spz [Fri, 28 Aug 2009 07:45:35 +0000 (07:45 +0000)]
pullup #2873
spz [Fri, 28 Aug 2009 07:43:14 +0000 (07:43 +0000)]
Pullup ticket 2873 - requested by tron
security update
Revisions pulled up:
- pkgsrc/textproc/libxml2/Makefile 1.101
- pkgsrc/textproc/libxml2/distinfo 1.72
Files added:
pkgsrc/textproc/libxml2/patches/patch-af 1.5
Module Name: pkgsrc
Committed By: tron
Date: Wed Aug 26 10:20:57 UTC 2009
Modified Files:
pkgsrc/textproc/libxml2: Makefile distinfo
Added Files:
pkgsrc/textproc/libxml2/patches: patch-af
Log Message:
Add patch to fix the security vulnerabilites reported in CVE-2009-2414
and CVE-2009-2416.
The patch was taken from the latest Fedora 11 "libxml2" source RPM.
To generate a diff of this commit:
cvs rdiff -u -r1.100 -r1.101 pkgsrc/textproc/libxml2/Makefile
cvs rdiff -u -r1.71 -r1.72 pkgsrc/textproc/libxml2/distinfo
cvs rdiff -u -r0 -r1.5 pkgsrc/textproc/libxml2/patches/patch-af
tron [Thu, 27 Aug 2009 11:36:32 +0000 (11:36 +0000)]
Pullup ticket #2872.
tron [Thu, 27 Aug 2009 11:35:17 +0000 (11:35 +0000)]
Pullup ticket #2872 - requested by jnemeth
asterisk: security update
Revisions pulled up:
- comms/asterisk/Makefile 1.67
- comms/asterisk/distinfo 1.43
---
Module Name: pkgsrc
Committed By: jnemeth
Date: Sun Aug 23 09:22:24 UTC 2009
Modified Files:
pkgsrc/comms/asterisk: Makefile distinfo
Log Message:
This update is just to fix a hypothetical security issue (AST-2009-005)
which is most likely not exploitable.
tron [Sun, 23 Aug 2009 10:34:56 +0000 (10:34 +0000)]
Pullup ticket #2871.
tron [Sun, 23 Aug 2009 10:33:57 +0000 (10:33 +0000)]
Pullup ticket #2871 - requested by wiz
libvorbis: security update
Revisions pulled up:
- audio/libvorbis/Makefile 1.48
- audio/libvorbis/PLIST 1.10
- audio/libvorbis/distinfo 1.17
- audio/libvorbis/patches/patch-aa delete
- audio/libvorbis/patches/patch-ab delete
- audio/libvorbis/patches/patch-ac delete
- audio/libvorbis/patches/patch-ad delete
---
Module Name: pkgsrc
Committed By: wiz
Date: Fri Jul 17 20:28:21 UTC 2009
Modified Files:
pkgsrc/audio/libvorbis: Makefile PLIST distinfo
Removed Files:
pkgsrc/audio/libvorbis/patches: patch-aa patch-ab patch-ac patch-ad
Log Message:
Update to 1.2.3. Set LICENSE.
Two of the patches were from upstream CVS, the other two are not needed
any longer because the configure script was improved.
libvorbis 1.2.3 (2009-07-09) -- "Xiph.Org libVorbis I
20090709"
* correct a vorbisfile bug that prevented proper playback of
Vorbis files where all audio in a logical stream is in a
single page
* Additional decode setup hardening against malicious streams
* Add 'OV_EXCLUDE_STATIC_CALLBACKS' define for developers who
wish to avoid avoid unused symbol warnings from the static
callbacks defined in vorbisfile.h
libvorbis 1.2.2 (2009-06-24) -- "Xiph.Org libVorbis I
20090624"
* define VENDOR and ENCODER strings
* seek correctly in files bigger than 2 GB (Windows)
* fix regression from CVE-2008-1420; 1.0b1 files work again
* mark all tables as constant to reduce memory occupation
* additional decoder hardening against malicious streams
* substantially reduce amount of seeking performed by Vorbisfile
* Multichannel decode bugfix
* build system updates
* minor specification clarifications/fixes
libvorbis 1.2.1 (unreleased) -- "Xiph.Org libVorbis I
20080501"
* Improved robustness with corrupt streams.
* New ov_read_filter() vorbisfile call allows filtering decoded
audio as floats before converting to integer samples.
* Fix an encoder bug with multichannel streams.
* Replaced RTP payload format draft with RFC 5215.
* Bare bones self test under 'make check'.
* Fix a problem encoding some streams between 14 and 28 kHz.
* Fix a numerical instability in the edge extrapolation filter.
* Build system improvements.
* Specification correction.
tron [Fri, 21 Aug 2009 12:18:01 +0000 (12:18 +0000)]
Pullup ticket #2870.
tron [Fri, 21 Aug 2009 12:17:35 +0000 (12:17 +0000)]
Pullup ticket #2870 - requested by jnemeth
asterisk: build fix
Revisions pulled up:
- comms/asterisk/Makefile 1.64-1.66
- comms/asterisk/PLIST.common 1.16
- comms/asterisk/distinfo 1.41-1.42
---
Module Name: pkgsrc
Committed By: jnemeth
Date: Thu Aug 20 22:31:41 UTC 2009
Modified Files:
pkgsrc/comms/asterisk: Makefile PLIST.common distinfo
Log Message:
Digium in its infinite wisdom changed the Music-On-Hold sound files in all
release tarballs. Update for that change.
While here, do some pkglint cleanup and add LICENSE=gplv2.
---
Module Name: pkgsrc
Committed By: jnemeth
Date: Thu Aug 20 22:33:47 UTC 2009
Modified Files:
pkgsrc/comms/asterisk: Makefile
Log Message:
bump PKGREVISION for previous
---
Module Name: pkgsrc
Committed By: jnemeth
Date: Fri Aug 21 08:34:25 UTC 2009
Modified Files:
pkgsrc/comms/asterisk: Makefile
Log Message:
Change DIST_SUBDIR to avoid people having to manually remove the old
distfile. Requested by wiz@.
---
Module Name: pkgsrc
Committed By: wiz
Date: Fri Aug 21 08:46:16 UTC 2009
Modified Files:
pkgsrc/comms/asterisk: distinfo
Log Message:
regen (for DIST_SUBDIR change).
tron [Wed, 19 Aug 2009 09:13:42 +0000 (09:13 +0000)]
Pullup ticket #2866, #2867 and #2868.
tron [Wed, 19 Aug 2009 09:12:31 +0000 (09:12 +0000)]
Pullup ticket #2868 - requested by he
p5-Math-Pari: build fix
Revisions pulled up:
- math/p5-Math-Pari/Makefile 1.35
- math/p5-Math-Pari/distinfo 1.14
- math/p5-Math-Pari/patches/patch-ab 1.7
---
Module Name: pkgsrc
Committed By: he
Date: Sun Aug 16 13:33:07 UTC 2009
Modified Files:
pkgsrc/math/p5-Math-Pari: Makefile distinfo
pkgsrc/math/p5-Math-Pari/patches: patch-ab
Log Message:
Update from version 2.010801nb1 to 2.010801nb2.
Pkgsrc changes:
o Re-do patch-ab so that this package actually builds on hosts other
than arm and i386. ('eq' instead of '=' is the bug...)
tron [Wed, 19 Aug 2009 09:07:14 +0000 (09:07 +0000)]
Pullup ticket #2867 - requested by bouyer
sympa: build fix
Revisions pulled up:
- mail/sympa/Makefile 1.41
---
Module Name: pkgsrc
Committed By: bouyer
Date: Wed Aug 12 22:39:17 UTC 2009
Modified Files:
pkgsrc/mail/sympa: Makefile
Log Message:
ALso needs p5-Template-Toolkit. Bump PKGREVISION.
tron [Wed, 19 Aug 2009 08:55:15 +0000 (08:55 +0000)]
Pullup ticket #2866 - requested by adrianp
viewvc: security update
Revisions pulled up:
- www/viewvc/Makefile 1.10
- www/viewvc/distinfo 1.7
---
Module Name: pkgsrc
Committed By: adrianp
Date: Sat Aug 15 08:33:13 UTC 2009
Modified Files:
pkgsrc/www/viewvc: Makefile distinfo
Log Message:
Version 1.0.9 (released 11-Aug-2009)
* security fix: validate the 'view' parameter to avoid XSS attack
* security fix: avoid printing illegal parameter names and values
Version 1.0.8 (released 05-May-2009)
* fix directory view sorting UI
* tolerate malformed Accept-Language headers (issue #396)
* fix directory log views in revision-less Subversion repositories
* fix exception in rev-sorted remote Subversion directory views (issue #409)
salo [Fri, 14 Aug 2009 18:46:32 +0000 (18:46 +0000)]
Pullup ticket #2859
salo [Fri, 14 Aug 2009 18:45:44 +0000 (18:45 +0000)]
Pullup ticket #2859 - requested by tron
fetchmail: security update
fetchmailconf: security update
Revisions pulled up:
- pkgsrc/mail/fetchmail/Makefile 1.169
- pkgsrc/mail/fetchmail/PLIST 1.13
- pkgsrc/mail/fetchmail/distinfo 1.40
- pkgsrc/mail/fetchmail/patches/patch-aa removed
- pkgsrc/mail/fetchmail/patches/patch-aa removed
- pkgsrc/mail/fetchmailconf/Makefile 1.75
Module Name: pkgsrc
Committed By: tron
Date: Mon Aug 10 08:46:30 UTC 2009
Modified Files:
pkgsrc/mail/fetchmail: Makefile PLIST distinfo
pkgsrc/mail/fetchmailconf: Makefile
Removed Files:
pkgsrc/mail/fetchmail/patches: patch-aa patch-ab
Log Message:
Update "fetchmail" package to version 6.3.11. Changes since version 6.3.8:
- Security fixes for CVE-2009-2666, CVE-2007-4565 and CVE-2008-2711.
- Fetchmail no longer drops permanently undelivered messages by default,
to match historic documentation. It does this by adding a new
"softbounce" option.
- A lot bug fixes and improvements.
tron [Fri, 14 Aug 2009 15:57:16 +0000 (15:57 +0000)]
Pullup tickets #2681, #2862 and #2863.
tron [Fri, 14 Aug 2009 15:56:38 +0000 (15:56 +0000)]
Pullup ticket #2863 - requested by kefren
gmplayer: security patch
Revisions pulled up:
- multimedia/gmplayer/Makefile 1.77
- multimedia/gmplayer/distinfo 1.64
---
Module Name: pkgsrc
Committed By: wiz
Date: Sun Aug 9 19:21:10 UTC 2009
Modified Files:
pkgsrc/multimedia/gmplayer: distinfo
Log Message:
Add patch-ar.
