tron [Mon, 17 May 2010 22:38:02 +0000 (22:38 +0000)]
Pullup ticket #3123 - requested by taca
www/geeklog: security update
Revisioned pulled up:
- www/geeklog/Makefile 1.27
- www/geeklog/distinfo 1.13
---
Module Name: pkgsrc
Committed By: taca
Date: Mon May 17 15:46:38 UTC 2010
Modified Files:
pkgsrc/www/geeklog: Makefile distinfo
Log Message:
Update geeklog package to 1.6.1.1 (1.6.1sr1).
May 9, 2010 (1.6.1sr1)
------------
This release addresses the following security issue:
The autologin (using the long-term session cookie) is vulnerable to dictionary
attacks. This issue was originally reported by Bookoo of the Nine Situations
Group in one of his reports in April 2009 but apparently overlooked by the
Geeklog Team. Thanks to geeklog.net user Jack for pointing this out.
tron [Mon, 17 May 2010 06:44:50 +0000 (06:44 +0000)]
Pullup ticket #3118.
tron [Mon, 17 May 2010 06:35:07 +0000 (06:35 +0000)]
Pullup ticket #3118 - requested by markd
net/kdenetwork4: security patch
Revisions pulled up:
- net/kdenetwork4/Makefile 1.10 via patch
- net/kdenetwork4/distinfo 1.9 via patch
- net/kdenetwork4/patches/patch-ba 1.1 via patch
- net/kdenetwork4/patches/patch-bb 1.1 via patch
---
Subject: CVS commit: pkgsrc/net/kdenetwork4
Date: Monday 17 May 2010, 09:21:39
From: Mark Davies <markd@netbsd.org>
To: pkgsrc-changes@netbsd.org
Module Name: pkgsrc
Committed By: markd
Date: Sun May 16 21:21:39 UTC 2010
Modified Files:
pkgsrc/net/kdenetwork4: Makefile distinfo
Added Files:
pkgsrc/net/kdenetwork4/patches: patch-ba patch-bb patch-bc patch-bd
Log Message:
Fix from KDE security advisory
20100513-1.
tron [Sun, 16 May 2010 23:24:53 +0000 (23:24 +0000)]
Pullup tickets #3116 and #3117.
tron [Sun, 16 May 2010 23:14:25 +0000 (23:14 +0000)]
Pullup ticket #3117 - requested by heinz
misc/esniper: compatibilty update
Revisions pulled up:
- misc/esniper/Makefile 1.19
- misc/esniper/distinfo 1.15
---
Module Name: pkgsrc
Committed By: heinz
Date: Sun May 16 15:05:08 UTC 2010
Modified Files:
pkgsrc/misc/esniper: Makefile distinfo
Log Message:
Updated to version 2.23.0
Pkgsrc changes:
- none
Changes since version 2.22.0:
=============================
2010-05-15
* 2.23.0 released
* Fixed -m option (thanks, deadolus!)
2010-05-14
* Fixed bug 3001249: bid history parsing bug
tron [Sun, 16 May 2010 23:10:15 +0000 (23:10 +0000)]
Pullup ticket #3116 - requested by wiz
sysutils/bacula: portability fix
Revisions pulled up:
- sysutils/bacula/Makefile.common 1.55
---
Module Name: pkgsrc
Committed By: wiz
Date: Sun May 16 13:08:11 UTC 2010
Modified Files:
pkgsrc/sysutils/bacula: Makefile.common
Log Message:
Disable extattr on DragonFly. From Jan Lentfer in PR 43312.
tron [Fri, 14 May 2010 19:48:01 +0000 (19:48 +0000)]
Pullup ticket #3115.
tron [Fri, 14 May 2010 19:47:14 +0000 (19:47 +0000)]
Pullup ticket #3115 - requested by wiz
net/tor: bug fix update
Revisions pulled up:
- net/tor/Makefile 1.73
- net/tor/distinfo 1.42
---
Module Name: pkgsrc
Committed By: wiz
Date: Thu May 13 19:42:09 UTC 2010
Modified Files:
pkgsrc/net/tor: Makefile distinfo
Log Message:
Update to 0.2.1.26, from maintainer Christian Sturm in PR 43302:
Changes in version 0.2.1.26 - 2010-05-02
Tor 0.2.1.26 addresses the recent connection and memory overload
problems we've been seeing on relays, especially relays with their
DirPort open. If your relay has been crashing, or you turned it off
because it used too many resources, give this release a try.
This release also fixes yet another instance of broken OpenSSL libraries
that was causing some relays to drop out of the consensus.
o Major bugfixes:
- Teach relays to defend themselves from connection overload. Relays
now close idle circuits early if it looks like they were intended
for directory fetches. Relays are also more aggressive about closing
TLS connections that have no circuits on them. Such circuits are
unlikely to be re-used, and tens of thousands of them were piling
up at the fast relays, causing the relays to run out of sockets
and memory. Bugfix on 0.2.0.22-rc (where clients started tunneling
their directory fetches over TLS).
- Fix SSL renegotiation behavior on OpenSSL versions like on Centos
that claim to be earlier than 0.9.8m, but which have in reality
backported huge swaths of 0.9.8m or 0.9.8n renegotiation
behavior. Possible fix for some cases of bug 1346.
- Directory mirrors were fetching relay descriptors only from v2
directory authorities, rather than v3 authorities like they should.
Only 2 v2 authorities remain (compared to 7 v3 authorities), leading
to a serious bottleneck. Bugfix on 0.2.0.9-alpha. Fixes bug 1324.
o Minor bugfixes:
- Finally get rid of the deprecated and now harmful notion of "clique
mode", where directory authorities maintain TLS connections to
every other relay.
o Testsuite fixes:
- In the util/threads test, no longer free the test_mutex before all
worker threads have finished. Bugfix on 0.2.1.6-alpha.
- The master thread could starve the worker threads quite badly on
certain systems, causing them to run only partially in the allowed
window. This resulted in test failures. Now the master thread sleeps
occasionally for a few microseconds while the two worker-threads
compete for the mutex. Bugfix on 0.2.0.1-alpha.
spz [Thu, 13 May 2010 13:38:02 +0000 (13:38 +0000)]
pullup #3114
spz [Thu, 13 May 2010 13:36:27 +0000 (13:36 +0000)]
Pullup ticket 3114 - requested by tron
security update
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile 1.44
- pkgsrc/net/wireshark/distinfo 1.30
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu May 13 07:03:22 UTC 2010
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Log Message:
Update "wireshark" package to version 1.2.8. Changes since 1.2.7:
- The following vulnerabilities have been fixed. See the security
advisory for details and a workaround.
o The DOCSIS dissector could crash. (Bug 4644), (bug 4646) -->
Versions affected: 0.9.6 to 1.0.12, 1.2.0 to 1.2.7
- The following bugs have been fixed:
o HTTP parser limits with Content-Length. (Bug 1958)
o MATE dissector bug with GOGs. (Bug 3010)
o Changing fonts and deleting system time from preferences,
results in wireshark crash. (Bug 3387)
o ERF file starting with record with timestamp=3D0,1 or 2 not
recognized as ERF file. (Bug 4503)
o The SSL dissector can not correctly resemple SSL records when
the record header is spit between packets. (Bug 4535)
o TCP reassembly can call subdissector with incorrect TCP
sequence number. (Bug 4624)
o PTP dissector displays big correction field values wrong. (Bug
4635)
o MSF is at Anthorn, not Rugby. (Bug 4678)
o ProtoField __tostring() description is missing in Wireshark's
Lua API Reference Manual. (Bug 4695)
o EVRC packet bundling not handled correctly. (Bug 4718)
o Completely unresponsive when run very first time by root user.
(Bug 4308)
- Updated Protocol Support: DOCSIS, HTTP, SSL
- Updated Capture File Support: ERF, PacketLogger.
