snj [Wed, 28 Jun 2006 16:46:02 +0000 (16:46 +0000)]
1714
snj [Wed, 28 Jun 2006 16:45:46 +0000 (16:45 +0000)]
Pullup ticket 1714 - requested by salo
security update for hashcash
Revisions pulled up:
- pkgsrc/security/hashcash/Makefile 1.9
- pkgsrc/security/hashcash/distinfo 1.7
- pkgsrc/security/hashcash/patches/patch-aa removed
- pkgsrc/security/hashcash/patches/patch-ab removed
Module Name: pkgsrc
Committed By: gdt
Date: Mon Apr 17 12:44:02 UTC 2006
Modified Files:
pkgsrc/security/hashcash: Makefile distinfo
Removed Files:
pkgsrc/security/hashcash/patches: patch-aa patch-ab
Log Message:
Update to 1.22.
hashcash-1.22 - 08-Apr-2006 - Adam Back <adam@cypherspace.org>
[BUG FIXES]
hashcash-1.18 - 05-Jul-2005 - Adam Back <adam@cypherspace.org>
* add a simpler minting API to make it easier to mint stamps
from VB scripting
hashcash-1.17 - 30-Mar-2005 - Adam Back <adam@cypherspace.org>
[BUG FIXES]
hashcash-1.15 - 12-Jan-2005 - Adam Back <adam@cypherspace.org>
* make "Hashcash:" be accepted as well as "X-Hashcash:"
suggestion by Simon Josefsson <jas@extundo.com>. This way
if/when the X- is dropped from hashcash headers we will not
have a backwards compatibility problem. (Well not after
version 1.15).
* implement the -Z option to compress stamps; in fact the
usage changed so -Z takes an argument: 0, 1 or 2. 0 =3D not
compressed, 1 =3D compressed but not so the counter + padding
is split, and 2 =3D very compressed, but slow. (Due to a late
discovered bug 2 is the same as 1 for now until I can fix
that.)
* added -O x -sv to request benchtest of core x only
* make code work with -DOPENSSL, think this slipped during
integration of Jonathan's libfastmint as it uses some lower
level openssl APIs internally. I fixed it but it might be
a bit openssl version specific, if they changed the state
fields at any point. (This change coincidentally I think
should work around the linking with openssl problem that Hal
Finney <hal@finney.org> reported).
* add libhashcash.a intermediate target to make hashcash more
convenient to link into other software on linux. (A
suggestion from Hal Finney who was trying to link to his
RPOW system.)
hashcash-1.14 - 14-Dec-2004 - Adam Back <adam@cypherspace.org>
* make hashcash -cX accept continuation lines starting with
space as well as tab
* add library function to wrap lines and use it from hashcash
command line tool.
* fix long vs time_t prototype mismatch that was giving
compile errors on BSD; also cleaned up some warnings that
can be obtained with gcc -Wall.
ghen [Tue, 27 Jun 2006 17:00:04 +0000 (17:00 +0000)]
#1713.
ghen [Tue, 27 Jun 2006 16:59:27 +0000 (16:59 +0000)]
Pullup ticket 1713 - requested by salo
security fix for mutt-devel
Revisions pulled up:
- pkgsrc/mail/mutt-devel/Makefile 1.50
- pkgsrc/mail/mutt-devel/distinfo 1.30
- pkgsrc/mail/mutt-devel/patches/patch-ae 1.5
Module Name: pkgsrc
Committed By: tonio
Date: Tue Jun 20 14:07:31 UTC 2006
Modified Files:
pkgsrc/mail/mutt-devel: Makefile distinfo
Log Message:
Add fix for imap code from mutt's cvs repository:
A malicious IMAP server could cause at least DoS
Bomp PKGREVISION
---
Module Name: pkgsrc
Committed By: tonio
Date: Tue Jun 20 14:08:05 UTC 2006
Added Files:
pkgsrc/mail/mutt-devel/patches: patch-ae
Log Message:
The patch for imap/browse
ghen [Mon, 26 Jun 2006 07:07:19 +0000 (07:07 +0000)]
#1711.
ghen [Mon, 26 Jun 2006 07:06:35 +0000 (07:06 +0000)]
Pullup ticket 1711 - requested by salo
security update for netpbm
Revisions pulled up:
- pkgsrc/graphics/netpbm/Makefile 1.136, 1.137, 1.138, 1.142, 1.143
- pkgsrc/graphics/netpbm/distinfo 1.54, 1.56, 1.58, 1.59
- pkgsrc/graphics/netpbm/patches/patch-aa 1.37, 1.38
- pkgsrc/graphics/netpbm/patches/patch-ab 1.20
- pkgsrc/graphics/netpbm/patches/patch-ac removed
- pkgsrc/graphics/netpbm/patches/patch-ag removed
- pkgsrc/graphics/netpbm/patches/patch-ai removed
- pkgsrc/graphics/netpbm/patches/patch-aj removed
- pkgsrc/graphics/netpbm/patches/patch-ca 1.1
Module Name: pkgsrc
Committed By: tron
Date: Mon Apr 3 16:46:51 UTC 2006
Modified Files:
pkgsrc/graphics/netpbm: Makefile
Log Message:
Make sure all documentation files are installed world readable. Bump
package revision because this change affects the binary package.
---
Module Name: pkgsrc
Committed By: tron
Date: Mon Apr 3 16:53:58 UTC 2006
Modified Files:
pkgsrc/graphics/netpbm: Makefile
Log Message:
Make last change work with IRIX's old fashioned "find" command.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 17 08:11:17 UTC 2006
Modified Files:
pkgsrc/graphics/netpbm: Makefile distinfo
Removed Files:
pkgsrc/graphics/netpbm/patches: patch-ag
Log Message:
Changes 10.33:
Add pamtosvg.
g3topbm: Add -width, -paper_size.
libnetpbm / most newer programs: Fix bug that produces
plain format output when it should be raw because
pnm_readpaminit() does not set 'plainformat' and most
programs just copy the input pam to the output pam.
pamflip: fix bug with left/right flip of PBM that has
width an even multiple of 8 plus something less than 8.
pnmquant: turn on autoflush when creating seekable file.
install: fix symbolic link pnmdepth -> pamdepth.
build: fix some importinc dependencies.
---
Module Name: pkgsrc
Committed By: jlam
Date: Wed May 10 17:19:00 UTC 2006
Modified Files:
pkgsrc/graphics/netpbm: distinfo
Added Files:
pkgsrc/graphics/netpbm/patches: patch-ca
Log Message:
On FreeBSD 4.x, <netinet/in.h> needs <sys/types.h> to be included first.
---
Module Name: pkgsrc
Committed By: minskim
Date: Sun Jun 18 16:18:11 UTC 2006
Modified Files:
pkgsrc/graphics/netpbm: Makefile distinfo
pkgsrc/graphics/netpbm/patches: patch-aa
Log Message:
Build .dylib instead of .so on Darwin. Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: adam
Date: Sun Jun 25 06:35:58 UTC 2006
Modified Files:
pkgsrc/graphics/netpbm: Makefile distinfo
pkgsrc/graphics/netpbm/patches: patch-aa patch-ab
Removed Files:
pkgsrc/graphics/netpbm/patches: patch-ac patch-ag patch-ai patch-aj
Log Message:
This is a security update, which fixes a buffer overflow vulnerability.
Changes 10.34:
* Add pamthreshold, pamx, pamtoxvmini.
* pammasksharpen: Add -threshold.
* pnmtopng: make "N colors found" message verbose-only.
* pnmtopng: make "no room in palette" message non-verbose.
* picttoppm: Tolerate various PICT file corruptions.
* picttoppm: Don't issue warning message when file named
'fontdir' doesn't exist.
* libnetpbm: Add ppmd_fill_path().
* ppmtobmp: Fix for PBM input.
* bmptopnm: Don't crash on BMP with no color map.
* bmptopnm: Fix wrong file name in error messages.
* ppmtogif: fix bug: always produces garbage output.
* ppmtompeg: fix input from Standard Input.
* pnmflip: fix bug: -rotate90, -rotate180, and -rotate270
(and synonyms) don't work when followed by other rotation options.
* ppmtoilbm: Fig bug: generates more planes than necessary.
* pamtofits: fix buffer overflow in asembling header.
* picttoppm: fix bug - interprets some images wrong because of
bogus "rowBytes" value.
* Redo asprintfN(), etc. so as not to use va_list in a way
that doesn't work on some machines.
* cameratopam: remove definition of memmem() so it doesn't collide
with same in some C libraries. Add memmemN() and MEMEQ to libnetpbm.
* Fix build of filename.o.
snj [Sun, 25 Jun 2006 09:06:35 +0000 (09:06 +0000)]
1710
snj [Sun, 25 Jun 2006 09:06:19 +0000 (09:06 +0000)]
Pullup ticket 1710 - requested by salo
security fix for gnupg-devel
Revisions pulled up:
- pkgsrc/security/gnupg-devel/Makefile 1.17
- pkgsrc/security/gnupg-devel/distinfo 1.12
- pkgsrc/security/gnupg-devel/patches/patch-ba 1.1
Module Name: pkgsrc
Committed By: shannonjr
Date: Fri Jun 23 12:28:55 UTC 2006
Modified Files:
pkgsrc/security/gnupg-devel: Makefile buildlink3.mk distinfo
Added Files:
pkgsrc/security/gnupg-devel/patches: patch-ba
Log Message:
Backport fix for CVE-2006-3082 from GnuPG: trunk/g10/
snj [Sun, 25 Jun 2006 08:59:00 +0000 (08:59 +0000)]
1709
snj [Sun, 25 Jun 2006 08:58:14 +0000 (08:58 +0000)]
Pullup ticket 1709 - requested by salo
security update for gnupg
Revisions pulled up:
- pkgsrc/security/gnupg/Makefile 1.83, 1.86
- pkgsrc/security/gnupg/PLIST 1.16
- pkgsrc/security/gnupg/distinfo 1.39, 1.40
- pkgsrc/security/gnupg/options.mk 1.6, 1.7
- pkgsrc/security/gnupg/patches/patch-aa 1.11
- pkgsrc/security/gnupg/patches/patch-ak 1.3
- pkgsrc/security/gnupg/patches/patch-ba 1.1
Module Name: pkgsrc
Committed By: wiz
Date: Tue Apr 4 21:16:37 UTC 2006
Modified Files:
pkgsrc/security/gnupg: Makefile PLIST distinfo options.mk
pkgsrc/security/gnupg/patches: patch-aa patch-ak
Log Message:
Update to 1.4.3:
Noteworthy changes in version 1.4.3 (2006-04-03)
------------------------------------------------
* If available, cURL-based keyserver helpers are built that can
retrieve keys using HKP or any protocol that cURL supports
(HTTP, HTTPS, FTP, FTPS, etc). If cURL is not available, HKP
and HTTP are still supported using a built-in cURL emulator. To
force building the old pre-cURL keyserver helpers, use the
configure option --enable-old-keyserver-helpers. Note that none
of this affects finger or LDAP support, which are unchanged.
Note also that a future version of GnuPG will remove the old
keyserver helpers altogether.
* Implemented Public Key Association (PKA) signature verification.
This uses special DNS records and notation data to associate a
mail address with an OpenPGP key to prove that mail coming from
that address is legitimate without the need for a full trust
path to the signing key.
* When exporting subkeys, those specified with a key ID or
fingerpint and the '!' suffix are now merged into one keyblock.
* Added "gpg-zip", a program to create encrypted archives that can
interoperate with PGP Zip.
* Added support for signing subkey cross-certification "back
signatures". Requiring cross-certification to be present is
currently off by default, but will be changed to on by default
in the future, once more keys use it. A new "cross-certify"
command in the --edit-key menu can be used to update signing
subkeys to have cross-certification.
* The key cleaning options for --import-options and
--export-options have been further polished. "import-clean" and
"export-clean" replace the older
import-clean-sigs/import-clean-uids and
export-clean-sigs/export-clean-uids option pairs.
* New "minimize" command in the --edit-key menu removes everything
that can be removed from a key, rendering it as small as
possible. There are corresponding "export-minimal" and
"import-minimal" commands for --export-options and
--import-options.
* New --fetch-keys command to retrieve keys by specifying a URI.
This allows direct key retrieval from a web page or other
location that can be specified in a URI. Available protocols
are HTTP and finger, plus anything that cURL supplies, if built
with cURL support.
* Files containing several signed messages are not allowed any
longer as there is no clean way to report the status of such
files back to the caller. To partly revert to the old behaviour
the new option --allow-multisig-verification may be used.
* The keyserver helpers can now handle keys in either ASCII armor
or binary format.
* New auto-key-locate option that takes an ordered list of methods
to locate a key if it is not available at encryption time (-r or
--recipient). Possible methods include "cert" (use DNS CERT as
per RFC2538bis, "pka" (use DNS PKA), "ldap" (consult the LDAP
server for the domain in question), "keyserver" (use the
currently defined keyserver), as well as arbitrary keyserver
URIs that will be contacted for the key.
* Able to retrieve keys using DNS CERT records as per RFC-2538bis
(currently in draft): http://www.josefsson.org/rfc2538bis
pkgsrc change:
make architecture-specific options really architecture-specific.
---
Module Name: pkgsrc
Committed By: drochner
Date: Wed Apr 5 10:04:12 UTC 2006
Modified Files:
pkgsrc/security/gnupg: options.mk
Log Message:
--with-libcurl is on per default, so revert the logics
(no functional change, just more effective because a compile check
is skipped)
---
Module Name: pkgsrc
Committed By: salo
Date: Sat Jun 24 14:20:29 UTC 2006
Modified Files:
pkgsrc/security/gnupg: Makefile distinfo
Added Files:
pkgsrc/security/gnupg/patches: patch-ba
Log Message:
Security fix for CVE-2006-3082:
"parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions,
allows remote attackers to cause a denial of service (gpg crash) and
possibly overwrite memory via a message packet with a large length,
which could lead to an integer overflow, as demonstrated using the
--no-armor option."