---
Module Name: pkgsrc
Committed By: wiz
Date: Sun Aug 9 19:24:25 UTC 2009
Modified Files:
pkgsrc/multimedia/gmplayer: Makefile
Log Message:
Remove BROKEN_IN 2006Q4, builds fine for me. Bump PKGREVISION for patch-ar.
tron [Fri, 14 Aug 2009 15:39:36 +0000 (15:39 +0000)]
Pullup ticket #2862 - requested by kefren
mplayer: security patch
Revisions pulled up:
- multimedia/mplayer-share/distinfo 1.61-1.62
- multimedia/mplayer-share/patches/patch-ar 1.1-1.2
- multimedia/mplayer/Makefile 1.67
---
Module Name: pkgsrc
Committed By: kefren
Date: Sun Aug 9 12:56:11 UTC 2009
Modified Files:
pkgsrc/multimedia/mplayer: Makefile
pkgsrc/multimedia/mplayer-share: distinfo
Added Files:
pkgsrc/multimedia/mplayer-share/patches: patch-ar
Log Message:
add fix for SA26157. Bump PKGREVISION
---
Module Name: pkgsrc
Committed By: wiz
Date: Sun Aug 9 19:20:50 UTC 2009
Modified Files:
pkgsrc/multimedia/mplayer-share: distinfo
pkgsrc/multimedia/mplayer-share/patches: patch-ar
Log Message:
Add RCS Id and comment.
tron [Fri, 14 Aug 2009 15:24:05 +0000 (15:24 +0000)]
Pullup ticket #2861 - requested by kefren
vlc08: security patch
Revisions pulled up:
- multimedia/vlc08/Makefile 1.22
- multimedia/vlc08/distinfo 1.9
- multimedia/vlc08/patches/patch-ab 1.7
---
Module Name: pkgsrc
Committed By: kefren
Date: Sun Aug 9 12:33:14 UTC 2009
Modified Files:
pkgsrc/multimedia/vlc08: Makefile distinfo
Added Files:
pkgsrc/multimedia/vlc08/patches: patch-ab
Log Message:
add fix for SA36037, bump PKGREVISION. XXX: not tested
tron [Fri, 14 Aug 2009 14:02:37 +0000 (14:02 +0000)]
Pullup tickets #2860, #2864 and #2865.
tron [Fri, 14 Aug 2009 14:00:01 +0000 (14:00 +0000)]
Pullup ticket #2860 - requested by kefren
vlc: security patch
Revisions pulled up:
- multimedia/vlc/Makefile 1.80 via patch
- multimedia/vlc/distinfo 1.29 via patch
- multimedia/vlc/patches/patch-aa 1.7
---
Module Name: pkgsrc
Committed By: kefren
Date: Sun Aug 9 12:18:17 UTC 2009
Modified Files:
pkgsrc/multimedia/vlc: Makefile distinfo
Added Files:
pkgsrc/multimedia/vlc/patches: patch-aa
Log Message:
add fix for SA26156
Bump PKGREVISION
tron [Fri, 14 Aug 2009 10:18:20 +0000 (10:18 +0000)]
Pullup ticket #2865 - requested by taca
apr0: security patch
Revisions pulled up:
- devel/apr0/Makefile 1.6
- devel/apr0/distinfo 1.4
- devel/apr0/patches/patch-ab 1.1
- devel/apr0/patches/patch-ac 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Aug 12 03:37:28 UTC 2009
Modified Files:
pkgsrc/devel/apr0: Makefile distinfo
Added Files:
pkgsrc/devel/apr0/patches: patch-ab patch-ac
Log Message:
Fix security problem of CVE-2009-2412 adding patches described in it.
Bump PKGREVISION.
tron [Fri, 14 Aug 2009 10:02:07 +0000 (10:02 +0000)]
Pullup ticket #2864 - requested by adrianp
wordpress: security update
Revisions pulled up:
- www/wordpress/Makefile 1.5
- www/wordpress/distinfo 1.4
---
Module Name: pkgsrc
Committed By: adrianp
Date: Wed Aug 12 20:21:10 UTC 2009
Modified Files:
pkgsrc/www/wordpress: Makefile distinfo
Log Message:
Update to 2.8.4 to fix security issue:
http://wordpress.org/development/2009/08/2-8-4-security-release/
tron [Mon, 10 Aug 2009 12:00:04 +0000 (12:00 +0000)]
Pullup ticket #2858 - requested by bouyer
py-smbpasswd: build fix
Revisions pulled up:
- security/py-smbpasswd/Makefile 1.4
---
Module Name: pkgsrc
Committed By: bouyer
Date: Sat Aug 8 14:16:55 UTC 2009
Modified Files:
pkgsrc/security/py-smbpasswd: Makefile
Log Message:
This works fine with python 2.5
tron [Mon, 10 Aug 2009 11:59:23 +0000 (11:59 +0000)]
Pullup ticket #2858.
tron [Sat, 8 Aug 2009 22:55:47 +0000 (22:55 +0000)]
Pullup ticket #2857.
tron [Sat, 8 Aug 2009 22:54:54 +0000 (22:54 +0000)]
Pullup ticket #2857 - requested by obache
GraphicsMagick: security update
Revisions pulled up:
- graphics/GraphicsMagick/Makefile 1.22
- graphics/GraphicsMagick/distinfo 1.18
- graphics/GraphicsMagick/patches/patch-ab 1.1
---
Module Name: pkgsrc
Committed By: obache
Date: Sat Aug 8 04:41:08 UTC 2009
Modified Files:
pkgsrc/graphics/GraphicsMagick: Makefile distinfo
Added Files:
pkgsrc/graphics/GraphicsMagick/patches: patch-ab
Log Message:
Add an patch to fixes CVE-2008-1097, taken from upstream repository.
Bump PKGREVISION.
salo [Sat, 8 Aug 2009 00:25:35 +0000 (00:25 +0000)]
Pullup ticket #2851
salo [Sat, 8 Aug 2009 00:23:26 +0000 (00:23 +0000)]
Pullup ticket 2851 - requested by tron
security update for squid31
Revisions pulled up:
- pkgsrc/www/squid31/Makefile 1.14
- pkgsrc/www/squid31/distinfo 1.12
- pkgsrc/www/squid31/patches/patch-ae 1.4
Module Name: pkgsrc
Committed By: tron
Date: Wed Aug 5 10:29:12 UTC 2009
Modified Files:
pkgsrc/www/squid31: Makefile distinfo
pkgsrc/www/squid31/patches: patch-ae
Log Message:
Update "squid31" package to version 3.1.0.13.
Changes since version 3.1.0.12:
- Bug 2723 regression: enable PURGE requests if PURGE method ACL is present.
- Fix one more internal profiler error
- Language Updates: Italian, Russian
- Language Updates: Add many more aliases
- Add Copyright document for errors/ content
- ... all bug fixes from 3.0.STABLE18
- ... and several code polishing cleanups
spz [Fri, 7 Aug 2009 21:34:01 +0000 (21:34 +0000)]
pullup #2852
spz [Fri, 7 Aug 2009 21:08:15 +0000 (21:08 +0000)]
Pullup ticket 2852 - requested by tron
bug fix update
Revisions pulled up:
- pkgsrc/www/apache22/Makefile 1.48
- pkgsrc/www/apache22/PLIST 1.13
- pkgsrc/www/apache22/distinfo 1.23
- pkgsrc/www/apache22/patches/patch-ba 1.4
- pkgsrc/www/apache22/patches/patch-bb 1.3
Files added:
pkgsrc/www/apache22/patches/patch-bb
Files deleted:
pkgsrc/www/apache22/patches/patch-ab
pkgsrc/www/apache22/patches/patch-af
pkgsrc/www/apache22/patches/patch-ah
pkgsrc/www/apache22/patches/patch-bc
pkgsrc/www/apache22/patches/patch-bd
Module Name: pkgsrc
Committed By: tron
Date: Thu Aug 6 07:07:23 UTC 2009
Modified Files:
pkgsrc/www/apache22: Makefile PLIST distinfo
Removed Files:
pkgsrc/www/apache22/patches: patch-ab patch-af patch-ah patch-ba
patch-bc patch-bd
Log Message:
Update "apache22" package to version 2.2.12. Changes since version 2.2.11:
- SECURITY: CVE-2009-1891 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_deflate or other
modules, by forcing the server to consume CPU time in compressing a
large file after a client disconnects. Bug 39605.
[Joe Orton, Ruediger Pluem]
- SECURITY: CVE-2009-1195 (cve.mitre.org)
Prevent the "Includes" Option from being enabled in an .htaccess
file if the AllowOverride restrictions do not permit it.
[Jonathan Peatfield <j.s.peatfield damtp.cam.ac.uk>, Joe Orton,
Ruediger Pluem, Jeff Trawick]
- SECURITY: CVE-2009-1890 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_proxy in a
reverse proxy configuration, where a remote attacker can force a
proxy process to consume CPU time indefinitely. [Nick Kew, Joe Orton]
- SECURITY: CVE-2009-1191 (cve.mitre.org)
mod_proxy_ajp: Avoid delivering content from a previous request which
failed to send a request body. Bug 46949 [Ruediger Pluem]
- SECURITY: CVE-2009-0023, CVE-2009-1955, CVE-2009-1956 (cve.mitre.org)
The bundled copy of the APR-util library has been updated, fixing three
different security issues which may affect particular configurations
and third-party modules.
- mod_include: fix potential segfault when handling back references
on an empty SSI variable. [Ruediger Pluem, Lars Eilebrecht, Nick Kew]
- mod_alias: check sanity in Redirect arguments.
Bug 44729 [S??nke Tesch <st kino-fahrplan.de>, Jim Jagielski]
- mod_proxy_http: fix Host: header for literal IPv6 addresses.
Bug 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
- mod_rewrite: Remove locking for writing to the rewritelog.
Bug 46942
- mod_alias: Ensure Redirect emits HTTP-compliant URLs.
Bug 44020
- mod_proxy_http: fix case sensitivity checking transfer encoding
Bug 47383 [Ryuzo Yamamoto <ryuzo.yamamoto gmail.com>]
- mod_rewrite: Fix the error string returned by RewriteRule.
RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
argument of RewriteRule was not started with "[" or not ended with "]".
Bug 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
- mod_proxy: Complete ProxyPassReverse to handle balancer URL's. Given;
BalancerMember balancer://alias http://example.com/foo
ProxyPassReverse /bash balancer://alias/bar
backend url http://example.com/foo/bar/that is now translated /bash/that
[William Rowe]
- New piped log syntax: Use "||process args" to launch the given process
without invoking the shell/command interpreter. Use "|$command line"
(the default behavior of "|command line" in 2.2) to invoke using shell,
consuming an additional shell process for the lifetime of the logging
pipe program but granting additional process invocation flexibility.
[William Rowe]
- mod_ssl: Add server name indication support (RFC 4366) and better
support for name based virtual hosts with SSL. Bug 34607
[Peter Sylvester <peter.sylvester edelweb.fr>,
Kaspar Brand <asfbugz velox.ch>, Guenter Knauf, Joe Orton,
Ruediger Pluem]
- mod_negotiation: Escape pathes of filenames in 406 responses to avoid
HTML injections and HTTP response splitting. Bug 46837.
[Geoff Keating <geoffk apple.com>]
- mod_include: Prevent a case of SSI timefmt-smashing with filter chains
including multiple INCLUDES filters. Bug 39369 [Joe Orton]
- mod_rewrite: When evaluating a proxy rule in directory context, do
escape the filename by default. Bug 46428 [Joe Orton]
- mod_proxy_ajp: Check more strictly that the backend follows the AJP
protocol. [Mladen Turk]
- mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
to enable stricter checking of remote server certificates.
[Ruediger Pluem]
- mod_substitute: Fix a memory leak. Bug 44948
[Dan Poirier <poirier pobox.com>]
- mod_proxy_ajp: Forward remote port information by default.
[Rainer Jung]
- mod_disk_cache/mod_mem_cache: Fix handling of CacheIgnoreHeaders
directive to correctly remove headers before storing them.
[Lars Eilebrecht]
- mod_deflate: revert changes in 2.2.8 that caused an invalid
etag to be emitted for on-the-fly gzip content-encoding.
Bug 39727 will require larger fixes and this fix was far more
harmful than the original code. Bug 45023. [Roy T. Fielding]
- mod_disk_cache: The module now turns off sendfile support if
'EnableSendfile off' is defined globally. Bug 41218.
[Lars Eilebrecht, Issac Goldstand]
- prefork: Fix child process hang during graceful restart/stop in
configurations with multiple listening sockets. Bug 42829. [Joe Orton,
Jeff Trawick]
- mod_ssl: Add SSLRenegBufferSize directive to allow changing the
size of the buffer used for the request-body where necessary
during a per-dir renegotiation. Bug 39243. [Joe Orton]
- mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
way that per-directory rewrites append the previous notion of PATH_INFO
to each substitution before evaluating subsequent rules.
Bug 38642 [Eric Covener]
- mod_authnz_ldap: Reduce number of initialization debug messages and make
information more clear. Bug 46342 [Dan Poirier]
- mod_cache: Introduce 'no-cache' per-request environment variable
to prevent the saving of an otherwise cacheable response.
[Eric Covener]
- core: Translate the status line to ASCII on EBCDIC platforms in
ap_send_interim_response() and for locally generated "100 Continue"
responses. [Eric Covener]
- CGI: return 504 (Gateway timeout) rather than 500 when a script
times out before returning status line/headers.
Bug 42190 [Nick Kew]
- prefork: Log an error instead of segfaulting when child startup fails
due to pollset creation failures. Bug 46467. [Jeff Trawick]
- mod_ext_filter: fix error handling when the filter prog fails to start,
and introduce an onfail configuration option to abort
All the security problems mentioned above had already been fixed in
"pkgsrc" via patches. Thanks a lot to Adam Ciarcinski for letting me
know that new version had finally been released.
