spz [Fri, 2 Jul 2010 09:23:00 +0000 (09:23 +0000)]
pullup 3153
spz [Fri, 2 Jul 2010 09:22:04 +0000 (09:22 +0000)]
Pullup ticket 3153 - requested by tron
security patch
Revisions pulled up:
- pkgsrc/www/w3m/Makefile 1.58
- pkgsrc/www/w3m/distinfo 1.21
- pkgsrc/www/w3m-img/Makefile 1.20
Files added:
pkgsrc/www/w3m/patches/patch-ac
pkgsrc/www/w3m/patches/patch-ad
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu Jul 1 18:50:15 UTC 2010
Modified Files:
pkgsrc/www/w3m: Makefile distinfo
pkgsrc/www/w3m-img: Makefile
Added Files:
pkgsrc/www/w3m/patches: patch-ac patch-ad
Log Message:
Add patch by Ludwig Nussel to fix the certificate spoofing vulnerability
reported in CVE-2010-2074.
To generate a diff of this commit:
cvs rdiff -u -r1.57 -r1.58 pkgsrc/www/w3m/Makefile
cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/w3m/distinfo
cvs rdiff -u -r1.19 -r1.20 pkgsrc/www/w3m-img/Makefile
cvs rdiff -u -r0 -r1.14 pkgsrc/www/w3m/patches/patch-ac
cvs rdiff -u -r0 -r1.8 pkgsrc/www/w3m/patches/patch-ad
spz [Tue, 29 Jun 2010 18:40:05 +0000 (18:40 +0000)]
pullup 3152
spz [Tue, 29 Jun 2010 18:38:15 +0000 (18:38 +0000)]
Pullup ticket 3152 - requested by tron
security patch
Revisions pulled up:
- pkgsrc/lang/python26/Makefile via patch
- pkgsrc/lang/python26/distinfo via patch
- pkgsrc/lang/python26/patches/patch-af via patch
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Tue Jun 29 08:15:42 UTC 2010
Modified Files:
pkgsrc/lang/python26: Makefile distinfo
Added Files:
pkgsrc/lang/python26/patches: patch-af
Log Message:
Add fix for CVE-2010-2089 taken from Red Hat's Bugzilla database.
To generate a diff of this commit:
cvs rdiff -u -r1.23 -r1.24 pkgsrc/lang/python26/Makefile
cvs rdiff -u -r1.21 -r1.22 pkgsrc/lang/python26/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/lang/python26/patches/patch-af
tron [Mon, 28 Jun 2010 18:32:44 +0000 (18:32 +0000)]
Pullup ticket #3151.
tron [Mon, 28 Jun 2010 18:32:31 +0000 (18:32 +0000)]
Pullup ticket #3151 - requested by spz
lang/perl5: security patch
Revisions pulled up:
- lang/perl5/Makefile 1.159
- lang/perl5/distinfo 1.65
- lang/perl5/patches/patch-fa 1.1
---
Module Name: pkgsrc
Committed By: spz
Date: Sun Jun 27 13:38:39 UTC 2010
Modified Files:
pkgsrc/lang/perl5: Makefile distinfo
Added Files:
pkgsrc/lang/perl5/patches: patch-fa
Log Message:
fix CVE-2010-1168 and CVE-2010-1447 by updating Safe.pm to the current,
not-affected version
tron [Sat, 19 Jun 2010 15:37:51 +0000 (15:37 +0000)]
Pullup ticket #3150.
tron [Sat, 19 Jun 2010 15:36:44 +0000 (15:36 +0000)]
Pullup ticket #3150 - requested by taca
net/samba: security patch
Revisions pulled up:
- net/samba/Makefile 1.201
- net/samba/Makefile.mirrors 1.7
- net/samba/distinfo 1.74
- net/samba/patches/patch-ee 1.3
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jun 19 14:08:56 UTC 2010
Modified Files:
pkgsrc/net/samba: Makefile Makefile.mirrors distinfo
Added Files:
pkgsrc/net/samba/patches: patch-ee
Log Message:
Add a patch to fix CVE-2010-2063.
Bump PKGREVISION.
tron [Thu, 17 Jun 2010 17:52:29 +0000 (17:52 +0000)]
Pullup ticket #3149.
tron [Thu, 17 Jun 2010 17:52:14 +0000 (17:52 +0000)]
Pullup ticket #3149 - requested by drochner
graphics/tiff: security update
Revisions pulled up:
- graphics/tiff/Makefile 1.96
- graphics/tiff/distinfo 1.48
---
Module Name: pkgsrc
Committed By: drochner
Date: Wed Jun 16 13:56:41 UTC 2010
Modified Files:
pkgsrc/graphics/tiff: Makefile distinfo
Log Message:
update to 3.9.4
changes:
-Complete the fixes for CVE-2009-2347.
-Tiffcrop now supports custom page sizes.
+minor bugfixes
tron [Wed, 16 Jun 2010 21:28:40 +0000 (21:28 +0000)]
Pullup ticket #3147 and #3148.
tron [Wed, 16 Jun 2010 21:27:32 +0000 (21:27 +0000)]
Pullup ticket #3148 - requested by taca
net/samba33: security update
Revisions pulled up:
- net/samba33/Makefile 1.10
- net/samba33/distinfo 1.4
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jun 16 14:34:35 UTC 2010
Modified Files:
pkgsrc/net/samba33: Makefile distinfo
Log Message:
Update samba33 package to 3.3.13.
Changes since 3.3.12
--------------------
o Jeremy Allison <jra@samba.org>
* BUG 7494: Fix for CVE-2010-2063.
tron [Wed, 16 Jun 2010 21:03:18 +0000 (21:03 +0000)]
Pullup ticket #3147 - requested by bad
misc/openoffice3-bin: security update
Revisions pulled up:
- misc/openoffice3-bin/Makefile 1.7
- misc/openoffice3-bin/distinfo 1.4
---
Module Name: pkgsrc
Committed By: bad
Date: Tue Jun 15 16:48:19 UTC 2010
Modified Files:
pkgsrc/misc/openoffice3-bin: Makefile distinfo
Log Message:
Update openoffice3-bin to 3.2.1.
Bugfixes only. Including fixes for
CVE-2010-0395: A security vulnerability in OpenOffice.org, related to python
scripting, may lead to unexpected code execution.
CVE-2009-3555: OpenOffice.org 2 and 3 may be affected by the TLS/SSL
Renegotiation Issue in 3rd Party Libraries.
The release notes at http://development.openoffice.org/releases/3.2.1.html
are not extremely difficult to summarize sensibly.
tron [Tue, 15 Jun 2010 09:06:57 +0000 (09:06 +0000)]
Pullup ticket #3146.
tron [Tue, 15 Jun 2010 09:06:28 +0000 (09:06 +0000)]
Pullup ticket #3146 - requested by dholland
graphics/tiff: security update
Revisions pulled up:
- graphics/tiff/Makefile 1.95
- graphics/tiff/distinfo 1.47
---
Module Name: pkgsrc
Committed By: dholland
Date: Tue Jun 15 05:57:45 UTC 2010
Modified Files:
pkgsrc/graphics/tiff: Makefile distinfo
Log Message:
Update to 3.9.3, fixing CVE-2010-1411. Other changes are minor bug fixes;
gory details at http://www.remotesensing.org/libtiff/v3.9.3.html.
spz [Sat, 12 Jun 2010 21:00:05 +0000 (21:00 +0000)]
pullups 3144 + 3145
spz [Sat, 12 Jun 2010 20:57:46 +0000 (20:57 +0000)]
Pullup ticket 3145 - requested by tron
security fix
Revisions pulled up:
- pkgsrc/www/apache22/Makefile 1.59
- pkgsrc/www/apache22/distinfo 1.33
- pkgsrc/www/apache22/patches/patch-af 1.3
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sat Jun 12 10:40:27 UTC 2010
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
Added Files:
pkgsrc/www/apache22/patches: patch-af
Log Message:
Add patch provided by the Apache foundation to close the privacy leak
reported in CVE-2010-2068.
To generate a diff of this commit:
cvs rdiff -u -r1.58 -r1.59 pkgsrc/www/apache22/Makefile
cvs rdiff -u -r1.32 -r1.33 pkgsrc/www/apache22/distinfo
cvs rdiff -u -r0 -r1.3 pkgsrc/www/apache22/patches/patch-af
spz [Sat, 12 Jun 2010 20:42:10 +0000 (20:42 +0000)]
Pullup ticket 3144 - requested by tron
security update
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile 1.46
- pkgsrc/net/wireshark/distinfo 1.32
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu Jun 10 18:24:40 UTC 2010
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Log Message:
Update "wireshark" package to version 1.2.9. Changes since version 1.2.8:
- Bug Fixes
- The following vulnerabilities have been fixed.
- The SMB dissector could dereference a NULL pointer. (Bug 4734)
- J. Oquendo discovered that the ASN.1 BER dissector could overrun
the stack.
- The SMB PIPE dissector could dereference a NULL pointer on some
platforms.