Patch from GnuPG CVS repository.
Bump PKGREVISION.
branch-fixup [Sat, 24 Jun 2006 14:20:29 +0000 (14:20 +0000)]
Add files from parent branch HEAD:
security/gnupg/patches/patch-ba
ghen [Fri, 23 Jun 2006 13:46:37 +0000 (13:46 +0000)]
#1708.
ghen [Fri, 23 Jun 2006 13:46:05 +0000 (13:46 +0000)]
Pullup ticket 1708 - requested by salo
security update for chmlib
Revisions pulled up:
- pkgsrc/devel/chmlib/Makefile 1.14
- pkgsrc/devel/chmlib/PLIST 1.3
- pkgsrc/devel/chmlib/distinfo 1.11
- pkgsrc/devel/chmlib/patches/patch-ab removed
- pkgsrc/devel/chmlib/patches/patch-ac 1.2
Module Name: pkgsrc
Committed By: salo
Date: Fri Jun 23 12:56:26 UTC 2006
Modified Files:
pkgsrc/devel/chmlib: Makefile PLIST distinfo
pkgsrc/devel/chmlib/patches: patch-ac
Removed Files:
pkgsrc/devel/chmlib/patches: patch-ab
Log Message:
Update to version 0.38
Changes:
- Security fix for extract_chmLib. Pathnames containing a ".." element
will not be extracted. There doesn't seem to be a legitimate reason
to use ".." as a path element in a chm file.
http://secunia.com/advisories/20734/
- Fix for reading some chm files. Running over a large directory of chm
files, about 1% of them turned out to be unreadable. This resulted
from an incomplete understanding of one of the header fields
(index_root). Apparently, this can take negative values other than -1.
branch-fixup [Fri, 23 Jun 2006 12:28:55 +0000 (12:28 +0000)]
Add files from parent branch HEAD:
security/gnupg-devel/patches/patch-ba
ghen [Tue, 20 Jun 2006 11:01:34 +0000 (11:01 +0000)]
#1705.
ghen [Tue, 20 Jun 2006 11:00:57 +0000 (11:00 +0000)]
Pullup ticket 1705 - requested by tron
security fix for mutt
Revisions pulled up:
- pkgsrc/mail/mutt/Makefile via patch
- pkgsrc/mail/mutt/distinfo 1.30
- pkgsrc/mail/mutt/patches/patch-ae 1.4
Module Name: pkgsrc
Committed By: tron
Date: Tue Jun 20 09:14:47 UTC 2006
Modified Files:
pkgsrc/mail/mutt: Makefile PLIST distinfo
Added Files:
pkgsrc/mail/mutt/patches: patch-ae
Log Message:
Add fix from the "mutt" CVS repository for a buffer overflow in the
IMAP code which could be exploited by a malicious IMAP server.
Bump package revision.
salo [Thu, 15 Jun 2006 14:52:13 +0000 (14:52 +0000)]
#1704
salo [Thu, 15 Jun 2006 14:51:49 +0000 (14:51 +0000)]
Pullup ticket 1704 - requested by markd
security fix for kdebase3
Patch provided by the submitter.
Module Name: pkgsrc
Committed By: markd
Date: Thu Jun 15 01:35:33 UTC 2006
Modified Files:
pkgsrc/x11/kdebase3: Makefile distinfo
Log Message:
Fix for KDM symlink vulnerability. CVE-2006-2449
Bump PKGREVISION.
ghen [Thu, 15 Jun 2006 12:57:46 +0000 (12:57 +0000)]
#1702.
ghen [Thu, 15 Jun 2006 12:56:54 +0000 (12:56 +0000)]
Pullup ticket 1702 - requested by salo
security fix for gd
Revisions pulled up:
- pkgsrc/graphics/gd/Makefile 1.68, 1.69, 1.70
- pkgsrc/graphics/gd/distinfo 1.23
- pkgsrc/graphics/gd/patches/patch-ac 1.3
Module Name: pkgsrc
Committed By: minskim
Date: Sun May 14 18:19:08 UTC 2006
Modified Files:
pkgsrc/graphics/gd: Makefile
Log Message:
Fix a pkglint warning.
---
Module Name: pkgsrc
Committed By: minskim
Date: Sun May 14 18:22:38 UTC 2006
Modified Files:
pkgsrc/graphics/gd: Makefile
Log Message:
This package installs a perl script. Add a dependency on perl using
USE_TOOLS.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: salo
Date: Wed Jun 14 21:42:33 UTC 2006
Modified Files:
pkgsrc/graphics/gd: Makefile distinfo
Added Files:
pkgsrc/graphics/gd/patches: patch-ac
Log Message:
Security fix for CVE-2006-2906:
"The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas
Boutell graphics draw (GD) library (aka libgd) 2.0.33 allows remote
attackers to cause a denial of service (CPU consumption) via malformed
GIF data that causes an infinite loop."
Patch from Xavier Roche via Ubuntu.
salo [Thu, 15 Jun 2006 12:06:30 +0000 (12:06 +0000)]
#1703
salo [Thu, 15 Jun 2006 12:06:01 +0000 (12:06 +0000)]
Pullup ticket 1703 - requested by markd
security fix for arts
Patch provided by the submitter.
Module Name: pkgsrc
Committed By: markd
Date: Thu Jun 15 01:33:05 UTC 2006
Modified Files:
pkgsrc/audio/arts: Makefile distinfo
Log Message:
Fix for artswrapper return value checking vulnerability. CVE-2006-2916
Bump PKGREVISION
salo [Wed, 14 Jun 2006 21:08:09 +0000 (21:08 +0000)]
#1700, #1701
salo [Wed, 14 Jun 2006 21:07:23 +0000 (21:07 +0000)]
Pullup ticket 1701 - requested by adrianp
security fix for sendmail812
Patch provided by the submitter.
Module Name: pkgsrc
Committed By: adrianp
Date: Wed Jun 14 18:57:34 UTC 2006
Modified Files:
pkgsrc/mail/sendmail812: Makefile distinfo
Added Files:
pkgsrc/mail/sendmail812/patches: patch-ah patch-ai patch-aj patch-ak
Log Message:
Bump PKGREVISION.
A malformed MIME structure with many parts can cause sendmail to
crash while trying to send a mail due to a stack overflow,
e.g., if the stack size is limited (ulimit -s). This
happens because the recursion of the function mime8to7()
was not restricted. The function is called for MIME 8 to
7 bit conversion and also to enforce MaxMimeHeaderLength.
To work around this problem, recursive calls are limited to
a depth of MAXMIMENESTING (20); message content after this
limit is treated as opaque and is not checked further.
salo [Wed, 14 Jun 2006 21:06:26 +0000 (21:06 +0000)]
Pullup ticket 1700 - requested by adrianp
security fix for sendmail
Patch provided by the submitter.
Module Name: pkgsrc
Committed By: adrianp
Date: Wed Jun 14 18:53:54 UTC 2006
Modified Files:
pkgsrc/mail/sendmail: Makefile distinfo
Added Files:
pkgsrc/mail/sendmail/patches: patch-aj patch-ak patch-al patch-am
Log Message:
Bump PKGREVISION.
A malformed MIME structure with many parts can cause sendmail to
crash while trying to send a mail due to a stack overflow,
e.g., if the stack size is limited (ulimit -s). This
happens because the recursion of the function mime8to7()
was not restricted. The function is called for MIME 8 to
7 bit conversion and also to enforce MaxMimeHeaderLength.
To work around this problem, recursive calls are limited to
a depth of MAXMIMENESTING (20); message content after this
limit is treated as opaque and is not checked further.
branch-fixup [Wed, 14 Jun 2006 18:57:34 +0000 (18:57 +0000)]
Add files from parent branch HEAD:
mail/sendmail812/patches/patch-ah
mail/sendmail812/patches/patch-ai
mail/sendmail812/patches/patch-aj
mail/sendmail812/patches/patch-ak
branch-fixup [Wed, 14 Jun 2006 18:53:54 +0000 (18:53 +0000)]
Add files from parent branch HEAD:
mail/sendmail/patches/patch-am
salo [Wed, 14 Jun 2006 13:29:52 +0000 (13:29 +0000)]
#1699
salo [Wed, 14 Jun 2006 13:29:22 +0000 (13:29 +0000)]
Pullup ticket 1699 - requested by markd
security update for wv2
Revisions pulled up:
- pkgsrc/converters/wv2/Makefile 1.21
- pkgsrc/converters/wv2/distinfo 1.5
Module Name: pkgsrc
Committed By: markd
Date: Wed Jun 14 12:45:30 UTC 2006
Modified Files:
pkgsrc/converters/wv2: Makefile distinfo
Log Message:
Update to wv2-0.2.3
* Fixed an integer overflow bug (CVE-2006-2197)
* Applied a patch by Friedemann Kleint (Fa. metis)
with fixes for Solaris / Sun C++ 5.5 Patch 113817-02 2003/08/29.
Additionally fixes some tab-related bugs (unique and erase stuff)
salo [Tue, 13 Jun 2006 21:32:28 +0000 (21:32 +0000)]
#1696
salo [Tue, 13 Jun 2006 21:31:07 +0000 (21:31 +0000)]
Pullup ticket 1696 - requested by drochner
security update for dia
Revisions pulled up:
- pkgsrc/graphics/dia-python/Makefile 1.8
- pkgsrc/graphics/dia-python/PLIST 1.2
Module Name: pkgsrc
Committed By: drochner
Date: Tue May 2 16:23:30 UTC 2006
Modified Files:
pkgsrc/graphics/dia: Makefile Makefile.common PLIST distinfo
pkgsrc/graphics/dia-python: Makefile PLIST
Removed Files:
pkgsrc/graphics/dia/patches: patch-ab patch-ac patch-ad
Log Message:
update to 0.95
changes:
-"mainpoint" system allows lines to always point towards the middle
-Python plug-ins added
-automatically change grid size depending on zoom level
-Text input now highlights the object
-security problems fixed in XFig import and Python plug-in
-new shapes added
-new UML objects added
-Full screen mode
-Improved SVG import
-Plug-in loading and unloading doesn't require restart
-i18n problems fixed
-bugs have been fixed
-Command line usage has improved
-ses the new GTK+ File Dialog
pkgsrc change:
-precompile Python files
salo [Tue, 13 Jun 2006 21:29:05 +0000 (21:29 +0000)]
Pullup ticket 1696 - requested by drochner
security update for dia
Revisions pulled up:
- pkgsrc/graphics/dia/Makefile 1.44
- pkgsrc/graphics/dia/Makefile.common 1.10, 1.11, 1.12
- pkgsrc/graphics/dia/PLIST 1.12, 1.13
- pkgsrc/graphics/dia/distinfo 1.16, 1.17, 1.18
- pkgsrc/graphics/dia/options.mk 1.4
- pkgsrc/graphics/dia/patches/patch-ab removed
- pkgsrc/graphics/dia/patches/patch-ac removed
- pkgsrc/graphics/dia/patches/patch-ad removed
- pkgsrc/graphics/dia/patches/patch-ca 1.1
- pkgsrc/graphics/dia/patches/patch-cb 1.1
- pkgsrc/graphics/dia/patches/patch-cc 1.1
- pkgsrc/graphics/dia-python/Makefile 1.8
- pkgsrc/graphics/dia-python/PLIST 1.2
Module Name: pkgsrc
Committed By: drochner
Date: Tue May 2 16:23:30 UTC 2006
Modified Files:
pkgsrc/graphics/dia: Makefile Makefile.common PLIST distinfo
pkgsrc/graphics/dia-python: Makefile PLIST
Removed Files:
pkgsrc/graphics/dia/patches: patch-ab patch-ac patch-ad
Log Message:
update to 0.95
changes:
-"mainpoint" system allows lines to always point towards the middle
-Python plug-ins added
-automatically change grid size depending on zoom level
-Text input now highlights the object
-security problems fixed in XFig import and Python plug-in
-new shapes added
-new UML objects added
-Full screen mode
-Improved SVG import
-Plug-in loading and unloading doesn't require restart
-i18n problems fixed
-bugs have been fixed
-Command line usage has improved
-ses the new GTK+ File Dialog
pkgsrc change:
-precompile Python files
---
Module Name: pkgsrc
Committed By: abs
Date: Tue May 16 21:15:23 UTC 2006
Modified Files:
pkgsrc/graphics/dia: Makefile.common
Log Message:
USE_LANGUAGES+=c++
---
Module Name: pkgsrc
Committed By: drochner
Date: Wed May 31 17:50:12 UTC 2006
Modified Files:
pkgsrc/graphics/dia: Makefile.common distinfo
Log Message:
update to 0.95.1
changes:
3 minor bugfixes
---
Module Name: pkgsrc
Committed By: drochner
Date: Sun Jun 11 16:55:35 UTC 2006
Modified Files:
pkgsrc/graphics/dia: PLIST distinfo options.mk
Added Files:
pkgsrc/graphics/dia/patches: patch-ca patch-cb patch-cc
Log Message:
fix help file installation in the !gnome case, problem found by
Lubomir Sedlacik
(no PKGREVISION bump because the default case is not affected)
Help display seems fundamentally broken to me in the !gnome case;
the code looks for an "index.html" which is not installed (and which
no make rule is present for).
ghen [Tue, 13 Jun 2006 20:24:05 +0000 (20:24 +0000)]
#1698.
ghen [Tue, 13 Jun 2006 15:30:29 +0000 (15:30 +0000)]
Pullup ticket 1698 - requested by salo
security update for sylpheed
Revisions pulled up:
- pkgsrc/mail/sylpheed/Makefile 1.92, 1.93, 1.96
- pkgsrc/mail/sylpheed/distinfo 1.48, 1.49, 1.50
- pkgsrc/mail/sylpheed/options.mk 1.2
Module Name: pkgsrc
Committed By: xtraeme
Date: Wed Mar 29 22:04:57 UTC 2006
Modified Files:
pkgsrc/mail/sylpheed: Makefile distinfo
Log Message:
Update to:
* 2.2.3 (stable)
* The sorting of the result of the query search was enabled.