To generate a diff of this commit:
cvs rdiff -u -r1.47 -r1.48 pkgsrc/www/apache22/Makefile
cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/apache22/PLIST
cvs rdiff -u -r1.21 -r1.22 pkgsrc/www/apache22/distinfo
cvs rdiff -u -r1.10 -r0 pkgsrc/www/apache22/patches/patch-ab
cvs rdiff -u -r1.1 -r0 pkgsrc/www/apache22/patches/patch-af \
pkgsrc/www/apache22/patches/patch-ah
cvs rdiff -u -r1.2 -r0 pkgsrc/www/apache22/patches/patch-ba \
pkgsrc/www/apache22/patches/patch-bc pkgsrc/www/apache22/patches/patch-bd
-----
Module Name: pkgsrc
Committed By: tron
Date: Thu Aug 6 08:21:44 UTC 2009
Modified Files:
pkgsrc/www/apache22: distinfo
Added Files:
pkgsrc/www/apache22/patches: patch-ba patch-bb
Log Message:
Add patches provided by Adam Ciarcinski to fix build with recent versions
of OpenSSL (e.g. the version in NetBSD-current).
To generate a diff of this commit:
cvs rdiff -u -r1.22 -r1.23 pkgsrc/www/apache22/distinfo
cvs rdiff -u -r0 -r1.4 pkgsrc/www/apache22/patches/patch-ba
cvs rdiff -u -r0 -r1.3 pkgsrc/www/apache22/patches/patch-bb
spz [Fri, 7 Aug 2009 18:45:31 +0000 (18:45 +0000)]
pullup #2856
spz [Fri, 7 Aug 2009 18:44:33 +0000 (18:44 +0000)]
Pullup ticket 2856 - requested by gdt
security update
Revisions pulled up:
- pkgsrc/devel/apr/Makefile 1.59
- pkgsrc/devel/apr/distinfo 1.27
Module Name: pkgsrc
Committed By: gdt
Date: Fri Aug 7 14:29:44 UTC 2009
Modified Files:
pkgsrc/devel/apr: Makefile distinfo
Log Message:
Update to 1.3.8 (security fix).
Changes for APR 1.3.8
*) SECURITY: CVE-2009-2412 (cve.mitre.org)
Fix overflow in pools and rmm, where size alignment was taking place.
[Matt Lewis <mattlewis@google.com>, Sander Striker]
*) Make sure that "make check" is used in the RPM spec file, consistent
with apr-util. [Graham Leggett]
*) Pass default environment to testflock, testoc and testpipe children,
so that tests run when APR is compiled with Intel C Compiler.
[Bojan Smojver]
To generate a diff of this commit:
cvs rdiff -u -r1.58 -r1.59 pkgsrc/devel/apr/Makefile
cvs rdiff -u -r1.26 -r1.27 pkgsrc/devel/apr/distinfo
spz [Fri, 7 Aug 2009 12:24:24 +0000 (12:24 +0000)]
pullup #2854
spz [Fri, 7 Aug 2009 12:22:17 +0000 (12:22 +0000)]
Pullup ticket 2854 - requested by tron
security update
Revisions pulled up:
- pkgsrc/devel/apr-util/Makefile 1.14
- pkgsrc/devel/apr-util/Makefile 1.8
- pkgsrc/devel/apr/Makefile 1.58
- pkgsrc/devel/apr/distinfo 1.26
Module Name: pkgsrc
Committed By: schmonz
Date: Fri Jul 24 13:09:32 UTC 2009
Modified Files:
pkgsrc/devel/apr-util: Makefile
Log Message:
Configure --without-sqlite2 in case it's unavoidably on the include path.
To generate a diff of this commit:
cvs rdiff -u -r1.11 -r1.12 pkgsrc/devel/apr-util/Makefile
-----
Module Name: pkgsrc
Committed By: tonnerre
Date: Tue Aug 4 10:09:35 UTC 2009
Modified Files:
pkgsrc/devel/apr: Makefile distinfo
Log Message:
Update to apr version 1.3.7, which, other than 1.3.5, is still downloadable.
Changes since 1.3.5:
- On Linux/hppa flock() returns EAGAIN instead of EWOULDBLOCK. This
causes proc mutex failures.
- Set CLOEXEC flags where appropriate. Either use new O_CLOEXEC flag and
associated functions, such as dup3(), accept4(), epoll_create1() etc.,
or simply set CLOEXEC flag using fcntl().
- More elaborate detection for dup3(), accept4() and epoll_create1().
To generate a diff of this commit:
cvs rdiff -u -r1.57 -r1.58 pkgsrc/devel/apr/Makefile
cvs rdiff -u -r1.25 -r1.26 pkgsrc/devel/apr/distinfo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
-----
Module Name: pkgsrc
Committed By: tonnerre
Date: Tue Aug 4 10:13:04 UTC 2009
Modified Files:
pkgsrc/devel/apr-util: Makefile distinfo
Log Message:
Upgrade apr-util to version 1.3.8, which, unlike 1.3.7, is still downloadab=
le.
Changes since 1.3.7:
- Use locally scoped variables in PostgreSQL driver to avoid stomping
on return codes.
- Fix race conditions in initialisation of DBD, DBM and DSO.
- Expose DBM libs in apu-1-config by default. To avoid that, use
apu-1-config --avoid-dbm --libs. To get just DBM libs, use
apu-1-config --dbm-libs.
- Make sure --without-ldap works.
To generate a diff of this commit:
cvs rdiff -u -r1.12 -r1.13 pkgsrc/devel/apr-util/Makefile
cvs rdiff -u -r1.6 -r1.7 pkgsrc/devel/apr-util/distinfo
-----
Module Name: pkgsrc
Committed By: tron
Date: Fri Aug 7 10:39:24 UTC 2009
Modified Files:
pkgsrc/devel/apr-util: Makefile distinfo
Log Message:
Update "apr-util" package to version 1.3.8. Changes since 1.3.9:
- SECURITY: CVE-2009-2412 (cve.mitre.org)
Fix overflow in rmm, where size alignment was taking place.
[Matt Lewis <mattlewis@google.com>, Sander Striker]
- Make sure that "make check" is used in the RPM spec file, so that
the crypto, dbd and dbm tests pass. [Graham Leggett]
- Make sure the mysql version of dbd_mysql_get_entry() respects the
rule that if the column number exceeds the number of columns, we
return NULL. [Graham Leggett]
- Ensure the dbm module is packaged up correctly in the RPM.
[Graham Leggett]
- Clarify the error messages within the dbd tests. [Graham Leggett]
To generate a diff of this commit:
cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/apr-util/Makefile
cvs rdiff -u -r1.7 -r1.8 pkgsrc/devel/apr-util/distinfo
tron [Fri, 7 Aug 2009 11:10:13 +0000 (11:10 +0000)]
Pullup ticket #2853.
tron [Fri, 7 Aug 2009 11:09:47 +0000 (11:09 +0000)]
Pullup ticket #2853 - requested by gdt
ap22-subversion: security update
p5-subversion: security update
py25-subversion: security update
ruby18-subversion: security update
subversion-base: security update
subversion: security update
Revisions pulled up:
- devel/subversion/Makefile.common 1.33
- devel/subversion/Makefile.version 1.51
- devel/subversion/distinfo 1.72
---
Module Name: pkgsrc
Committed By: gdt
Date: Thu Aug 6 22:08:56 UTC 2009
Modified Files:
pkgsrc/devel/subversion: Makefile.common Makefile.version distinfo
Log Message:
Update to 1.6.4, a security release.
Version 1.6.4
(06 Aug 2009, from /branches/1.6.x)
http://svn.collab.net/repos/svn/tags/1.6.4
User-visible changes:
* fixed: heap overflow vulnerability on server and client
See CVE-2009-2411, and descriptive advisory at
http://subversion.tigris.org/security/CVE-2009-2411-advisory.txt
Version 1.6.3
(22 Jun 2009, from /branches/1.6.x)
http://svn.collab.net/repos/svn/tags/1.6.3
User-visible changes:
* fix segfault in WC->URL copy (r37646, -56)
* let 'svnadmin load' tolerate mergeinfo with "\r\n" (r37768)
* make svnsync normalize svn:* props to LF line endings (issue #3404)
* better integration with external merge tools (r36178)
* return a friendly error message for 'svn diff' (r37735)
* update dsvn.el for 1.6 (r37774)
* don't allow setting of props on out-of-date dirs under neon (r37745)
* improve BASH completion (r36450, -52, -70, -79, -538)
* always show tree conflicts with 'svn st' (issue #3382)
* improve correctness of 'svn mergeinfo' (issue #3126)
* decrease the amount of memory needed for large commits (r37894, -6)
* work around an APR buffer overflow seen by svnsync (r37622)
* ra_svn clients now use TCP keep-alives if available (issue #3347)
* improve 'svn merge' perf by reducing server contact (r37491, -593, -618)
* stop propagating self-referential mergeinfo in reintegrate merges (r37931)
* fix NLS detection where -liconv is required for bindtextdomain() (r37827)
* don't delete unversioned files with 'rm --keep-local' (r38015, -17, -19)
* bump apr and apr-util versions included in deps to latest. (r37941)
* avoid temp file name collisions with ra_serf, ra_neon (r37972)
* fixed: potential segfault with noop file merges (r37779)
* fixed: incorrect output with 'svn blame -g' (r37719, -23, -41)
* fixed: bindings don't load FS libs when module search enabled (issue #3413)
* fixed: DAV RA layers not properly handling update/switch working copy
directory to revision/place in which it doesn't exist (issue #3414)
* fixed: potential abort() in the working copy library (r37857)
* fixed: memory leak in hash reading functions (r37868, -979)
Developer-visible changes:
* improve memory usage in file-to-stringbuf APIs (r37907)
* reduce memory usage for temp string manipulation (r38010)
tron [Wed, 5 Aug 2009 12:00:31 +0000 (12:00 +0000)]
Pullup tickets #2848, #2849 and #2850.
tron [Wed, 5 Aug 2009 11:57:40 +0000 (11:57 +0000)]
Pullup ticket #2850 - requested by taca
squid30: security update
Revisions pulled up:
- www/squid30/Makefile 1.15
- www/squid30/distinfo 1.13
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Aug 5 01:47:11 UTC 2009
Modified Files:
pkgsrc/www/squid30: Makefile distinfo
Log Message:
Update squid30 package to 3.0.18 (3.0.STABLE18).
It contains some critical problem of 3.0.17 and really fix security
problem according to updated SQUID-2009_2.txt.
Changes to squid-3.0.STABLE18 (04 Aug 2009):
- Bug 2728: regression: assertion failed: !eof
- Bug 2732: reply_body_max_size smaller than error page loops
infinitely until out of memory
- Bug 2725: pconn failure if domain or client_address are unset
- Bug 2648: reserved helpers not shut down after reconfigure/rotate
- Bug 2462: make check should tell when cppunit is missing
- Remove excess messages about headers < minimum size
- Support Libtool 2.2.6
tron [Wed, 5 Aug 2009 11:16:33 +0000 (11:16 +0000)]
Pullup ticket #2849 - requested by tnn
firefox3: security update
Revisions pulled up:
- www/firefox3/Makefile 1.35
- www/firefox3/PLIST 1.11
- www/firefox3/distinfo 1.27
- www/firefox3/patches/patch-dk 1.3
---
Module Name: pkgsrc
Committed By: tnn
Date: Tue Aug 4 21:28:42 UTC 2009
Modified Files:
pkgsrc/www/firefox3: Makefile PLIST distinfo
pkgsrc/www/firefox3/patches: patch-dk
Log Message:
Update to firefox3-3.0.13. Fixes the following advisories:
MFSA 2009-44 Location bar and SSL indicator spoofing via window.open()
on invalid URL
MFSA 2009-43 Heap overflow in certificate regexp parsing
MFSA 2009-42 Compromise of SSL-protected communication
tron [Wed, 5 Aug 2009 10:37:39 +0000 (10:37 +0000)]
Pullup ticket #2848 - requested by adrianp
wordpress: security update
Revisions pulled up:
- www/wordpress/Makefile 1.4
- www/wordpress/distinfo 1.3
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue Aug 4 21:32:40 UTC 2009
Modified Files:
pkgsrc/www/wordpress: Makefile distinfo
Log Message:
WordPress 2.8.3 Security Release
Unfortunately, I missed some places when fixing the privilege escalation issues
for 2.8.1. Luckily, the entire WordPress community has our backs. Several
folks in the community dug deeper and discovered areas that were overlooked.