- The SigComp Universal Decompressor Virtual Machine could go into an
infinite loop. (Bug 4826)
- The SigComp Universal Decompressor Virtual Machine could overrun
a buffer. (Bug 4837)
- The following bugs have been fixed:
- Cannot open file with File -> Open. (Bug 1791)
- Application crash when changing real-time option. (Bug 4035)
- Crash in filter autocompletion. (Bug 4306)
- The XML dissector doesn't allow dots (".") in tags. (Bug 4405)
- Live capture stops when using zlib 1.2.5. (Bug 4708)
- Want to be able to apply decode as to Data Portion of Lan Trace.
(Bug 4721)
- SABP short pdu (packet_per.c). (Bug 4743)
- Kerberos pre-auth type constants - MS extensions are wrong. (Bug 4752)
- Check HTTP Content-Length parsing for overflow. (Bug 4758)
- Wrong variable used for proto_tree_add_text() in ptp dissector.
(Bug 4773)
- Crash when close window frame of gtk file chooser. (Bug 4778)
- Wrong decoding for BGP ORF. (Bug 4782)
- Crash when Ctrl-Backspacing the display filter. (Bug 4797)
- Acker AFI field incorrect size in PGM dissector. (Bug 4798)
- Fedora 13: wireshark fails to build (linking problem). (Bug 4815)
- The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles.
(Bug 4839)
- AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt).
(Bug 4838)
- Updated Protocol Support
ASN.1 BER, BGP, HTTP, IGMP, IPsec, Kerberos, NFS, PGM, PTP, SABP, SigComp,
SMB, TCAP, XML,
- Updated Capture File Support
ERF, PacketLogger.
To generate a diff of this commit:
cvs rdiff -u -r1.45 -r1.46 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.31 -r1.32 pkgsrc/net/wireshark/distinfo
tron [Sat, 12 Jun 2010 16:02:05 +0000 (16:02 +0000)]
Pullup ticket #3142.
tron [Sat, 12 Jun 2010 15:59:49 +0000 (15:59 +0000)]
Pullup ticket #3142 - requested by taca
www/typolight28-translations: build fix
Revisions pulled up:
- www/typolight28-translations/Makefile 1.19-1.28
- www/typolight28-translations/PLIST.es 1.2
- www/typolight28-translations/PLIST.fa 1.2
- www/typolight28-translations/PLIST.hu 1.2
- www/typolight28-translations/PLIST.lt 1.3
- www/typolight28-translations/PLIST.sr 1.2
- www/typolight28-translations/PLIST.tr 1.2
- www/typolight28-translations/PLIST.uk 1.2
- www/typolight28-translations/distinfo 1.19-1.28
- www/typolight28-translations/options.mk 1.19-1.28
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 13 15:58:56 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to
20100413.
Update Czech and Japanese translation files are updated to support
TYPOlight 2.8.2.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 16 15:37:50 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile PLIST.lt distinfo
options.mk
Log Message:
Update typolight28-translations pacakge to
20100415.
Update Czech, French, Italian, Lithuanian and Swedish language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 20 23:20:38 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to
20100420.
Update Latvian and Russian language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 4 15:18:50 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to
20100504.
Update Japanese and Russian langage files.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun May 16 09:41:57 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile PLIST.fa PLIST.hu
PLIST.sr PLIST.tr PLIST.uk distinfo options.mk
Log Message:
Update typolight28-translations package to
20100514.
Update Croatian, Hungarian, Persian, Russian, Serbian, Turkish
and Ukrainian language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon May 17 15:41:16 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations pacakge to
20100516.
Update Danish language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed May 26 16:18:42 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to
20100523.
Update Czech language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jun 2 13:37:34 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to
20100527.
Update Dutch language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jun 5 15:19:37 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to
20100603.
Update Czech language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Jun 7 11:30:07 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile PLIST.es distinfo
options.mk
Log Message:
Update typolight28-translations package to
20100606.
* Update Spanish, Swedish and Turkish language files.
* Update HOMEPAGE and MASTER_SITES since www.TYPOlight.org migrated to
www.contao.org.
tron [Tue, 8 Jun 2010 18:22:48 +0000 (18:22 +0000)]
Ticket #3143.
tron [Tue, 8 Jun 2010 18:22:06 +0000 (18:22 +0000)]
Pullup ticket #3143 - requested by minskim
print/dvipsk: security patch
Revisions pulled up:
- print/dvipsk/Makefile 1.6
- print/dvipsk/distinfo 1.5
- print/dvipsk/patches/patch-ab 1.4
---
Module Name: pkgsrc
Committed By: minskim
Date: Tue Jun 8 15:17:05 UTC 2010
Modified Files:
pkgsrc/print/dvipsk: Makefile distinfo
pkgsrc/print/dvipsk/patches: patch-ab
Log Message:
Fix CVE-2010-1440. Patch from TeX Live repository.
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX
Live 2009 and earlier, and teTeX, allow remote attackers to cause a
denial of service (application crash) or possibly execute arbitrary
code via a special command in a DVI file, related to the (1)
predospecial and (2) bbdospecial functions, a different
vulnerability than CVE-2010-0739.
tron [Mon, 7 Jun 2010 19:16:44 +0000 (19:16 +0000)]
Pullup tickets #3140 and #3141.
tron [Mon, 7 Jun 2010 19:16:23 +0000 (19:16 +0000)]
Pullup ticket #3141 - requested by taca
www/typolight27-translations: build fix
Revisions pulled up:
- www/typolight27-translations/Makefile 1.42
- www/typolight27-translations/options.mk 1.40
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Jun 7 11:24:30 UTC 2010
Modified Files:
pkgsrc/www/typolight27-translations: Makefile options.mk
Log Message:
Update HOMEPAGE and MASTER_SITES since www.TYPOlight.org migrated to
www.contao.org.
tron [Mon, 7 Jun 2010 19:06:20 +0000 (19:06 +0000)]
Pullup ticket #3140 - requested by kefren
net/bftpd: security update
Revisions pulled up:
- net/bftpd/Makefile 1.11-1.12
- net/bftpd/distinfo 1.5-1.6
- net/bftpd/patches/patch-aa 1.4
- net/bftpd/patches/patch-ab delete
- net/bftpd/patches/patch-ac 1.1
---
Module Name: pkgsrc
Committed By: obache
Date: Thu May 27 14:14:30 UTC 2010
Modified Files:
pkgsrc/net/bftpd: Makefile distinfo
pkgsrc/net/bftpd/patches: patch-aa
Added Files:
pkgsrc/net/bftpd/patches: patch-ac
Removed Files:
pkgsrc/net/bftpd/patches: patch-ab
Log Message:
Update bftpd to 2.8
Based on PR#43352 by Wen Heping.
pkgsrc changes:
* set LICENSE=gnu-gpl-v2
* simplify patch-aa.
* remove patch-ab, replace with SUBST instead, and also replace /etc in manpage.
* add patch-ac for fixes standalone mode. XXX: IPv4 only
* cosmetics fixes.
---
Module Name: pkgsrc
Committed By: obache
Date: Fri Jun 4 04:30:45 UTC 2010
Modified Files:
pkgsrc/net/bftpd: Makefile distinfo
Log Message:
Update bftpd to 2.9.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.9
- Bftpdwill attempt to create it's utmp directory
if that directory does not exist. Fixes issue on
Ubuntu where the direcotry is wiped out at each
reboot.
- The ROOTDIR option now works properly for
anonymous users.
Thanks to Paul for reporting this bug.
spz [Sun, 6 Jun 2010 11:33:41 +0000 (11:33 +0000)]
pullup 3139
spz [Sun, 6 Jun 2010 11:32:35 +0000 (11:32 +0000)]
Pullup ticket 3139 - requested by taca
security update
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.39
- pkgsrc/databases/mysql5-client/buildlink3.mk 1.16
- pkgsrc/databases/mysql5-client/distinfo 1.29
- pkgsrc/databases/mysql5-server/distinfo 1.25
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Wed Jun 2 13:34:45 UTC 2010
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common buildlink3.mk distinfo
pkgsrc/databases/mysql5-server: distinfo
Log Message:
Update mysql5-{client,server} package to 5.0.91.
For full changes, refer http://dev.mysql.com/doc/refman/5.0/en/news-5-0-91.html.
Here is security related changes.
* Security Fix: The server failed to check the table name argument of
a COM_FIELD_LIST command packet for validity and compliance to
acceptable table name standards. This could be exploited to bypass
almost all forms of checks for privileges and table-level grants by
providing a specially crafted table name argument to COM_FIELD_LIST.
In MySQL 5.0 and above, this allowed an authenticated user with
SELECT privileges on one table to obtain the field definitions of
any table in all other databases and potentially of other MySQL
instances accessible from the server's file system.
