564f
parent de40003bfd
1 changed files with 2 additions and 1 deletions
--- a/security/krb5-118/Makefile
+++ b/security/krb5-118/Makefile
@ -7,7 +7,8 @@ PKGNAMESUFFIX=		-118
 .endif

 DEPECATED=		Desupported by MIT following 1.20
-EXPIRY=			2023-05-26
+EXPIRY=			2022-11-30
+IGNORE=			Affected by CVE-2022-42898: integer overflow vulnerabilities in PAC parsing

 PATCH_SITES=		http://web.mit.edu/kerberos/advisories/
 PATCH_DIST_STRIP=	-p2