* The printing of messages now follows the state of 'Show all headers'.
* Relative path is allowed for signature files.
* The To, Cc, and Bcc button of the address book are now always enabled.
* The window position of the address book is now preserved.
* The toggle of the Cc entry on the composition window was enabled.
* The appearance of the address book was modified.
* Unix: The support of metamail command was removed, and it was replaced
with the alternative implementation.
* Win32: libwimp.dll was updated, and the appearance of the UI was
improved.
* Win32: zlib1.dll was updated.
* Win32: The application icon was updated.
* Win32: The unnecessary message catalog files were removed to reduce the
archive size.
---
Module Name: pkgsrc
Committed By: chris
Date: Wed Mar 29 22:54:42 UTC 2006
Modified Files:
pkgsrc/mail/sylpheed: Makefile distinfo options.mk
Log Message:
Update sylpheed to 2.2.4. Changes are:
* MIME filename encoding with RFC 2322 parameter value extension was
supported.
* The clear button for the quick search entry was added.
* The bug that bold face was disabled in GtkTreeView with GLib 2.10
and Pango 1.12 was fixed.
* Win32: libwimp.dll was updated.
* Win32: The bug that subfolders were duplicated when rebuilding
folder tree while the settings were shared between Win32 and Unix
was fixed.
* Win32: The uninstaller was modified so that it only removes files
and folders created by the installer.
Also remove extra blank lines at the end of options.mk to appease pkglint.
---
Module Name: pkgsrc
Committed By: xtraeme
Date: Sat Jun 10 23:38:36 UTC 2006
Modified Files:
pkgsrc/mail/sylpheed: Makefile distinfo
Log Message:
Update to 2.2.6.
Changes 2.2.6:
* The 8-bit literal (literal8) in IMAP4 response was supported.
* The missing timeout handling was added for SMTP.
* The failure of URI security check when they have leading space
was fixed.
Changes 2.2.5:
* The character corruption and crash bug when using Japanese
half-width kana on sending messages was fixed.
* The execution failure when using the accessibility module was fixed.
* The bug that new/unread count becoming negative value was fixed.
* The bug that bold face was disabled in the folder selection dialog
with GLib 2.10 and Pango 1.12 was fixed.
* The incorrect progressbar display when expired messages exist was
fixed.
branch-fixup [Sun, 11 Jun 2006 16:55:35 +0000 (16:55 +0000)]
Add files from parent branch HEAD:
graphics/dia/patches/patch-ca
graphics/dia/patches/patch-cb
graphics/dia/patches/patch-cc
ghen [Fri, 9 Jun 2006 22:00:32 +0000 (22:00 +0000)]
#1695.
ghen [Fri, 9 Jun 2006 22:00:04 +0000 (22:00 +0000)]
Pullup ticket 1695 - requested by salo
security update for freeciv
Revisions pulled up:
- pkgsrc/games/freeciv-client/Makefile 1.27, 1.29
- pkgsrc/games/freeciv-server/Makefile 1.23
- pkgsrc/games/freeciv-share/Makefile 1.13
- pkgsrc/games/freeciv-share/Makefile.common 1.26, 1.27
- pkgsrc/games/freeciv-share/distinfo 1.13
- pkgsrc/games/freeciv-share/patches/patch-aa 1.5
- pkgsrc/games/freeciv-share/patches/patch-ab 1.4
Module Name: pkgsrc
Committed By: adam
Date: Sat Apr 15 09:30:46 UTC 2006
Modified Files:
pkgsrc/games/freeciv-client: Makefile
pkgsrc/games/freeciv-server: Makefile
pkgsrc/games/freeciv-share: Makefile Makefile.common distinfo
pkgsrc/games/freeciv-share/patches: patch-aa patch-ab
Log Message:
Changes 2.0.8:
- Simplification of pubserver authentication system, and other
pubserver-related changes.
- Fix problems with some strings in some languages on windows.
- Fix a potential desynchronization bug when establishing connections.
- Fix a potential crash when reading packets (CVE-2006-0047).
- Fix some bugs allowing illegal rehoming of units.
- Allow loading of savegames created by Freeciv 2.1.
- Allow client goto into unknown tiles.
- Fix a set of crashes likely to happen with the XAW client on
64-bit systems.
- Fix a bug that allowed unlimited incoming airlifts.
---
Module Name: pkgsrc
Committed By: minskim
Date: Thu Jun 8 16:06:50 UTC 2006
Modified Files:
pkgsrc/games/freeciv-share: Makefile.common
Log Message:
This package needs zlib.
---
Modified Files:
pkgsrc/games/freeciv-client: Makefile
Log Message:
Needs pkg-config to build.
snj [Fri, 9 Jun 2006 07:29:58 +0000 (07:29 +0000)]
1694
snj [Fri, 9 Jun 2006 07:29:35 +0000 (07:29 +0000)]
Pullup ticket 1694 - requested by salo
security update/fix for tiff
Revisions pulled up:
- pkgsrc/graphics/tiff/Makefile 1.79, 1.80, 1.82
- pkgsrc/graphics/tiff/distinfo 1.37-1.38
- pkgsrc/graphics/tiff/PLIST 1.10
- pkgsrc/graphics/tiff/patches/patch-au 1.5
Module Name: pkgsrc
Committed By: drochner
Date: Fri Mar 31 14:31:03 UTC 2006
Modified Files:
pkgsrc/graphics/tiff: Makefile distinfo
Log Message:
update to 3.8.2
changes: bugfixes
---
Module Name: pkgsrc
Committed By: uebayasi
Date: Wed Apr 5 07:04:18 UTC 2006
Modified Files:
pkgsrc/graphics/tiff: Makefile PLIST
Log Message:
A missing entry in PLIST, found by ftp://ftp.NetBSD.org/pub/pkgsrc/misc/kristerw
/pkgstat/i386-2.1/
20060404.0711/graphics/tiff/.broken.html.
Reviewed By: reed
---
Module Name: pkgsrc
Committed By: salo
Date: Thu Jun 8 11:05:14 UTC 2006
Modified Files:
pkgsrc/graphics/tiff: Makefile distinfo
Added Files:
pkgsrc/graphics/tiff/patches: patch-au
Log Message:
Security fix for CVE-2006-2193:
"A vulnerability in LibTIFF can be exploited by malicious people to
cause a DoS (Denial of Service) and potentially compromise a user's
system.
The vulnerability is caused due to a boundary error within tiff2pdf
when handling a TIFF file with a "DocumentName" tag that contains
UTF-8 characters. This can be exploited to cause a stack-based buffer
overflow and may allow arbitrary code execution."
http://secunia.com/advisories/20488/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2193
Patch from Ubuntu.
salo [Wed, 7 Jun 2006 22:44:30 +0000 (22:44 +0000)]
#1679
salo [Wed, 7 Jun 2006 22:44:08 +0000 (22:44 +0000)]
Pullup ticket 1679 - requested by taca
runtime fix for ruby-tk
Revisions pulled up:
- pkgsrc/x11/ruby-tk/Makefile 1.23
Module Name: pkgsrc
Committed By: taca
Date: Wed May 31 04:08:27 UTC 2006
Modified Files:
pkgsrc/x11/ruby-tk: Makefile
Log Message:
Specify X11BASE as configuration parameter. This change should fix
the problem which cause LoadError of libX11.so.6. This problem was
noted by rudolf <netbsd at eq.cz> on pkgsrc-users.
Bump PKGREVISION.
salo [Wed, 7 Jun 2006 21:29:48 +0000 (21:29 +0000)]
#1693
salo [Wed, 7 Jun 2006 21:28:47 +0000 (21:28 +0000)]
Pullup ticket 1693 - requested by heinz
security update for spamassassin
Revisions pulled up:
- pkgsrc/mail/spamassassin/Makefile 1.71, 1.72
- pkgsrc/mail/spamassassin/PLIST 1.19
- pkgsrc/mail/spamassassin/distinfo 1.37, 1.38
- pkgsrc/mail/spamassassin/options.mk 1.6
- pkgsrc/mail/spamassassin/patches/patch-ab 1.12
- pkgsrc/mail/spamassassin/patches/patch-ad removed
- pkgsrc/mail/spamassassin/patches/patch-az removed
Module Name: pkgsrc
Committed By: heinz
Date: Fri May 26 20:53:00 UTC 2006
Modified Files:
pkgsrc/mail/spamassassin: Makefile PLIST distinfo options.mk
pkgsrc/mail/spamassassin/patches: patch-ab
Added Files:
pkgsrc/mail/spamassassin/patches: patch-bb
Removed Files:
pkgsrc/mail/spamassassin/patches: patch-ad patch-az
Log Message:
Updated to version 3.1.2.
Pkgsrc changes:
- The updates for rule files go into $VARBASE/spamassassin/.
- This above directory and the directory sa-update-keys for the GPG keys
are now handled automatically by OWN_DIRS.
- The growing number of *.pre files are managed in a loop in the Makefile.
They are no longer contained in the static PLIST.
- Removed some unnecessary trailing slashes.
- Patching init.pre in order to disable the SPF plugin broke the spf.t
test. This is now fixed, although in a rather ugly way :-/.
- patch-ab no longer needs to use BSD_INSTALL_DATA_DIR because we create
the directories through INSTALLATION_DIRS.
- patch-ad and patch-az were removed (changes integrated upstream).
- patch-bb fixes a small documentation error.
- Fixed some warnings by pkglint about the SUBST framework in Makefile
and options.mk.
Relevant changes since version 3.1.1:
=====================================
- bug 4802: implement DKIM plugin, including whitelist_from_dkim support
- bug 3838: work around Perl bug causing captured RE variables to become
tainted -- thanks to Mark Martinec for pointing out the bug with
Perl itself
- bug 4850: re-enable the Razor2 plugin by default due to a service
policy change
- bug 4826: Razor2 plugin needs to load Mail::SpamAssassin::Timeout module
- bug 4827: M::SA::first_existing_path() would return the last array
entry passed in if none of the paths were found. Now return undef
instead and handle the error when it happens.
- bug 4813: generally open RE causes sendmail received header get read
in as qmail in error
- bug 4839: Logger.pm converts control chars including tab into
underscores which confuses a bunch of users when checking debug output.
Convert tab into space instead, etc.
- bug 4884: if a null message is passed in, there are several variables
which end up undefined causing warnings. fake an empty message if no
input is given.
- bug 4793: when replacing tags in a message (_TAG_), leave the tags
that don't exist alone instead of just removing them
- bug 4861, 4760: handle dccifd and dccproc failover properly, backport
relays_internal and relays_external code, backport bug 4760 fix so
that it's not possible to be in internal_networks without being in
trusted_networks as well
- bug 4901: deal more properly with failures in bgsend(). also, use
the proper variable to show when errors occur.
- bug 4867: fetchmail changed header formats at some point making Received
parsing fail in certain conditions
- bug 4699: use M::SA::Timeout for spamd copy_config call and allow for
empty $@ values
- bug 3754: if there's a problem opening a file via sa-learn or
spamassassin, return an error exit value.
---
Module Name: pkgsrc
Committed By: heinz
Date: Mon Jun 5 23:01:01 UTC 2006
Modified Files:
pkgsrc/mail/spamassassin: Makefile distinfo
Removed Files:
pkgsrc/mail/spamassassin/patches: patch-bb
Log Message:
Updated to version 3.1.3.
Pkgsrc changes:
- patch-bb for no longer necessary (integrated upstream).
Changes since version 3.1.2:
============================
- bug 4926: given a certain set of parameters to spamd and a specially
formatted input message, users could cause spamd to execute arbitrary
commands as the spamd user
- bug 4932: the userstate dir and userprefs file would not be created
under certain conditions.
ghen [Wed, 7 Jun 2006 18:24:15 +0000 (18:24 +0000)]
#1687
ghen [Wed, 7 Jun 2006 18:23:42 +0000 (18:23 +0000)]
Pullup ticket 1687 - requested by salo
security update for miredo
Revisions pulled up:
- pkgsrc/net/miredo/Makefile 1.4, 1.5, 1.6, 1.7, 1.8
- pkgsrc/net/miredo/distinfo 1.3, 1.4, 1.5
- pkgsrc/net/miredo/PLIST 1.2, 1.3
- pkgsrc/net/miredo/patches/patch-aa 1.3
- pkgsrc/net/miredo/patches/patch-ab 1.3, 1.4
- pkgsrc/net/miredo/patches/patch-ac 1.3
- pkgsrc/net/miredo/patches/patch-ad 1.3
- pkgsrc/net/miredo/patches/patch-ae 1.3
- pkgsrc/net/miredo/patches/patch-af removed
Module Name: pkgsrc
Committed By: rpaulo
Date: Fri Mar 31 23:21:33 UTC 2006
Modified Files:
pkgsrc/net/miredo: Makefile
Log Message:
SunOS is not supported. PR 33157.
---
Module Name: pkgsrc
Committed By: rpaulo
Date: Mon Apr 3 23:30:34 UTC 2006
Modified Files:
pkgsrc/net/miredo: Makefile distinfo
pkgsrc/net/miredo/patches: patch-ab
Log Message:
NetBSD needs TUNIFHEAD.