Additionally, for MySQL version 5.1 and above, an authenticated user
with DELETE or SELECT privileges on one table could delete or read
content from any other table in all databases on this server, and
potentially of other MySQL instances accessible from the server's
file system. (Bug#53371, CVE-2010-1848)
* Security Fix: The server was susceptible to a buffer-overflow attack
due to a failure to perform bounds checking on the table name
argument of a COM_FIELD_LIST command packet. By sending long data
for the table name, a buffer is overflown, which could be exploited
by an authenticated user to inject malicious code. (Bug#53237,
CVE-2010-1850)
* Security Fix: The server could be tricked into reading packets
indefinitely if it received a packet larger than the maximum size of
one packet. (Bug#50974, CVE-2010-1849)
To generate a diff of this commit:
cvs rdiff -u -r1.38 -r1.39 pkgsrc/databases/mysql5-client/Makefile.common
cvs rdiff -u -r1.15 -r1.16 pkgsrc/databases/mysql5-client/buildlink3.mk
cvs rdiff -u -r1.28 -r1.29 pkgsrc/databases/mysql5-client/distinfo
cvs rdiff -u -r1.24 -r1.25 pkgsrc/databases/mysql5-server/distinfo
spz [Sun, 6 Jun 2010 08:14:36 +0000 (08:14 +0000)]
pullup 3131
spz [Sun, 6 Jun 2010 08:13:13 +0000 (08:13 +0000)]
Pullup ticket 3131 - requested by is
bugfix update
Revisions pulled up:
- pkgsrc/shells/mksh/Makefile 1.15
- pkgsrc/shells/mksh/distinfo 1.14
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: is
Date: Fri May 28 12:26:49 UTC 2010
Modified Files:
pkgsrc/shells/mksh: Makefile distinfo
Log Message:
Update to mksh-39c on suggestion from Thorsten Glaser.
To generate a diff of this commit:
cvs rdiff -u -r1.14 -r1.15 pkgsrc/shells/mksh/Makefile
cvs rdiff -u -r1.13 -r1.14 pkgsrc/shells/mksh/distinfo
spz [Sat, 5 Jun 2010 07:03:20 +0000 (07:03 +0000)]
pullups 3137 and 3138
spz [Sat, 5 Jun 2010 07:00:19 +0000 (07:00 +0000)]
Pullup ticket 3138 - requested by pettai
functionality fix
Revisions pulled up:
- pkgsrc/mail/mimedefang/Makefile 1.45
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: pettai
Date: Thu Jun 3 09:37:51 UTC 2010
Modified Files:
pkgsrc/mail/mimedefang: Makefile
Log Message:
part of PR pkg/43380 that didn't make it the first commit
To generate a diff of this commit:
cvs rdiff -u -r1.43 -r1.44 pkgsrc/mail/mimedefang/Makefile
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: pettai
Date: Fri Jun 4 21:00:07 UTC 2010
Modified Files:
pkgsrc/mail/mimedefang: Makefile
Log Message:
Bump PKGREVISION for the bulkbuild
To generate a diff of this commit:
cvs rdiff -u -r1.44 -r1.45 pkgsrc/mail/mimedefang/Makefile
spz [Sat, 5 Jun 2010 06:16:43 +0000 (06:16 +0000)]
Pullup ticket 3137 - requested by kefren
security update
Revisions pulled up:
- pkgsrc/security/sudo/Makefile 1.121
- pkgsrc/security/sudo/distinfo 1.63
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Thu Jun 3 14:53:14 UTC 2010
Modified Files:
pkgsrc/security/sudo: Makefile distinfo
Log Message:
Update security/sudo package to 1.7.2p7.
For more detail: http://www.sudo.ws/sudo/alerts/secure_path.html
Summary:
Sudo "secure path" feature works by replacing the PATH environment
variable with a value specified in the sudoers file, or at
compile time if the --with-secure-path configure option is used.
The flaw is that sudo only replaces the first instance of PATH
in the environment. If the program being run through sudo uses
the last instance of PATH in the environment, an attacker may
be able to avoid the "secure path" restrictions.
Sudo versions affected:
Sudo 1.3.1 through 1.6.9p22 and Sudo 1.7.0 through 1.7.2p6.
To generate a diff of this commit:
cvs rdiff -u -r1.120 -r1.121 pkgsrc/security/sudo/Makefile
cvs rdiff -u -r1.62 -r1.63 pkgsrc/security/sudo/distinfo
spz [Thu, 3 Jun 2010 10:19:36 +0000 (10:19 +0000)]
pullup 3136
spz [Thu, 3 Jun 2010 10:18:21 +0000 (10:18 +0000)]
Pullup ticket 3136 - requested by kefren
security update
Revisions pulled up:
- pkgsrc/chat/p5-POE-Component-IRC/Makefile 1.10
- pkgsrc/chat/p5-POE-Component-IRC/distinfo 1.5
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: kefren
Date: Thu Jun 3 09:12:50 UTC 2010
Modified Files:
pkgsrc/chat/p5-POE-Component-IRC: Makefile distinfo
Log Message:
Security update to 6.32
See http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=581194
To generate a diff of this commit:
cvs rdiff -u -r1.9 -r1.10 pkgsrc/chat/p5-POE-Component-IRC/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/chat/p5-POE-Component-IRC/distinfo
spz [Thu, 3 Jun 2010 08:38:54 +0000 (08:38 +0000)]
pullups 3132, 3133, 3134 and 3135
spz [Thu, 3 Jun 2010 08:33:32 +0000 (08:33 +0000)]
Pullup ticket 3135 - requested by taca
security update
Revisions pulled up:
- pkgsrc/security/openssl/Makefile 1.149
- pkgsrc/security/openssl/distinfo 1.75
Files removed:
pkgsrc/security/openssl/patches/patch-bc
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Mon Apr 12 14:19:17 UTC 2010
Modified Files:
pkgsrc/security/openssl: Makefile distinfo
Removed Files:
pkgsrc/security/openssl/patches: patch-bc
Log Message:
Update openssl package from 0.9.8m to 0.9.8n.
Changes between 0.9.8m and 0.9.8n [24 Mar 2010]
*) When rejecting SSL/TLS records due to an incorrect version number, never
update s->server with a new major version number. As of
- OpenSSL 0.9.8m if 'short' is a 16-bit type,
- OpenSSL 0.9.8f if 'short' is longer than 16 bits,
the previous behavior could result in a read attempt at NULL when
receiving specific incorrect SSL/TLS records once record payload
protection is active. (CVE-2010-0740)
[Bodo Moeller, Adam Langley <agl@chromium.org>]
*) Fix for CVE-2010-0433 where some kerberos enabled versions of OpenSSL
could be crashed if the relevant tables were not present (e.g. chrooted).
[Tomas Hoger <thoger@redhat.com>]
To generate a diff of this commit:
cvs rdiff -u -r1.146 -r1.147 pkgsrc/security/openssl/Makefile
cvs rdiff -u -r1.73 -r1.74 pkgsrc/security/openssl/distinfo
cvs rdiff -u -r1.1 -r0 pkgsrc/security/openssl/patches/patch-bc
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: adam
Date: Sat May 8 06:33:41 UTC 2010
Modified Files:
pkgsrc/security/openssl: Makefile
Log Message:
Set correct architecture on Darwin
To generate a diff of this commit:
cvs rdiff -u -r1.147 -r1.148 pkgsrc/security/openssl/Makefile
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Wed Jun 2 13:30:11 UTC 2010
Modified Files:
pkgsrc/security/openssl: Makefile distinfo
Log Message:
Update security/openssl package to 0.9.8o.
OpenSSL CHANGES
_______________
Changes between 0.9.8n and 0.9.8o [01 Jun 2010]
*) Correct a typo in the CMS ASN1 module which can result in invalid memory
access or freeing data twice (CVE-2010-0742)
[Steve Henson, Ronald Moesbergen <intercommit@gmail.com>]
*) Add SHA2 algorithms to SSL_library_init(). SHA2 is becoming far more
common in certificates and some applications which only call
SSL_library_init and not OpenSSL_add_all_algorithms() will fail.
[Steve Henson]
*) VMS fixes:
Reduce copying into .apps and .test in makevms.com
Don't try to use blank CA certificate in CA.com
Allow use of C files from original directories in maketests.com
[Steven M. Schweda" <sms@antinode.info>]
To generate a diff of this commit:
cvs rdiff -u -r1.148 -r1.149 pkgsrc/security/openssl/Makefile
cvs rdiff -u -r1.74 -r1.75 pkgsrc/security/openssl/distinfo
spz [Thu, 3 Jun 2010 08:21:03 +0000 (08:21 +0000)]
Pullup ticket 3134 - requested by bouyer
build fix
Revisions pulled up:
- pkgsrc/security/py-smbpasswd/Makefile 1.6
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: bouyer
Date: Tue Jun 1 21:30:25 UTC 2010
Modified Files:
pkgsrc/security/py-smbpasswd: Makefile
Log Message:
Works fine with python2.6 too.
To generate a diff of this commit:
cvs rdiff -u -r1.5 -r1.6 pkgsrc/security/py-smbpasswd/Makefile
spz [Thu, 3 Jun 2010 08:11:22 +0000 (08:11 +0000)]
Pullup ticket 3133 - requested by pettai
functionality fix
Revisions pulled up:
- pkgsrc/mail/mimedefang/Makefile 1.43
- pkgsrc/mail/mimedefang/distinfo 1.20
Files added:
pkgsrc/mail/mimedefang/patches/patch-ad
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: pettai
Date: Mon May 31 10:08:22 UTC 2010
Modified Files:
pkgsrc/mail/mimedefang: Makefile distinfo
Added Files:
pkgsrc/mail/mimedefang/patches: patch-ad
Log Message:
Fix for PR pkg/43380
To generate a diff of this commit:
cvs rdiff -u -r1.42 -r1.43 pkgsrc/mail/mimedefang/Makefile
cvs rdiff -u -r1.19 -r1.20 pkgsrc/mail/mimedefang/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/mail/mimedefang/patches/patch-ad
spz [Wed, 2 Jun 2010 21:11:19 +0000 (21:11 +0000)]
Pullup ticket 3132 - requested by joerg
build fix
Revisions pulled up:
- pkgsrc/databases/postgresql82-client/Makefile 1.16
- pkgsrc/databases/postgresql82-client/PLIST 1.21
- pkgsrc/databases/postgresql83-client/Makefile 1.16
- pkgsrc/databases/postgresql83-client/PLIST 1.13
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: joerg
Date: Sun May 30 11:51:19 UTC 2010
Modified Files:
pkgsrc/databases/postgresql82-client: Makefile PLIST
pkgsrc/databases/postgresql83-client: Makefile PLIST
Log Message:
Fix PLIST. Bump revision.
