Update links+ to 2.14 Fixes some security related issues:
* Limit keepalive of ciphers with 64-bit block size to mitigate the SWEET32 attack * Improved tor hardening - when the user toggles the "Only Proxies" option (i.e. when connecting to tor), we reset certain other options to their default values, so that it is not possible to identify user behind tor based on the selected options. * Security bug fixed: Don't load or render the content of "407 Proxy Authentication Required" reply when using https proxy. This avoids the FalseCONNECT attack. Also, don't allow 401 and 407 responses to set cookies. And some improvements and fixes: * Use keys 'P' and 'L' to scroll up and down * Fix a memory leak when copying the current url to clipboard (the bug was introduced in Links 2.13) * Fix crash when the user pressed Ctrl-G on a form field (the bug was introduced in Links 2.13) * Workaround for a bug in librsvg that makes mathematics on Wikipedia unreadable Full changelog: http://links.twibright.com/download/ChangeLog Tim. Index: Makefile =================================================================== RCS file: /cvs/ports/www/links+/Makefile,v retrieving revision 1.59 diff -u -p -r1.59 Makefile --- Makefile 3 Sep 2016 09:33:19 -0000 1.59 +++ Makefile 30 Nov 2016 01:40:50 -0000 @@ -1,7 +1,7 @@ # $OpenBSD: Makefile,v 1.59 2016/09/03 09:33:19 sthen Exp $ COMMENT= graphics and text browser -VER= 2.13 +VER= 2.14 DISTNAME= links-${VER} PKGNAME= links+-${VER} CATEGORIES= www Index: distinfo =================================================================== RCS file: /cvs/ports/www/links+/distinfo,v retrieving revision 1.30 diff -u -p -r1.30 distinfo --- distinfo 3 Sep 2016 09:33:19 -0000 1.30 +++ distinfo 30 Nov 2016 01:40:50 -0000 @@ -1,2 +1,2 @@ -SHA256 (links-2.13.tar.gz) = vNBotbR/YE+RCRxUHUad8q+2vWYEzd1vBZoX7JzrdK4= -SIZE (links-2.13.tar.gz) = 7133136 +SHA256 (links-2.14.tar.gz) = IvqNy1pguP/WEd4x69THntzkcmN6NVS6tAF5XakdQ4c= +SIZE (links-2.14.tar.gz) = 7142389 Index: patches/patch-https_c =================================================================== RCS file: /cvs/ports/www/links+/patches/patch-https_c,v retrieving revision 1.4 diff -u -p -r1.4 patch-https_c --- patches/patch-https_c 3 Sep 2016 09:33:19 -0000 1.4 +++ patches/patch-https_c 30 Nov 2016 01:40:50 -0000 @@ -1,7 +1,7 @@ $OpenBSD: patch-https_c,v 1.4 2016/09/03 09:33:19 sthen Exp $ ---- https.c.orig Sun Jun 26 18:52:02 2016 -+++ https.c Thu Sep 1 20:15:20 2016 -@@ -89,6 +89,11 @@ SSL *getSSL(void) +--- https.c.orig Sat Nov 19 13:52:07 2016 ++++ https.c Mon Nov 28 22:16:21 2016 +@@ -88,6 +88,11 @@ links_ssl *getSSL(void) RAND_write_file(cast_const_char f_randfile); } }