---
Module Name: pkgsrc
Committed By: rpaulo
Date: Tue May 2 15:36:09 UTC 2006
Modified Files:
pkgsrc/net/miredo: Makefile PLIST distinfo
pkgsrc/net/miredo/patches: patch-aa patch-ab patch-ac
Removed Files:
pkgsrc/net/miredo/patches: patch-ad patch-ae patch-af
Log Message:
Update to version 0.8.4.
Changes include the fix for this security problem:
http://www.simphalempin.com/dev/miredo/mtfl-sa-0601.shtml.en
and the additon of most pkgsrc patches.
---
Module Name: pkgsrc
Committed By: rpaulo
Date: Tue May 2 15:36:44 UTC 2006
Modified Files:
pkgsrc/net/miredo: Makefile
Log Message:
Put back NOT_FOR_PLATFORM.
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri May 12 08:25:47 UTC 2006
Modified Files:
pkgsrc/net/miredo: Makefile PLIST distinfo
pkgsrc/net/miredo/patches: patch-ac
Added Files:
pkgsrc/net/miredo/patches: patch-ad patch-ae
Log Message:
Fix PLIST and bump revision. Add DragonFly work arounds for pthread.h
and fix net/if_var.h test as well.
salo [Wed, 7 Jun 2006 16:31:39 +0000 (16:31 +0000)]
#1692
salo [Wed, 7 Jun 2006 16:31:21 +0000 (16:31 +0000)]
Pullup ticket 1692 - requested by gdt
security update for quagga
Revisions pulled up:
- pkgsrc/net/quagga/Makefile 1.29
- pkgsrc/net/quagga/PLIST 1.8
- pkgsrc/net/quagga/distinfo 1.9
Module Name: pkgsrc
Committed By: gdt
Date: Mon Jun 5 19:28:25 UTC 2006
Modified Files:
pkgsrc/net/quagga: Makefile PLIST distinfo
Log Message:
Update to 0.98.6.
Security:
ripd:
- RIPD unauthenticated route table broadcast:
CVE-2006-2223, OSVDB ID 25224, Secunia SA19910
- RIPD unauthenticated route injection:
CVE-2006-2224, OSVDB ID 25225, Secunia SA19910
[ripd] 0.98 specific command changes, allow no-auth to be set
[ripd] bugs #261, #262: Fix RIPv1 info-leak and unauthenticated
route updates
[doc] Add text on 0.98 specific RIP authentication changes
[docs] Update ripd docs on version and authentication, see bugs
#261,#262
Thanks to Konstantin V. Gavrilenko for report and testing.
bgpd:
- bgpd Telnet Interface DoS:
OSVDB ID 25245:
http://www.osvdb.org/displayvuln.php?osvdb_id=25245
[quagga-dev 4051]:
http://lists.quagga.net/pipermail/quagga-dev/2006-March/004052.html
[bgpd] Fix infinite loop in community_str2com
[No NEWS entries for 0.98.2 to 0.98.6; many bugfixes]
salo [Wed, 7 Jun 2006 16:24:19 +0000 (16:24 +0000)]
#1691
salo [Wed, 7 Jun 2006 16:23:57 +0000 (16:23 +0000)]
Pullup ticket 1691 - requested by gdt
security update for quagga-devel
Revisions pulled up:
- pkgsrc/net/quagga-devel/Makefile 1.3
- pkgsrc/net/quagga-devel/distinfo 1.3
Module Name: pkgsrc
Committed By: gdt
Date: Mon Jun 5 13:58:54 UTC 2006
Modified Files:
pkgsrc/net/quagga-devel: Makefile distinfo
Log Message:
Update to 0.99.4.
Security:
bgpd:
- BGP Telnet Interface DoS
CVE-2006-2276, OSVDB ID 25245
[bgpd] Fix infinite loop in community_str2com
ripd:
- RIPD unauthenticated route table broadcast:
CVE-2006-2223, OSVDB ID 25224, Secunia SA19910
- RIPD unauthenticated route injection:
CVE-2006-2224, OSVDB ID 25225, Secunia SA19910
[ripd] bugs #261, #262: Fix RIPv1 info-leak and unauthenticated
route updates
[docs] Update ripd docs on version and authentication, see bugs
#261,#262
Many bugfixes (no NEWS entry).
salo [Wed, 7 Jun 2006 00:14:59 +0000 (00:14 +0000)]
#1689
salo [Wed, 7 Jun 2006 00:14:26 +0000 (00:14 +0000)]
Pullup ticket 1689 - requested by adrianp
security update for base
Revisions pulled up:
- pkgsrc/security/base/Makefile 1.8, 1.10
- pkgsrc/security/base/PLIST 1.3, 1.4
- pkgsrc/security/base/distinfo 1.3, 1.4
- pkgsrc/security/base/patches/patch-aa 1.2
Module Name: pkgsrc
Committed By: adrianp
Date: Fri May 12 22:31:38 UTC 2006
Modified Files:
pkgsrc/security/base: Makefile PLIST distinfo
pkgsrc/security/base/patches: patch-aa
Log Message:
Update to BASE 1.2.4
> Changes:
> - Fixed issue with PostGRES and schema in base_db.inc.php -- Kevin J and Nikns
> - Fixed bug 1284695 Error in SQL with PostgreSQL -- Kevin J and Nikns
> - Fixed issues displaying PortScans -- Nikns
> - Fixed sig_class (bug 1407325) and sig_priority filter bug -- Nikns and Max Valdez (garaged)
> - Fixed bug 1408387 Archive move and Email summary issues -- Nikns
> - Fixed bug when, after setup, archive database wasn't used -- Nikns
> - Fixed PostgreSQL archive database support -- Nikns
> - Fixed bug 1313261 Unable to use actions in base_stat_sensor.php -- Nikns
> - Fixed bug 1371532 First of month timestamp issue -- Nikns
> - Fixed bug 1406945 Lost alert order when switching between payload display -- Nikns
> - Fixed bug 1413712 base_conf.php file path issue under MS Windows -- garaged
> - Fixed search by signature name -- Nikns
> - Converted sql/create_base_tbls_mssql_extra.sql to CRLF line terminators -- Nikns
> - Fixed broken auth system for MSSQL -- Nikns
> - Changed MSSQL schema for table acid_event, sig_name now has type VARCHAR instead of TEXT -- Nikns
> - Fixed bug 1307250 broken base_stat_alerts.php with MSSQL -- Nikns
> - Fixed bug 1413594 Force to use alert database for auth system stuff -- Nikns
> - Setup fix, on error form values are remembered, default language is English -- garaged
> - Uppercased name 'Archive' in base_main.php (in sync with base_hdr1.php) -- Nikns
> - Fixed support for actions in base_stat_class.php -- Nikns
> - Fixed bug 1418660 Broken search by IP criteria -- Nikns
> - Added checkboxes and fixed support for actions in base_stat_iplink.php -- Nikns
> - Implemented RFE 1123382 support for actions in base_stat_uaddr.php -- Nikns
> - Implemented support for actions in base_stat_ports.php -- Nikns
> - Fixed bug 1422575 when empty email sent even if action unsuccessful -- Nikns
> - Fixed bug 1424033 Unable to Graph Alert Detection Time -- Nikns
> - Fixed bug 1426089 Score removed from email address -- Nikns
> - Fixed bug 1210542 and 1288402 Packet display mode issues -- Nikns
> - Detect archiving duplicates with select queries instead of catching db conflict error -- Nikns
> - Fixed bug 1430686 Update alert cache for archived alert right after it is coppied to archive db -- Nikns
> - Implemented archiving support for schema 107 -- Nikns
> - Added sig_gid (signature generator id) to snort signature reference url for schema 107 -- Nikns
> - session_start() on base_conf.php avoiding repetition, easier to handle with debug output -- garaged
> - debug_mode needs to be off on login (index.php:45 ) -- garaged
> - Fixed bug 1275536 Unable to download binary payload in Internet Explorer when using SSL -- Nikns
> - Implemented archiving support for FLoP extended database schema -- Nikns
> - Implemented rebuild of packet in pcap format for FLoP extended database -- Nikns
> - Added display of MAC addresses in base_query_alert.php for FLoP extended database -- Nikns
> - Fixed BASE authentication bypass in standalone mode for base_maintenance.php -- Nikns
> - Added HTTP response codes on authentication failure in base_maintenance.php for standalone mode -- Nikns
> - Fixed bug 1341286 Show IP header length in bytes, not words -- Juergen Leising
> - In plain display mode several sequential non-ASCII payload characters join together displaying their count -- Nikns
> - Changed input type of the password field in useradmin -- Kevin Johnson
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue Jun 6 19:41:43 UTC 2006
Modified Files:
pkgsrc/security/base: Makefile PLIST
Log Message:
Update to 1.2.5
> - 6/4/2006 1.2.5 (sarah)
> - Added base64 encoding support for MAC addresses presented on the screen for FLoP extended database -- Juergen Leising
> - Added base64 encoding support for rebuild of packet in pcap format for FLoP extended database -- Juergen Leising
> - Fixed issue with Oracle and schema version in base_db.inc.php -- Nikns
> - Fixed bug when alerts with sig references would fail to archive causing duplicates error -- Nikns
> - Added base64 encoding support for ICMP payload additional table in base_qry_alert.php -- Juergen Leising
> - Added check for PHP Logging Level against E_NOTICES in setup/index.php -- Nikns
> - Fixed bug when certain preprocessor alerts would not be cached (for example arpspoof) -- Nikns
> - Added setup/setup_db.inc.php with CreateBASEAG() to resolve redundancy in setup and base_db_setup.php -- Nikns
> - Removed unnecessary and broken search index stuff from Create BASE AG, since schemas are already with them -- Nikns
> - Added XSSPrintSafe() (array safe htmlspecilchars() function) and made filterSql() use ADOdb qmagic() -- Nikns
> - Changed input type of the password field to actually be password in setup3.php -- Nikns
> - Filtered all unfiltred (mainly auth system stuff) $_POST and $_GET variables using filterSql() -- Nikns
> - Santized all $_SERVER variables to be protected against XSS attacks -- Nikns
> - Added "Clear Data Tables" option in base_maintenance.php and "Repair Tables" option to execute CreateBASEAG() -- Nikns
> - Make use of FLoP's event reference. Signature name of alert which trigered "Tagged Packet" alert is shown too -- Nikns
> - Updated chinese.lang.php -- Johnson Chiang
> - Fixed Time error in searches -- Jeff Kell
> - Fixed refresh issue with ~ directories -- Kevin Johnson
> - Fixed cookie stored data and authentication scheme to correct Nikns' report on session forge issue -- GaRaGeD
> - Updated link to the Nessus plug in DB -- Jonathan W Miner
> - Fixed display after deleting alerts -- Bruce Briggs
> - Fixed Bug #1466392 - Back button doesn't work after refresh. -- Juergen Leising
> - Patches from jhart@spoofed.org to add missing ICMP and TCP type and codes - GaRaGeD
> - add support for ICMP redirect decoding. - Jon Hart
> - add decoding support for ICMP source quench and ICMP parameter problem - Jon Hart
> - split up "flags" into DF and MF, much like tcp flags are currently handled - Jon Hart
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue Jun 6 20:09:50 UTC 2006
Modified Files:
pkgsrc/security/base: distinfo
Log Message:
Update distinfo missed in the update to 1.2.5
salo [Tue, 6 Jun 2006 23:46:58 +0000 (23:46 +0000)]
#1688
salo [Tue, 6 Jun 2006 23:46:35 +0000 (23:46 +0000)]
Pullup ticket 1688 - requested by adrianp
security update for snort
Revisions pulled up:
- pkgsrc/net/snort/Makefile.common 1.35
- pkgsrc/net/snort/distinfo 1.35
Module Name: pkgsrc
Committed By: adrianp
Date: Tue Jun 6 18:51:52 UTC 2006
Modified Files:
pkgsrc/net/snort: Makefile.common distinfo
Log Message:
Update to 2.4.5
These releases have better performance, numerous new features and
incorporate many bug fixes. Notable bug fixes and improvements include:
* Tcp stream properly reassembled after failed sequence check,
which may lead to possible detection evasion.
* Added configurable stream flushpoints.
* Improved rpc processing.
* Improved portscan detection.
* Improved http request processing and handling of possible
evasion cases.
* Improved performance monitoring.
snj [Tue, 6 Jun 2006 07:51:44 +0000 (07:51 +0000)]
1686
snj [Tue, 6 Jun 2006 07:51:29 +0000 (07:51 +0000)]
Pullup ticket 1686 - requested by salo
security fix for freetype2
Apply patch from salo, mirroring the recent xsrc fixes for CVE-2006-0747,
CVE-2006-1861, and CVE-2006-2661.
salo [Mon, 5 Jun 2006 12:06:55 +0000 (12:06 +0000)]
#1685
salo [Mon, 5 Jun 2006 12:06:23 +0000 (12:06 +0000)]
Pullup ticket 1685 - requested by adrianp
security update for drupal
Patch provided by the submitter.
Updated to version 4.6.8.