To generate a diff of this commit:
cvs rdiff -u -r1.43 -r1.44 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.29 -r1.30 pkgsrc/net/wireshark/distinfo
tron [Wed, 12 May 2010 21:21:02 +0000 (21:21 +0000)]
Pullup ticket #3113.
tron [Wed, 12 May 2010 21:20:07 +0000 (21:20 +0000)]
Pullup ticket #3113 - requested by spz:
databases/postgresql82: security update
databases/postgresql82-adminpack: security update
databases/postgresql82-client: security update
databases/postgresql82-plperl: security update
databases/postgresql82-plpython: security update
databases/postgresql82-pltcl: security update
databases/postgresql82-server: security update
databases/postgresql82-tsearch2: security update
databases/postgresql83: security update
databases/postgresql83-adminpack: security update
databases/postgresql83-client: security update
databases/postgresql83-plperl: security update
databases/postgresql83-plpython: security update
databases/postgresql83-pltcl: security update
databases/postgresql83-server: security update
databases/postgresql84: security update
databases/postgresql84-adminpack: security update
databases/postgresql84-client: security update
databases/postgresql84-plperl: security update
databases/postgresql84-plpython: security update
databases/postgresql84-pltcl: security update
databases/postgresql84-server: security update
databases/postgresql82: security update
databases/postgresql83: security update
databases/postgresql84: security update
Revisions pulled up:
- databases/postgresql82-adminpack/Makefile 1.8
- databases/postgresql82-client/Makefile 1.13
- databases/postgresql82-client/PLIST 1.18
- databases/postgresql82-plperl/Makefile 1.10
- databases/postgresql82-plpython/Makefile 1.10
- databases/postgresql82-pltcl/Makefile 1.7
- databases/postgresql82-server/Makefile 1.11
- databases/postgresql82-server/PLIST 1.12
- databases/postgresql82-tsearch2/Makefile 1.8
- databases/postgresql82/Makefile.common 1.19-1.20
- databases/postgresql82/distinfo 1.19
- databases/postgresql82/patches/patch-ad delete
- databases/postgresql82/patches/patch-ae delete
- databases/postgresql83-adminpack/Makefile 1.4
- databases/postgresql83-client/Makefile 1.13-1.14
- databases/postgresql83-client/PLIST 1.12
- databases/postgresql83-plperl/Makefile 1.6
- databases/postgresql83-plpython/Makefile 1.7
- databases/postgresql83-pltcl/Makefile 1.4
- databases/postgresql83-server/Makefile 1.11
- databases/postgresql83-server/PLIST 1.10
- databases/postgresql83/Makefile.common 1.10-1.11
- databases/postgresql83/distinfo 1.11
- databases/postgresql83/patches/patch-ad delete
- databases/postgresql83/patches/patch-ae delete
- databases/postgresql84-adminpack/Makefile 1.3
- databases/postgresql84-client/Makefile 1.6-1.7
- databases/postgresql84-client/PLIST 1.5
- databases/postgresql84-plperl/Makefile 1.3
- databases/postgresql84-plpython/Makefile 1.4
- databases/postgresql84-pltcl/Makefile 1.3
- databases/postgresql84-server/Makefile 1.7
- databases/postgresql84-server/PLIST 1.4
- databases/postgresql84/Makefile.common 1.4-1.5
- databases/postgresql84/distinfo 1.4
- databases/postgresql84/patches/patch-ad delete
- databases/postgresql84/patches/patch-ae delete
- databases/postgresql84/patches/patch-ai 1.2
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 12 09:58:39 UTC 2010
Modified Files:
pkgsrc/databases/postgresql84: Makefile.common distinfo
pkgsrc/databases/postgresql84-adminpack: Makefile
pkgsrc/databases/postgresql84-client: Makefile
pkgsrc/databases/postgresql84-plperl: Makefile
pkgsrc/databases/postgresql84-plpython: Makefile
pkgsrc/databases/postgresql84-pltcl: Makefile
pkgsrc/databases/postgresql84-server: Makefile PLIST
pkgsrc/databases/postgresql84/patches: patch-ai
Removed Files:
pkgsrc/databases/postgresql84/patches: patch-ad patch-ae
Log Message:
Changes 8.4.3:
* Add new configuration parameter ssl_renegotiation_limit to control
how often we do session key renegotiation for an SSL connection
* Fix possible deadlock during backend startup
* Fix possible crashes due to not handling errors during relcache
reload cleanly
* Fix possible crash due to use of dangling pointer to a cached plan
* Fix possible crash due to overenthusiastic invalidation of cached
plan for "ROLLBACK"
* Fix possible crashes when trying to recover from a failure in
subtransaction start
* Fix server memory leak associated with use of savepoints and a
client encoding different from server's encoding
* Fix incorrect WAL data emitted during end-of-recovery cleanup of a
GIST index page split
* Fix bug in WAL redo cleanup method for GIN indexes
* Fix incorrect comparison of scan key in GIN index search
* Make substring() for bit types treat any negative length as meaning
"all the rest of the string"
The previous coding treated only -1 that way, and would produce an
invalid result value for other negative values, possibly leading to
a crash (CVE-2010-0442).
* Fix integer-to-bit-string conversions to handle the first
fractional byte correctly when the output bit width is wider than
the given integer by something other than a multiple of 8 bits
* Fix some cases of pathologically slow regular expression matching
* Fix bug occurring when trying to inline a SQL function that returns
a set of a composite type that contains dropped columns
* Fix bug with trying to update a field of an element of a
composite-type array column
* Avoid failure when "EXPLAIN" has to print a FieldStore or
assignment ArrayRef expression
These cases can arise now that "EXPLAIN VERBOSE" tries to print
plan node target lists.
* Avoid an unnecessary coercion failure in some cases where an
undecorated literal string appears in a subquery within
"UNION"/"INTERSECT"/"EXCEPT"
This fixes a regression for some cases that worked before 8.4.
* Avoid undesirable rowtype compatibility check failures in some
cases where a whole-row Var has a rowtype that contains dropped
columns
* Fix the STOP WAL LOCATION entry in backup history files to report
the next WAL segment's name when the end location is exactly at a
segment boundary
* Always pass the catalog ID to an option validator function
specified in "CREATE FOREIGN DATA WRAPPER"
* Fix some more cases of temporary-file leakage
* Add support for doing FULL JOIN ON FALSE
* Improve constraint exclusion processing of boolean-variable cases,
in particular make it possible to exclude a partition that has a
"bool_column = false" constraint
* Prevent treating an INOUT cast as representing binary compatibility
* Include column name in the message when warning about inability to
grant or revoke column-level privileges
This is more useful than before and helps to prevent confusion when
a "REVOKE" generates multiple messages, which formerly appeared to
be duplicates.
* When reading "pg_hba.conf" and related files, do not treat
@something as a file inclusion request if the @ appears inside
quote marks; also, never treat @ by itself as a file inclusion
request
* Prevent infinite loop on some platforms if a directory is named as
an inclusion target in "pg_hba.conf" and related files
* Fix possible infinite loop if SSL_read or SSL_write fails without
setting errno
This is reportedly possible with some Windows versions of openssl.
* Disallow GSSAPI authentication on local connections, since it
requires a hostname to function correctly
* Protect ecpg against applications freeing strings unexpectedly
* Make ecpg report the proper SQLSTATE if the connection disappears
* Fix translation of cell contents in psql \d output
* Fix psql's numericlocale option to not format strings it shouldn't
in latex and troff output formats
* Fix a small per-query memory leak in psql
* Make psql return the correct exit status (3) when ON_ERROR_STOP and
--single-transaction are both specified and an error occurs during
the implied "COMMIT"
* Fix pg_dump's output of permissions for foreign servers
* Fix possible crash in parallel pg_restore due to out-of-range
dependency IDs
* Fix plpgsql failure in one case where a composite column is set to NULL
* Fix possible failure when calling PL/Perl functions from PL/PerlU
or vice versa
* Add volatile markings in PL/Python to avoid possible
compiler-specific misbehavior
* Ensure PL/Tcl initializes the Tcl interpreter fully
The only known symptom of this oversight is that the Tcl clock
command misbehaves if using Tcl 8.5 or later.
* Prevent ExecutorEnd from being run on portals created within a
failed transaction or subtransaction
This is known to cause issues when using "contrib/auto_explain".
* Prevent crash in "contrib/dblink" when too many key columns are
specified to a dblink_build_sql_* function
* Allow zero-dimensional arrays in "contrib/ltree" operations
* Fix assorted crashes in "contrib/xml2" caused by sloppy memory
management
* Make building of "contrib/xml2" more robust on Windows
* Fix race condition in Windows signal handling
One known symptom of this bug is that rows in pg_listener could be
dropped under heavy load.
* Make the configure script report failure if the C compiler does not
provide a working 64-bit integer datatype
This case has been broken for some time, and no longer seems worth
supporting, so just reject it at configure time instead.
* Update time zone data files to tzdata release 2010e for DST law
changes in Bangladesh, Chile, Fiji, Mexico, Paraguay, Samoa.
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Apr 15 03:25:25 UTC 2010
Modified Files:
pkgsrc/databases/postgresql84-client: Makefile PLIST
Log Message:
Add missing some documentation files to PLIST.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 12 09:53:50 UTC 2010
Modified Files:
pkgsrc/databases/postgresql83: Makefile.common distinfo
pkgsrc/databases/postgresql83-adminpack: Makefile
pkgsrc/databases/postgresql83-client: Makefile
pkgsrc/databases/postgresql83-plperl: Makefile
pkgsrc/databases/postgresql83-plpython: Makefile
pkgsrc/databases/postgresql83-pltcl: Makefile
pkgsrc/databases/postgresql83-server: Makefile PLIST
Removed Files:
pkgsrc/databases/postgresql83/patches: patch-ad patch-ae
Log Message:
Changes 8.3.10:
* Add new configuration parameter ssl_renegotiation_limit to control
how often we do session key renegotiation for an SSL connection
* Fix possible deadlock during backend startup
* Fix possible crashes due to not handling errors during relcache
reload cleanly
* Fix possible crash due to use of dangling pointer to a cached plan
* Fix possible crashes when trying to recover from a failure in
subtransaction start
* Fix server memory leak associated with use of savepoints and a
client encoding different from server's encoding
* Fix incorrect WAL data emitted during end-of-recovery cleanup of a
GIST index page split
* Make substring() for bit types treat any negative length as meaning
"all the rest of the string"
The previous coding treated only -1 that way, and would produce an
invalid result value for other negative values, possibly leading to
a crash (CVE-2010-0442).