With their help, the remaining issues are fixed in 2.8.3. Since this is a
security release, upgrading is highly recommended.
tron [Tue, 4 Aug 2009 12:30:36 +0000 (12:30 +0000)]
Pullup ticket #2846.
tron [Tue, 4 Aug 2009 12:29:41 +0000 (12:29 +0000)]
Pullup ticket #2846 - requested by minskim
dvipng: portability fix
Revisions pulled up:
- graphics/dvipng/Makefile 1.5
---
Module Name: pkgsrc
Committed By: minskim
Date: Mon Aug 3 18:45:36 UTC 2009
Modified Files:
pkgsrc/graphics/dvipng: Makefile
Log Message:
Enable t1lib font rendering. This fixes PR 41773.
spz [Sun, 2 Aug 2009 13:19:47 +0000 (13:19 +0000)]
pullup #2840
spz [Sun, 2 Aug 2009 13:17:58 +0000 (13:17 +0000)]
Pullup ticket 2840 - requested by tron
security update
Revisions pulled up:
- pkgsrc/www/squid/Makefile.squid 1.14
- pkgsrc/www/squid31/DESCR 1.2
- pkgsrc/www/squid31/Makefile 1.13
- pkgsrc/www/squid31/PLIST 1.3
- pkgsrc/www/squid31/distinfo 1.11
- pkgsrc/www/squid31/patches/patch-ad 1.5
- pkgsrc/www/squid31/patches/patch-ae 1.3
Files deleted:
pkgsrc/www/squid31/patches/patch-aa
pkgsrc/www/squid31/patches/patch-ab
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 7 18:25:13 UTC 2009
Modified Files:
pkgsrc/www/squid31: Makefile distinfo
pkgsrc/www/squid31/patches: patch-ae
Log Message:
Update "squid31" package to version 3.1.0.9. Changes since version 3.1.0.8:
- Bug 2682: Add ftp_epsv control to disable EPSV support.
- Bug 2665: Detach automake system from using -I.
- Bug 2395: FTP auth errors not displayed
- ... also several changes and bugs closed in 3.0.STABLE16
- Port from 2.7: Show local address on listening sockets
- Add "tag" type acl matching tags set by external acl helpers.
- Adds Language alias linker/installer/upgrade scripts
- Support for GCC 4.4
- Fix false NAT lookup errors on Linux
- Fix many Windows port issues
- Fix squid_kerb_auth helepr install location
- Better detection of IPv6 stack types
- Updates Licensing information for Squid 3.1
- ... and many packaging portability build and install issues
To generate a diff of this commit:
cvs rdiff -u -r1.7 -r1.8 pkgsrc/www/squid31/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/squid31/distinfo
cvs rdiff -u -r1.1 -r1.2 pkgsrc/www/squid31/patches/patch-ae
-----
Module Name: pkgsrc
Committed By: tron
Date: Wed Jul 8 15:02:01 UTC 2009
Modified Files:
pkgsrc/www/squid31: Makefile
Log Message:
Fix destdir build.
To generate a diff of this commit:
cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/squid31/Makefile
-----
Module Name: pkgsrc
Committed By: tron
Date: Sun Jul 12 09:45:02 UTC 2009
Modified Files:
pkgsrc/www/squid31: Makefile distinfo
Added Files:
pkgsrc/www/squid31/patches: patch-aa
Log Message:
Add fix for Squid bug 2707 to make anonymous FTP work again.
To generate a diff of this commit:
cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/squid31/Makefile
cvs rdiff -u -r1.5 -r1.6 pkgsrc/www/squid31/distinfo
cvs rdiff -u -r0 -r1.3 pkgsrc/www/squid31/patches/patch-aa
-----
Module Name: pkgsrc
Committed By: tron
Date: Sun Jul 19 23:05:38 UTC 2009
Modified Files:
pkgsrc/www/squid31: DESCR Makefile PLIST distinfo
pkgsrc/www/squid31/patches: patch-aa patch-ad patch-ae
Log Message:
Update "squid31" package to version 3.1.0.11.
Changes since version 3.1.0.9:
- Bug 2087: Support adaptation sets and chains
- Bug 2459: dns error message broken when error handling delayed
- Support ICAP Retry
- Support ICAP retries based on the ICAP responses status code
- Support logging ICAP
- Support logging total DNS wait time
- Support logging response times of adaptation transactions
- General logging enhancements
- Dynamically form chains based on ICAP X-Next-Services header
- Support cross-transactional ICAP header exchange
- Bug 2680: Regression Crash after rotate with no helpers running
- Bug 2695: Regression in WCCPv2 L2 mask assignment
- Bug 2707: Regression in FTP anonymous auth
- Bug 422, 2706: RFC 2616 Date header requirements
- Bug 1087: ESI processor not quoting attributes correctly.
- Bug 1338: File prefetches aborted despite range_offset
- Bug 2080: wbinfo_group.pl - false positive under certain conditions
- Bug 2092: select loop 32-bit call counter overflows
- Bug 2127: delay pools class 4 crashes with ntlm auth
- Bug 2611: document fast/slow acl types
- Bug 2614: Potential loss of adapted body data from eCAP adapters
- Bug 2658: Missing TextException copy constructor
- Bug 2659: String length overflows on append, leading to segfaults
- Bug 2699: Build failure NTLM smb_lm helper
- Bug 2709: TRANSLATIONS not installed
- Bug 2710: squid_kerb_auth non-terminated string
- Delay pools 64-bit buckets and IPv6-polish
- Break forwarding loops for "transparent" or "intercept" http_ports.
- Add --disable-translation option to detatch .po from error negotiation
- Add squidclient man(1) page
- Add localhost to default permitted networks
- http_port allow-direct option to allow direct forwarding in accelerator m=
ode
- ... and many testing infrastructure updates
- ... and much adaptation polish and improvements
To generate a diff of this commit:
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/www/squid31/DESCR
cvs rdiff -u -r1.10 -r1.11 pkgsrc/www/squid31/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/www/squid31/PLIST
cvs rdiff -u -r1.6 -r1.7 pkgsrc/www/squid31/distinfo
cvs rdiff -u -r1.3 -r1.4 pkgsrc/www/squid31/patches/patch-aa
cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/squid31/patches/patch-ad
cvs rdiff -u -r1.2 -r1.3 pkgsrc/www/squid31/patches/patch-ae
-----
Module Name: pkgsrc
Committed By: tron
Date: Sun Jul 19 23:28:04 UTC 2009
Modified Files:
pkgsrc/www/squid31: distinfo
pkgsrc/www/squid31/patches: patch-aa
Log Message:
Add Squid bug number.
To generate a diff of this commit:
cvs rdiff -u -r1.7 -r1.8 pkgsrc/www/squid31/distinfo
cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/squid31/patches/patch-aa
-----
Module Name: pkgsrc
Committed By: tron
Date: Mon Jul 20 13:56:31 UTC 2009
Modified Files:
pkgsrc/www/squid31: Makefile distinfo
Added Files:
pkgsrc/www/squid31/patches: patch-ab
Log Message:
Add fix for Squid bug 2395 which makes FTP connection to e.g.
"ftp.fu-berlin.de" work again.
To generate a diff of this commit:
cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/squid31/Makefile
cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/squid31/distinfo
cvs rdiff -u -r0 -r1.3 pkgsrc/www/squid31/patches/patch-ab
-----
Module Name: pkgsrc
Committed By: tron
Date: Mon Jul 27 16:35:55 UTC 2009
Modified Files:
pkgsrc/www/squid31: Makefile distinfo
Removed Files:
pkgsrc/www/squid31/patches: patch-aa patch-ab
Log Message:
Update "squid31" package to version 3.1.0.12.
Changes since version 3.1.0.11:
- Bug 2716: Chunked request Signed/Unsigned build error
- Bug 2674: Remove limit on HTTP headers read.
- Bug 2620: Invalid HTTP response codes causes segfault
- Fix FTP EPSV negotiation parser.
- Fix Via string when leak checking is enabled (valgrind etc)
- ... and several documentation and testing additions
This update also fixes the security vulnerabilites reported in
the SQUID-2009:2 advisory.
To generate a diff of this commit:
cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/squid31/Makefile
cvs rdiff -u -r1.10 -r1.11 pkgsrc/www/squid31/distinfo
cvs rdiff -u -r1.6 -r0 pkgsrc/www/squid31/patches/patch-aa
cvs rdiff -u -r1.3 -r0 pkgsrc/www/squid31/patches/patch-ab
-----
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 7 15:01:12 UTC 2009
Modified Files:
pkgsrc/www/squid: Makefile.squid
Log Message:
General improvements:
1.) Allow individual "squid*" packages to register an extra target that
is run before the common "post-install" target.
2.) Use a much simpler logic to figure out what files get installed into
"share/squid/errors" and "share/squid/icons".
Tested with the "squid27" and the "squid31" package.
To generate a diff of this commit:
cvs rdiff -u -r1.10 -r1.11 pkgsrc/www/squid/Makefile.squid
-----
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 7 15:21:37 UTC 2009
Modified Files:
pkgsrc/www/squid: Makefile.squid
Log Message:
Improve package list creation to work with symbolic links as well.
To generate a diff of this commit:
cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/squid/Makefile.squid
-----
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 7 18:44:28 UTC 2009
Modified Files:
pkgsrc/www/squid: Makefile.squid
Log Message:
Add mirror on "ftp.nluug.nl" to master site list.
To generate a diff of this commit:
cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/squid/Makefile.squid
-----
Module Name: pkgsrc
Committed By: taca
Date: Mon Jul 27 11:29:08 UTC 2009
Modified Files:
pkgsrc/www/squid: Makefile.squid
Log Message:
Make it DESTDIR careful.
To generate a diff of this commit:
cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/squid/Makefile.squid
tron [Wed, 29 Jul 2009 20:38:29 +0000 (20:38 +0000)]
Pullup ticket #2845.
tron [Wed, 29 Jul 2009 20:36:04 +0000 (20:36 +0000)]
Pullup ticket #2845 - requested by joerg
py-django: security update
Revisions pulled up:
- www/py-django/Makefile 1.19
- www/py-django/PLIST 1.11
- www/py-django/distinfo 1.10
- www/py-django/patches/patch-aa delete
- www/py-django/patches/patch-ab 1.2
---
Module Name: pkgsrc
Committed By: joerg
Date: Wed Jul 29 11:02:08 UTC 2009
Modified Files:
pkgsrc/www/py-django: Makefile PLIST distinfo
pkgsrc/www/py-django/patches: patch-ab
Removed Files:
pkgsrc/www/py-django/patches: patch-aa
Log Message:
Update to Django 1.0.3:
- various bugfix
- correctly validate file names for the admin media when using the
development server
spz [Wed, 29 Jul 2009 08:18:54 +0000 (08:18 +0000)]
pullup #2844
spz [Wed, 29 Jul 2009 07:59:53 +0000 (07:59 +0000)]
Pullup ticket 2844 - requested by reed
security update
last part of pullups for PR 41796
Revisions pulled up:
- pkgsrc/net/bind96/Makefile 1.7
- pkgsrc/net/bind96/PLIST 1.3
- pkgsrc/net/bind96/distinfo 1.4
- pkgsrc/net/bind96/options.mk 1.2
- pkgsrc/net/bind96/patches/patch-ab 1.2
- pkgsrc/net/bind96/patches/patch-ac 1.3
- pkgsrc/net/bind96/patches/patch-ad 1.2
- pkgsrc/net/bind96/patches/patch-ag 1.2
- pkgsrc/net/bind96/patches/patch-aj 1.1
Module Name: pkgsrc
Committed By: obache
Date: Fri Jul 24 12:30:00 UTC 2009
Modified Files:
pkgsrc/net/bind9: Makefile
pkgsrc/net/bind95: Makefile
pkgsrc/net/bind96: Makefile
Log Message:
Update HOMEPAGE url.
To generate a diff of this commit:
cvs rdiff -u -r1.107 -r1.108 pkgsrc/net/bind9/Makefile
cvs rdiff -u -r1.9 -r1.10 pkgsrc/net/bind95/Makefile
cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/bind96/Makefile
Module Name: pkgsrc
Committed By: obache
Date: Sun Jul 26 09:07:58 UTC 2009
Modified Files:
pkgsrc/net/bind96: Makefile PLIST distinfo options.mk
pkgsrc/net/bind96/patches: patch-ab patch-ac patch-ad patch-ag
Removed Files:
pkgsrc/net/bind96/patches: patch-aj
Log Message:
Update bind96 to 9.6.1.
Based on PR 41772 by Robert Elz.