Drupal 4.6.8, 2006-06-01
------------------------
- fixed critical upload issue, see SA-2006-007
- fixed taxonomy XSS issue, see SA-2006-008
salo [Sun, 4 Jun 2006 13:56:19 +0000 (13:56 +0000)]
#1684
salo [Sun, 4 Jun 2006 13:55:58 +0000 (13:55 +0000)]
Pullup ticket 1684 - requested by tron
security fix for squirrelmail
Revisions pulled up:
- pkgsrc/mail/squirrelmail/Makefile 1.71, 1.73
- pkgsrc/mail/squirrelmail/distinfo 1.31, 1.32
- pkgsrc/mail/squirrelmail/patches/patch-ab 1.12
- pkgsrc/mail/squirrelmail/patches/patch-ac 1.3
- pkgsrc/mail/ja-squirrelmail/MESSAGE 1.3
- pkgsrc/mail/ja-squirrelmail/Makefile 1.27, 1.28, 1.30
- pkgsrc/mail/ja-squirrelmail/PLIST 1.4
- pkgsrc/mail/ja-squirrelmail/distinfo 1.9, 1.10, 1.11
- pkgsrc/mail/ja-squirrelmail/patches/patch-ab 1.3
- pkgsrc/mail/ja-squirrelmail/patches/patch-ac 1.3
- pkgsrc/mail/ja-squirrelmail/patches/patch-ad removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-ae removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-af removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-ag removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-ah removed
Module Name: pkgsrc
Committed By: martti
Date: Tue Apr 11 05:24:20 UTC 2006
Modified Files:
pkgsrc/mail/squirrelmail: Makefile distinfo
Added Files:
pkgsrc/mail/squirrelmail/patches: patch-ab
Log Message:
Updated mail/squirrelmail to 1.4.6nb1
* added patch for Ukrainian translation (needed by the new
* squirrelmail-locales)
---
Module Name: pkgsrc
Committed By: taca
Date: Fri May 5 02:46:54 UTC 2006
Modified Files:
pkgsrc/mail/ja-squirrelmail: MESSAGE Makefile distinfo
Removed Files:
pkgsrc/mail/ja-squirrelmail/patches: patch-ab patch-ac patch-ad
patch-ae patch-af patch-ag patch-ah
Log Message:
Update ja-squirrelmail package to 1.4.6 after talking with martti@.
Prior to this release, there are security vulnerability the same as
squirrelmail 1.4.5.
This update made with temporary Japanese patch based on the patch
for 1.4.5.
---
Module Name: pkgsrc
Committed By: martti
Date: Fri May 5 05:32:36 UTC 2006
Modified Files:
pkgsrc/mail/ja-squirrelmail: Makefile PLIST distinfo
Added Files:
pkgsrc/mail/ja-squirrelmail/patches: patch-ab
Log Message:
Updated ja-squirrelmail to 1.4.6nb1
* sync with squirrelmail-1.4.6nb1
---
Module Name: pkgsrc
Committed By: tron
Date: Sun Jun 4 12:31:31 UTC 2006
Modified Files:
pkgsrc/mail/ja-squirrelmail: Makefile distinfo
pkgsrc/mail/squirrelmail: Makefile distinfo
Added Files:
pkgsrc/mail/ja-squirrelmail/patches: patch-ac
pkgsrc/mail/squirrelmail/patches: patch-ac
Log Message:
Add fix for security issue 2006-06-01 from SquirrelMail CVS repository.
Bump package revision.
salo [Sun, 4 Jun 2006 12:30:23 +0000 (12:30 +0000)]
#1683
salo [Sun, 4 Jun 2006 12:29:59 +0000 (12:29 +0000)]
Pullup ticket 1683 - requested by tron
security update for mysql5
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.13
- pkgsrc/databases/mysql5-client/distinfo 1.7
- pkgsrc/databases/mysql5-server/distinfo 1.8
Module Name: pkgsrc
Committed By: tron
Date: Sat Jun 3 15:29:13 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common distinfo
pkgsrc/databases/mysql5-server: distinfo
Log Message:
Update "mysql5-client" and "mysql5-server" packages to version 5.0.22.
This upgrade fixes the SQL injection vulnerability reported in SA20365.
salo [Sun, 4 Jun 2006 00:55:24 +0000 (00:55 +0000)]
#1682
salo [Sun, 4 Jun 2006 00:54:06 +0000 (00:54 +0000)]
Pullup ticket 1682 - requested by ghen
security update for firefox and thunderbird
Revisions pulled up:
- pkgsrc/www/firefox/Makefile 1.35
- pkgsrc/www/firefox/Makefile-firefox.common 1.30, 1.33
- pkgsrc/www/firefox/distinfo 1.49, 1.50
- pkgsrc/www/firefox-gtk1/Makefile 1.13
- pkgsrc/www/firefox/patches/patch-fa removed
- pkgsrc/www/firefox/patches/patch-fb removed
- pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.15
- pkgsrc/mail/thunderbird/PLIST 1.14
- pkgsrc/mail/thunderbird/distinfo 1.23
- pkgsrc/mail/thunderbird-gtk1/PLIST 1.5
Module Name: pkgsrc
Committed By: ghen
Date: Thu May 4 05:16:13 UTC 2006
Modified Files:
pkgsrc/www/firefox: Makefile Makefile-firefox.common distinfo
pkgsrc/www/firefox-gtk1: Makefile
Removed Files:
pkgsrc/www/firefox/patches: patch-fa patch-fb
Log Message:
Update Firefox to 1.5.0.3, which is identical to our 1.5.0.2nb2 (except
for the advertized version), so there's no reason to upgrade. :-)
Fixes a denial of service vulnerability (MFSA 2006-30).
---
Module Name: pkgsrc
Committed By: ghen
Date: Sat Jun 3 08:04:36 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo
pkgsrc/mail/thunderbird-gtk1: PLIST
pkgsrc/www/firefox: Makefile-firefox.common distinfo
Log Message:
Update www/firefox and www/firefox-gtk to 1.5.0.4, mail/thunderbird and
mail/thunderbird-gtk1 to 1.5.0.4 (salo has already updated
www/firefox-bin). Note that thunderbird skipped one release number
(again) to stay on par with firefox.
These updates provide:
* improvements to product stability,
* several important security fixes (see below).
Fixed in Firefox 1.5.0.4:
MFSA 2006-43 Privilege escalation using addSelectionListener
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-41 File stealing by changing input type (variant)
MFSA 2006-39 "View Image" local resource linking (Windows)
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object
prototypes
MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-34 XSS viewing javascript: frames or images from context menu
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
Fixed in Thunderbird 1.5.0.4:
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-40 Double-free on malformed VCard
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object
prototypes
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
ghen [Fri, 2 Jun 2006 15:50:44 +0000 (15:50 +0000)]
#1681
ghen [Fri, 2 Jun 2006 15:50:15 +0000 (15:50 +0000)]
Pullup ticket 1681 - requested by salo
security update for firefox-bin
Revisions pulled up:
- pkgsrc/www/firefox-bin/Makefile 1.18
- pkgsrc/www/firefox-bin/distinfo 1.17
Module Name: pkgsrc
Committed By: salo
Date: Fri Jun 2 12:27:49 UTC 2006
Modified Files:
pkgsrc/www/firefox-bin: Makefile distinfo
Log Message:
Updated to version 1.5.0.4
Changes:
Fixes for security issues:
MFSA 2006-43 Privilege escalation using addSelectionListener
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-41 File stealing by changing input type (variant)
MFSA 2006-39 "View Image" local resource linking (Windows)
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object prototypes
MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-34 XSS viewing javascript: frames or images from context menu
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
salo [Wed, 31 May 2006 11:54:30 +0000 (11:54 +0000)]
#1680
salo [Wed, 31 May 2006 11:53:44 +0000 (11:53 +0000)]
Pullup ticket 1680 - requested by joerg
security updates for postgresql
Revisions pulled up:
- pkgsrc/databases/postgresql73/Makefile.common 1.19
- pkgsrc/databases/postgresql73/distinfo 1.13
- pkgsrc/databases/postgresql73-docs/PLIST 1.7
- pkgsrc/databases/postgresql74/Makefile.common 1.36
- pkgsrc/databases/postgresql74/distinfo 1.21
- pkgsrc/databases/postgresql74-docs/PLIST 1.6
- pkgsrc/databases/postgresql80/Makefile.common 1.23
- pkgsrc/databases/postgresql80/distinfo 1.13
- pkgsrc/databases/postgresql80-client/PLIST 1.11
- pkgsrc/databases/postgresql81/Makefile.common 1.6
- pkgsrc/databases/postgresql81/distinfo 1.2
- pkgsrc/databases/postgresql81-client/PLIST 1.2
Module Name: pkgsrc
Committed By: joerg
Date: Fri May 26 17:47:58 UTC 2006
Modified Files:
pkgsrc/databases/postgresql73: Makefile.common distinfo
pkgsrc/databases/postgresql73-docs: PLIST
pkgsrc/databases/postgresql74: Makefile.common distinfo
pkgsrc/databases/postgresql74-docs: PLIST
pkgsrc/databases/postgresql80: Makefile.common distinfo
pkgsrc/databases/postgresql80-client: PLIST
pkgsrc/databases/postgresql81: Makefile.common distinfo
pkgsrc/databases/postgresql81-client: PLIST
Log Message:
Update PostgreSQL to 7.3.15, 7.4.13, 8.0.8 and 8.1.4 respectively.
Common to all versions:
* Change the server to reject invalidly-encoded multibyte characters
in all cases (Tatsuo, Tom) While PostgreSQL has been moving in this
direction for some time, the checks are now applied uniformly to
all encodings and all textual input, and are now always errors not
merely warnings. This change defends against SQL-injection attacks
of the type described in CVE-2006-2313.
* Reject unsafe uses of \' in string literals As a server-side
defense against SQL-injection attacks of the type described in
CVE-2006-2314, the server now only accepts '' and not \' as a
representation of ASCII single quote in SQL string literals. By
default, \' is rejected only when client_encoding is set to a
client-only encoding (SJIS, BIG5, GBK, GB18030, or UHC), which is
the scenario in which SQL injection is possible. A new
configuration parameter backslash_quote is available to adjust
this behavior when needed. Note that full security against
CVE-2006-2314 may require client-side changes; the purpose of
backslash_quote is in part to make it obvious that insecure clients
are insecure.
* Modify libpq's string-escaping routines to be aware of encoding
considerations This fixes libpq-using applications for the
security issues described in CVE-2006-2313 and CVE-2006-2314.
Applications that use multiple PostgreSQL connections concurrently
should migrate to PQescapeStringConn() and PQescapeByteaConn() to
ensure that escaping is done correctly for the settings in use in
each database connection. Applications that do string escaping
"by hand" should be modified to rely on library routines instead.
* Fix some incorrect encoding conversion functions win1251_to_iso,
alt_to_iso, euc_tw_to_big5, euc_tw_to_mic, mic_to_euc_tw were all
broken to varying extents.
* Clean up stray remaining uses of \' in strings (Bruce, Jan)
* Fix server to use custom DH SSL parameters correctly (Michael Fuhr)
* Fix various minor memory leaks
Additionally for 7.4.13 and later:
* Fix bug that sometimes caused OR'd index scans to miss rows they
should have returned
* Fix WAL replay for case where a btree index has been truncated
* Fix SIMILAR TO for patterns involving | (Tom)
* Fix for Bonjour on Intel Macs (Ashley Clark)
Additionally for 8.0.8 and 8.1.4:
* Fix SELECT INTO and CREATE TABLE AS to create tables in the
default tablespace, not the base directory (Kris Jurka)
* Fix problem with password prompting on some Win32 systems (Robert
Kinberg)
Additionally for 8.1.4:
* Fix weak key selection in pgcrypto (Marko Kreen)
Errors in fortuna PRNG reseeding logic could cause a predictable
session key to be selected by pgp_sym_encrypt() in some cases.
This only affects non-OpenSSL-using builds.
* Make autovacuum visible in pg_stat_activity (Alvaro)
* Disable full_page_writes (Tom)
In certain cases, having full_page_writes off would cause crash
recovery to fail. A proper fix will appear in 8.2; for now it's
just disabled.
* Various planner fixes, particularly for bitmap index scans and
MIN/MAX optimization (Tom)
* Fix incorrect optimization in merge join (Tom)
Outer joins could sometimes emit multiple copies of unmatched
rows.
* Fix crash from using and modifying a plpgsql function in the same
transaction
* Improve qsort performance (Dann Corbit)
Currently this code is only used on Solaris.
* Improve pg_dump's handling of default values for domains
* Fix pg_dumpall to handle identically-named users and groups
reasonably (only possible when dumping from a pre-8.1 server) (Tom)
The user and group will be merged into a single role with LOGIN
permission. Formerly the merged role wouldn't have LOGIN
permission, making it unusable as a user.