* Fix integer-to-bit-string conversions to handle the first
fractional byte correctly when the output bit width is wider than
the given integer by something other than a multiple of 8 bits
* Fix some cases of pathologically slow regular expression matching
* Fix assorted crashes in xml processing caused by sloppy memory
management
* Fix bug with trying to update a field of an element of a
composite-type array column
* Fix the STOP WAL LOCATION entry in backup history files to report
the next WAL segment's name when the end location is exactly at a
segment boundary
* Fix some more cases of temporary-file leakage
This corrects a problem introduced in the previous minor release.
One case that failed is when a plpgsql function returning set is
called within another function's exception handler.
* Improve constraint exclusion processing of boolean-variable cases,
in particular make it possible to exclude a partition that has a
"bool_column = false" constraint
* When reading "pg_hba.conf" and related files, do not treat
@something as a file inclusion request if the @ appears inside
quote marks; also, never treat @ by itself as a file inclusion
request
* Prevent infinite loop on some platforms if a directory is named as
an inclusion target in "pg_hba.conf" and related files
* Fix possible infinite loop if SSL_read or SSL_write fails without
setting errno
This is reportedly possible with some Windows versions of openssl.
* Disallow GSSAPI authentication on local connections, since it
requires a hostname to function correctly
* Make ecpg report the proper SQLSTATE if the connection disappears
* Fix psql's numericlocale option to not format strings it shouldn't
in latex and troff output formats
* Make psql return the correct exit status (3) when ON_ERROR_STOP and
--single-transaction are both specified and an error occurs during
the implied "COMMIT"
* Fix plpgsql failure in one case where a composite column is set to NULL
* Fix possible failure when calling PL/Perl functions from PL/PerlU
or vice versa
* Add volatile markings in PL/Python to avoid possible
compiler-specific misbehavior
* Ensure PL/Tcl initializes the Tcl interpreter fully
The only known symptom of this oversight is that the Tcl clock
command misbehaves if using Tcl 8.5 or later.
* Prevent crash in "contrib/dblink" when too many key columns are
specified to a dblink_build_sql_* function
* Allow zero-dimensional arrays in "contrib/ltree" operations
* Fix assorted crashes in "contrib/xml2" caused by sloppy memory
management
* Make building of "contrib/xml2" more robust on Windows
* Fix race condition in Windows signal handling
One known symptom of this bug is that rows in pg_listener could be
dropped under heavy load.
* Update time zone data files to tzdata release 2010e for DST law
changes in Bangladesh, Chile, Fiji, Mexico, Paraguay, Samoa.
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Apr 15 03:25:05 UTC 2010
Modified Files:
pkgsrc/databases/postgresql83-client: Makefile PLIST
Log Message:
Add missing some documentation files to PLIST.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 12 09:48:49 UTC 2010
Modified Files:
pkgsrc/databases/postgresql82: Makefile.common distinfo
pkgsrc/databases/postgresql82-adminpack: Makefile
pkgsrc/databases/postgresql82-client: Makefile PLIST
pkgsrc/databases/postgresql82-plperl: Makefile
pkgsrc/databases/postgresql82-plpython: Makefile
pkgsrc/databases/postgresql82-pltcl: Makefile
pkgsrc/databases/postgresql82-server: Makefile PLIST
pkgsrc/databases/postgresql82-tsearch2: Makefile
Removed Files:
pkgsrc/databases/postgresql82/patches: patch-ad patch-ae
Log Message:
Changes 8.2.16:
* Add new configuration parameter ssl_renegotiation_limit to control
how often we do session key renegotiation for an SSL connection
* Fix possible deadlock during backend startup
* Fix possible crashes due to not handling errors during relcache
reload cleanly
* Fix possible crashes when trying to recover from a failure in
subtransaction start
* Fix server memory leak associated with use of savepoints and a
client encoding different from server's encoding
* Fix incorrect WAL data emitted during end-of-recovery cleanup of a
GIST index page split
* Make substring() for bit types treat any negative length as meaning
"all the rest of the string"
The previous coding treated only -1 that way, and would produce an
invalid result value for other negative values, possibly leading to
a crash (CVE-2010-0442).
* Fix integer-to-bit-string conversions to handle the first
fractional byte correctly when the output bit width is wider than
the given integer by something other than a multiple of 8 bits
* Fix some cases of pathologically slow regular expression matching
* Fix the STOP WAL LOCATION entry in backup history files to report
the next WAL segment's name when the end location is exactly at a
segment boundary
* Fix some more cases of temporary-file leakage
* Improve constraint exclusion processing of boolean-variable cases,
in particular make it possible to exclude a partition that has a
"bool_column = false" constraint
* When reading "pg_hba.conf" and related files, do not treat
@something as a file inclusion request if the @ appears inside
quote marks; also, never treat @ by itself as a file inclusion
request
* Prevent infinite loop on some platforms if a directory is named as
an inclusion target in "pg_hba.conf" and related files
* Fix possible infinite loop if SSL_read or SSL_write fails without
setting errno
This is reportedly possible with some Windows versions of openssl.
* Fix psql's numericlocale option to not format strings it shouldn't
in latex and troff output formats
* Make psql return the correct exit status (3) when ON_ERROR_STOP and
--single-transaction are both specified and an error occurs during
the implied "COMMIT"
* Fix plpgsql failure in one case where a composite column is set to NULL
* Fix possible failure when calling PL/Perl functions from PL/PerlU
or vice versa
* Add volatile markings in PL/Python to avoid possible
compiler-specific misbehavior
* Ensure PL/Tcl initializes the Tcl interpreter fully
The only known symptom of this oversight is that the Tcl clock
command misbehaves if using Tcl 8.5 or later.
* Prevent crash in "contrib/dblink" when too many key columns are
specified to a dblink_build_sql_* function
* Fix assorted crashes in "contrib/xml2" caused by sloppy memory
management
* Make building of "contrib/xml2" more robust on Windows
* Fix race condition in Windows signal handling
One known symptom of this bug is that rows in pg_listener could be
dropped under heavy load.
* Update time zone data files to tzdata release 2010e for DST law
changes in Bangladesh, Chile, Fiji, Mexico, Paraguay, Samoa.
---
Module Name: pkgsrc
Committed By: adam
Date: Fri Apr 23 16:03:24 UTC 2010
Modified Files:
pkgsrc/databases/postgresql82: Makefile.common
pkgsrc/databases/postgresql83: Makefile.common
pkgsrc/databases/postgresql84: Makefile.common
Log Message:
Fixed meta package building
tron [Tue, 11 May 2010 21:18:48 +0000 (21:18 +0000)]
Pullup ticket #3111.
tron [Tue, 11 May 2010 21:17:59 +0000 (21:17 +0000)]
Pullup ticket #3111 - requested by taca
www/typolight27-example: build fix
Revisions pulled up:
- www/typolight27-example/Makefile 1.4
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 11 13:28:46 UTC 2010
Modified Files:
pkgsrc/www/typolight27-example: Makefile
Log Message:
Add DIST_SUBDIR to match typolight27's update.
spz [Sun, 9 May 2010 18:11:53 +0000 (18:11 +0000)]
pullup #3108
spz [Sun, 9 May 2010 18:10:13 +0000 (18:10 +0000)]
Pullup ticket 3108 - requested by tez and tron
security update
Revisions pulled up:
- pkgsrc/mail/fetchmail/Makefile 1.173
- pkgsrc/mail/fetchmail/distinfo 1.43
- pkgsrc/mail/fetchmailconf/Makefile 1.79
Files added:
pkgsrc/mail/fetchmail/MESSAGE
pkgsrc/mail/fetchmail/patches/patch-aa
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tez
Date: Sat May 8 15:34:59 UTC 2010
Modified Files:
pkgsrc/mail/fetchmail: Makefile distinfo
Added Files:
pkgsrc/mail/fetchmail: MESSAGE
Log Message:
Update to 6.3.17 per PR#43269
fetchmail-6.3.17 (released 2010-05-06, 25767 LoC):
# SECURITY FIX
* CVE-2010-1167: Fetchmail before release 6.3.17 did not properly sanitize
external input (mail headers and UID). When a multi-character locale (such as
# FEATURES
* Fetchmail now supports a --sslcertfile <file> option to specify a "CA bundle"
file (a file that contains trusted CA certificates). Since these bundled CA
files do not require c_rehash to be run, they are easier to use and immune to
OpenSSL library updates that affect the hash function.
* Fetchmail now supports a FETCHMAIL_INCLUDE_DEFAULT_X509_CA_CERTS
environment variable to force loading the default SSL CA certificate
locations even if --sslcertfile or --sslcertpath is used.
If neither option is in effect, fetchmail loads the default locations.
# REGRESSION FIX
* Fix string handling in rcfile scanner, which caused fetchmail to misparse a
run control file in certain circumstances. Fixes BerliOS bug #14257.
Patch by Michael Banack. This fixes a regression introduced before 6.3.0.
# BUG FIXES
* Plug memory leak when using a "defaults" entry in the run control file.