Pkgsrc changes:
o MAKE_JOBS_SAFE=no, README said "Do not use a parallel make".
o remove patch-aj, libbind has been removed from the BIND 9 distribution
since 9.6.0.
o add bind-dig-sigchase option. requested by PR 41751.
Changes since 9.6.0:
--- 9.6.1 released ---
2607. [bug] named could incorrectly delete NSEC3 records for
empty nodes when processing a update request.
[RT #19749]
2606. [bug] "delegation-only" was not being accepted in
delegation-only type zones. [RT #19717]
2605. [bug] Accept DS responses from delegation only zones.
[RT # 19296]
2603. [port] win32: handle .exe extension of named-checkzone and
named-comilezone argv[0] names under windows.
[RT #19767]
2602. [port] win32: fix debugging command line build of libisccfg.
[RT #19767]
--- 9.6.1rc1 released ---
2599. [bug] Address rapid memory growth when validation fails.
[RT #19654]
2597. [bug] Handle a validation failure with a insecure delegation
from a NSEC3 signed master/slave zone. [RT #19464]
2596. [bug] Stale tree nodes of cache/dynamic rbtdb could stay
long, leading to inefficient memory usage or rejecting
newer cache entries in the worst case. [RT #19563]
2595. [bug] Fix unknown extended rcodes in dig. [RT #19625]
2592. [bug] Treat "any" as a type in nsupdate. [RT #19455]
2591. [bug] named could die when processing a update in
removed_orphaned_ds(). [RT #19507]
2588. [bug] SO_REUSEADDR could be set unconditionally after failure
of bind(2) call. This should be rare and mostly
harmless, but may cause interference with other
processes that happen to use the same port. [RT #19642]
2586. [bug] Missing cleanup of SIG rdataset in searching a DLZ DB
or SDB. [RT #19577]
2585. [bug] Uninitialized socket name could be referenced via a
statistics channel, triggering an assertion failure in
XML rendering. [RT #19427]
2584. [bug] alpha: gcc optimization could break atomic operations.
[RT #19227]
2583. [port] netbsd: provide a control to not add the compile
date to the version string, -DNO_VERSION_DATE.
2582. [bug] Don't emit warning log message when we attempt to
remove non-existant journal. [RT #19516]
2579. [bug] DNSSEC lookaside validation failed to handle unknown
algorithms. [RT #19479]
2578. [bug] Changed default sig-signing-type to 65534, because
65535 turns out to be reserved. [RT #19477]
2499. [port] solaris: lib/lwres/getaddrinfo.c namespace clash.
[RT #18837]
--- 9.6.1b1 released ---
2577. [doc] Clarified some statistics counters. [RT #19454]
2576. [bug] NSEC record were not being correctly signed when
a zone transitions from insecure to secure.
Handle such incorrectly signed zones. [RT #19114]
2574. [doc] Document nsupdate -g and -o. [RT #19351]
2573. [bug] Replacing a non-CNAME record with a CNAME record in a
single transaction in a signed zone failed. [RT #19397]
2568. [bug] Report when the write to indicate a otherwise
successful start fails. [RT #19360]
2567. [bug] dst__privstruct_writefile() could miss write errors.
write_public_key() could miss write errors.
dnssec-dsfromkey could miss write errors.
[RT #19360]
2564. [bug] Only take EDNS fallback steps when processing timeouts.
[RT #19405]
2563. [bug] Dig could leak a socket causing it to wait forever
to exit. [RT #19359]
2562. [doc] ARM: miscellaneous improvements, reorganization,
and some new content.
2561. [doc] Add isc-config.sh(1) man page. [RT #16378]
2560. [bug] Add #include <config.h> to iptable.c. [RT #18258]
2559. [bug] dnssec-dsfromkey could compute bad DS records when
reading from a K* files. [RT #19357]
2557. [cleanup] PCI compliance:
* new libisc log module file
* isc_dir_chroot() now also changes the working
directory to "/".
* additional INSISTs
* additional logging when files can't be removed.
2556. [port] Solaris: mkdir(2) on tmpfs filesystems does not do the
error checks in the correct order resulting in the
wrong error code sometimes being returned. [RT #19249]
2554. [bug] Validation of uppercase queries from NSEC3 zones could
fail. [RT #19297]
2553. [bug] Reference leak on DNSSEC validation errors. [RT #19291]
2552. [bug] zero-no-soa-ttl-cache was not being honoured.
[RT #19340]
2551. [bug] Potential Reference leak on return. [RT #19341]
2550. [bug] Check --with-openssl=<path> finds <openssl/opensslv.h>.
[RT #19343]
2549. [port] linux: define NR_OPEN if not currently defined.
[RT #19344]
2548. [bug] Install iterated_hash.h. [RT #19335]
2547. [bug] openssl_link.c:mem_realloc() could reference an
out-of-range area of the source buffer. New public
function isc_mem_reallocate() was introduced to address
this bug. [RT #19313]
2545. [doc] ARM: Legal hostname checking (check-names) is
for SRV RDATA too. [RT #19304]
2544. [cleanup] Removed unused structure members in adb.c. [RT #19225]
2543. [contrib] Update contrib/zkt to version 0.98. [RT #19113]
2542. [doc] Update the description of dig +adflag. [RT #19290]
2541. [bug] Conditionally update dispatch manager statistics.
[RT #19247]
2539. [security] Update the interaction between recursion, allow-query,
allow-query-cache and allow-recursion. [RT #19198]
2538. [bug] cache/ADB memory could grow over max-cache-size,
especially with threads and smaller max-cache-size
values. [RT #19240]
2537. [experimental] Added more statistics counters including those on socket
I/O events and query RTT histograms. [RT #18802]
2536. [cleanup] Silence some warnings when -Werror=format-security is
specified. [RT #19083]
2535. [bug] dig +showsearh and +trace interacted badly. [RT #19091]
2532. [bug] dig: check the question section of the response to
see if it matches the asked question. [RT #18495]
2531. [bug] Change #2207 was incomplete. [RT #19098]
2530. [bug] named failed to reject insecure to secure transitions
via UPDATE. [RT #19101]
2529. [cleanup] Upgrade libtool to silence complaints from recent
version of autoconf. [RT #18657]
2528. [cleanup] Silence spurious configure warning about
--datarootdir [RT #19096]
2527. [bug] named could reuse cache on reload with
enabling/disabling validation. [RT #19119]
2525. [experimental] New logging category "query-errors" to provide detailed
internal information about query failures, especially
about server failures. [RT #19027]
2524. [port] sunos: dnssec-signzone needs strtoul(). [RT #19129]
2523. [bug] Random type rdata freed by dns_nsec_typepresent().
[RT #19112]
2522. [security] Handle -1 from DSA_do_verify() and EVP_VerifyFinal().
2521. [bug] Improve epoll cross compilation support. [RT #19047]
2519. [bug] dig/host with -4 or -6 didn't work if more than two
nameserver addresses of the excluded address family
preceded in resolv.conf. [RT #19081]
2517. [bug] dig +trace with -4 or -6 failed when it chose a
nameserver address of the excluded address.
[RT #18843]
2516. [bug] glue sort for responses was performed even when not
needed. [RT #19039]
2514. [bug] dig/host failed with -4 or -6 when resolv.conf contains
a nameserver of the excluded address family.
[RT #18848]
2511. [cleanup] dns_rdata_tofmttext() add const to linebreak.
[RT #18885]
2506. [port] solaris: Check at configure time if
hack_shutup_pthreadonceinit is needed. [RT #19037]
2505. [port] Treat amd64 similarly to x86_64 when determining
atomic operation support. [RT #19031]
2503. [port] linux: improve compatibility with Linux Standard
Base. [RT #18793]
2502. [cleanup] isc_radix: Improve compliance with coding style,
document function in <isc/radix.h>. [RT #18534]
To generate a diff of this commit:
cvs rdiff -u -r1.4 -r1.5 pkgsrc/net/bind96/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/net/bind96/PLIST
cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/bind96/distinfo
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/net/bind96/options.mk
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/net/bind96/patches/patch-ab \
pkgsrc/net/bind96/patches/patch-ad pkgsrc/net/bind96/patches/patch-ag
cvs rdiff -u -r1.2 -r1.3 pkgsrc/net/bind96/patches/patch-ac
cvs rdiff -u -r1.1.1.1 -r0 pkgsrc/net/bind96/patches/patch-aj
Module Name: pkgsrc
Committed By: reed
Date: Wed Jul 29 00:03:38 UTC 2009
Modified Files:
pkgsrc/net/bind96: Makefile distinfo
Log Message:
Update to 9.6.1-P1.
This is for PR pkg/41796: Security fix CVE-2009-0696
To generate a diff of this commit:
cvs rdiff -u -r1.5 -r1.6 pkgsrc/net/bind96/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/net/bind96/distinfo
Module Name: pkgsrc
Committed By: reed
Date: Wed Jul 29 00:16:33 UTC 2009
Modified Files:
pkgsrc/net/bind96: Makefile
Log Message:
Fix PKGNAME that I broke.
To generate a diff of this commit:
cvs rdiff -u -r1.6 -r1.7 pkgsrc/net/bind96/Makefile
spz [Wed, 29 Jul 2009 07:43:16 +0000 (07:43 +0000)]
Pullup ticket 2844 - requested by reed
security update
second part of pullups for PR 41796
Revisions pulled up:
- pkgsrc/net/bind9/Makefile 1.109
- pkgsrc/net/bind9/distinfo 1.44
Module Name: pkgsrc
Committed By: reed
Date: Tue Jul 28 20:39:45 UTC 2009
Modified Files:
pkgsrc/net/bind9: Makefile distinfo
Log Message:
Updated to 9.4.3-P3 for security issue:
https://www.isc.org/node/474
To generate a diff of this commit:
cvs rdiff -u -r1.108 -r1.109 pkgsrc/net/bind9/Makefile
cvs rdiff -u -r1.43 -r1.44 pkgsrc/net/bind9/distinfo
spz [Wed, 29 Jul 2009 07:30:48 +0000 (07:30 +0000)]
Pullup ticket 2844 - requested by reed
security update
first part of pullups for PR 41796
Revisions pulled up:
- pkgsrc/net/bind95/Makefile 1.11
- pkgsrc/net/bind95/distinfo 1.9
Module Name: pkgsrc
Committed By: reed
Date: Wed Jul 29 00:24:04 UTC 2009
Modified Files:
pkgsrc/net/bind95: Makefile distinfo
Log Message:
Update to 9.5.1-P3.
From CHANGES:
2640. [security] A specially crafted update packet will cause named
to exit. [RT #20000]
To generate a diff of this commit:
cvs rdiff -u -r1.10 -r1.11 pkgsrc/net/bind95/Makefile
cvs rdiff -u -r1.8 -r1.9 pkgsrc/net/bind95/distinfo
tron [Tue, 28 Jul 2009 22:12:30 +0000 (22:12 +0000)]
Pullup ticket #2843.
tron [Tue, 28 Jul 2009 22:11:15 +0000 (22:11 +0000)]
Pullup ticket #2843 - requested by adrianp
wordpress: security update
Revisions pulled up:
- www/wordpress/Makefile 1.3
- www/wordpress/PLIST 1.3
- www/wordpress/distinfo 1.2
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue Jul 28 21:20:20 UTC 2009
Modified Files:
pkgsrc/www/wordpress: Makefile PLIST distinfo
Log Message:
Update to 2.8.2
Highlights
* New drag-and-drop widgets admin interface and new widgets API
* Syntax highlighting and function lookup built into plugin and theme editors
* Browse the theme directory and install themes from the admin
* Allow the dashboard widgets to be arranged in up to four columns
* Allow configuring the number of items to show on management pages with an
option in Screen Options
* Support timezones and automatic daylight savings time adjustment
* Support IIS 7.0 URL Rewrite Module
* Faster loading of admin pages via script compression and concatenation
For all the details see: http://codex.wordpress.org/Version_2.8
tron [Tue, 28 Jul 2009 19:24:26 +0000 (19:24 +0000)]
Pullup ticket #2842.
tron [Tue, 28 Jul 2009 19:23:00 +0000 (19:23 +0000)]
Pullup ticket #2842 - requested by tnn
firefox3: security update
Revisions pulled up:
- www/firefox3/Makefile 1.34
- www/firefox3/distinfo 1.26
- www/firefox3/patches/patch-ba 1.2
- www/firefox3/patches/patch-bb 1.2
- www/firefox3/patches/patch-bo 1.2
---
Module Name: pkgsrc
Committed By: tnn
Date: Mon Jul 27 12:56:01 UTC 2009
Modified Files:
pkgsrc/www/firefox3: Makefile distinfo
pkgsrc/www/firefox3/patches: patch-ba patch-bb patch-bo
Log Message:
Update to firefox3-3.0.12.