To generate a diff of this commit:
cvs rdiff -u -r1.15 -r1.16 pkgsrc/databases/postgresql82-client/Makefile
cvs rdiff -u -r1.20 -r1.21 pkgsrc/databases/postgresql82-client/PLIST
cvs rdiff -u -r1.15 -r1.16 pkgsrc/databases/postgresql83-client/Makefile
cvs rdiff -u -r1.12 -r1.13 pkgsrc/databases/postgresql83-client/PLIST
-------------------------------------------------------------------------
the PLIST update from:
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: adam
Date: Fri Apr 23 15:41:50 UTC 2010
Modified Files:
pkgsrc/databases/postgresql82-client: Makefile PLIST
Log Message:
PLIST fix
To generate a diff of this commit:
cvs rdiff -u -r1.13 -r1.14 pkgsrc/databases/postgresql82-client/Makefile
cvs rdiff -u -r1.18 -r1.19 pkgsrc/databases/postgresql82-client/PLIST
tron [Sat, 29 May 2010 08:27:02 +0000 (08:27 +0000)]
Pullup ticket #3130.
tron [Sat, 29 May 2010 08:26:40 +0000 (08:26 +0000)]
Pullup ticket #3130 - requested by martti
www/mediawiki: security update
Revisions pulled up:
- www/mediawiki/Makefile 1.12
- www/mediawiki/distinfo 1.8
---
Module Name: pkgsrc
Committed By: martti
Date: Fri May 28 08:11:32 UTC 2010
Modified Files:
pkgsrc/www/mediawiki: Makefile distinfo
Log Message:
Updated www/mediawiki to 1.15.4
This is a security and bugfix release of MediaWiki 1.15.4.
Two security vulnerabilities were discovered.
Kuriaki Takashi discovered an XSS vulnerability in MediaWiki. It
affects Internet Explorer clients only. The issue is presumed to
affect all recent versions of IE, it has been confirmed on IE 6 and 8.
Noncompliant CSS parsing behaviour in Internet Explorer allows
attackers to construct CSS strings which are treated as safe by
previous versions of MediaWiki, but are decoded to unsafe strings by
Internet Explorer. Full details can be found at:
https://bugzilla.wikimedia.org/show_bug.cgi?id=23687
A CSRF vulnerability was discovered in our login interface. Although
regular logins are protected as of 1.15.3, it was discovered that the
account creation and password reset features were not protected from
CSRF. This could lead to unauthorised access to private wikis. See
https://bugzilla.wikimedia.org/show_bug.cgi?id=23371 for details.
These vulnerabilities are serious and all users are advised to
upgrade. Remember that CSRF and XSS vulnerabilities can be used even
against firewall-protected intranet installations, as long as the
attacker can guess the URL.
tron [Wed, 26 May 2010 17:16:16 +0000 (17:16 +0000)]
Pullup ticket #3129.
tron [Wed, 26 May 2010 17:13:53 +0000 (17:13 +0000)]
Pullup ticket #3129 - requested by taca
databases/mysql51-client: security update
databases/mysql51-server: security update
Revisions pulled up:
- databases/mysql51-client/Makefile.common 1.6-1.8
- databases/mysql51-client/distinfo 1.3-1.4
- databases/mysql51-server/Makefile 1.5
- databases/mysql51-server/PLIST 1.4-1.5
- databases/mysql51-server/distinfo 1.4-1.6
- databases/mysql51-server/patches/patch-av delete
- databases/mysql51-server/patches/patch-ay 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Apr 24 15:59:24 UTC 2010
Modified Files:
pkgsrc/databases/mysql51-client: Makefile.common distinfo
pkgsrc/databases/mysql51-server: Makefile PLIST distinfo
Removed Files:
pkgsrc/databases/mysql51-server/patches: patch-av
Log Message:
Update mysql51-client/mysql51-server package to 5.1.46.
This is maintainous release and please refer for full changes:
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-46.html
---
Module Name: pkgsrc
Committed By: obache
Date: Fri Apr 30 06:03:36 UTC 2010
Modified Files:
pkgsrc/databases/mysql51-client: Makefile.common
Log Message:
Interix GNU cc doesn't support `-fPIC'.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed May 26 01:52:22 UTC 2010
Modified Files:
pkgsrc/databases/mysql51-client: Makefile.common distinfo
pkgsrc/databases/mysql51-server: PLIST distinfo
Added Files:
pkgsrc/databases/mysql51-server/patches: patch-ay
Log Message:
Update mysql51-{client,server} package to 5.1.47.
For full changes, see http://dev.mysql.com/doc/refman/5.1/en/news-5-1-47.html.
Here is important changes:
InnoDB Plugin Notes:
* InnoDB Plugin has been upgraded to version 1.0.8. This version
is considered of General Availability (GA) quality. InnoDB
Plugin Change History, may contain information in addition to
those changes reported here.
In this release, the InnoDB Plugin is included in source and
binary distributions, except RHEL3, RHEL4, SuSE 9 (x86, x86_64,
ia64), and generic Linux RPM packages. It also does not work for
FreeBSD 6 and HP-UX or for Linux on generic ia64.
Functionality added or changed:
* InnoDB stores redo log records in a hash table during
recovery. On 64-bit systems, this hash table was 1/8 of the
buffer pool size. To reduce memory usage, the dimension of the
hash table was reduced to 1/64 of the buffer pool size (or 1/128
on 32-bit systems). (Bug#53122)
Security fixed:
* Security Fix: The server failed to check the table name argument
of a COM_FIELD_LIST command packet for validity and compliance
to acceptable table name standards. This could be exploited to
bypass almost all forms of checks for privileges and table-level
grants by providing a specially crafted table name argument to
COM_FIELD_LIST.
In MySQL 5.0 and above, this allowed an authenticated user with
SELECT privileges on one table to obtain the field definitions
of any table in all other databases and potentially of other
MySQL instances accessible from the server's file system.
Additionally, for MySQL version 5.1 and above, an authenticated
user with DELETE or SELECT privileges on one table could delete or
read content from any other table in all databases on this server,
and potentially of other MySQL instances accessible from the
server's file system. (Bug#53371, CVE-2010-1848)
* Security Fix: The server was susceptible to a buffer-overflow
attack due to a failure to perform bounds checking on the table
name argument of a COM_FIELD_LIST command packet. By sending
long data for the table name, a buffer is overflown, which could
be exploited by an authenticated user to inject malicious
code. (Bug#53237, CVE-2010-1850)
* Security Fix: The server could be tricked into reading packets
indefinitely if it received a packet larger than the maximum
size of one packet. (Bug#50974, CVE-2010-1849)
tron [Sat, 22 May 2010 11:24:32 +0000 (11:24 +0000)]
Pullup ticket #3182.
tron [Sat, 22 May 2010 11:22:54 +0000 (11:22 +0000)]
Pullup ticket #3182 - requested by adam
databases/postgresql82: security update
databases/postgresql82-adminpack: security update
databases/postgresql82-client: security update
databases/postgresql82-plperl: security update
databases/postgresql82-plpython: security update
databases/postgresql82-pltcl: security update
databases/postgresql82-server: security update
databases/postgresql82-tsearch2: security update
Revisions pulled up:
- databases/postgresql82-client/Makefile 1.15
- databases/postgresql82-client/PLIST 1.20
- databases/postgresql82-client/buildlink3.mk 1.7
- databases/postgresql82-server/PLIST 1.13
- databases/postgresql82/Makefile.common 1.21
- databases/postgresql82/distinfo 1.20
- databases/postgresql82/patches/patch-ad 1.4
---
Module Name: pkgsrc
Committed By: adam
Date: Thu May 20 12:36:15 UTC 2010
Modified Files:
pkgsrc/databases/postgresql82: Makefile.common distinfo
pkgsrc/databases/postgresql82-client: Makefile PLIST buildlink3.mk
pkgsrc/databases/postgresql82-server: PLIST
Added Files:
pkgsrc/databases/postgresql82/patches: patch-ad
Log Message:
Changes 8.2.17:
* Enforce restrictions in plperl using an opmask applied to the whole
interpreter, instead of using "Safe.pm"
* Prevent PL/Tcl from executing untrustworthy code from pltcl_modules
* Fix possible crash if a cache reset message is received during
rebuild of a relcache entry
* Do not allow an unprivileged user to reset superuser-only parameter
settings
* Avoid possible crash during backend shutdown if shutdown occurs
when a CONTEXT addition would be made to log entries
* Update pl/perl's "ppport.h" for modern Perl versions
* Fix assorted memory leaks in pl/python
* Prevent infinite recursion in psql when expanding a variable that
refers to itself
* Fix psql's \copy to not add spaces around a dot within \copy
(select ...)