* Do not print SSL certificate mismatches unless verbose or --sslcertck is
enabled.
* Do not lose "set invisible" in fetchmailconf. (Michael Barnack)
# CHANGES
* Usability: SSL certificate chains are fully printed in -v -v mode, and there
are now helpful pointers to --sslcertpath and c_rehash for "unable to get
local issuer certificate" and self-signed certificates -- these usually hint
to missing root signing CAs in the certs directory.
* Several fixes for compiler (GCC, Intel C++, CLang) and autotools warnings
* Memory allocation failures will now cause abnormal program abort (SIGABRT),
no longer an exit with unspecified code.
# DOCUMENTATION
* Fix table of global option to read "set softbounce" where there used to be a
2nd copy of "set spambounce". Patch by Michael Banack, BerliOS Bug #17067.
* In the --sslcertpath description, mention that OpenSSL upgrade (and a 0.9.X
to 1.0.0 upgrade in particular) may require running c_rehash.
# TRANSLATION UPDATES
[zh_CN] Chinese/simplified (Ji Zheng-Yu)
[cs] Czech (Petr Pisar)
[nl] Dutch (Erwin Poeze)
[fr] French (Fr\xc3<A9>d\xc3<A9>ric Marchal)
[de] German
[id] Indonesian (Andhika Padmawan)
[it] Italian (Vincenzo Campanella)
[ja] Japanese (Takeshi Hamasaki)
[pl] Polish (Jakub Bogusz)
[sk] Slovak (Marcel Telka)
[vi] Vietnamese (Clytie Siddall)
# KNOWN BUGS AND WORKAROUNDS:
(this section floats upwards through the NEWS file so it stays with the
current release information - however, it was stuck with 6.3.8 for a while)
* fetchmail does not handle messages without Message-ID header well
(See sourceforge.net bug #780933)
* BSMTP is mostly untested and errors can cause corrupt output.
* Sun Workshop 6 (SPARC) is known to miscompile the configuration file lexer in
64-bit mode. Either compile 32-bit code or use GCC to compile 64-bit
fetchmail. Note that fetchmail doesn't take advantage of 64-bit code,
so compiling 32-bit SPARC code should not cause any difficulties.
* fetchmail does not track pending deletes over crashes
* the command line interface is sometimes a bit stubborn, for instance,
fetchmail -s doesn't work with a daemon running
fetchmail-6.3.16 (released 2010-04-06, 25574 LoC):
# BUG FIX
* Fix --interface option, broken in 6.3.15. Reported by Vladmimir Stavrinov.
Fixes Debian Bug #576717.
# CHANGE
* Call OpenSSL_add_all_algorithms(). This is needed to support non-mandatory
and non-standard algorithms in certificates.
Sjoerd Simons, to fix Debian Bug #576430.
OpenSSL 0.9.8* does not load - for instance - the SHA256 digest by default.
Reported as OpenSSL RT#2224.
fetchmail-6.3.15 (released 2010-03-28, 25572 LoC):
# FEATURE
* Fetchmail now supports a bad-header command line or rcfile option that takes
exactly one argument, accept or reject (default). This specifies how messages
with bad headers retrieved from the current server are to be treated.
# BUG FIXES
* In the rcfile, recognize "local" as abbreviation for "localdomains", as
documented. The short form has not ever worked since this feature was added in
January 1997. Reported by Fr\xc3<A9>d\xc3<A9>ric Marchal.
* Do not close stdout when using mda and "bsmtp -" at the same time.
* Log operating system errors when BSMTP writes fail.
* Fix verbose mode progress formatting regression from 6.3.10; SMTP trace lines
were no longer on a line of their own. Reported by Melchior Franz.
* Check seteuid() return value and abort running MDA if switch fails.
* Set global flags in a consistent manner. Make --nosoftbounce and
--nobounce work from command line (these used to work in rcfiles).
Reported and fix confirmed working by N.J. Mann. (Sunil Shetye)
* Properly import h_errno declarations, even on systems where h_errno isn't a
macro. (Adds ./configure check, fixes Cygwin dllimport warnings.)
# CHANGES
* The repository has been converted and moved from the Subversion (SVN) format
kindly hosted by Graham Wilson over the past years to Git format hosted on
Gitorious.org. My deepest thanks to Graham Wilson for this service that
kept us going when BerliOS's Subversion service was faulty in its early days.
* This opportunity was used to convert BRANCH_6-2 and BRANCH_1-9-9 to
GnuPG-signed tags, as a sign that these are now closed.
* The outdated SVN trunk is now called "oldtrunk" in Git just to save the work
for future reference. All development in the past few years was on BRANCH_6-3.
* master was branched from BRANCH_6-3. BRANCH_6-3 is now obsolete (and in fact
was also converted to a tag to record where the conversion from SVN to Git
took place).
* "make check" now skips HTML validation if xmllint or XHTML DTD are missing.
# DOCUMENTATION
* Web site and documentation were adjusted to reflect the SVN->Git move.
* The fetchmail manual page is now much clearer on the user id switching
(seteuid) when using --mda while running as the super user.
# TRANSLATION UPDATES, by language name
* [zh_CN] Chinese (Simplified), by Ji Zheng-Yu
* [cs] Czech, by Petr Pisar
* [nl] Dutch, by Erwin Poeze
* [fr] French, by Fr\xc3<A9>d\xc3<A9>ric Marchal
* [de] German
* [id] Indonesian, by Andhika Padmawan
* [it] Italian, by Vincenzo Campanella
* [ja] Japanese, by Takeshi Hamasaki
* [pl] Polish, by Jakub Bogusz
* [vi] Vietnamese, by Clytie Siddall
To generate a diff of this commit:
cvs rdiff -u -r0 -r1.1 pkgsrc/mail/fetchmail/MESSAGE
cvs rdiff -u -r1.171 -r1.172 pkgsrc/mail/fetchmail/Makefile
cvs rdiff -u -r1.41 -r1.42 pkgsrc/mail/fetchmail/distinfo
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun May 9 11:45:28 UTC 2010
Modified Files:
pkgsrc/mail/fetchmail: Makefile distinfo
Added Files:
pkgsrc/mail/fetchmail/patches: patch-aa
Log Message:
Add patch by Matthias Andree to avoid warnings about insecure connections
if SSL fingerprints are used.
To generate a diff of this commit:
cvs rdiff -u -r1.172 -r1.173 pkgsrc/mail/fetchmail/Makefile
cvs rdiff -u -r1.42 -r1.43 pkgsrc/mail/fetchmail/distinfo
cvs rdiff -u -r0 -r1.8 pkgsrc/mail/fetchmail/patches/patch-aa
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun May 9 11:54:21 UTC 2010
Modified Files:
pkgsrc/mail/fetchmailconf: Makefile
Log Message:
Unbreak "fetchmailconf" package by updating it to version 6.3.17 as well.
Changes since version 6.3.14:
# BUG FIXES
* Do not lose "set invisible" in fetchmailconf. (Michael Barnack)
To generate a diff of this commit:
cvs rdiff -u -r1.78 -r1.79 pkgsrc/mail/fetchmailconf/Makefile
tron [Sun, 9 May 2010 14:20:24 +0000 (14:20 +0000)]
Pullup ticket #3110.
tron [Sun, 9 May 2010 13:00:26 +0000 (13:00 +0000)]
Pullup ticket #3110 - requested wiz
databases/mysql51-server: portability fix
Revisions pulled up:
- databases/mysql51-server/distinfo 1.5
- databases/mysql51-server/patches/patch-al delete
---
Module Name: pkgsrc
Committed By: wiz
Date: Sat May 8 20:48:37 UTC 2010
Modified Files:
pkgsrc/databases/mysql51-server: distinfo
Removed Files:
pkgsrc/databases/mysql51-server/patches: patch-al
Log Message:
Fix build on DragonFly by removing DragonFly-specific patch.