Security and bugfix release, patches the following advisories:
MFSA 2009-40 Multiple cross origin wrapper bypasses
MFSA 2009-39 setTimeout loses XPCNativeWrappers
MFSA 2009-37 Crash and remote code execution using watch and __defineSetter__
on SVG element
MFSA 2009-36 Heap/integer overflows in font glyph rendering libraries
MFSA 2009-35 Crash and remote code execution during Flash player
unloading MFSA 2009-34 Crashes with evidence of memory corruption (rv:1.9.1/1.9.0.12)
tron [Tue, 28 Jul 2009 10:01:18 +0000 (10:01 +0000)]
Pullup ticket #2839.
tron [Tue, 28 Jul 2009 10:01:03 +0000 (10:01 +0000)]
Pullup ticket #2839 - requested by taca
squid30: security update
Revisions pulled up:
- www/squid30/Makefile 1.14
- www/squid30/distinfo 1.12 via patch
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Jul 27 16:13:26 UTC 2009
Modified Files:
pkgsrc/www/squid30: Makefile distinfo
Removed Files:
pkgsrc/www/squid30/patches: patch-aa
Log Message:
Update www/squid package to 3.0.17 (3.0.STABLE17).
Changes to squid-3.0.STABLE17 (27 Jul 2009):
- Bug 2680 regression: Crash after rotate with no helpers running
- Bug 2710: squid_kerb_auth non-terminated string
- Bug 2679: strsep and strtoll detection failure
- Bug 2674: Remove limit on HTTP headers read.
- Bug 2659: String length overflows on append, leading to segfaults
- Bug 2620: Invalid HTTP response codes causes segfault
- Bug 2080: wbinfo_group.pl - false positive under certain conditions
- Bug 1087: ESI processor not quoting attributes correctly.
- Fix: issue with AUFS/UFS/DiskD writing objects to disk cache
- Several small build issues with previous release.
tron [Mon, 27 Jul 2009 09:38:43 +0000 (09:38 +0000)]
Pullup ticket #2838.
tron [Mon, 27 Jul 2009 09:37:35 +0000 (09:37 +0000)]
Pullup ticket #2838 - requested by minskim
xdvik: portability fix
Revisions pulled up:
- print/xdvik/Makefile 1.5
---
Module Name: pkgsrc
Committed By: minskim
Date: Mon Jul 27 08:59:36 UTC 2009
Modified Files:
pkgsrc/print/xdvik: Makefile
Log Message:
Remove an unused file, which caused a conflict on a case-insensitive
filesystem.
This fixed PR 41607.
tron [Sat, 25 Jul 2009 19:42:40 +0000 (19:42 +0000)]
Pullup tickets #2833, #2834, #2835 and #2836.
tron [Sat, 25 Jul 2009 19:40:54 +0000 (19:40 +0000)]
Pullup ticket #2835 - requested hasso
xml-security-c: security update
Revisions pulled up:
- security/xml-security-c/Makefile 1.3
- security/xml-security-c/PLIST 1.3
- security/xml-security-c/distinfo 1.2
---
Module Name: pkgsrc
Committed By: hasso
Date: Fri Jul 24 20:33:16 UTC 2009
Modified Files:
pkgsrc/security/xml-security-c: Makefile PLIST distinfo
Log Message:
Update to 1.5.1. No detailed changelog, but from announcements:
1.5.1 release provides some bug fixes and a fix for the recently announced
HMAC vulnerability in the XML Signature specification (CVE-2009-0217).
1.5.0 release provides more bug fixes, partial support for Inclusive
Canonicalization 1.1, and support for the Xerces 3.x official release and
32/64-bit portability APIs.
tron [Sat, 25 Jul 2009 19:26:40 +0000 (19:26 +0000)]
Pullup ticket #2833 - requested by joerg
nsd: portability fix
Revisions pulled up:
- net/nsd/Makefile 1.47
- net/nsd/distinfo 1.26
- net/nsd/patches/patch-ab 1.3
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri Jul 24 07:08:10 UTC 2009
Modified Files:
pkgsrc/net/nsd: Makefile distinfo
Added Files:
pkgsrc/net/nsd/patches: patch-ab
Log Message:
Redirecting stdout and stderr with &> is not portable, fix this.
Issue raised by Koh-ichi Ito on nsd-users.
tron [Sat, 25 Jul 2009 19:20:05 +0000 (19:20 +0000)]
Pullup ticket #2836 - requested by joerg
pkg_install: bug fix
Revisions pulled up:
- pkgtools/pkg_install/files/info/perform.c 1.58
- pkgtools/pkg_install/files/lib/license.c 1.7
- pkgtools/pkg_install/files/lib/pkg_install.conf.5.in 1.7
- pkgtools/pkg_install/files/lib/pkg_install.conf.cat5.in 1.7
- pkgtools/pkg_install/files/lib/version.h 1.132
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri Jul 24 19:06:45 UTC 2009
Modified Files:
pkgsrc/pkgtools/pkg_install/files/info: perform.c
pkgsrc/pkgtools/pkg_install/files/lib: license.c pkg_install.conf.5.in
pkg_install.conf.cat5.in version.h
Log Message:
pkg_install-
20070724:
- license handling: accept upper case letters. Keep license checks
case-sensitive as done in the older pkgsrc logic. Document this.
OK dillo@, schmonz@, wiz@
- pkg_info:
- fix handling of non-packages, that are valid archives
- invert order of pkg_info -r to better match the expectations of
make update.
tron [Sat, 25 Jul 2009 19:15:25 +0000 (19:15 +0000)]
Pullup ticket #2834 - requested by joerg
mk/flavor/pkg/metadata.mk: bug fix
Revisions pulled up:
- mk/flavor/pkg/metadata.mk 1.32
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri Jul 24 06:54:37 UTC 2009
Modified Files:
pkgsrc/mk/flavor/pkg: metadata.mk
Log Message:
Compute +SIZE_ALL as documented in pkg_info(1). Addresses PR 41767.
spz [Wed, 22 Jul 2009 06:58:30 +0000 (06:58 +0000)]
pullup #2832
spz [Wed, 22 Jul 2009 06:56:56 +0000 (06:56 +0000)]
Pullup ticket 2832 - requested by tron
security update
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile 1.35
- pkgsrc/net/wireshark/PLIST 1.14
- pkgsrc/net/wireshark/distinfo 1.23
- pkgsrc/net/wireshark/patches/patch-aa 1.10
- pkgsrc/net/wireshark/patches/patch-ad 1.4
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 21 20:39:41 UTC 2009
Modified Files:
pkgsrc/net/wireshark: Makefile PLIST distinfo
pkgsrc/net/wireshark/patches: patch-aa patch-ad
Log Message:
Update "wireshark" package to version 1.2.1. Changes since version 1.0.8:
New features:
- Wireshark has a spiffy new start page.
- Display filters now autocomplete.
- Support for the c-ares resolver library has been added. It has many
- advantages over ADNS.
- Many new protocol dissectors and capture file formats have been added.
- Macintosh OS X support has been improved.
- GeoIP database lookups.
- OpenStreetMap + GeoIP integration.
- Improved Postscript(R) print output.
- The preference handling code is now much smarter about changes.
- Support for Pcap-ng, the next-generation capture file format.
- Support for process information correlation via IPFIX.
- Column widths are now saved.
- The last used configuration profile is now saved.
- Protocol preferences are changeable from the packet details context menu.
- Support for IP packet comparison.
- Capinfos now shows the average packet rate.
Security fixes:
- The AFS dissector could crash.
- The Infiniband dissector could crash on some platforms.
To generate a diff of this commit:
cvs rdiff -u -r1.34 -r1.35 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.13 -r1.14 pkgsrc/net/wireshark/PLIST
cvs rdiff -u -r1.22 -r1.23 pkgsrc/net/wireshark/distinfo
cvs rdiff -u -r1.9 -r1.10 pkgsrc/net/wireshark/patches/patch-aa
cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/wireshark/patches/patch-ad
tron [Tue, 21 Jul 2009 14:30:00 +0000 (14:30 +0000)]
Pullup tickets #2826, #2827, #2828, #2829, #2830 and #2831.
tron [Tue, 21 Jul 2009 14:28:22 +0000 (14:28 +0000)]
Pullup ticket #2831 - requested by kefren
mono-tools: keep in sync with mono
Revisions pulled up:
- devel/mono-tools/Makefile 1.15
- devel/mono-tools/PLIST 1.7
- devel/mono-tools/distinfo 1.5
---
Module Name: pkgsrc
Committed By: kefren
Date: Wed Jul 15 12:12:37 UTC 2009
Modified Files:
pkgsrc/devel/mono-tools: Makefile PLIST distinfo
Log Message:
The continuing story of mono 2.4.2 update
tron [Tue, 21 Jul 2009 11:20:40 +0000 (11:20 +0000)]
Pullup ticket #2830 - requested by kefren
mono-basic: keep in sync with mono
Revisions pulled up:
- lang/mono-basic/Makefile 1.7
- lang/mono-basic/distinfo 1.4
---
Module Name: pkgsrc
Committed By: kefren
Date: Wed Jul 15 11:42:31 UTC 2009
Modified Files:
pkgsrc/lang/mono-basic: Makefile distinfo
Log Message:
Update to mono 2.4.2
tron [Tue, 21 Jul 2009 11:17:25 +0000 (11:17 +0000)]
Pullup ticket #2829 - requested by kefren
mono-xsp: keep in sync with mono
Revisions pulled up:
- www/mono-xsp/Makefile 1.13
- www/mono-xsp/PLIST 1.8
- www/mono-xsp/distinfo 1.7
---
Module Name: pkgsrc
Committed By: kefren
Date: Wed Jul 15 11:57:29 UTC 2009
Modified Files:
pkgsrc/www/mono-xsp: Makefile PLIST distinfo
Log Message:
Update to mono 2.4.2
tron [Tue, 21 Jul 2009 11:12:59 +0000 (11:12 +0000)]
Pullup ticket #2828 - requested by kefren
libgdiplus: keep in sync with mono
Revisions pulled up:
- graphics/libgdiplus/Makefile 1.38
- graphics/libgdiplus/distinfo 1.23
---
Module Name: pkgsrc
Committed By: kefren
Date: Wed Jul 15 11:50:50 UTC 2009
Modified Files:
pkgsrc/graphics/libgdiplus: Makefile distinfo
Log Message:
Update to mono 2.4.2
tron [Tue, 21 Jul 2009 11:04:18 +0000 (11:04 +0000)]
Pullup ticket #2827 - requested by kefren
ap-mono: keep in sync with mono
Revisions pulled up:
- www/ap-mono/Makefile 1.8
- www/ap-mono/PLIST 1.3
- www/ap-mono/distinfo 1.5
---
Module Name: pkgsrc
Committed By: kefren
Date: Wed Jul 15 12:02:44 UTC 2009
Modified Files:
pkgsrc/www/ap-mono: Makefile PLIST distinfo
Log Message:
Update to mono 2.4.2
tron [Tue, 21 Jul 2009 10:50:58 +0000 (10:50 +0000)]
Pullup ticket #2826 - requested by kefren
mono: security update
Revisions pulled up:
- lang/mono/Makefile 1.89-1.90
- lang/mono/PLIST.common 1.6
- lang/mono/buildlink3.mk 1.34
- lang/mono/distinfo 1.52-1.53
- lang/mono/patches/patch-dj 1.1
---
Module Name: pkgsrc
Committed By: kefren
Date: Wed Jul 15 11:37:16 UTC 2009
Modified Files:
pkgsrc/lang/mono: Makefile PLIST.common buildlink3.mk distinfo
Log Message:
Update to 2.4.2.1
This version is the first version to integrate Microsoft's open source
ASP.NET MVC stack. More than 140 bug fixed. Check
http://www.mono-project.com/Release_Notes_Mono_2.4.2 for more changes.
---
Module Name: pkgsrc
Committed By: hasso
Date: Fri Jul 17 02:53:52 UTC 2009
Modified Files:
pkgsrc/lang/mono: distinfo
Added Files:
pkgsrc/lang/mono/patches: patch-dj
Log Message:
Make it build again on DragonFly.