* Ensure that "contrib/pgstattuple" functions respond to cancel
interrupts promptly
* Make server startup deal properly with the case that shmget()
returns EINVAL for an existing shared memory segment
* Avoid possible crashes in syslogger process on Windows
* Deal more robustly with incomplete time zone information in the
Windows registry
* Update the set of known Windows time zone names
* Update time zone data files to tzdata release 2010j for DST law
changes in Argentina, Australian Antarctic, Bangladesh, Mexico,
Morocco, Pakistan, Palestine, Russia, Syria, Tunisia; also
historical corrections for Taiwan.
Also, add PKST (Pakistan Summer Time) to the default set of
timezone abbreviations.
tron [Sat, 22 May 2010 10:58:02 +0000 (10:58 +0000)]
Pullup ticket #3182 - requested by adam
databases/postgresql83: security update
databases/postgresql83-adminpack: security update
databases/postgresql83-client: security update
databases/postgresql83-plperl: security update
databases/postgresql83-plpython: security update
databases/postgresql83-pltcl: security update
databases/postgresql83-server: security update
Revisions pulled up:
- databases/postgresql83-client/Makefile 1.15
- databases/postgresql83-client/buildlink3.mk 1.4
- databases/postgresql83-server/PLIST 1.11
- databases/postgresql83/Makefile.common 1.12
- databases/postgresql83/distinfo 1.12
- databases/postgresql83/patches/patch-ad 1.4
---
Module Name: pkgsrc
Committed By: adam
Date: Thu May 20 12:36:28 UTC 2010
Modified Files:
pkgsrc/databases/postgresql83: Makefile.common distinfo
pkgsrc/databases/postgresql83-client: Makefile buildlink3.mk
pkgsrc/databases/postgresql83-server: PLIST
Added Files:
pkgsrc/databases/postgresql83/patches: patch-ad
Log Message:
Changes 8.3.11:
* Enforce restrictions in plperl using an opmask applied to the whole
interpreter, instead of using "Safe.pm"
* Prevent PL/Tcl from executing untrustworthy code from pltcl_modules
* Fix possible crash if a cache reset message is received during
rebuild of a relcache entry
* Apply per-function GUC settings while running the language
validator for the function
* Do not allow an unprivileged user to reset superuser-only parameter
settings
* Avoid possible crash during backend shutdown if shutdown occurs
when a CONTEXT addition would be made to log entries
* Ensure the archiver process responds to changes in archive_command
as soon as possible
* Update pl/perl's "ppport.h" for modern Perl versions
* Fix assorted memory leaks in pl/python
* Prevent infinite recursion in psql when expanding a variable that
refers to itself
* Fix psql's \copy to not add spaces around a dot within \copy
(select ...)
* Fix unnecessary "GIN indexes do not support whole-index scans"
errors for unsatisfiable queries using "contrib/intarray" operators
* Ensure that "contrib/pgstattuple" functions respond to cancel
interrupts promptly
* Make server startup deal properly with the case that shmget()
returns EINVAL for an existing shared memory segment
* Avoid possible crashes in syslogger process on Windows
* Deal more robustly with incomplete time zone information in the
Windows registry
* Update the set of known Windows time zone names
* Update time zone data files to tzdata release 2010j for DST law
changes in Argentina, Australian Antarctic, Bangladesh, Mexico,
Morocco, Pakistan, Palestine, Russia, Syria, Tunisia; also
historical corrections for Taiwan.
Also, add PKST (Pakistan Summer Time) to the default set of
timezone abbreviations.
tron [Sat, 22 May 2010 10:38:55 +0000 (10:38 +0000)]
Pullup ticket #3182 - requested by adam
databases/postgresql84-client: security update
databases/postgresql84-plperl: security update
databases/postgresql84-plpython: security update
databases/postgresql84-pltcl: security update
databases/postgresql84-server: security update
databases/postgresql84: security update
Revisions pulled up:
- databases/postgresql84-client/Makefile 1.8
- databases/postgresql84-client/PLIST 1.6
- databases/postgresql84-client/buildlink3.mk 1.3
- databases/postgresql84-plperl/PLIST 1.3
- databases/postgresql84-plpython/PLIST 1.3
- databases/postgresql84-pltcl/PLIST 1.3
- databases/postgresql84-server/PLIST 1.5
- databases/postgresql84/Makefile.common 1.6
- databases/postgresql84/distinfo 1.5
- databases/postgresql84/patches/patch-ad 1.3
---
Module Name: pkgsrc
Committed By: adam
Date: Thu May 20 12:36:39 UTC 2010
Modified Files:
pkgsrc/databases/postgresql84: Makefile.common distinfo
pkgsrc/databases/postgresql84-client: Makefile PLIST
buildlink3.mk
pkgsrc/databases/postgresql84-plperl: PLIST
pkgsrc/databases/postgresql84-plpython: PLIST
pkgsrc/databases/postgresql84-pltcl: PLIST
pkgsrc/databases/postgresql84-server: PLIST
Added Files:
pkgsrc/databases/postgresql84/patches: patch-ad
Log Message:
Changes 8.4.4:
* Enforce restrictions in plperl using an opmask applied to the whole
interpreter, instead of using "Safe.pm"
* Prevent PL/Tcl from executing untrustworthy code from pltcl_modules
* Fix data corruption during WAL replay of ALTER ... SET TABLESPACE
* Fix possible crash if a cache reset message is received during
rebuild of a relcache entry
* Apply per-function GUC settings while running the language
validator for the function
* Do constraint exclusion for inherited "UPDATE" and "DELETE" target
tables when constraint_exclusion = partition
* Do not allow an unprivileged user to reset superuser-only parameter
settings
* Avoid possible crash during backend shutdown if shutdown occurs
when a CONTEXT addition would be made to log entries
* Fix erroneous handling of %r parameter in recovery_end_command
* Ensure the archiver process responds to changes in archive_command
as soon as possible
* Fix pl/pgsql's CASE statement to not fail when the case expression
is a query that returns no rows
* Update pl/perl's "ppport.h" for modern Perl versions
* Fix assorted memory leaks in pl/python
* Handle empty-string connect parameters properly in ecpg
* Prevent infinite recursion in psql when expanding a variable that
refers to itself
* Fix psql's \copy to not add spaces around a dot within \copy
(select ...)
* Avoid formatting failure in psql when running in a locale context
that doesn't match the client_encoding
* Fix unnecessary "GIN indexes do not support whole-index scans"
errors for unsatisfiable queries using "contrib/intarray" operators
* Ensure that "contrib/pgstattuple" functions respond to cancel
interrupts promptly
* Make server startup deal properly with the case that shmget()
returns EINVAL for an existing shared memory segment
* Avoid possible crashes in syslogger process on Windows
* Deal more robustly with incomplete time zone information in the
Windows registry
* Update the set of known Windows time zone names
* Update time zone data files to tzdata release 2010j for DST law
changes in Argentina, Australian Antarctic, Bangladesh, Mexico,
Morocco, Pakistan, Palestine, Russia, Syria, Tunisia; also
historical corrections for Taiwan.
Also, add PKST (Pakistan Summer Time) to the default set of
timezone abbreviations.
tron [Thu, 20 May 2010 22:23:50 +0000 (22:23 +0000)]
Pullup ticket #3127 - requested by tez
security/mit-krb5: security patch
Revisions pulled up:
- security/mit-krb5/Makefile 1.49
- security/mit-krb5/distinfo 1.25
- security/mit-krb5/patches/patch-bx 1.1
---
Module Name: pkgsrc
Committed By: tez
Date: Thu May 20 14:21:23 UTC 2010
Modified Files:
pkgsrc/security/mit-krb5: Makefile distinfo
Added Files:
pkgsrc/security/mit-krb5/patches: patch-bx
Log Message:
fix CVE-2010-1321 (MITKRB5-SA-2010-005) and take maintainership
tron [Thu, 20 May 2010 22:21:29 +0000 (22:21 +0000)]
Pullup tickets #3126 and #3127.
tron [Thu, 20 May 2010 21:58:59 +0000 (21:58 +0000)]
Pullup ticket #3126 - requested by martti
mail/clamav: bug fix update
Revisions pulled up:
- mail/clamav/Makefile 1.103
- mail/clamav/PLIST 1.25
- mail/clamav/distinfo 1.64
- mail/clamav/patches/patch-aa 1.21
- mail/clamav/patches/patch-ac 1.8
- mail/clamav/patches/patch-ad 1.21
- mail/clamav/patches/patch-af 1.12
- mail/clamav/patches/patch-ag 1.5
---
Module Name: pkgsrc
Committed By: martti
Date: Thu May 20 07:47:45 UTC 2010
Modified Files:
pkgsrc/mail/clamav: Makefile PLIST distinfo
pkgsrc/mail/clamav/patches: patch-aa patch-ac patch-ad patch-af
patch-ag
Log Message:
Updated mail/clamav to 0.96.1
* Lots of bug fixes
tron [Tue, 18 May 2010 21:14:17 +0000 (21:14 +0000)]
Pullup ticket #3125.
tron [Tue, 18 May 2010 21:13:46 +0000 (21:13 +0000)]
Pullup ticket #3125 - requested by taca
www/typolight28: bug fix
Revisions pulled up:
- www/typolight28/Makefile 1.8
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 18 12:52:01 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile
Log Message:
Copy some missing configuration files from example directory.