From Alexander Polakov in PR 43280.
tron [Sat, 8 May 2010 22:23:08 +0000 (22:23 +0000)]
Pullup ticket #3109.
tron [Sat, 8 May 2010 22:21:46 +0000 (22:21 +0000)]
Pullup ticket #3109 - requested by tez
devel/pcre: security update
Revisions pulled up:
- devel/pcre/Makefile 1.56
- devel/pcre/distinfo 1.38
---
Module Name: pkgsrc
Committed By: drochner
Date: Tue Apr 13 16:49:43 UTC 2010
Modified Files:
pkgsrc/devel/pcre: Makefile distinfo
Log Message:
update to 8.02
changes:
-Unicode data tables have been updated to Unicode 5.2.0
-bugfixes
tron [Thu, 6 May 2010 12:15:55 +0000 (12:15 +0000)]
Pullup tickets #3103 and #3106.
tron [Thu, 6 May 2010 12:14:39 +0000 (12:14 +0000)]
Pullup ticket #3106 - requested by tez
lang/gcc34: security patch
Revisions pulled up:
- lang/gcc34/Makefile 1.45
- lang/gcc34/distinfo 1.20
---
Module Name: pkgsrc
Committed By: tez
Date: Tue May 4 20:46:31 UTC 2010
Modified Files:
pkgsrc/lang/gcc34: Makefile distinfo
Added Files:
pkgsrc/lang/gcc34/patches: patch-cd
Log Message:
Add patch to embedded libltdl for CVE-2009-3736 from:
http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html
tron [Thu, 6 May 2010 09:53:32 +0000 (09:53 +0000)]
Pullup ticket #3103 - requested by markd
x11/kdebase-workspace4: security patch
Revisions pulled up:
- x11/kdebase-workspace4/Makefile 1.13 via patch
- x11/kdebase-workspace4/distinfo 1.7 via patch
---
Module Name: pkgsrc
Committed By: markd
Date: Wed May 5 11:52:48 UTC 2010
Modified Files:
pkgsrc/x11/kdebase-workspace4: Makefile distinfo
Log Message:
Fix for CVE-2010-0436. Bump PKGREVISION.
tron [Tue, 4 May 2010 22:56:05 +0000 (22:56 +0000)]
Pullup tickets #3101 and #3102.
tron [Tue, 4 May 2010 22:54:58 +0000 (22:54 +0000)]
Pullup ticket #3102 - requested by gdt
chat/jabberd: portability fix
Revisions pulled up:
- chat/jabberd/Makefile 1.33
- chat/jabberd/distinfo 1.8
- chat/jabberd/patches/patch-ad 1.4
---
Module Name: pkgsrc
Committed By: gdt
Date: Tue May 4 18:33:35 UTC 2010
Modified Files:
pkgsrc/chat/jabberd: Makefile distinfo
pkgsrc/chat/jabberd/patches: patch-ad
Log Message:
Call SSL_library_init() before any other operations. Fixes "no
ciphers" problem with newer openssl. From
http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/2005-October/000219.html
tron [Tue, 4 May 2010 22:51:43 +0000 (22:51 +0000)]
Pullup ticket #3101 - requested by taca
typolight27: build fix
Revisions pulled up:
- www/typolight27/Makefile 1.17
- www/typolight27/distinfo 1.11
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 4 13:18:19 UTC 2010
Modified Files:
pkgsrc/www/typolight27: Makefile distinfo
Log Message:
Since DISTFILES has been changed with the same filename, now
specify DIST_SUBDIR. Fix PR pkg/43249 reported by Robert Elz.
The change was installed TYPOlight's version string only but
binary package has changed. So, bump PKGREVISION.
tron [Sun, 2 May 2010 23:23:26 +0000 (23:23 +0000)]
Pullup tickets #3097 and #3098.
tron [Sun, 2 May 2010 23:22:11 +0000 (23:22 +0000)]
Pullup ticket #3098 - requested by taca
www/typolight28: security update
Revisions pulled up:
- www/typolight28/Makefile 1.6-1.7
- www/typolight28/Makefile.version 1.6
- www/typolight28/PLIST 1.5
- www/typolight28/distinfo 1.6-1.7
---
ommitted By: taca
Date: Sat Apr 17 18:23:35 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile distinfo
Added Files:
pkgsrc/www/typolight28/patches: patch-aa patch-ab patch-ac
Log Message:
Add patches to disable autoresize plugin of TinyMCE since it cause
unexpected redisplay with large editing area.
This change is derived from TYPOlight's SVN repository.
(http://dev.typolight.org/projects/typolight/repository/revisions/317
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat May 1 23:42:56 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile Makefile.version PLIST distinfo
Removed Files:
pkgsrc/www/typolight28/patches: patch-aa patch-ab patch-ac
Log Message:
Update typolight28 package from 2.8.2 to 2.8.3.
Version 2.8.3 (2010-05-01)
--------------------------
- Removed the TinyMCE autoresize plugin
- Fixed: function idnaEncode() encoded the URL multiple times (#1829)
- Fixed: insert tags were not removed in the page description (#1856)
- Fixed: the download element was not hidden if there was no downloadable file (#1853)
- Fixed: ampersand characters were not converted to entities in meta files (#1823, #1831)
- Fixed: image paths were converted to absolute URLs during PDF export (#1843)
- Fixed: search index URLs were incorrect when alias usage is disabled (#1864)
- Fixed: automatically deactivate invalid e-mail addresses while sending newsletters
- Fixed: skipFirst had no effect on news lists without pagination (#1872)
- Fixed: the ModuleWizard and TableWizard were dependent on tl_content (#1883)
- Fixed: the XML news/calendar feeds were not updated if modified via Ajax (#1833)
- Fixed: CSV import failed if the Safe Mode Hack was enabled (#1908)
- Fixed a remote code execution vulnerability in the PDF export function
- Fixed some minor issues
tron [Sun, 2 May 2010 23:13:25 +0000 (23:13 +0000)]
Pullup ticket #3098 - requested by taca
www/typolight28: security update
Revisions pulled up:
- www/typolight28/Makefile.version 1.5
- www/typolight28/PLIST 1.4
- www/typolight28/distinfo 1.5
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 13 15:43:59 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile.version PLIST distinfo
Log Message:
Update typolight28 package to 2.8.2.
Version 2.8.2 (2010-04-13)
--------------------------
- Updated TCPDF to version 4.9.011 (#1802)
- Updated TinyMCE to version 3.3.2 (#1711)
- Updated MooTools More to version 1.2.4.4 (#1697)
- Added: added the white Mediabox theme (#1637)
- Added: DC_Table "oncut_callback" and "oncopy_callback" (#1745)
- Added: added the active record to "ondelete_callbacks" (#1721)
- Added: added class "trail" to the custom navigation module (#1691)
- Added: added the wildcard ##token## to the newsletter subscription
module (#1729)
- Added: added the Russian typolinks translation to TinyMCE (#1744)
- Added: the image resizer now considers the file modification time (#1743)
- Added: added ­ as basic entity (#1768)
- Added: added the "mode" parameter to the image insert tag (#1712)
- Added: added a loadDataContainer hook (#1687)
- Added: added an addComment hook (#1669)
- Fixed: special HTML characters were encoded twice (#1642)
- Fixed: the newsletter reader failed to replace insert tags (#1645)
- Fixed: the subtree navigation did not work in the popup file manager (#1653)
- Fixed: the BBCode parser did not add missing URI protocols (#1658)
- Fixed: PDF exports contained incorrect download links (#1654)
- Fixed: the option "always show in sitemap" did not work for hidden
pages (#1679)
- Fixed: the downloads element did not hide meta.txt files (#1688)
- Fixed: the downloads element did not pass all meta information (#1689)
- Fixed: reverted the changes to the navigation menu (#1635)
- Fixed: the function addToUrl() generated invalid URLs in the front end (#1707)
- Fixed: the Config library did not handle numeric strings correctly (#286)
- Fixed: the Mediabox plugin did not support .jpeg file extensions (#1728)
- Fixed: the file manager allowed invalid file and folder names (#1699)
- Fixed: the news and event reader did not overwrite the page
description (#1702)
- Fixed: regular users were not able to copy/move multiple content
elements (#1715)
- Fixed: the PDF export function did not handle whitespace characters
correctly (#1716)
- Fixed: news headlines appeared twice in link headlines (#1749)
- Fixed: the search module did not remove insert tags from the
keywords string (#1750)
- Fixed: the file tree widget did not validate the mounted paths (#1746)
- Fixed: the task center e-mails contained invalid links (#1753)
- Fixed: the option "show protected pages" also showed guest pages (#1694)
- Fixed: the list wizard did not render correctly if the first item
was empty (#1740)
- Fixed: System::idnaEncode() encoded more than just the domain name (#1748)
- Fixed: the Captcha field was missing class="mandatory" (#1767)
- Fixed: the newsletter recipient importer did not count correctly (#1732)
- Fixed: regular users could not edit comments on unmounted pages (#1659)
- Fixed: the ZipReader class failed to handle empty files (#1804)
- Fixed: the Newsletter module did not embed images correctly (#1799)
- Fixed: parameters passed to the file insert tag were cached by the
Input object (#1818)
- Fixed a possible request forgery vulnerability in the back end
- Fixed some minor issues
tron [Sun, 2 May 2010 23:09:23 +0000 (23:09 +0000)]
Pullup ticket #3097 - requested by taca
typolight27: security update
Revisions pulled up:
- www/typolight27/Makefile.version 1.9
- www/typolight27/distinfo 1.10
---
Module Name: pkgsrc
Committed By: taca
Date: Sat May 1 23:41:16 UTC 2010
Modified Files:
pkgsrc/www/typolight27: Makefile.version distinfo
Log Message:
Update typolight27 package from 2.7.6 to 2.7.7.
Version 2.7.7 (2010-05-01)
--------------------------
- Consolidated security update
spz [Sun, 25 Apr 2010 18:20:21 +0000 (18:20 +0000)]
pullup #3092
spz [Sun, 25 Apr 2010 18:18:54 +0000 (18:18 +0000)]
Pullup ticket 3092 - requested by dholland
build fix
Revisions pulled up:
- pkgsrc/wm/golem/distinfo 1.7
Files added:
pkgsrc/wm/golem/patches/patch-ah
pkgsrc/wm/golem/patches/patch-ai
pkgsrc/wm/golem/patches/patch-aj
--------------------------------------------------------------------
Module Name: pkgsrc
Committed By: dholland
Date: Sat Apr 24 19:28:31 UTC 2010
Modified Files:
pkgsrc/wm/golem: distinfo
Added Files:
pkgsrc/wm/golem/patches: patch-ah patch-ai
Log Message:
Fix energizer-bunny-makefiles.