* Fix pg_restore -n to work as documented (Tom)
salo [Wed, 31 May 2006 00:03:26 +0000 (00:03 +0000)]
#1677
salo [Wed, 31 May 2006 00:03:03 +0000 (00:03 +0000)]
Pullup ticket 1677 - requested by minskim
security fix for awstats
Revisions pulled up:
- pkgsrc/www/awstats/Makefile 1.26
- pkgsrc/www/awstats/distinfo 1.15, 1.16
- pkgsrc/www/awstats/patches/patch-aa 1.5, 1.5
Module Name: pkgsrc
Committed By: minskim
Date: Tue May 30 04:33:12 UTC 2006
Modified Files:
pkgsrc/www/awstats: Makefile distinfo
Added Files:
pkgsrc/www/awstats/patches: patch-aa
Log Message:
Fix http://www.debian.org/security/2006/dsa-1075. Patch from Debian
GNU/Linux.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue May 30 19:50:25 UTC 2006
Modified Files:
pkgsrc/www/awstats: distinfo
pkgsrc/www/awstats/patches: patch-aa
Log Message:
Fix a problem with perl warnings and static page generation.
ok'ed minskim@
salo [Tue, 30 May 2006 22:58:33 +0000 (22:58 +0000)]
#1676
salo [Tue, 30 May 2006 22:58:11 +0000 (22:58 +0000)]
Pullup ticket 1676 - requested by jschauma
security update for tor
Revisions pulled up:
- pkgsrc/net/tor/MESSAGE 1.4
- pkgsrc/net/tor/Makefile 1.29
- pkgsrc/net/tor/distinfo 1.17
- pkgsrc/net/tor/patches/patch-ac 1.3
- pkgsrc/net/tor/patches/patch-ad 1.2
Module Name: pkgsrc
Committed By: jschauma
Date: Fri May 26 02:21:42 UTC 2006
Modified Files:
pkgsrc/net/tor: MESSAGE Makefile distinfo
pkgsrc/net/tor/patches: patch-ac patch-ad
Log Message:
- Update tor to latest stable version 0.1.1.20 via files from pkgsrc-wip
- maintainer -> tv
Changes (summary):
some major security fixes, including entry guards to protect the
beginning of the circuit, exit enclaves to protect the end, and better
firewall support; a new directory protocol that improves bandwidth use
and keeps clients more up to date; two new directory authorities;
a new ascii-based controller protocol that lets people easily write
applications to interact with Tor; and
many scalability and performance improvements
Full changes available at
http://archives.seul.org/or/announce/May-2006/msg00000.html
ghen [Tue, 30 May 2006 20:19:20 +0000 (20:19 +0000)]
#1675
ghen [Tue, 30 May 2006 20:18:31 +0000 (20:18 +0000)]
Pullup ticket 1675 - requested by tron
security fix for cscope
Revisions pulled up:
- pkgsrc/devel/cscope/Makefile 1.44
- pkgsrc/devel/cscope/distinfo 1.13
- pkgsrc/devel/cscope/patches/patch-ae 1.7
- pkgsrc/devel/cscope/patches/patch-af 1.6
- pkgsrc/devel/cscope/patches/patch-ag 1.3
- pkgsrc/devel/cscope/patches/patch-ah 1.3
- pkgsrc/devel/cscope/patches/patch-ai 1.3
- pkgsrc/devel/cscope/patches/patch-aj 1.1
- pkgsrc/devel/cscope/patches/patch-ak 1.1
- pkgsrc/devel/cscope/patches/patch-al 1.1
- pkgsrc/devel/cscope/patches/patch-am 1.1
- pkgsrc/devel/cscope/patches/patch-an 1.1
- pkgsrc/devel/cscope/patches/patch-ao 1.1
Module Name: pkgsrc
Committed By: tron
Date: Mon May 29 13:48:53 UTC 2006
Modified Files:
pkgsrc/devel/cscope: Makefile distinfo
pkgsrc/devel/cscope/patches: patch-af
Added Files:
pkgsrc/devel/cscope/patches: patch-ae patch-ag patch-ah patch-ai
patch-aj patch-ak patch-al patch-am patch-an patch-ao
Log Message:
Integrate Debian's fix for security whole reported in CVE-2004-2541.
Bump package revision.
branch-fixup [Mon, 29 May 2006 13:51:20 +0000 (13:51 +0000)]
Add files from parent branch HEAD:
devel/cscope/patches/patch-aj
devel/cscope/patches/patch-ak
devel/cscope/patches/patch-al
devel/cscope/patches/patch-am
devel/cscope/patches/patch-an
devel/cscope/patches/patch-ao
salo [Mon, 29 May 2006 11:33:00 +0000 (11:33 +0000)]
#1674
salo [Mon, 29 May 2006 11:32:33 +0000 (11:32 +0000)]
Pullup ticket 1674 - requested by adrianp
install fix for phpldapadmin
Revisions pulled up:
- pkgsrc/databases/phpldapadmin/Makefile 1.22
Module Name: pkgsrc
Committed By: adrianp
Date: Sun May 28 18:18:44 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: Makefile
Log Message:
Fix a bug in the Makefile which caused the files to be installed with
the wrong permissions.
Bump PKGREVISION
salo [Sun, 28 May 2006 21:28:49 +0000 (21:28 +0000)]
#1672
salo [Sun, 28 May 2006 21:27:20 +0000 (21:27 +0000)]
Pullup ticket 1672 - requested by adrianp
security update for drupal
Revisions pulled up:
- pkgsrc/www/drupal/Makefile 1.8, 1.9, 1.10
- pkgsrc/www/drupal/distinfo 1.8
- pkgsrc/www/drupal/PLIST 1.2, 1.3
Module Name: pkgsrc
Committed By: adrianp
Date: Fri May 26 16:56:19 UTC 2006
Modified Files:
pkgsrc/www/drupal: Makefile distinfo
Log Message:
Drupal 4.6.7, 2006-05-24
------------------------
- fixed critical SQL issue, see SA-2006-005
---
Module Name: pkgsrc
Committed By: adrianp
Date: Fri May 26 17:14:35 UTC 2006
Modified Files:
pkgsrc/www/drupal: Makefile PLIST
Log Message:
Add missing .htaccess file. Thanks to taca@ for spotting this.
Fix pkglint warnings
---
Module Name: pkgsrc
Committed By: adrianp
Date: Sat May 27 15:52:54 UTC 2006
Modified Files:
pkgsrc/www/drupal: Makefile PLIST
Log Message:
Fix an issue with binary packages pointed out by salo@
Bump PKGREVISION
ghen [Sat, 27 May 2006 11:24:32 +0000 (11:24 +0000)]
#1673
ghen [Sat, 27 May 2006 11:24:06 +0000 (11:24 +0000)]
Pullup ticket 1673 - requested by drochner
security fix for mpg123
Revisions pulled up:
- pkgsrc/audio/mpg123/Makefile 1.42
- pkgsrc/audio/mpg123/distinfo 1.27
- pkgsrc/audio/mpg123/patches/patch-ai 1.4
- pkgsrc/audio/mpg123-esound/Makefile 1.17
- pkgsrc/audio/mpg123-nas/Makefile 1.20
Module Name: pkgsrc
Committed By: drochner
Date: Fri May 26 12:16:13 UTC 2006
Modified Files:
pkgsrc/audio/mpg123: Makefile distinfo
pkgsrc/audio/mpg123/patches: patch-ai
Log Message:
fix buffer overflow (CVE-2006-1655), from Debian
bump PKGREVISION
---
Module Name: pkgsrc
Committed By: drochner
Date: Fri May 26 12:33:37 UTC 2006
Modified Files:
pkgsrc/audio/mpg123-esound: Makefile
pkgsrc/audio/mpg123-nas: Makefile
Log Message:
also bump PKGREVISION for mpg123 security fix, pointed out
by Joerg Sonnenberger
ghen [Wed, 24 May 2006 16:55:32 +0000 (16:55 +0000)]
#1670
ghen [Wed, 24 May 2006 16:55:00 +0000 (16:55 +0000)]
Pullup ticket 1670 - requested by joerg
build and other fixes for clisp
Revisions pulled up:
- pkgsrc/lang/clisp/Makefile 1.52, 1.54
- pkgsrc/lang/clisp/distinfo 1.12
- pkgsrc/lang/clisp/patches/patch-aa 1.13
- pkgsrc/lang/clisp/patches/patch-ab 1.9
- pkgsrc/lang/clisp/patches/patch-ac 1.7
- pkgsrc/lang/clisp/patches/patch-ad 1.7
- pkgsrc/lang/clisp/patches/patch-ae 1.7
- pkgsrc/lang/clisp/patches/patch-af 1.6
- pkgsrc/lang/clisp/patches/patch-ag 1.4
Module Name: pkgsrc
Committed By: wiz
Date: Tue Apr 4 19:12:10 UTC 2006
Modified Files:
pkgsrc/lang/clisp: Makefile
Log Message:
Fix build on amd64. Add same workaround for other 64-bit platforms.
Remove outdated comment.
From Martijn in PR 33189.
---
Module Name: pkgsrc
Committed By: joerg
Date: Wed May 10 18:26:34 UTC 2006
Modified Files:
pkgsrc/lang/clisp: Makefile distinfo
pkgsrc/lang/clisp/patches: patch-aa
Added Files:
pkgsrc/lang/clisp/patches: patch-ab patch-ac patch-ad patch-ae patch-af
patch-ag
Log Message:
Readd the various pieces for DragonFly. Explicitly disable mmap,
it currently doesn't work.
salo [Wed, 24 May 2006 00:05:43 +0000 (00:05 +0000)]
#1665
salo [Wed, 24 May 2006 00:05:17 +0000 (00:05 +0000)]
Pullup ticket 1665 - requested by joerg
security fix for noweb
Revisions pulled up:
- pkgsrc/devel/noweb/Makefile 1.33
- pkgsrc/devel/noweb/distinfo 1.4
- pkgsrc/devel/noweb/patches/patch-ab 1.1
- pkgsrc/devel/noweb/patches/patch-ac 1.1
- pkgsrc/devel/noweb/patches/patch-ad 1.1
- pkgsrc/devel/noweb/patches/patch-ae 1.1
- pkgsrc/devel/noweb/patches/patch-af 1.1
- pkgsrc/devel/noweb/patches/patch-ag 1.1
- pkgsrc/devel/noweb/patches/patch-ah 1.1
- pkgsrc/devel/noweb/patches/patch-ai 1.1
- pkgsrc/devel/noweb/patches/patch-aj 1.1
- pkgsrc/devel/noweb/patches/patch-ak 1.1
- pkgsrc/devel/noweb/patches/patch-al 1.1
- pkgsrc/devel/noweb/patches/patch-am 1.1
- pkgsrc/devel/noweb/patches/patch-an 1.1
Module Name: pkgsrc
Committed By: joerg
Date: Tue May 23 16:07:04 UTC 2006
Modified Files:
pkgsrc/devel/noweb: Makefile distinfo
Added Files:
pkgsrc/devel/noweb/patches: patch-ab patch-ac patch-ad patch-ae
patch-af patch-ag patch-ah patch-ai patch-aj patch-ak patch-al
patch-am patch-an
Log Message:
Fix insecure temporary file generation. Based on Debian patchset,
but handles more cases. Bump revision.
salo [Tue, 23 May 2006 23:34:12 +0000 (23:34 +0000)]
#1643
salo [Tue, 23 May 2006 23:33:47 +0000 (23:33 +0000)]
Pullup ticket 1643 - requested by adrianp
security update for phpldapadmin
Revisions pulled up:
- pkgsrc/databases/phpldapadmin/MESSAGE 1.5, 1.6
- pkgsrc/databases/phpldapadmin/Makefile 1.19, 1.20, 1.21
- pkgsrc/databases/phpldapadmin/PLIST 1.6, 1.7
- pkgsrc/databases/phpldapadmin/distinfo 1.8, 1.9
- pkgsrc/databases/phpldapadmin/patches/patch-aa removed
- pkgsrc/databases/phpldapadmin/patches/patch-ab removed
Module Name: pkgsrc
Committed By: adrianp
Date: Thu May 18 22:13:46 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: MESSAGE Makefile PLIST distinfo
Removed Files:
pkgsrc/databases/phpldapadmin/patches: patch-aa patch-ab
Log Message:
Updated phpldapadmin to 0.9.8.3
Thanks to Yoshito Komatsu for feedback and testing
A summary of changes include:
This release fixes some minor bugs and some security alerts.
Code syntax fixing tests
HTML Validation fixes
Added support for binary attrs in templates & HTML Validation fixes
Few minor bug fixes.
Changed default login attribute back to "dn".
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu May 18 22:22:37 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: Makefile
Log Message:
Add a missing DEPENDS from the package update
---
Module Name: pkgsrc
Committed By: adrianp
Date: Sun May 21 11:58:25 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: distinfo
Log Message:
Fix checksums
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue May 23 20:51:44 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: MESSAGE Makefile PLIST
Log Message:
Watch for non-empty config/ directory
Use CONF_FILES_PERMS to install the conf.php file
Don't use WWW_USER to set permissions as that assumes apache is always installed
Bump PKGREVISION
Fix binary packages (pointed out by salo@)
ghen [Tue, 23 May 2006 18:44:55 +0000 (18:44 +0000)]
#1664
ghen [Tue, 23 May 2006 18:42:43 +0000 (18:42 +0000)]
Pullup ticket 1664 - requested by salo
security update for libextractor
Revisions pulled up:
- pkgsrc/devel/libextractor/Makefile 1.16, 1.17
- pkgsrc/devel/libextractor/PLIST 1.6
- pkgsrc/devel/libextractor/distinfo 1.13, 1.14
- pkgsrc/devel/libextractor/patches/patch-ab 1.4, 1.5
- pkgsrc/devel/libextractor/patches/patch-ac removed
- pkgsrc/devel/libextractor/patches/patch-ad 1.6, 1.7
Module Name: pkgsrc
Committed By: adam
Date: Mon May 1 21:06:56 UTC 2006
Modified Files:
pkgsrc/devel/libextractor: Makefile PLIST distinfo
pkgsrc/devel/libextractor/patches: patch-ab patch-ad
Removed Files:
pkgsrc/devel/libextractor/patches: patch-ac
Log Message:
Changes 0.5.13:
Added dictionaries for Finnish, French, Gaelic and Swedish
(for printable extractors).
Word history extraction works (wordleaker).
exiv2 works.
Added Python binding.
libextractor becomes a GNU package.
Thumbnails work.