It should make FancyUpload work.
Bump PKGREVISION.
tron [Mon, 17 May 2010 22:49:47 +0000 (22:49 +0000)]
Pullup tickets #3123 and #3124.
tron [Mon, 17 May 2010 22:47:52 +0000 (22:47 +0000)]
Pullup ticket #3124 - requested by tez
graphics/dvipng: security patch
Revisions pulled up:
- graphics/dvipng/Makefile 1.12
- graphics/dvipng/distinfo 1.3
- graphics/dvipng/patches/patch-aa 1.1
- graphics/dvipng/patches/patch-ab 1.1
- graphics/dvipng/patches/patch-ac 1.1
- graphics/dvipng/patches/patch-ad 1.1
---
Module Name: pkgsrc
Committed By: tez
Date: Mon May 17 20:21:39 UTC 2010
Modified Files:
pkgsrc/graphics/dvipng: Makefile distinfo
Added Files:
pkgsrc/graphics/dvipng/patches: patch-aa patch-ab patch-ac patch-ad
Log Message:
CVE-2010-0829 fix from https://bugzilla.redhat.com/show_bug.cgi?id=573999
tron [Mon, 17 May 2010 22:38:02 +0000 (22:38 +0000)]
Pullup ticket #3123 - requested by taca
www/geeklog: security update
Revisioned pulled up:
- www/geeklog/Makefile 1.27
- www/geeklog/distinfo 1.13
---
Module Name: pkgsrc
Committed By: taca
Date: Mon May 17 15:46:38 UTC 2010
Modified Files:
pkgsrc/www/geeklog: Makefile distinfo
Log Message:
Update geeklog package to 1.6.1.1 (1.6.1sr1).
May 9, 2010 (1.6.1sr1)
------------
This release addresses the following security issue:
The autologin (using the long-term session cookie) is vulnerable to dictionary
attacks. This issue was originally reported by Bookoo of the Nine Situations
Group in one of his reports in April 2009 but apparently overlooked by the
Geeklog Team. Thanks to geeklog.net user Jack for pointing this out.
tron [Mon, 17 May 2010 06:44:50 +0000 (06:44 +0000)]
Pullup ticket #3118.
tron [Mon, 17 May 2010 06:35:07 +0000 (06:35 +0000)]
Pullup ticket #3118 - requested by markd
net/kdenetwork4: security patch
Revisions pulled up:
- net/kdenetwork4/Makefile 1.10 via patch
- net/kdenetwork4/distinfo 1.9 via patch
- net/kdenetwork4/patches/patch-ba 1.1 via patch
- net/kdenetwork4/patches/patch-bb 1.1 via patch
---
Subject: CVS commit: pkgsrc/net/kdenetwork4
Date: Monday 17 May 2010, 09:21:39
From: Mark Davies <markd@netbsd.org>
To: pkgsrc-changes@netbsd.org
Module Name: pkgsrc
Committed By: markd
Date: Sun May 16 21:21:39 UTC 2010
Modified Files:
pkgsrc/net/kdenetwork4: Makefile distinfo
Added Files:
pkgsrc/net/kdenetwork4/patches: patch-ba patch-bb patch-bc patch-bd
Log Message:
Fix from KDE security advisory
20100513-1.
tron [Sun, 16 May 2010 23:24:53 +0000 (23:24 +0000)]
Pullup tickets #3116 and #3117.
tron [Sun, 16 May 2010 23:14:25 +0000 (23:14 +0000)]
Pullup ticket #3117 - requested by heinz
misc/esniper: compatibilty update
Revisions pulled up:
- misc/esniper/Makefile 1.19
- misc/esniper/distinfo 1.15
---
Module Name: pkgsrc
Committed By: heinz
Date: Sun May 16 15:05:08 UTC 2010
Modified Files:
pkgsrc/misc/esniper: Makefile distinfo
Log Message:
Updated to version 2.23.0
Pkgsrc changes:
- none
Changes since version 2.22.0:
=============================
2010-05-15
* 2.23.0 released
* Fixed -m option (thanks, deadolus!)
2010-05-14
* Fixed bug 3001249: bid history parsing bug
tron [Sun, 16 May 2010 23:10:15 +0000 (23:10 +0000)]
Pullup ticket #3116 - requested by wiz
sysutils/bacula: portability fix
Revisions pulled up:
- sysutils/bacula/Makefile.common 1.55
---
Module Name: pkgsrc
Committed By: wiz
Date: Sun May 16 13:08:11 UTC 2010
Modified Files:
pkgsrc/sysutils/bacula: Makefile.common
Log Message:
Disable extattr on DragonFly. From Jan Lentfer in PR 43312.
tron [Fri, 14 May 2010 19:48:01 +0000 (19:48 +0000)]
Pullup ticket #3115.
tron [Fri, 14 May 2010 19:47:14 +0000 (19:47 +0000)]
Pullup ticket #3115 - requested by wiz
net/tor: bug fix update
Revisions pulled up:
- net/tor/Makefile 1.73
- net/tor/distinfo 1.42
---
Module Name: pkgsrc
Committed By: wiz
Date: Thu May 13 19:42:09 UTC 2010
Modified Files:
pkgsrc/net/tor: Makefile distinfo
Log Message:
Update to 0.2.1.26, from maintainer Christian Sturm in PR 43302:
Changes in version 0.2.1.26 - 2010-05-02
Tor 0.2.1.26 addresses the recent connection and memory overload
problems we've been seeing on relays, especially relays with their
DirPort open. If your relay has been crashing, or you turned it off
because it used too many resources, give this release a try.
This release also fixes yet another instance of broken OpenSSL libraries
that was causing some relays to drop out of the consensus.
o Major bugfixes:
- Teach relays to defend themselves from connection overload. Relays
now close idle circuits early if it looks like they were intended
for directory fetches. Relays are also more aggressive about closing
TLS connections that have no circuits on them. Such circuits are
unlikely to be re-used, and tens of thousands of them were piling
up at the fast relays, causing the relays to run out of sockets
and memory. Bugfix on 0.2.0.22-rc (where clients started tunneling
their directory fetches over TLS).
- Fix SSL renegotiation behavior on OpenSSL versions like on Centos
that claim to be earlier than 0.9.8m, but which have in reality
backported huge swaths of 0.9.8m or 0.9.8n renegotiation
behavior. Possible fix for some cases of bug 1346.
- Directory mirrors were fetching relay descriptors only from v2
directory authorities, rather than v3 authorities like they should.
Only 2 v2 authorities remain (compared to 7 v3 authorities), leading
to a serious bottleneck. Bugfix on 0.2.0.9-alpha. Fixes bug 1324.
o Minor bugfixes:
- Finally get rid of the deprecated and now harmful notion of "clique
mode", where directory authorities maintain TLS connections to
every other relay.
o Testsuite fixes:
- In the util/threads test, no longer free the test_mutex before all
worker threads have finished. Bugfix on 0.2.1.6-alpha.
- The master thread could starve the worker threads quite badly on
certain systems, causing them to run only partially in the allowed
window. This resulted in test failures. Now the master thread sleeps
occasionally for a few microseconds while the two worker-threads
compete for the mutex. Bugfix on 0.2.0.1-alpha.
spz [Thu, 13 May 2010 13:38:02 +0000 (13:38 +0000)]
pullup #3114
spz [Thu, 13 May 2010 13:36:27 +0000 (13:36 +0000)]
Pullup ticket 3114 - requested by tron
security update
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile 1.44
- pkgsrc/net/wireshark/distinfo 1.30
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu May 13 07:03:22 UTC 2010
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Log Message:
Update "wireshark" package to version 1.2.8. Changes since 1.2.7:
- The following vulnerabilities have been fixed. See the security
advisory for details and a workaround.
o The DOCSIS dissector could crash. (Bug 4644), (bug 4646) -->
Versions affected: 0.9.6 to 1.0.12, 1.2.0 to 1.2.7
- The following bugs have been fixed:
o HTTP parser limits with Content-Length. (Bug 1958)
o MATE dissector bug with GOGs. (Bug 3010)
o Changing fonts and deleting system time from preferences,
results in wireshark crash. (Bug 3387)
o ERF file starting with record with timestamp=3D0,1 or 2 not
recognized as ERF file. (Bug 4503)
o The SSL dissector can not correctly resemple SSL records when
the record header is spit between packets. (Bug 4535)
o TCP reassembly can call subdissector with incorrect TCP
sequence number. (Bug 4624)
o PTP dissector displays big correction field values wrong. (Bug
4635)
o MSF is at Anthorn, not Rugby. (Bug 4678)
o ProtoField __tostring() description is missing in Wireshark's
Lua API Reference Manual. (Bug 4695)
o EVRC packet bundling not handled correctly. (Bug 4718)
o Completely unresponsive when run very first time by root user.
(Bug 4308)
- Updated Protocol Support: DOCSIS, HTTP, SSL
- Updated Capture File Support: ERF, PacketLogger.