To generate a diff of this commit:
cvs rdiff -u -r1.5 -r1.6 pkgsrc/wm/golem/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/wm/golem/patches/patch-ah \
pkgsrc/wm/golem/patches/patch-ai
--------------------------------------------------------------------
Module Name: pkgsrc
Committed By: dholland
Date: Sat Apr 24 19:36:14 UTC 2010
Modified Files:
pkgsrc/wm/golem: distinfo
Added Files:
pkgsrc/wm/golem/patches: patch-aj
Log Message:
Hack around build problem with -current's lex.
To generate a diff of this commit:
cvs rdiff -u -r1.6 -r1.7 pkgsrc/wm/golem/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/wm/golem/patches/patch-aj
tron [Sun, 25 Apr 2010 18:17:42 +0000 (18:17 +0000)]
Pullup tickets #3093 and #3094.
tron [Sun, 25 Apr 2010 18:16:59 +0000 (18:16 +0000)]
Pullup ticket #3094 - requested by taca
mail/postfix: build fix
mail/postfix-current: build fix
Revisions pulled up:
- mail/postfix-current/distinfo 1.58
- mail/postfix-current/patches/patch-ag 1.22
- mail/postfix/distinfo 1.130
- mail/postfix/patches/patch-ag 1.30
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 16 15:32:59 UTC 2010
Modified Files:
pkgsrc/mail/postfix: distinfo
pkgsrc/mail/postfix-current: distinfo
pkgsrc/mail/postfix-current/patches: patch-ag
pkgsrc/mail/postfix/patches: patch-ag
Log Message:
Add patch to fix closefrom() problem on FreeBSD.
tron [Sun, 25 Apr 2010 18:04:31 +0000 (18:04 +0000)]
Pullup ticket #3093 - requested by taca
lang/php53: bug fix
Revisions pulled up:
- lang/php53/Makefile 1.3
- lang/php53/distinfo 1.3
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 16 15:19:23 UTC 2010
Modified Files:
pkgsrc/lang/php53: Makefile distinfo
Log Message:
Explicitly set PKGNAME to handle PKG_OPTIONS properly, noted by
PR pkg/43170 by Nathaniel Madura. And add suhosin-patch to distinfo.
Bump PKG_REVISION.
tron [Fri, 23 Apr 2010 09:09:58 +0000 (09:09 +0000)]
Pullup ticket #3091 - requested by gls
net/bind96: portability fix
Revisions pulled up:
- net/bind96/Makefile 1.15
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Apr 22 20:22:26 UTC 2010
Modified Files:
pkgsrc/net/bind96: Makefile
Log Message:
Disable kqueue on Dragonfly to make bind96 work.
As reported by Justin Sherrill in PR pkg/43195.
Bump PKGREVISION.
tron [Fri, 23 Apr 2010 09:08:35 +0000 (09:08 +0000)]
Pullup tickets #3090 and #3091.
tron [Fri, 23 Apr 2010 08:56:26 +0000 (08:56 +0000)]
Pullup ticket #3090 - requested by gls
net/bind95: portability fix
Revisions pulled up:
- net/bind95/Makefile 1.17
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Apr 22 20:21:09 UTC 2010
Modified Files:
pkgsrc/net/bind95: Makefile
Log Message:
Disable kqueue on Dragonfly to make bind95 work.
As reported by Justin Sherrill in PR pkg/43195.
Bump PKGREVISION.
tron [Thu, 22 Apr 2010 18:00:27 +0000 (18:00 +0000)]
Pullup tickets #3088 and #3089.
tron [Thu, 22 Apr 2010 17:58:58 +0000 (17:58 +0000)]
Pullup ticket #3089 - requested by joerg
pkgtools/pkg_install: bootstrap fix
Revisions pulled up:
- net/libfetch/files/fetch.cat3 1.14
---
Module Name: pkgsrc
Committed By: joerg
Date: Thu Apr 22 14:11:16 UTC 2010
Modified Files:
pkgsrc/net/libfetch/files: fetch.cat3
Log Message:
Regen.
tron [Thu, 22 Apr 2010 17:53:38 +0000 (17:53 +0000)]
Pullup ticket #3088 - requested by tnn
multimedia/mplayer-plugin: build fix
Revisions pulled up;
- multimedia/mplayer-plugin/distinfo 1.2
- multimedia/mplayer-plugin/patches/patch-aa 1.2
- multimedia/mplayer-plugin/patches/patch-ab delete
- multimedia/mplayer-plugin/patches/patch-ad delete
- multimedia/mplayer-plugin/patches/patch-ag 1.2
---
Module Name: pkgsrc
Committed By: tnn
Date: Wed Apr 21 15:58:03 UTC 2010
Modified Files:
pkgsrc/multimedia/mplayer-plugin: distinfo
pkgsrc/multimedia/mplayer-plugin/patches: patch-aa patch-ag
Removed Files:
pkgsrc/multimedia/mplayer-plugin/patches: patch-ab patch-ad
Log Message:
fix xulrunner-1.9.2.x build breakage reported on pkgsrc-users@
spz [Wed, 21 Apr 2010 06:32:13 +0000 (06:32 +0000)]
pullup #3086
spz [Wed, 21 Apr 2010 06:30:05 +0000 (06:30 +0000)]
Pullup ticket 3086 - requested by taca
security update
Revisions pulled up:
- pkgsrc/databases/mysql51-client/Makefile 1.4
- pkgsrc/databases/mysql51-client/Makefile.common 1.5
- pkgsrc/databases/mysql51-client/distinfo 1.2
- pkgsrc/databases/mysql51-server/Makefile 1.4
- pkgsrc/databases/mysql51-server/PLIST 1.3
- pkgsrc/databases/mysql51-server/distinfo 1.3
Files added:
pkgsrc/databases/mysql51-server/patches/patch-av
--------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 20 22:58:10 UTC 2010
Modified Files:
pkgsrc/databases/mysql51-client: Makefile Makefile.common distinfo
pkgsrc/databases/mysql51-server: Makefile PLIST distinfo
Added Files:
pkgsrc/databases/mysql51-server/patches: patch-av
Log Message:
Update mysql51-client/mysql51-server package to 5.1.45.
This is maintainous release and please refer for full changes:
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-45.html
Added a patch for recent security problem to mysql51-server, too.
http://secunia.com/advisories/39454
To generate a diff of this commit:
cvs rdiff -u -r1.3 -r1.4 pkgsrc/databases/mysql51-client/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/databases/mysql51-client/Makefile.common
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/databases/mysql51-client/distinfo
cvs rdiff -u -r1.3 -r1.4 pkgsrc/databases/mysql51-server/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/databases/mysql51-server/PLIST \
pkgsrc/databases
tron [Tue, 20 Apr 2010 21:30:30 +0000 (21:30 +0000)]
Pullup tickets #3083, #3084 and #3085.
tron [Tue, 20 Apr 2010 21:29:41 +0000 (21:29 +0000)]
Pullup ticket #3085 - requested by minskim
print/abcm2ps: security update
Revisions pulled up:
- print/abcm2ps/Makefile 1.6
- print/abcm2ps/PLIST 1.5
- print/abcm2ps/distinfo 1.6
---
Module Name: pkgsrc
Committed By: minskim
Date: Tue Apr 20 17:40:47 UTC 2010
Modified Files:
pkgsrc/print/abcm2ps: Makefile PLIST distinfo
Log Message:
Update abcm2ps to 5.9.13.
This version fixes several security vulnerabilities including Secunia
Advisory SA39345. For other changes, see share/doc/abcm2ps/Changes.
tron [Tue, 20 Apr 2010 21:26:19 +0000 (21:26 +0000)]
Pullup ticket #3084 - requested by minskim
print/dvipsk: security patch
Revisions pulled up:
- print/dvipsk/Makefile 1.5
- print/dvipsk/distinfo 1.4
- print/dvipsk/patches/patch-ab 1.3
---
Module Name: pkgsrc
Committed By: minskim
Date: Tue Apr 20 17:07:28 UTC 2010
Modified Files:
pkgsrc/print/dvipsk: Makefile distinfo
Added Files:
pkgsrc/print/dvipsk/patches: patch-ab
Log Message:
Avoid integer overflow (CVE-2010-0739).