---
Module Name: pkgsrc
Committed By: kefren
Date: Sun Jul 19 07:53:53 UTC 2009
Modified Files:
pkgsrc/lang/mono: Makefile distinfo
Log Message:
Update to 2.4.2.2 - Contains fixes for CVE-2009-0217
tron [Mon, 20 Jul 2009 09:59:10 +0000 (09:59 +0000)]
Pullup tickets #2822 and #2825.
tron [Mon, 20 Jul 2009 09:58:40 +0000 (09:58 +0000)]
Pullup ticket #2825 - requested by minskim
scmgit: security update
scmgit-base: security update
scmgit-docs: security update
Revisions pulled up:
- devel/scmgit-base/PLIST 1.14
- devel/scmgit-base/distinfo 1.18-1.19
- devel/scmgit-base/patches/patch-aa 1.8-1.9
- devel/scmgit-base/patches/patch-ad delete
- devel/scmgit-docs/PLIST 1.6
- devel/scmgit/Makefile.version 1.9
---
Module Name: pkgsrc
Committed By: minskim
Date: Sun Jul 19 01:29:33 UTC 2009
Modified Files:
pkgsrc/devel/scmgit: Makefile.version
pkgsrc/devel/scmgit-base: PLIST distinfo
pkgsrc/devel/scmgit-base/patches: patch-aa
pkgsrc/devel/scmgit-docs: PLIST
Removed Files:
pkgsrc/devel/scmgit-base/patches: patch-ad
Log Message:
Update scmgit to 1.6.3.3.
This version fixes the remote DoS problem in
http://secunia.com/advisories/35437/.
Major changes between 1.6.2 and 1.6.3:
* various git-svn updates.
* git-gui updates, including an update to Russian translation, and a
fix to an infinite loop when showing an empty diff.
* gitk updates, including an update to Russian translation and
improved Windows support.
* many uses of lstat(2) in the codepath for "git checkout" have been
optimized out.
* usuability improvements.
* bug fixes.
---
Module Name: pkgsrc
Committed By: hasso
Date: Mon Jul 20 03:43:07 UTC 2009
Modified Files:
pkgsrc/devel/scmgit-base: distinfo
pkgsrc/devel/scmgit-base/patches: patch-aa
Log Message:
Make it build on DragonFly again.
tron [Mon, 20 Jul 2009 09:22:07 +0000 (09:22 +0000)]
Pullup ticket #2822 - requested by adrianp
bugzilla3: security update
Revisions pulled up:
- devel/bugzilla3/Makefile 1.15
- devel/bugzilla3/distinfo 1.9
---
Module Name: pkgsrc
Committed By: adrianp
Date: Fri Jul 17 17:04:56 UTC 2009
Modified Files:
pkgsrc/devel/bugzilla3: Makefile distinfo
Log Message:
* We now require a specific version of the Email::MIME::Encodings Perl module, to fix an issue where some emails would have too many newlines in them. (Bug 486206)
* Bugzilla's JavaScript and CSS should now be fully compatible with Internet Explorer 8. (Bug 483150)
* Running a saved search with a saved sort order will now no longer overwrite your default search order. (Bug 491679)
* You can now confirm a bug by popular vote even if there is no status called "NEW" in your Bugzilla. (Bug 500900)
* Displaying a bug with lots of comments should now be significantly faster. (Bug 498318)
This release also contains a security fix. See the Security Fixes Section for details.
spz [Sun, 19 Jul 2009 20:35:58 +0000 (20:35 +0000)]
pullup #2821
spz [Sun, 19 Jul 2009 20:32:51 +0000 (20:32 +0000)]
Pullup ticket 2821 - requested by adrianp
security update
Revisions pulled up:
- pkgsrc/net/isc-dhclient/distinfo 1.4
- pkgsrc/net/isc-dhcp/Makefile.common 1.5
- pkgsrc/net/isc-dhcp/distinfo 1.4
- pkgsrc/net/isc-dhcpd/distinfo 1.4
- pkgsrc/net/isc-dhcrelay/distinfo 1.4
Module Name: pkgsrc
Committed By: adrianp
Date: Thu Jul 16 18:29:49 UTC 2009
Modified Files:
pkgsrc/net/isc-dhclient: distinfo
pkgsrc/net/isc-dhcp: Makefile.common distinfo
pkgsrc/net/isc-dhcpd: distinfo
pkgsrc/net/isc-dhcrelay: distinfo
Log Message:
Bump to p1
* A stack overflow vulnerability was fixed in dhclient that could allow r=
emote attackers to execute arbitrary commands as root on the system, or s=
imply terminate the client, by providing an over-long subnet-mask option.
To generate a diff of this commit:
cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/isc-dhclient/distinfo
cvs rdiff -u -r1.4 -r1.5 pkgsrc/net/isc-dhcp/Makefile.common
cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/isc-dhcp/distinfo
cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/isc-dhcpd/distinfo
cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/isc-dhcrelay/distinfo
spz [Sun, 19 Jul 2009 20:04:49 +0000 (20:04 +0000)]
pullup #2824
spz [Sun, 19 Jul 2009 20:00:53 +0000 (20:00 +0000)]
Pullup ticket 2824 - requested by tron
security fix
Revisions pulled up:
- pkgsrc/databases/mysql5-server/Makefile 1.28
- pkgsrc/databases/mysql5-server/distinfo 1.22
Files added:
pkgsrc/databases/mysql5-server/patches/patch-ac 1.8
Module Name: pkgsrc
Committed By: tron
Date: Sun Jul 19 13:50:20 UTC 2009
Modified Files:
pkgsrc/databases/mysql5-server: Makefile distinfo
Added Files:
pkgsrc/databases/mysql5-server/patches: patch-ac
Log Message:
Add a patch for CVE-2009-2446 based on the description in the report.
To generate a diff of this commit:
cvs rdiff -u -r1.27 -r1.28 pkgsrc/databases/mysql5-server/Makefile
cvs rdiff -u -r1.21 -r1.22 pkgsrc/databases/mysql5-server/distinfo
cvs rdiff -u -r0 -r1.8 pkgsrc/databases/mysql5-server/patches/patch-ac
spz [Sun, 19 Jul 2009 19:32:45 +0000 (19:32 +0000)]
pullup #2823
spz [Sun, 19 Jul 2009 19:31:37 +0000 (19:31 +0000)]
Pullup ticket 2823 - requested by tron
security fix
Revisions pulled up:
- pkgsrc/graphics/tiff/Makefile 1.88
- pkgsrc/graphics/tiff/distinfo 1.43
Files added:
pkgsrc/graphics/tiff/patches/patch-ca 1.1
pkgsrc/graphics/tiff/patches/patch-cb 1.1
Module Name: pkgsrc
Committed By: tron
Date: Sun Jul 19 11:45:09 UTC 2009
Modified Files:
pkgsrc/graphics/tiff: Makefile distinfo
Added Files:
pkgsrc/graphics/tiff/patches: patch-ca patch-cb
Log Message:
Apply fix for integer overflows in various inter-color space conversion
tools taken from MapTools Bugzilla. This fixes CVE-2009-2347.
To generate a diff of this commit:
cvs rdiff -u -r1.87 -r1.88 pkgsrc/graphics/tiff/Makefile
cvs rdiff -u -r1.42 -r1.43 pkgsrc/graphics/tiff/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/graphics/tiff/patches/patch-ca \
pkgsrc/graphics/tiff/patches/patch-cb
tron [Fri, 17 Jul 2009 13:56:23 +0000 (13:56 +0000)]
Pullup tickets #2815, #2817, #2818 and #2819.
tron [Fri, 17 Jul 2009 13:54:28 +0000 (13:54 +0000)]
Pullup ticket #2819 - requested by adrianp
drupal: security update
Revisions pulled up:
- www/drupal/Makefile 1.40
- www/drupal/distinfo 1.31
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu Jul 16 18:11:07 UTC 2009
Modified Files:
pkgsrc/www/drupal: Makefile distinfo
Log Message:
This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:
* SA-CORE-2009-007 Drupal core - Multiple vulnerabilities
In addition to this security vulnerability, the following bugs have been fixed since the 5.18 release:
* #212285 by wrwrwr: hr should be treated as a block level tag. Backport by alexanderpas.
* #145733 by kepten, brianV: The session.use_cookies PHP setting is required by Drupal, but it can be turned off, so try to ensure it is turned on at all times.
tron [Fri, 17 Jul 2009 13:51:09 +0000 (13:51 +0000)]
Pullup ticket #2818 - requested by adrianp
isc-dhcp4: security update
net/isc-dhcp4/Makefile.common 1.5
net/isc-dhcp4/distinfo 1.4
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu Jul 16 18:41:11 UTC 2009
Modified Files:
pkgsrc/net/isc-dhcp4: Makefile.common distinfo
Log Message:
Bump to p1
* A stack overflow vulnerability was fixed in dhclient that could allow remote attackers to execute arbitrary commands as root on the system, or simply terminate the client, by providing an over-long subnet-mask option.
tron [Fri, 17 Jul 2009 13:35:28 +0000 (13:35 +0000)]
Pullup ticket #2817 - requested by adrianp
drupal6: security update
Revisions pulled up:
- www/drupal6/Makefile 1.16
- www/drupal6/distinfo 1.12
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu Jul 16 18:11:53 UTC 2009
Modified Files:
pkgsrc/www/drupal6: Makefile distinfo
Log Message:
This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:
* SA-CORE-2009-007 - Drupal core - Multiple vulnerabilities
In addition to this security vulnerability, the following bugs have been fixed since the 6.12 release:
* - Patch #463450 by wulff: fixed documentation glitch.
* #193577 by Rob Loach, Damien Tournoud, andypost: JavaScript string split() function does not behave like PHP explode(); causes problems with multiple node body break tags
* #454992 by sun, bengtan: _drupal_flush_css_js() should not have 'q' as a possible CSS query character, since that is the Drupal path name character too
* #452704 by andypost, catch: Names of compressed CSS and JS files should have a prefix, so that names starting in ad* will not happen. Those are easily blocked by firewalls, Firefox's Adblock, etc.
* #468732 by andypost: cache_clear_all() mentioned cache_flush_delay incorrectly; it should say we use cache_lifetime
* #460420 by wulff, andypost: drupal_set_title() in forum_overview() is not needed; menu already sets the title and is localized
* #398902 by Nick Urban, alexanderpas, kscheirer: password equality checking was not using strict type checking; we should assume these are strings and compared character to character
* #479216 by jhedstrom: fix grammar in forum module messages
* #445748 by Dave Reid, dww: Fix module support for disabled module update status checking and do not track usage in that case.
* #465190 by Heine: The Anonymous name is a plain text setting, so it should be escaped properly for output.
* #246096 by Sutharsan, Pedro Lozano, mr.baileys, andypost: Actions set to run on cron were not actually triggered.
* #226479 by gpk, BrianV, catch: We should always show the node access rebuild button. The check on when to show it was fragile, so the button might not have been there when actually needed.
* #482646 by Dave Reid: For proper HTTP query simpletesting, we should pass on the instance identifier (database prefix).
* #197266 by ufku, lilou, Dave Reid, c960657, drewish: Save a query by only calling file_space_used() when a limit is provided.
* #408876 by Pasqualle, JamesAn: The 'serialize' Schema API property was used but not documented.
* #145733 by kepten, brianV: The session.use_cookies PHP setting is required by Drupal, but it can be turned off, so try to ensure it is turned on at all times.
* #373225 by jpulles, Josh Waihi: When changing columns, PostgreSQL needs explicit type casting to ensure that values are kept properly.
* #236657 by hctom, swentel: In system_clear_cache_submit(), the function arguments were swapped (but it did not affect how it actually worked).
* #243253 by Benjamin Melan=C3=A7on, dww: Update status should not attempt to request update data until a limit is reached. Fixed Drupal instances when drupal.org is down and gets less load on Drupal.org if data is not found.
* #339466 by patryk, c960657, alexanderpas: Remove url() wrapping from remote links and link in a more user friendly OpenID provider list.
* #461938 by grendzy, JamesAn: Use filter_xss_admin() on site name and site slogan, just like footer message and mission
* #455172 by budda, RoboPhred, andypost: Fix drupal_mail() documentation, so that it encourages to set the body of the email as an array (like core does).
* #329797 by berenddeboer, redndahead, danielb: The tablesort code did not account for possibly nested tables; only match immediate descendats, so elements of nested tables are not matched.
