From c49050564ffcf36e155344562f594e15b82a5194 Mon Sep 17 00:00:00 2001
From: Cy Schubert <cy@FreeBSD.org>
Date: Tue, 15 Nov 2022 08:32:20 -0800
Subject: [PATCH] security/krb5-118: CVE-2022-42898: IGNORE and accelerate
 removal

krb5-118 was desupported by MIT when krb5-120 was released. CVE-2022-42898
now requires its accelerated removal from the tree. It is now
flagged IGNORE until its removal on Nov 30, 2022.

MFH:		2022Q4
Security:	CVE-2022-42898
---
 security/krb5-118/Makefile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/security/krb5-118/Makefile b/security/krb5-118/Makefile
index aa59adb40e57..333a851254fd 100644
--- a/security/krb5-118/Makefile
+++ b/security/krb5-118/Makefile
@@ -7,7 +7,8 @@ PKGNAMESUFFIX=		-118
 .endif
 
 DEPECATED=		Desupported by MIT following 1.20
-EXPIRY=			2023-05-26
+EXPIRY=			2022-11-30
+IGNORE=			Affected by CVE-2022-42898: integer overflow vulnerabilities in PAC parsing
 
 PATCH_SITES=		http://web.mit.edu/kerberos/advisories/
 PATCH_DIST_STRIP=	-p2