To generate a diff of this commit:
cvs rdiff -u -r1.43 -r1.44 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.29 -r1.30 pkgsrc/net/wireshark/distinfo
tron [Wed, 12 May 2010 21:21:02 +0000 (21:21 +0000)]
Pullup ticket #3113.
tron [Wed, 12 May 2010 21:20:07 +0000 (21:20 +0000)]
Pullup ticket #3113 - requested by spz:
databases/postgresql82: security update
databases/postgresql82-adminpack: security update
databases/postgresql82-client: security update
databases/postgresql82-plperl: security update
databases/postgresql82-plpython: security update
databases/postgresql82-pltcl: security update
databases/postgresql82-server: security update
databases/postgresql82-tsearch2: security update
databases/postgresql83: security update
databases/postgresql83-adminpack: security update
databases/postgresql83-client: security update
databases/postgresql83-plperl: security update
databases/postgresql83-plpython: security update
databases/postgresql83-pltcl: security update
databases/postgresql83-server: security update
databases/postgresql84: security update
databases/postgresql84-adminpack: security update
databases/postgresql84-client: security update
databases/postgresql84-plperl: security update
databases/postgresql84-plpython: security update
databases/postgresql84-pltcl: security update
databases/postgresql84-server: security update
databases/postgresql82: security update
databases/postgresql83: security update
databases/postgresql84: security update
Revisions pulled up:
- databases/postgresql82-adminpack/Makefile 1.8
- databases/postgresql82-client/Makefile 1.13
- databases/postgresql82-client/PLIST 1.18
- databases/postgresql82-plperl/Makefile 1.10
- databases/postgresql82-plpython/Makefile 1.10
- databases/postgresql82-pltcl/Makefile 1.7
- databases/postgresql82-server/Makefile 1.11
- databases/postgresql82-server/PLIST 1.12
- databases/postgresql82-tsearch2/Makefile 1.8
- databases/postgresql82/Makefile.common 1.19-1.20
- databases/postgresql82/distinfo 1.19
- databases/postgresql82/patches/patch-ad delete
- databases/postgresql82/patches/patch-ae delete
- databases/postgresql83-adminpack/Makefile 1.4
- databases/postgresql83-client/Makefile 1.13-1.14
- databases/postgresql83-client/PLIST 1.12
- databases/postgresql83-plperl/Makefile 1.6
- databases/postgresql83-plpython/Makefile 1.7
- databases/postgresql83-pltcl/Makefile 1.4
- databases/postgresql83-server/Makefile 1.11
- databases/postgresql83-server/PLIST 1.10
- databases/postgresql83/Makefile.common 1.10-1.11
- databases/postgresql83/distinfo 1.11
- databases/postgresql83/patches/patch-ad delete
- databases/postgresql83/patches/patch-ae delete
- databases/postgresql84-adminpack/Makefile 1.3
- databases/postgresql84-client/Makefile 1.6-1.7
- databases/postgresql84-client/PLIST 1.5
- databases/postgresql84-plperl/Makefile 1.3
- databases/postgresql84-plpython/Makefile 1.4
- databases/postgresql84-pltcl/Makefile 1.3
- databases/postgresql84-server/Makefile 1.7
- databases/postgresql84-server/PLIST 1.4
- databases/postgresql84/Makefile.common 1.4-1.5
- databases/postgresql84/distinfo 1.4
- databases/postgresql84/patches/patch-ad delete
- databases/postgresql84/patches/patch-ae delete
- databases/postgresql84/patches/patch-ai 1.2
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 12 09:58:39 UTC 2010
Modified Files:
pkgsrc/databases/postgresql84: Makefile.common distinfo
pkgsrc/databases/postgresql84-adminpack: Makefile
pkgsrc/databases/postgresql84-client: Makefile
pkgsrc/databases/postgresql84-plperl: Makefile
pkgsrc/databases/postgresql84-plpython: Makefile
pkgsrc/databases/postgresql84-pltcl: Makefile
pkgsrc/databases/postgresql84-server: Makefile PLIST
pkgsrc/databases/postgresql84/patches: patch-ai
Removed Files:
pkgsrc/databases/postgresql84/patches: patch-ad patch-ae
Log Message:
Changes 8.4.3:
* Add new configuration parameter ssl_renegotiation_limit to control
how often we do session key renegotiation for an SSL connection
* Fix possible deadlock during backend startup
* Fix possible crashes due to not handling errors during relcache
reload cleanly
* Fix possible crash due to use of dangling pointer to a cached plan
* Fix possible crash due to overenthusiastic invalidation of cached
plan for "ROLLBACK"
* Fix possible crashes when trying to recover from a failure in
subtransaction start
* Fix server memory leak associated with use of savepoints and a
client encoding different from server's encoding
* Fix incorrect WAL data emitted during end-of-recovery cleanup of a
GIST index page split
* Fix bug in WAL redo cleanup method for GIN indexes
* Fix incorrect comparison of scan key in GIN index search
* Make substring() for bit types treat any negative length as meaning
"all the rest of the string"
The previous coding treated only -1 that way, and would produce an
invalid result value for other negative values, possibly leading to
a crash (CVE-2010-0442).
* Fix integer-to-bit-string conversions to handle the first
fractional byte correctly when the output bit width is wider than
the given integer by something other than a multiple of 8 bits
* Fix some cases of pathologically slow regular expression matching
* Fix bug occurring when trying to inline a SQL function that returns
a set of a composite type that contains dropped columns
* Fix bug with trying to update a field of an element of a
composite-type array column
* Avoid failure when "EXPLAIN" has to print a FieldStore or
assignment ArrayRef expression
These cases can arise now that "EXPLAIN VERBOSE" tries to print
plan node target lists.
* Avoid an unnecessary coercion failure in some cases where an
undecorated literal string appears in a subquery within
"UNION"/"INTERSECT"/"EXCEPT"
This fixes a regression for some cases that worked before 8.4.
* Avoid undesirable rowtype compatibility check failures in some
cases where a whole-row Var has a rowtype that contains dropped
columns
* Fix the STOP WAL LOCATION entry in backup history files to report
the next WAL segment's name when the end location is exactly at a
segment boundary
* Always pass the catalog ID to an option validator function
specified in "CREATE FOREIGN DATA WRAPPER"
* Fix some more cases of temporary-file leakage
* Add support for doing FULL JOIN ON FALSE
* Improve constraint exclusion processing of boolean-variable cases,
in particular make it possible to exclude a partition that has a
"bool_column = false" constraint
* Prevent treating an INOUT cast as representing binary compatibility
* Include column name in the message when warning about inability to
grant or revoke column-level privileges
This is more useful than before and helps to prevent confusion when
a "REVOKE" generates multiple messages, which formerly appeared to
be duplicates.
* When reading "pg_hba.conf" and related files, do not treat
@something as a file inclusion request if the @ appears inside
quote marks; also, never treat @ by itself as a file inclusion
request
* Prevent infinite loop on some platforms if a directory is named as
an inclusion target in "pg_hba.conf" and related files
* Fix possible infinite loop if SSL_read or SSL_write fails without
setting errno
This is reportedly possible with some Windows versions of openssl.
* Disallow GSSAPI authentication on local connections, since it
requires a hostname to function correctly
* Protect ecpg against applications freeing strings unexpectedly
* Make ecpg report the proper SQLSTATE if the connection disappears
* Fix translation of cell contents in psql \d output
* Fix psql's numericlocale option to not format strings it shouldn't
in latex and troff output formats
* Fix a small per-query memory leak in psql
* Make psql return the correct exit status (3) when ON_ERROR_STOP and
--single-transaction are both specified and an error occurs during
the implied "COMMIT"
* Fix pg_dump's output of permissions for foreign servers
* Fix possible crash in parallel pg_restore due to out-of-range
dependency IDs
* Fix plpgsql failure in one case where a composite column is set to NULL
* Fix possible failure when calling PL/Perl functions from PL/PerlU
or vice versa
* Add volatile markings in PL/Python to avoid possible
compiler-specific misbehavior
* Ensure PL/Tcl initializes the Tcl interpreter fully
The only known symptom of this oversight is that the Tcl clock
command misbehaves if using Tcl 8.5 or later.
* Prevent ExecutorEnd from being run on portals created within a
failed transaction or subtransaction
This is known to cause issues when using "contrib/auto_explain".
* Prevent crash in "contrib/dblink" when too many key columns are
specified to a dblink_build_sql_* function
* Allow zero-dimensional arrays in "contrib/ltree" operations
* Fix assorted crashes in "contrib/xml2" caused by sloppy memory
management
* Make building of "contrib/xml2" more robust on Windows
* Fix race condition in Windows signal handling
One known symptom of this bug is that rows in pg_listener could be
dropped under heavy load.
* Make the configure script report failure if the C compiler does not
provide a working 64-bit integer datatype
This case has been broken for some time, and no longer seems worth
supporting, so just reject it at configure time instead.
* Update time zone data files to tzdata release 2010e for DST law
changes in Bangladesh, Chile, Fiji, Mexico, Paraguay, Samoa.