* #352121 by valthebald, Damien Tournoud, mr.baileys: The safe string check on translations should only be applied to the default textgroup. Strings in other textgroups such as blocks and menu items are displayed via escaping and filtering, and might contain arbitrary HTML.
tron [Fri, 17 Jul 2009 13:23:37 +0000 (13:23 +0000)]
Pullup ticket #2815 - requested by obache
dillo: security update
Revisions pulled up:
- www/dillo/Makefile 1.43-1.44
- www/dillo/PLIST 1.15
- www/dillo/distinfo 1.29
- www/dillo/patches/patch-aa 1.8
- www/dillo/patches/patch-ab 1.15
- www/dillo/patches/patch-ac 1.12
- www/dillo/patches/patch-ad 1.1
---
Module Name: pkgsrc
Committed By: joerg
Date: Tue Jul 7 14:24:05 UTC 2009
Modified Files:
pkgsrc/www/dillo: Makefile
Log Message:
user-destdir support
---
Module Name: pkgsrc
Committed By: snj
Date: Thu Jul 9 05:04:03 UTC 2009
Modified Files:
pkgsrc/www/dillo: Makefile PLIST distinfo
pkgsrc/www/dillo/patches: patch-aa patch-ab patch-ac
Added Files:
pkgsrc/www/dillo/patches: patch-ad
Log Message:
Update dillo to 2.1.1, partially from Matthew Mondor in PR pkg/41670.
Changes:
2.1.1:
Add additional size checks for images.
Added support for css colors of the form rgb(255, 255, 255).
Added the 'nop' keybinding (nop = NO_OPERATION; cancels a default hook).
Added 'stop' key action (not bound by default).
Reduced 'warning: ignoring return value of ...'
2.1:
Implemented basic CSS infrastructure!
Read user style from ~/.dillo/style.css.
Added configurable keybindings! (in ~/.dillo/keysrc)
Implemented "search previous" in string searches.
Ported the command line interface from dillo1
Set middle click to submit in a new TAB. (Helps to keep form data!)
Implemented Basic authentication!
Implemented a close-tab button for the GUI.
Implemented a tools menu.
Added dillo(1) man page.
Added "font_max_size", "font_min_size" dillorc options.
Added instant client-side redirects (aka. zero-delay META refresh).
Proxy support for HTTPS.
Updated the URL resolver to comply with RFC-3986.
Fixed Bookmarks modify's HTML so it wraps nicely on handhelds.
Made cookierc parsing more robust.
Fix: recover page focus when clicking outside of a widget.
Added support for the Q element. BUG#343
Added a right-click menu to form controls (show hiddens, submit, reset)
Added the "http_language" dillorc option for setting HTTP's Accept-Language.
Replace image loading button and page menu option with a tools menu option.
Implemented the "overline" text-decoration.
Enhanced and cleaned up text decorations for SUB and SUP.
Added "View Stylesheets" to the page menu.
System config files have moved to sysconfdir/dillo/
Allowed compilation with older machines by removing a few C99isms.
Switched SSL-enabled to configure.in (./configure --enable-ssl).
Removed redundant caller NULL checks already in the API.
Added use of inttypes.h when stdint.h isn't found.
Made the parser recognize "[^ ]/>"-terminated XML elements.
Brought in Sebastian's CSS parser from dillo-0.8.0-css-3.
Support CSS @import directive.
Improved CSS selector matching performance using hash tables.
Added support for descendant and child selectors.
Support selector specificity.
Replace bg_color dillorc option.
Remove text_color, link_color, and force_my_colors dillorc options.
Replace visited_color dillorc option.
Allow negative values for specific CSS properties only.
Disable negative margins for now as dw/* does not support them yet.
Disable form widgets while stylesheets are loading.
Implement --xid command line option (used by claws mail client).
Added the "middle_click_drags_page" dillorc option.
Set the File menu label to hide when the File menu-button is shown.
Made a big cleanup of cache.c WRT charset decoding (fixes bugs).
Made an extensive cleanup/fixup of the whole image handling process.
Fixed handling of META's content-type with no MIME type (e.g. only charset).
Added support for a quoted URL in META refresh.
Updated the GPL copyright note in the source files.
tron [Thu, 16 Jul 2009 21:20:07 +0000 (21:20 +0000)]
Pullup tickets #2814 and #2816.
tron [Thu, 16 Jul 2009 21:18:40 +0000 (21:18 +0000)]
Pullup ticket #2816 - requested by obache
p5-IO-Socket-SSL: security update
Revisions pulled up:
- security/p5-IO-Socket-SSL/Makefile 1.46
- security/p5-IO-Socket-SSL/distinfo 1.32
---
Module Name: pkgsrc
Committed By: sno
Date: Tue Jul 7 22:27:52 UTC 2009
Modified Files:
pkgsrc/security/p5-IO-Socket-SSL: Makefile distinfo
Log Message:
Updating package for p5 module IO::Socket::SSL from 1.24 to 1.26 and
set license to ${PERL5_LICENSE} according to module's documentation (POD).
Upstream changes:
v1.26 2009.07.03
- SECURITY BUGFIX!
fix Bug in verify_hostname_of_cert where it matched only the prefix for
the hostname when no wildcard was given, e.g. www.example.org matched
against a certificate with name www.exam in it
Thanks to MLEHMANN for reporting
v1.25 2009.07.02
- t/nonblock.t: increase number of bytes written to fix bug with OS X 10.5
https://rt.cpan.org/Ticket/Display.html?id=47240
tron [Thu, 16 Jul 2009 21:13:53 +0000 (21:13 +0000)]
Pullup ticket #2814 - requested by minskim
ruby-actionpack: security patch
Revisions pulled up:
- www/ruby-actionpack/Makefile 1.16
- www/ruby-actionpack/distinfo 1.17
- www/ruby-actionpack/patches/patch-aa 1.3
---
Module Name: pkgsrc
Committed By: minskim
Date: Thu Jul 16 11:00:25 UTC 2009
Modified Files:
pkgsrc/www/ruby-actionpack: Makefile distinfo
Added Files:
pkgsrc/www/ruby-actionpack/patches: patch-aa
Log Message:
Security fix for:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2422
From rails git commit
056ddbdcfb07f0b5c7e6ed8a35f6c3b55b4ab489.
spz [Thu, 16 Jul 2009 20:49:21 +0000 (20:49 +0000)]
pullup #2805
spz [Thu, 16 Jul 2009 20:47:55 +0000 (20:47 +0000)]
Pullup ticket 2805 - requested by tron
Build problem fix
Revisions pulled up:
- pkgsrc/mk/platform/Darwin.mk 1.39
Module Name: pkgsrc
Committed By: tron
Date: Sat Jul 11 10:32:41 UTC 2009
Modified Files:
pkgsrc/mk/platform: Darwin.mk
Log Message:
Don't use "/bin/ksh" to run wrappe scripts under Mac OS X before Leopard.
This should fix build problems reported by Christoph Egger.
To generate a diff of this commit:
cvs rdiff -u -r1.38 -r1.39 pkgsrc/mk/platform/Darwin.mk
tron [Thu, 16 Jul 2009 09:24:26 +0000 (09:24 +0000)]
Pullup tickets #2809, #2810, #2811 and #2813.
tron [Thu, 16 Jul 2009 09:23:44 +0000 (09:23 +0000)]
Pullup ticket #2813 - requested by obache
tor: security update
Revisions pulled up:
- net/tor/Makefile 1.64
- net/tor/distinfo 1.35
---
Module Name: pkgsrc
Committed By: obache
Date: Thu Jul 9 11:52:31 UTC 2009
Modified Files:
pkgsrc/net/tor: Makefile distinfo
Log Message:
Update tor to 0.2.0.35.
maintainer update request via PR 41688.
Changes in version 0.2.0.35 - 2009-06-24
o Security fix:
- Avoid crashing in the presence of certain malformed descriptors.
Found by lark, and by automated fuzzing.
- Fix an edge case where a malicious exit relay could convince a
controller that the client's DNS question resolves to an internal IP
address. Bug found and fixed by "optimist"; bugfix on 0.1.2.8-beta.
o Major bugfixes:
- Finally fix the bug where dynamic-IP relays disappear when their
IP address changes: directory mirrors were mistakenly telling
them their old address if they asked via begin_dir, so they
never got an accurate answer about their new address, so they
just vanished after a day. For belt-and-suspenders, relays that
don't set Address in their config now avoid using begin_dir for
all direct connections. Should fix bugs 827, 883, and 900.
- Fix a timing-dependent, allocator-dependent, DNS-related crash bug
that would occur on some exit nodes when DNS failures and timeouts
occurred in certain patterns. Fix for bug 957.
o Minor bugfixes:
- When starting with a cache over a few days old, do not leak
memory for the obsolete router descriptors in it. Bugfix on
0.2.0.33; fixes bug 672.
- Hidden service clients didn't use a cached service descriptor that
was older than 15 minutes, but wouldn't fetch a new one either,
because there was already one in the cache. Now, fetch a v2
descriptor unless the same descriptor was added to the cache within
the last 15 minutes. Fixes bug 997; reported by Marcus Griep.
tron [Thu, 16 Jul 2009 09:20:06 +0000 (09:20 +0000)]
Pullup ticket #2811 - requested by minskim
ruby-mocha: build fix
Revisions pulled up:
- devel/ruby-mocha/Makefile 1.4
---
Module Name: pkgsrc
Committed By: minskim
Date: Mon Jul 13 11:58:01 UTC 2009
Modified Files:
pkgsrc/devel/ruby-mocha: Makefile
Log Message:
Make sure that a .orig file is not installed.
tron [Thu, 16 Jul 2009 09:17:29 +0000 (09:17 +0000)]
Pullup ticket #2810 - requested by minskim
ruby-eet: build fix
Revisions pulled up:
- devel/ruby-eet/Makefile 1.2
---
Module Name: pkgsrc
Committed By: minskim
Date: Sun Jul 12 23:05:38 UTC 2009
Modified Files:
pkgsrc/devel/ruby-eet: Makefile
Log Message:
ruby-eet needs pkg-config as a tool.
tron [Thu, 16 Jul 2009 08:52:51 +0000 (08:52 +0000)]
Pullup ticket #2809 - requested by taca
typolight27: bug fix
Revisions pulled up:
- www/typolight27/Makefile 1.6
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Jul 13 20:42:10 UTC 2009
Modified Files:
pkgsrc/www/typolight27: Makefile
Log Message:
Add langconfig.php as one of configuration files.
Bump PKGREVISION.
spz [Thu, 16 Jul 2009 05:38:32 +0000 (05:38 +0000)]
pullup #2812
spz [Thu, 16 Jul 2009 05:37:25 +0000 (05:37 +0000)]
Pullup ticket 2812 - requested by tron
Security update
Revisions pulled up:
- pkgsrc/www/apache22/Makefile 1.47
- pkgsrc/www/apache22/distinfo 1.21
Files added:
pkgsrc/www/apache22/patches/patch-af
pkgsrc/www/apache22/patches/patch-ah
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 14 12:23:40 UTC 2009
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
Added Files:
pkgsrc/www/apache22/patches: patch-af patch-ah
Log Message:
Add patches from the Apache SVN repository to fix the security
vulnerabilities reported in CVE-2009-1890 and CVE-2009-1891.
To generate a diff of this commit:
cvs rdiff -u -r1.46 -r1.47 pkgsrc/www/apache22/Makefile
cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/apache22/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/www/apache22/patches/patch-af \
pkgsrc/www/apache22/patches/patch-ah
tron [Mon, 13 Jul 2009 18:50:41 +0000 (18:50 +0000)]
Pullup tickets #2806, #2807 and #2808.
tron [Mon, 13 Jul 2009 18:49:58 +0000 (18:49 +0000)]
Pullup ticket #2808 - requested by minskim
xetex: build fix
Revisions pulled up:
- print/xetex/distinfo 1.2
- print/xetex/patches/patch-ad 1.2
- print/xetex/patches/patch-ai 1.1
---
Module Name: pkgsrc
Committed By: minskim
Date: Sun Jul 12 21:22:46 UTC 2009
Modified Files:
pkgsrc/print/xetex: distinfo
pkgsrc/print/xetex/patches: patch-ad
Added Files:
pkgsrc/print/xetex/patches: patch-ai
Log Message:
Make print/xetex build with the recent kpathsea.
Noted by Hasso Tepper.
projects / pkgsrc.git / log