---
Module Name: pkgsrc
Committed By: adam
Date: Tue May 23 10:52:22 UTC 2006
Modified Files:
pkgsrc/devel/libextractor: Makefile distinfo
pkgsrc/devel/libextractor/patches: patch-ab patch-ad
Log Message:
Changes 0.5.14:
* Bug fixes
* MPEG2 support
branch-fixup [Tue, 23 May 2006 16:07:04 +0000 (16:07 +0000)]
Add files from parent branch HEAD:
devel/noweb/patches/patch-ab
devel/noweb/patches/patch-ac
devel/noweb/patches/patch-ad
devel/noweb/patches/patch-ae
devel/noweb/patches/patch-af
devel/noweb/patches/patch-ag
devel/noweb/patches/patch-ah
devel/noweb/patches/patch-ai
devel/noweb/patches/patch-aj
devel/noweb/patches/patch-ak
devel/noweb/patches/patch-al
devel/noweb/patches/patch-am
devel/noweb/patches/patch-an
salo [Mon, 22 May 2006 14:22:07 +0000 (14:22 +0000)]
#1646
salo [Mon, 22 May 2006 14:21:47 +0000 (14:21 +0000)]
Pullup ticket 1646 - requested by ghen
portability build fix for dovecot
Revisions pulled up:
- pkgsrc/mail/dovecot/Makefile 1.52
- pkgsrc/mail/dovecot/distinfo 1.30
- pkgsrc/mail/dovecot/patches/patch-af 1.1
Module Name: pkgsrc
Committed By: ghen
Date: Sun May 21 13:48:51 UTC 2006
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Added Files:
pkgsrc/mail/dovecot/patches: patch-af
Log Message:
Fix a problem with non-C99 compilers (reported on NetBSD 1.6 and
Solaris). The patch is from dovecot CVS (see the thread following
http://www.dovecot.org/list/dovecot/2006-May/013389.html), via PR
pkg/33489. Bump PKGREVISION.
salo [Mon, 22 May 2006 14:15:46 +0000 (14:15 +0000)]
#1644
salo [Mon, 22 May 2006 14:15:27 +0000 (14:15 +0000)]
Pullup ticket 1644 - requested by adrianp
sync sendmail with HEAD
Revisions pulled up:
- pkgsrc/mail/sendmail/Makefile 1.87
- pkgsrc/mail/sendmail/Makefile.common 1.34
- pkgsrc/mail/sendmail/distinfo 1.28
- pkgsrc/mail/sendmail/patches/patch-ag 1.12
- pkgsrc/mail/sendmail/patches/patch-ai removed
- pkgsrc/mail/sendmail/patches/patch-aj removed
- pkgsrc/mail/sendmail/patches/patch-ak removed
- pkgsrc/mail/sendmail/patches/patch-al removed
Module Name: pkgsrc
Committed By: adrianp
Date: Fri May 12 22:23:09 UTC 2006
Modified Files:
pkgsrc/mail/sendmail: Makefile Makefile.common distinfo
pkgsrc/mail/sendmail/patches: patch-ag
Removed Files:
pkgsrc/mail/sendmail/patches: patch-ai patch-aj patch-ak patch-al
Log Message:
Update to sendmail 8.13.6
> 8.13.6/8.13.6 2006/03/22
> SECURITY: Replace unsafe use of setjmp(3)/longjmp(3) in the server
> and client side of sendmail with timeouts in the libsm I/O
> layer and fix problems in that code. Also fix handling of
> a buffer in sm_syslog() which could have been used as an
> attack vector to exploit the unsafe handling of
> setjmp(3)/longjmp(3) in combination with signals.
> Problem detected by Mark Dowd of ISS X-Force.
> Handle theoretical integer overflows that could triggered if
> the server accepted headers larger than the maximum
> (signed) integer value. This is prevented in the default
> configuration by restricting the size of a header, and on
> most machines memory allocations would fail before reaching
> those values. Problems found by Phil Brass of ISS.
> If a server returns 421 for an RSET command when trying to start
> another transaction in a session while sending mail, do
> not trigger an internal consistency check. Problem found
> by Allan E Johannesen of Worcester Polytechnic Institute.
> If a server returns a 5xy error code (other than 501) in response
> to a STARTTLS command despite the fact that it advertised
> STARTTLS and that the code is not valid according to RFC
> 2487 treat it nevertheless as a permanent failure instead
> of a protocol error (which has been changed to a
> temporary error in 8.13.5). Problem reported by Jeff
> A. Earickson of Colby College.
> Clear SMTP state after a HELO/EHLO command. Patch from John
> Myers of Proofpoint.
> Observe MinQueueAge option when gathering entries from the queue
> for sorting etc instead of waiting until the entries are
> processed. Patch from Brian Fundakowski Feldman.
> Set up TLS session cache to properly handle clients that try to
> resume a stored TLS session.
> Properly count the number of (direct) child processes such that
> a configured value (MaxDaemonChildren) is not exceeded.
> Based on patch from Attila Bruncsak.
> LIBMILTER: Remove superfluous backslash in macro definition
> (libmilter.h). Based on patch from Mike Kupfer of
> Sun Microsystems.
> LIBMILTER: Don't try to set SO_REUSEADDR on UNIX domain sockets.
> This generates an error message from libmilter on
> Solaris, though other systems appear to just discard the
> request silently.
> LIBMILTER: Deal with sigwait(2) implementations that return
> -1 and set errno instead of returning an error code
> directly. Patch from Chris Adams of HiWAAY Informations
> Services.
> Portability:
> Fix compilation checks for closefrom(3) and statvfs(2)
> in NetBSD. Problem noted by S. Moonesamy, patch from
> Andrew Brown.
salo [Mon, 22 May 2006 12:59:43 +0000 (12:59 +0000)]
#1632
salo [Mon, 22 May 2006 12:58:24 +0000 (12:58 +0000)]
Pullup ticket 1632 - requested by ghen
security update for openldap
Revisions pulled up:
- pkgsrc/databases/openldap/Makefile 1.111, 1.112, 1.113
- pkgsrc/databases/openldap/PLIST 1.26
- pkgsrc/databases/openldap/distinfo 1.45, 1.46, 1.47
- pkgsrc/databases/openldap/patches/patch-ac 1.11
- pkgsrc/databases/openldap/patches/patch-ad 1.7
- pkgsrc/databases/openldap/patches/patch-ah 1.5
- pkgsrc/databases/openldap/patches/patch-am 1.5
Module Name: pkgsrc
Committed By: grant
Date: Fri Apr 7 00:35:02 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile
Log Message:
fix avl_* function prototype conflicts on Solaris, so this now builds
on Solaris.
---
Module Name: pkgsrc
Committed By: ghen
Date: Mon May 15 19:01:23 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile PLIST distinfo
pkgsrc/databases/openldap/patches: patch-ac patch-ah patch-am
Log Message:
Update OpenLDAP from 2.3.11 to 2.3.21. Ok with joerg.
Here are all the changes:
OpenLDAP 2.3.21 Release
Fixed libldap referral chasing issue (ITS#4448)
Fixed libldap invalid free bug (ITS#4436)
Fixed libldap mutex leak (ITS#4441)
Fixed libldap_r thr_yield(2) return handling (ITS#4469)
Fixed slapd syncprov/glue interaction issue (ITS#4323, ITS#4417)
Fixed slapd operational attrs in presence of global overlays (ITS#4431)
Fixed slapd "threads" config value checking (ITS#4433)
Fixed slapd connection index bound check (ITS#4449)
Fixed slapd connection cleanup (ITS#4465)
Fixed slapd slap_realloc misuse (ITS#4477)
Fixed slapd size limit check when pagesize=3D1 (ITS#4479)
Fixed slapd-bdb/hdb cache issue (ITS#4439)
Fixed slapd-ldbm crash on modify bug (ITS#4464)
Fixed slapd-ldap potential bind deadlock (ITS#4409)
Fixed slapd-ldap/meta conn expiration concurrency (ITS#4429)
Fixed slapd-ldap failed bind connection trashing (ITS#4428)
Fixed slapd-ldap/meta chase-referrals disabling (ITS#4447)
Fixed slapd-ldap controls forwarding (ITS#4457)
Fixed slapd-ldap pretty DN in proxied requests (ITS#4456)
Fixed slapd-ldbm crash on modify bug (ITS#4464)
Fixed slapd-meta write error mapping (ITS#4419)
Removed lint
Build Environment
Added slapo-auditlog build support (ITS#4372)
Fixed multi-precision sizeof detection (ITS#4416)
Fixed liblunicode build (ITS#4435)
Updated libtool to version 1.5.22 (ITS#4471)
Updated shtool to version 2.0.5
OpenLDAP 2.3.20 Release
Added libldap SASL workaround for broken LDAP servers (ITS#4391)
Fixed libldap/slapd valuesReturnFilter OID (ITS#4404)
Fixed slapd config_generic_wrapper missing parameter bug (ITS#4376)
Fixed slapd extensible filter value normalization bug (ITS#4380)
Fixed slapd context CSN not updating issue (ITS#4384)
Fixed slapd non-read/write epoll event handling (ITS#4395)
Fixed slapd syncrepl de-normalize UUID issue
Fixed slapd syncrepl dynamic reconfig issue (ITS#4401)
Added slapd syncrepl log messages (ITS#4369)
Added slapd permissive modify/increment support
Added slapd dynamically registered debug level support
Fixed slapd connectionless LDAP support
Fixed slapd cn=3Dconfig error on create failure issue (ITS#4407)
Fixed slapd-bdb/hdb wake listener on runqueue submit (ITS#4385)
Fixed slapd-ldap/meta resources leaks on multiple binds (ITS#4387)
Fixed slapd-ldap/meta assert on connection shutdown (ITS#4390)
Added slapd-meta subtree-exclude feature
Fixed slapo-syncprov update latency issue (ITS#4385)
Fixed slapo-auditlog crash (ITS#4394)
Fixed slapo-accesslog unbind crash (ITS#4386)
Fixed slurpd reject error formating (ITS#4382)
Fixed ldappasswd unbind issue (ITS#4403)
Fixed slapo-pcache assert on attrsonly search (ITS#4406)
Added slapo-pcache max_queries enhancement (ITS#4225)
Added slapo-pcache negative caching enhancement
Build Environment
Fixed liblunicode cross compiling problem (ITS#4363)
Updated <netinet/tcp.h> detection for AIX (ITS#4312)
Updated multi-precision library detection
Documentation
Updated misc. manual pages
OpenLDAP 2.3.19 Release
Fixed libldap disable DH key exchange with DH params (ITS#4354)
Fixed libldap_r thread pool destroy hang (ITS#4349,ITS#4368)
Fixed slapd slap_daemon destroy issue (ITS#4370)
Fixed slapd-hdb livelock issue (ITS#4360)
Fixed slapd-bdb/hdb auto-recovery issue (ITS#4361,ITS#4373)
Fixed slapd-bdb/hdb BDB 4.4 compatibility issues (ITS#4362)
Fixed slapo-ppolicy modify issue (ITS#4355)
Fixed slapo-syncprov/pcache filter dup issue (ITS#4364)
Fixed slapo-syncprov playlog nentries reset issue (ITS#4365)
Build environment
Fixed slaptools when --disable-debug (ITS#4351)
Fixed slapd(8) solaris select(2) issue (ITS#4357)
OpenLDAP 2.3.18 Release
Fixed slapd syncrepl variable used before set bug (ITS#4331)
Updated slapd-meta retry capabilities (ITS#4328)
Fixed slapd-bdb slapcat autorecover bug (ITS#4324)
Fixed slapo-chain search limits (ITS#4336)
Fixed slapo-pcache attrsets issues (ITS#4316)
Fixed slapo-translucent connection destroy (ITS#4334)
Fixed slapd-config handling of attribute options (ITS#4339)
Fixed slapd-ldap idassert resource leak (ITS#4326)
Fixed slapd-meta nretries issue (ITS#4059)
Fixed slapd wake_listener loses wakes (ITS#4343)
Fixed slapd connection manager issue (ITS#4338)
Fixed slapd handling of old style configuration directives (ITS#4341)
Removed slapd-bdb/hdb extraneous yields (ITS#3950)
Build Environment
Removed problematic Linux sched_yield(2) workarounds (ITS#3950)
Documentation
Updated release documents
Updated misc. manual pages
OpenLDAP 2.3.17 Release
Fixed slapd anonymous proxy authorization issue (ITS#4320)
Fixed slapd-ldap/meta session reuse issue (ITS#4315)
Fixed slapd-ldap idassert anon-to-anon issue (ITS#4321)
Fixed slapd-monitor thread issue (ITS#4318)
Build environment
Updated Linux sched_yield(2) workaround to use nanosleep(2) (ITS#3950)
Fixed configure report-to URL
OpenLDAP 2.3.16 Release
Fixed slapd-bdb reindexing via cn=3Dconfig not noticed issue (ITS#4260)
Fixed slapd-monitor connection search crash (ITS#4300)
Flapd slapd cn=3Dconfig bad ACL syntax modify crash (ITS#4306)
Fixed slapd ACL/suffix configuration issue (ITS#4307)
Fixed slapd-bdb/hdb cache issue (ITS#4308)
Fixed slapd-bdb/hdb/ldbm suffix add with default referral issue (ITS#4310)
Fixed slapd-ldbm compare cache release issue (ITS#4313)
Fixed slapd syncrepl time/size limit parsing
Fixed slapi slapi_op_bind_callback fix (ITS#4311)
Fixed slapi pluginlog fix (ITS#4291)
Fixed ldapsearch response control handling issue
Build environment
Replace sched_yield(2) on Linux with select(2) (ITS#3950)
Documentation
Added slapd-bdb(5) cachefree description
Updated misc. manual pages
OpenLDAP 2.3.15 Release
Fixed slapd strerror logging bug (ITS#4292)