Patch from TeX Live repository (Revision 17559).
tron [Tue, 20 Apr 2010 21:20:38 +0000 (21:20 +0000)]
Pullup ticket #3083 - requested by tez
irssi: security update
irssi-icb: security update
Revisions pulled up:
- chat/irssi-icb/distinfo 1.15
- chat/irssi/Makefile.common 1.11
- chat/irssi/distinfo 1.31
---
Module Name: pkgsrc
Committed By: spz
Date: Sun Apr 18 06:29:16 UTC 2010
Modified Files:
pkgsrc/chat/irssi: Makefile.common distinfo
pkgsrc/chat/irssi-icb: distinfo
Log Message:
updating irssi to next version (0.8.15). Changelog:
Features:
* Add active_window_ignore_refnum option With active_window_ignore_refnum
ON, the current behavior for the active_window key (meta-a by default) is
preserved: it switches to the window with the highest activity level that was
last activated. With active_window_ignore_refnum OFF, the old behavior is used:
it switches to the window with the highest activity level with the lowest
refnum. (by Matt Sparks, bug #667)
* Show new Charybdis +q list in channel windows (numerics 728 and 729).
* Allow servers to belong to multiple networks.
* Improve paste detection. Irssi now detects a paste if it reads at least
three bytes in a single read; subsequent reads are associated to the same paste
if they happen before 'paste_detect_time' time since the last read. If no read
occurs after 'paste_detect_time' time the paste buffer is flushed; if there is
at least one complete line its content is sent as a paste, otherwise it is
processed normally.
* Show "target changing too fast" messages in the channel/query window.
* Use default trusted CAs if nothing is specified. This allows useful use
of -ssl_verify without -ssl_cafile/-ssl_capath, using OpenSSL's default trusted
CAs.
* Show why an SSL certificate failed validation.
* Make own nick and actions use default colour instead of white (by Tim
Retout).
Bugfixes:
* Change some characters illegal in Windows filenames to underscores in logs
* Fix disconnects when sending large amounts of data over SSL
* Show all nicks instead of just the first in an /accept * listing (Bug
#704)
* Make several signals without parameters available to perl again. In
particular, this includes the "beep" signal (by Matt Sparks, bug #674)
* Close the config file fd after saving (by Sven Wegener)
* Check if an SSL certificate matches the hostname of the server we are
connecting to.
* Fix bash'isms, use command -v instead of which and use bc -l in /CALC.
* Fix a crash with handling the DCC queue.
* Fix crash when checking for fuzzy nick match when not on the channel.
Reported by Aurelien Delaitre (SATE 2009).
tron [Mon, 19 Apr 2010 09:16:34 +0000 (09:16 +0000)]
Pullup ticket #3082.
tron [Mon, 19 Apr 2010 09:15:47 +0000 (09:15 +0000)]
Pullup ticket #3082 - requested by tez
mail/spamass-milter: security patch
Revisions pulled up:
- mail/spamass-milter/Makefile 1.27
- mail/spamass-milter/distinfo 1.7
- mail/spamass-milter/patches/patch-aa 1.3
- mail/spamass-milter/patches/patch-ab 1.1
---
Module Name: pkgsrc
Committed By: tez
Date: Sat Apr 17 21:11:18 UTC 2010
Modified Files:
pkgsrc/mail/spamass-milter: Makefile distinfo
pkgsrc/mail/spamass-milter/patches: patch-aa
Added Files:
pkgsrc/mail/spamass-milter/patches: patch-ab
Log Message:
Added CVE-2010-1132 patch from:
https://bugzilla.redhat.com/attachment.cgi?id=401011
tron [Sun, 18 Apr 2010 21:52:23 +0000 (21:52 +0000)]
Pullup tickets #3080 and #3081.
tron [Sun, 18 Apr 2010 21:51:49 +0000 (21:51 +0000)]
Pullup ticket #3081 - requested by tez
editors/nano: security update
Revisions pulled up:
- editors/nano/Makefile 1.38
- editors/nano/PLIST 1.15
- editors/nano/distinfo 1.17
---
Module Name: pkgsrc
Committed By: tez
Date: Sun Apr 18 17:21:34 UTC 2010
Modified Files:
pkgsrc/editors/nano: Makefile PLIST distinfo
Log Message:
update to 2.2.4 to resolve CVE-2010-1160 & CVE-2010-1161
tron [Sun, 18 Apr 2010 21:47:42 +0000 (21:47 +0000)]
Pullup ticket #3080 - requested by tez
lang/erlang: security patch
Revisions pulled up:
- lang/erlang/Makefile 1.45
- lang/erlang/distinfo 1.22
- lang/erlang/patches/patch-ax 1.1
---
Module Name: pkgsrc
Committed By: tez
Date: Sat Apr 17 20:10:16 UTC 2010
Modified Files:
pkgsrc/lang/erlang: Makefile distinfo
Added Files:
pkgsrc/lang/erlang/patches: patch-ax
Log Message:
CVE-2008-2371 pcro buffer overflow fix based on:
http://vcs.pcre.org/viewvc/code/trunk/pcre_compile.c?r1=504&r2=505&view=patch
spz [Sat, 17 Apr 2010 08:35:48 +0000 (08:35 +0000)]
pullup 3079
spz [Sat, 17 Apr 2010 08:34:13 +0000 (08:34 +0000)]
Pullup ticket 3079 - requested by taca
security update
Revisions pulled up:
- pkgsrc/security/sudo/Makefile 1.120
- pkgsrc/security/sudo/distinfo 1.62
- pkgsrc/security/sudo/patches/patch-aa 1.23
--------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 16 15:33:52 UTC 2010
Modified Files:
pkgsrc/security/sudo: Makefile distinfo
pkgsrc/security/sudo/patches: patch-aa
Log Message:
Update sudo package from sudo-1.7.2p4 to sudo-1.7.2p6.
Sudo versions 1.7.2p6 and 1.6.9p22 are now available. These releases
fix a privilege escalation bug in the sudoedit functionality.
Summary:
A flaw exists in sudo's -e option (aka sudoedit) in sudo versions
1.6.8 through 1.7.2p5 that may give a user with permission to
run sudoedit the ability to run arbitrary commands. This bug
is related to, but distinct from, CVE 2010-0426.
Sudo versions affected:
1.6.8 through 1.7.2p5 inclusive.
To generate a diff of this commit:
cvs rdiff -u -r1.119 -r1.120 pkgsrc/security/sudo/Makefile
cvs rdiff -u -r1.61 -r1.62 pkgsrc/security/sudo/distinfo
cvs rdiff -u -r1.22 -r1.23 pkgsrc/security/sudo/patches/patch-aa
tron [Thu, 15 Apr 2010 18:08:02 +0000 (18:08 +0000)]
Pullup ticket #3078.
tron [Thu, 15 Apr 2010 18:07:23 +0000 (18:07 +0000)]
Pullup ticket #3078 - requested by sborrill:
net/samba: build fix and bug fix
net/samba33: build fix and bug fix
Revisions pulled up:
- net/samba/Makefile 1.199-1.200
- net/samba/files/winbindd.sh 1.5
- net/samba33/Makefile 1.8-1.9
---
Module Name: pkgsrc
Committed By: sborrill
Date: Wed Apr 14 14:51:01 UTC 2010
Modified Files:
pkgsrc/net/samba: Makefile
pkgsrc/net/samba33: Makefile
Log Message:
Add openssl bl3.mk file so that we play nicely with PREFER_PKGSRC+=openssl
---
Module Name: pkgsrc
Committed By: sborrill
Date: Thu Apr 15 09:36:50 UTC 2010
Modified Files:
pkgsrc/net/samba/files: winbindd.sh
Log Message:
winbindd does not have a -B flag. As far as I can see, it never did have
(It was added to this rc.d script as part of the upgrade to 3.0.20b, but
winbindd in 3.0.20b does not have a -B flag).
---
Module Name: pkgsrc
Committed By: sborrill
Date: Thu Apr 15 09:38:09 UTC 2010
Modified Files:
pkgsrc/net/samba: Makefile
pkgsrc/net/samba33: Makefile
Log Message:
Bump PKGREVISION due to removing -B flag from winbindd rc.d script
tron [Fri, 9 Apr 2010 14:28:01 +0000 (14:28 +0000)]
Pullup ticket #3074.
tron [Fri, 9 Apr 2010 14:23:27 +0000 (14:23 +0000)]
Pullup ticket #3074 - requested by taca
typo3: security update
Revisions pulled up:
- www/typo3/Makefile 1.21
- www/typo3/PLIST 1.12
- www/typo3/distinfo 1.14
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 9 10:15:24 UTC 2010
Modified Files:
pkgsrc/www/typo3: Makefile PLIST distinfo
Log Message:
Update typo3 package to 4.3.3.
I coudn't access release note with the URL in release announce but
I could with http://wiki.typo3.org/index.php/TYPO3_4.3.3 at this
moment.
Quote from release announce:
TYPO3 version 4.3.3 is ready for download. It is a maintenance release
of version 4.3 and therefore contains only bugfixes and security fixes.
IMPORTANT: This version includes an important security fix
to the TYPO3 core. A security announcement has just been
released:
http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-008/
For details about the release, see:
http://wiki.typo3.org/TYPO3_4.3.3
agc [Thu, 8 Apr 2010 20:43:15 +0000 (20:43 +0000)]
Add a file to document changes to the pkgsrc-2010Q1 branch.
branch-fixup [Thu, 8 Apr 2010 15:33:11 +0000 (15:33 +0000)]
Add files from parent branch HEAD:
doc/TODO
branch-fixup [Thu, 8 Apr 2010 15:31:55 +0000 (15:31 +0000)]
Add files from parent branch HEAD:
databases/mysql51-client/Makefile.common
branch-fixup [Thu, 8 Apr 2010 10:03:31 +0000 (10:03 +0000)]
Add files from parent branch HEAD:
net/wireshark/PLIST
net/wireshark/options.mk
branch-fixup [Wed, 7 Apr 2010 22:20:54 +0000 (22:20 +0000)]
Add files from parent branch HEAD:
lang/python/srcdist.mk
branch-fixup [Wed, 7 Apr 2010 18:19:42 +0000 (18:19 +0000)]
Add files from parent branch HEAD:
textproc/py-4Suite/Makefile
branch-fixup [Wed, 7 Apr 2010 18:04:46 +0000 (18:04 +0000)]
Add files from parent branch HEAD:
misc/openoffice3-bin/Makefile
branch-fixup [Wed, 7 Apr 2010 17:57:41 +0000 (17:57 +0000)]
Add files from parent branch HEAD:
net/nagios-base/Makefile.common
branch-fixup [Wed, 7 Apr 2010 17:52:04 +0000 (17:52 +0000)]
Add files from parent branch HEAD:
misc/kdeartwork3/Makefile
misc/kdeartwork3/PLIST
branch-fixup [Wed, 7 Apr 2010 15:24:16 +0000 (15:24 +0000)]
Add files from parent branch HEAD:
mail/imapproxy/distinfo
mail/imapproxy/patches/patch-aa
branch-fixup [Wed, 7 Apr 2010 14:58:03 +0000 (14:58 +0000)]
Add files from parent branch HEAD:
doc/CHANGES-2010
branch-fixup [Wed, 7 Apr 2010 14:57:49 +0000 (14:57 +0000)]
Add files from parent branch HEAD:
lang/python25/Makefile
lang/python25/distinfo
branch-fixup [Wed, 7 Apr 2010 08:41:54 +0000 (08:41 +0000)]
Add files from parent branch HEAD:
net/pear-Net_Sieve/Makefile
net/pear-Net_Sieve/distinfo
branch-fixup [Wed, 7 Apr 2010 08:16:27 +0000 (08:16 +0000)]
Add files from parent branch HEAD:
doc/CHANGES-2009
branch-fixup [Wed, 7 Apr 2010 08:11:36 +0000 (08:11 +0000)]
Add files from parent branch HEAD:
wm/echinus/Makefile
wm/echinus/distinfo
branch-fixup [Wed, 7 Apr 2010 05:40:11 +0000 (05:40 +0000)]
Add files from parent branch HEAD:
www/mediawiki/Makefile
www/mediawiki/distinfo
branch-fixup [Tue, 6 Apr 2010 22:29:59 +0000 (22:29 +0000)]
Add files from parent branch HEAD:
www/typolight28-translations/Makefile
www/typolight28-translations/distinfo
www/typolight28-translations/options.mk
branch-fixup [Tue, 6 Apr 2010 06:41:20 +0000 (06:41 +0000)]
Add files from parent branch HEAD:
comms/jpilot/Makefile
comms/jpilot/PLIST.Linux
branch-fixup [Tue, 6 Apr 2010 06:31:42 +0000 (06:31 +0000)]
Add files from parent branch HEAD:
mail/milter-greylist/distinfo
branch-fixup [Tue, 6 Apr 2010 04:36:00 +0000 (04:36 +0000)]
Add files from parent branch HEAD:
emulators/palmosemulator/Makefile
emulators/palmosemulator/distinfo
emulators/palmosemulator/patches/patch-as
branch-fixup [Tue, 6 Apr 2010 00:15:34 +0000 (00:15 +0000)]
Add files from parent branch HEAD:
time/ruby-tzinfo/Makefile
time/ruby-tzinfo/distinfo
branch-fixup [Mon, 5 Apr 2010 22:52:23 +0000 (22:52 +0000)]
Add files from parent branch HEAD:
graphics/ivtools/Makefile
graphics/ivtools/PLIST
graphics/ivtools/distinfo
graphics/ivtools/patches/patch-ac
graphics/ivtools/patches/patch-ad
graphics/ivtools/patches/patch-aj
graphics/ivtools/patches/patch-ak
graphics/ivtools/patches/patch-be
graphics/ivtools/patches/patch-bf
graphics/ivtools/patches/patch-bg
graphics/ivtools/patches/patch-bh
graphics/ivtools/patches/patch-bi
graphics/ivtools/patches/patch-bj
graphics/ivtools/patches/patch-bk
graphics/ivtools/patches/patch-bl
branch-fixup [Mon, 5 Apr 2010 18:50:48 +0000 (18:50 +0000)]
Add files from parent branch HEAD:
misc/fbreader/Makefile
misc/fbreader/distinfo
misc/fbreader/patches/patch-ai
branch-fixup [Mon, 5 Apr 2010 18:14:28 +0000 (18:14 +0000)]
Add files from parent branch HEAD:
net/youtube-dl/Makefile
net/youtube-dl/distinfo
branch-fixup [Mon, 5 Apr 2010 18:12:22 +0000 (18:12 +0000)]
Add files from parent branch HEAD:
net/clive/Makefile
net/clive/distinfo
branch-fixup [Mon, 5 Apr 2010 00:49:07 +0000 (00:49 +0000)]
Add files from parent branch HEAD:
cross/avr-libc/Makefile
branch-fixup [Mon, 5 Apr 2010 00:36:42 +0000 (00:36 +0000)]
Add files from parent branch HEAD:
cross/avr-libc/PLIST
cross/avr-libc/distinfo
cross/avr-libc/patches/patch-aa
branch-fixup [Mon, 5 Apr 2010 00:06:24 +0000 (00:06 +0000)]
Add files from parent branch HEAD:
x11/slock/Makefile
branch-fixup [Sun, 4 Apr 2010 17:23:30 +0000 (17:23 +0000)]
Add files from parent branch HEAD:
www/ikiwiki/Makefile
www/ikiwiki/PLIST
www/ikiwiki/distinfo
www/ikiwiki/patches/patch-aa
www/ikiwiki/patches/patch-ab
branch-fixup [Sun, 4 Apr 2010 11:40:25 +0000 (11:40 +0000)]
Add files from parent branch HEAD:
net/wireshark/Makefile
net/wireshark/distinfo
branch-fixup [Sun, 4 Apr 2010 08:12:03 +0000 (08:12 +0000)]
Add files from parent branch HEAD:
devel/scmgit-base/distinfo
devel/scmgit-base/patches/patch-al
branch-fixup [Sat, 3 Apr 2010 21:00:42 +0000 (21:00 +0000)]
Add files from parent branch HEAD:
chat/libpurple/Makefile
chat/libpurple/options.mk
branch-fixup [Sat, 3 Apr 2010 14:22:09 +0000 (14:22 +0000)]
Add files from parent branch HEAD:
print/tex-graphics/Makefile
print/tex-graphics/distinfo
branch-fixup [Sat, 3 Apr 2010 08:45:57 +0000 (08:45 +0000)]
Add files from parent branch HEAD:
www/seamonkey/Makefile
www/seamonkey/distinfo
branch-fixup [Fri, 2 Apr 2010 22:28:43 +0000 (22:28 +0000)]
Add files from parent branch HEAD:
devel/mercurial/Makefile
devel/mercurial/distinfo
branch-fixup [Fri, 2 Apr 2010 20:28:24 +0000 (20:28 +0000)]
Add files from parent branch HEAD:
devel/xulrunner/Makefile
devel/xulrunner/dist.mk
devel/xulrunner/distinfo
www/firefox/Makefile
branch-fixup [Fri, 2 Apr 2010 19:45:24 +0000 (19:45 +0000)]
Add files from parent branch HEAD:
mail/clamav/Makefile
mail/clamav/PLIST
mail/clamav/PLIST.milter
mail/clamav/options.mk
branch-fixup [Fri, 2 Apr 2010 11:19:40 +0000 (11:19 +0000)]
Add files from parent branch HEAD:
multimedia/ffmpeg/Makefile
multimedia/ffmpeg/distinfo
multimedia/ffmpeg/patches/patch-configure
branch-fixup [Fri, 2 Apr 2010 09:58:44 +0000 (09:58 +0000)]
Add files from parent branch HEAD:
net/tor/Makefile
net/tor/distinfo
branch-fixup [Fri, 2 Apr 2010 06:51:31 +0000 (06:51 +0000)]
Add files from parent branch HEAD:
www/curl/Makefile
branch-fixup [Thu, 1 Apr 2010 22:03:09 +0000 (22:03 +0000)]
Add files from parent branch HEAD:
lang/perl5/Makefile
lang/perl5/distinfo
lang/perl5/patches/patch-ze
branch-fixup [Thu, 1 Apr 2010 12:02:23 +0000 (12:02 +0000)]
Add files from parent branch HEAD:
mail/clamav/distinfo
mail/clamav/patches/patch-aa
mail/clamav/patches/patch-ab
mail/clamav/patches/patch-ac
mail/clamav/patches/patch-ad
mail/clamav/patches/patch-af
mail/clamav/patches/patch-ag
projects / pkgsrc.git / log