Fixed slapd ACL add/delete fraction issue (ITS#4295)
Fixed slapd ACL users selfwrite issue (ITS#4299)
Fixed slapd attrs/objectclass replog issues (ITS#4298)
Fixed slapd-ldap password modify exop password return (ITS#4294)
Build environment
Disable test030-relay when threads are unavailable (ITS#4297)
OpenLDAP 2.3.14 Release
Fixed slapd assertion control restrictions
Fixed slapd sc_prev update after free bug (ITS#4237)
Fixed slapd pid file creation (ITS#4241,4251)
Fixed slapd DEBUG dependency (ITS#4245)
Added slapd warning for excessive threads number (ITS#4249)
Fixed slapd passwd incomplete mod structure issue (ITS#4278)
Fixed slapd ACL exact attrval clause normalization (ITS#4255)
Fixed slapd modify/delete by ordered index issue
Fixed slapd strerror NULL bug (ITS#4285)
Fixed slapd-glue issues (ITS#4084,4133)
Fixed slapd-hdb idl Delete bug (ITS#4250)
Fixed slapd-hdb cache deadlock (ITS#4254)
Fixed slapd-bdb/hdb alock_close bug (ITS#4259)
Fixed slapd-bdb dn2id IDL cache bug (ITS#4263)
Fixed slapd-bdb/hdb mode argument parsing (ITS#4257)
Fixed slapd-bdb/hdb cn=3Dconfig reindexing (ITS#4260)
Fixed slapd-bdb/hdb cn=3Dconfig olcDbIndex modify/replace (ITS#4262)
Fixed slapd-bdb/hdb lockup issue (ITS#4184)
Fixed slapd-ldap anonymous identity assertion (ITS#4272)
Added slapd-ldap/meta idle-timeout support (ITS#4115)
Fixed slapd-meta bind-timeout handling
Fixed slapd-sql plug leak
Fixed slapo-dynlist/dyngroup nonexistant object return code (ITS#4224)
Updated slapo-dynlist (ITS#3756,3781)
Fixed slapo-rwm static DN free bug (ITS#4248)
Fixed slapo-syncprov unpublished control (ITS#4238)
Fixed slapo-syncprov message id issue
Fixed slapo-unique extraneous searches (ITS#4267)
Build environment
Fixed thread dependency of test028 (ITS#4141)
Updated test026-dn
Updated test033-glue-syncrepl (ITS#4264)
Documentation
Updated slapd.conf(5) and Admin Guide (ITS#4146,4266)
Updated slapo-dynlist(5) (ITS#4197)
Updated slapo-pcache(5) (ITS#4232)
Updated slapindex(8) (ITS#4242)
OpenLDAP 2.3.13 Release
Fixed libldap/liblutil MSG_ACCRIGHTSLEN bug (ITS#4206)
Fixed libldap ldap_bv2escaped_filter_value issue (ITS#4212)
Fixed liblutil URL value-specs issue (ITS#4221)
Fixed slapd sizelimit disclose issue (ITS#4213)
Fixed slapd gentlehup write restrict issue (ITS#3717)
Fixed slapd gentlehup abnormal issue (ITS#4217)
Fixed slapd delta-sync subtree scope issue (ITS#4227)
Fixed slapd cn=3Dconfig OID/name pollution issue (ITS#4185)
Fixed slapd cn=3Dconfig rootdn issue (ITS#4192)
Fixed slapd cn=3Dconfig slaptest -F without -f issue (ITS#4194)
Fixed slapd cn=3Dconfig ACL issue (ITS#4218)
Fixed slapd-bdb negative results IDL cache issue (ITS#4223)
Fixed slapd-bdb cursor close issue (ITS#4226)
Fixed slapd-hdb slapadd -q issue (ITS#4210)
Fixed slapd-hdb missing results issue (ITS#4186)
Fixed slapd-ldap potential double free issue (ITS#4189)
Fixed slapd-meta matched DN issue (ITS#4195)
Fixed slapd-meta DN cache issue (ITS#4196)
Fixed slapd-monitor shadow issue (ITS#4214)
Fixed slapo-accesslog delta-syncrepl issue (ITS#4198)
Fixed slapo-accesslog cleanup issue (ITS#4209)
Fixed slapo-chain resource leak issue (ITS#4140)
Fixed slapo-chain identity assertion issue (ITS#4256)
Fixed slapo-pcache attrset check issue (ITS#4199)
Fixed slapd-bdb readonly dirty alock issue (ITS#4201)
Fixed slapd-pcache non-requested attributes issues (ITS#4203,4204)
Fixed slaptest -F -f success with unsupported issue (ITS#4220)
Build environment
Improved Berkeley DB detection (ITS#3809)
Updated DB_CONFIG example (ITS#4229)
Documentation
Updated ldif(5) to include change record description
OpenLDAP 2.3.12 Release
Fixed libldap ldapi:// authdn construction
Added libldap ldap_bv2escaped_filter_value (ITS#2535)
Added libldap/slapd TLS DSA certificate support (ITS#4017)
Fixed libldap SASL bind issue (ITS#4158)
Fixed ldapmodrdn empty line handling (ITS#4101)
Fixed client tools additional info printing (ITS#4147)
Updated slapd ldaps:// not configured fix (ITS#4082,4083)
Fixed slapd connection crashes (ITS#4108)
Fixed slapd illegal S option bug (ITS#4119)
Fixed slapd cn=3Dmonitor log level mod issue (ITS#4091)
Fixed slapd cn=3Dconfig bad access issue (ITS#4111)
Fixed slapd cn=3Dconfig access modify issue (ITS#4127)
Fixed slapd cn=3Dconfig init issue (ITS#4128)
Fixed slapd non-reentrant libwrap issue (ITS#4099)
Fixed slapd thread v. tools_threads settings
Fixed slapd spurious defer message (ITS#3850)
Fixed slapd attribute SYNTAX OIDM issue (ITS#4116)
Fixed slapd modify empty sequence bug (ITS#4183)
Fixed slapd-bdb uninitialized condition in tool mode (ITS#4143)
Fixed slapd-bdb empty suffix and syncprov issue (ITS#4171)
Fixed slapd-hdb syncrepl deadlock issue (ITS#4088)
Added slapd-ldap write op timeout support (ITS#4157)
Fixed slapd-ldap/slapo-chain matched dn handling (ITS#4176)
Fixed slapd-meta invalid DN attrs normalize/pretty issue (ITS#4107)
Fixed slapd-meta rootdn erroneous success issue (ITS#4122)
Fixed slapd-meta proxying bind result issue (ITS#4129)
Fixed slapd-meta/slapo-rwm rwm-mapping issue (ITS#4086)
Fixed slapd-meta per-target retry (ITS#4150)
Fixed slapd-meta size/time limit handling (ITS#4145)
Fixed slapd-sql size limit count (ITS#4181)
Fixed slapo-ppolicy pwdFailureTime after bind success issue (ITS#4134)
Fixed slapo-ppolicy add passord_hash quality config dependency
Fixed slapo-syncprov LDAP response types (ITS#4183)
Added slapd delta syncrepl support
Added slapadd thread support
Updated slapcat subordinate database handling (ITS#4089)
Added slapd/slaptest pid/arg file consistency check (ITS#4074)
Updated slaptools default debug level to "none" (ITS#4044)
Fixed slurpd backwards compat issue (ITS#4151)
Added slurpd pid/arg file consistency check (ITS#4152)
Updated contrib smbk5pwd module
Removed lint
Build environment
Fixed libldap HSTRERROR issue (ITS#4124)
Fixed slapd AIX IFMT issue (ITS#4123)
Added slapd-bind test program
Added inet_ntoa_b support for VxWorks (ITS#3440)
Updated test036 (ITS#4095)
Fixed test036 cmp issue (ITS#4142)
Dropped SSLeay support
Documentation
slapd.conf(5) defaultSearchBase issue (ITS#4162)
slap tool man pages wll typo (ITS#4169)
---
Module Name: pkgsrc
Committed By: taca
Date: Thu May 18 05:14:11 UTC 2006
Modified Files:
pkgsrc/databases/openldap: distinfo
pkgsrc/databases/openldap/patches: patch-ad
Log Message:
Fix build problem of libraries/liblutil/sha1.c; function proto type
mis-match.
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri May 19 14:46:10 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile distinfo
Log Message:
Update to OpenLDAP 2.3.23.
OpenLDAP 2.3.23 Release
Fixed slapd-ldap improper free bug (ITS#4550)
OpenLDAP 2.3.22 Release
Fixed libldap referral input destroy issue (ITS#4533)
Fixed libldap ldap_sort_entries tail bug (ITS#4536)
Fixed libldap default connection concurrency issue (ITS#4541)
Fixed libldap_r thread debug missing break
Fixed libldap_r tpool cleanup
Fixed liblutil strtoul(3) usage (ITS#4503)
Fixed liblutil time resolution issue (ITS#4514)
Updated ldapdelete(1) to stdout bug (ITS#4453)
Updated ldapsearch(1) BASE output (ITS#4504)
Fixed slapd backglue issue (ITS#4529)
Fixed slapd cn=3Dconfig (ITS#4512)
Fixed slapd cn=3Dconfig ACL application fix
Fixed slapd cn=3Dconfig olcLimits (ITS#4515)
Fixed slapd dynacl tgrant/tdeny initialization
Fixed slapd runqueue use of freed memory (ITS#4517)
Fixed slapd slap_send_ldap_result bug (ITS#4499)
Fixed slapd thread pool init issue (ITS#4513)
Added slapd syncrepl mandatory searchbase check
Fixed slapd-bdb/hdb pre/post-read freeing (ITS#4532)
Fixed slapd-bdb/hdb pre/post-read unavailable issue (ITS#4538)
Fixed slapd-bdb/hdb referral issue (ITS#4548)
Fixed slapd-hdb IDL sort issue (ITS#4531)
Fixed slapd-ldap proxyAuthz of bound identity/override (ITS#4497)
Fixed slapd-ldap/meta protocol version propagation (ITS#4488)
Fixed slapd-ldap fd cleanup (ITS#4474)
Fixed slapd-ldif deadlock (ITS#4500)
Fixed slapd-shell lutil_atoi issue (ITS#4495)
Fixed slapadd cn=3Dconfig issue (ITS#4194)
Fixed slapo-accesslog log purging issue (ITS#4505)
Added slapo-accesslog reqOld feature
Fixed slapo-auditlog missing return codes
Fixed slapo-ppolicy BER tags issue (ITS#4528)
Fixed slapo-ppolicy rebind bug (ITS#4516)
Fixed slapo-refint delete prohibit issue (ITS#4442)
Fixed slapo-syncprov MODs cause DELs (ITS#4423)
Fixed slapo-syncprov/syncrepl sessionlog issue (ITS#4534)
Added slapo-syncprov extra logging
Fixed slapo-translucent modifications (ITS#4527)
Fixed slurpd potential overflow issue
Build Environment
Fixed OSF1 compilation problem (ITS#4537)
Fixed test020-proxycache disabled debug issue (ITS#4491)
Fixed test033-glue-syncrepl overlay detection (ITS#4544)
Documentation
Fixed slapd(8) logging header reference (ITS#4509)
Clarified slapd.conf(5) "disable bind_anon" feature
salo [Mon, 22 May 2006 12:19:01 +0000 (12:19 +0000)]
#1624
salo [Mon, 22 May 2006 12:18:25 +0000 (12:18 +0000)]
Pullup ticket 1624 - requested by cube
security update for mysql5
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.11, 1.12
- pkgsrc/databases/mysql5-client/distinfo 1.6
- pkgsrc/databases/mysql5-client/patches/patch-ae 1.5
- pkgsrc/databases/mysql5-client/patches/patch-af 1.4
- pkgsrc/databases/mysql5-client/patches/patch-ag 1.2
- pkgsrc/databases/mysql5-server/Makefile 1.13
- pkgsrc/databases/mysql5-server/PLIST 1.6
- pkgsrc/databases/mysql5-server/distinfo 1.7
- pkgsrc/databases/mysql5-server/patches/patch-ac 1.2
- pkgsrc/databases/mysql5-server/patches/patch-ag 1.4
- pkgsrc/databases/mysql5-server/patches/patch-al 1.2
Module Name: pkgsrc
Committed By: cube
Date: Thu May 18 16:11:15 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common distinfo
pkgsrc/databases/mysql5-client/patches: patch-ae patch-af patch-ag
pkgsrc/databases/mysql5-server: Makefile PLIST distinfo
pkgsrc/databases/mysql5-server/patches: patch-ac patch-ag patch-al
Log Message:
Update to version 5.0.21.
Full listing of changes:
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html
Notable changes include:
- Security enhancement: Added the global max_prepared_stmt_count system
variable to limit the total number of prepared statements in the
server.
- The default for the innodb_thread_concurrency system variable was
changed to 8.
- Fixes for CVE-2006-1516, CVE-2006-1517 and CVE-2006-1518.
And a lot of bug fixes.
---
Module Name: pkgsrc
Committed By: tron
Date: Fri May 19 23:01:02 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common
Log Message:
Fix build problem under Mac OS X by repairing broken OpenSSL (shared)
library detection.
branch-fixup [Sun, 21 May 2006 13:48:51 +0000 (13:48 +0000)]
Add files from parent branch HEAD:
mail/dovecot/patches/patch-af
salo [Fri, 19 May 2006 13:33:24 +0000 (13:33 +0000)]
#1613
salo [Fri, 19 May 2006 13:32:55 +0000 (13:32 +0000)]
Pullup ticket 1613 - requested by tron
security fix for xine-lib
Revisions pulled up:
- pkgsrc/multimedia/xine-lib/Makefile 1.35, 1.36
- pkgsrc/multimedia/xine-lib/distinfo 1.28, 1.29
- pkgsrc/multimedia/xine-lib/patches/patch-at 1.3
- pkgsrc/multimedia/xine-lib/patches/patch-aw 1.3
Module Name: pkgsrc
Committed By: drochner
Date: Wed May 3 12:32:10 UTC 2006
Modified Files:
pkgsrc/multimedia/xine-lib: Makefile distinfo
Added Files:
pkgsrc/multimedia/xine-lib/patches: patch-aw
Log Message:
another missing mutex init
bump PKGREVISION
---
Module Name: pkgsrc
Committed By: tron
Date: Thu May 18 18:45:37 UTC 2006
Modified Files:
pkgsrc/multimedia/xine-lib: Makefile distinfo
Added Files:
pkgsrc/multimedia/xine-lib/patches: patch-at
Log Message:
Fix security problem reported in CVE-2006-1664.
Bump package revision because of this fix.