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Apr 15 03:25:25 UTC 2010
Modified Files:
pkgsrc/databases/postgresql84-client: Makefile PLIST
Log Message:
Add missing some documentation files to PLIST.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 12 09:53:50 UTC 2010
Modified Files:
pkgsrc/databases/postgresql83: Makefile.common distinfo
pkgsrc/databases/postgresql83-adminpack: Makefile
pkgsrc/databases/postgresql83-client: Makefile
pkgsrc/databases/postgresql83-plperl: Makefile
pkgsrc/databases/postgresql83-plpython: Makefile
pkgsrc/databases/postgresql83-pltcl: Makefile
pkgsrc/databases/postgresql83-server: Makefile PLIST
Removed Files:
pkgsrc/databases/postgresql83/patches: patch-ad patch-ae
Log Message:
Changes 8.3.10:
* Add new configuration parameter ssl_renegotiation_limit to control
how often we do session key renegotiation for an SSL connection
* Fix possible deadlock during backend startup
* Fix possible crashes due to not handling errors during relcache
reload cleanly
* Fix possible crash due to use of dangling pointer to a cached plan
* Fix possible crashes when trying to recover from a failure in
subtransaction start
* Fix server memory leak associated with use of savepoints and a
client encoding different from server's encoding
* Fix incorrect WAL data emitted during end-of-recovery cleanup of a
GIST index page split
* Make substring() for bit types treat any negative length as meaning
"all the rest of the string"
The previous coding treated only -1 that way, and would produce an
invalid result value for other negative values, possibly leading to
a crash (CVE-2010-0442).
* Fix integer-to-bit-string conversions to handle the first
fractional byte correctly when the output bit width is wider than
the given integer by something other than a multiple of 8 bits
* Fix some cases of pathologically slow regular expression matching
* Fix assorted crashes in xml processing caused by sloppy memory
management
* Fix bug with trying to update a field of an element of a
composite-type array column
* Fix the STOP WAL LOCATION entry in backup history files to report
the next WAL segment's name when the end location is exactly at a
segment boundary
* Fix some more cases of temporary-file leakage
This corrects a problem introduced in the previous minor release.
One case that failed is when a plpgsql function returning set is
called within another function's exception handler.
* Improve constraint exclusion processing of boolean-variable cases,
in particular make it possible to exclude a partition that has a
"bool_column = false" constraint
* When reading "pg_hba.conf" and related files, do not treat
@something as a file inclusion request if the @ appears inside
quote marks; also, never treat @ by itself as a file inclusion
request
* Prevent infinite loop on some platforms if a directory is named as
an inclusion target in "pg_hba.conf" and related files
* Fix possible infinite loop if SSL_read or SSL_write fails without
setting errno
This is reportedly possible with some Windows versions of openssl.
* Disallow GSSAPI authentication on local connections, since it
requires a hostname to function correctly
* Make ecpg report the proper SQLSTATE if the connection disappears
* Fix psql's numericlocale option to not format strings it shouldn't
in latex and troff output formats
* Make psql return the correct exit status (3) when ON_ERROR_STOP and
--single-transaction are both specified and an error occurs during
the implied "COMMIT"
* Fix plpgsql failure in one case where a composite column is set to NULL
* Fix possible failure when calling PL/Perl functions from PL/PerlU
or vice versa
* Add volatile markings in PL/Python to avoid possible
compiler-specific misbehavior
* Ensure PL/Tcl initializes the Tcl interpreter fully
The only known symptom of this oversight is that the Tcl clock
command misbehaves if using Tcl 8.5 or later.
* Prevent crash in "contrib/dblink" when too many key columns are
specified to a dblink_build_sql_* function
* Allow zero-dimensional arrays in "contrib/ltree" operations
* Fix assorted crashes in "contrib/xml2" caused by sloppy memory
management
* Make building of "contrib/xml2" more robust on Windows
* Fix race condition in Windows signal handling
One known symptom of this bug is that rows in pg_listener could be
dropped under heavy load.
* Update time zone data files to tzdata release 2010e for DST law
changes in Bangladesh, Chile, Fiji, Mexico, Paraguay, Samoa.
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Apr 15 03:25:05 UTC 2010
Modified Files:
pkgsrc/databases/postgresql83-client: Makefile PLIST
Log Message:
Add missing some documentation files to PLIST.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Apr 12 09:48:49 UTC 2010
Modified Files:
pkgsrc/databases/postgresql82: Makefile.common distinfo
pkgsrc/databases/postgresql82-adminpack: Makefile
pkgsrc/databases/postgresql82-client: Makefile PLIST
pkgsrc/databases/postgresql82-plperl: Makefile
pkgsrc/databases/postgresql82-plpython: Makefile
pkgsrc/databases/postgresql82-pltcl: Makefile
pkgsrc/databases/postgresql82-server: Makefile PLIST
pkgsrc/databases/postgresql82-tsearch2: Makefile
Removed Files:
pkgsrc/databases/postgresql82/patches: patch-ad patch-ae
Log Message:
Changes 8.2.16:
* Add new configuration parameter ssl_renegotiation_limit to control
how often we do session key renegotiation for an SSL connection
* Fix possible deadlock during backend startup
* Fix possible crashes due to not handling errors during relcache
reload cleanly
* Fix possible crashes when trying to recover from a failure in
subtransaction start
* Fix server memory leak associated with use of savepoints and a
client encoding different from server's encoding
* Fix incorrect WAL data emitted during end-of-recovery cleanup of a
GIST index page split
* Make substring() for bit types treat any negative length as meaning
"all the rest of the string"
The previous coding treated only -1 that way, and would produce an
invalid result value for other negative values, possibly leading to
a crash (CVE-2010-0442).
* Fix integer-to-bit-string conversions to handle the first
fractional byte correctly when the output bit width is wider than
the given integer by something other than a multiple of 8 bits
* Fix some cases of pathologically slow regular expression matching
* Fix the STOP WAL LOCATION entry in backup history files to report
the next WAL segment's name when the end location is exactly at a
segment boundary
* Fix some more cases of temporary-file leakage
* Improve constraint exclusion processing of boolean-variable cases,
in particular make it possible to exclude a partition that has a
"bool_column = false" constraint
* When reading "pg_hba.conf" and related files, do not treat
@something as a file inclusion request if the @ appears inside
quote marks; also, never treat @ by itself as a file inclusion
request
* Prevent infinite loop on some platforms if a directory is named as
an inclusion target in "pg_hba.conf" and related files
* Fix possible infinite loop if SSL_read or SSL_write fails without
setting errno
This is reportedly possible with some Windows versions of openssl.
* Fix psql's numericlocale option to not format strings it shouldn't
in latex and troff output formats
* Make psql return the correct exit status (3) when ON_ERROR_STOP and
--single-transaction are both specified and an error occurs during
the implied "COMMIT"
* Fix plpgsql failure in one case where a composite column is set to NULL
* Fix possible failure when calling PL/Perl functions from PL/PerlU
or vice versa
* Add volatile markings in PL/Python to avoid possible
compiler-specific misbehavior
* Ensure PL/Tcl initializes the Tcl interpreter fully
The only known symptom of this oversight is that the Tcl clock
command misbehaves if using Tcl 8.5 or later.
* Prevent crash in "contrib/dblink" when too many key columns are
specified to a dblink_build_sql_* function
* Fix assorted crashes in "contrib/xml2" caused by sloppy memory
management
* Make building of "contrib/xml2" more robust on Windows
* Fix race condition in Windows signal handling
One known symptom of this bug is that rows in pg_listener could be
dropped under heavy load.
* Update time zone data files to tzdata release 2010e for DST law
changes in Bangladesh, Chile, Fiji, Mexico, Paraguay, Samoa.
---
Module Name: pkgsrc
Committed By: adam
Date: Fri Apr 23 16:03:24 UTC 2010
Modified Files:
pkgsrc/databases/postgresql82: Makefile.common
pkgsrc/databases/postgresql83: Makefile.common
pkgsrc/databases/postgresql84: Makefile.common
Log Message:
Fixed meta package building
tron [Tue, 11 May 2010 21:18:48 +0000 (21:18 +0000)]
Pullup ticket #3111.
tron [Tue, 11 May 2010 21:17:59 +0000 (21:17 +0000)]
Pullup ticket #3111 - requested by taca
www/typolight27-example: build fix
Revisions pulled up:
- www/typolight27-example/Makefile 1.4
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 11 13:28:46 UTC 2010
Modified Files:
pkgsrc/www/typolight27-example: Makefile
Log Message:
Add DIST_SUBDIR to match typolight27's update.
spz [Sun, 9 May 2010 18:11:53 +0000 (18:11 +0000)]
pullup #3108
spz [Sun, 9 May 2010 18:10:13 +0000 (18:10 +0000)]
Pullup ticket 3108 - requested by tez and tron
security update
Revisions pulled up:
- pkgsrc/mail/fetchmail/Makefile 1.173
- pkgsrc/mail/fetchmail/distinfo 1.43
- pkgsrc/mail/fetchmailconf/Makefile 1.79
Files added:
pkgsrc/mail/fetchmail/MESSAGE
pkgsrc/mail/fetchmail/patches/patch-aa
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tez
Date: Sat May 8 15:34:59 UTC 2010
Modified Files:
pkgsrc/mail/fetchmail: Makefile distinfo
Added Files:
pkgsrc/mail/fetchmail: MESSAGE
Log Message:
Update to 6.3.17 per PR#43269
fetchmail-6.3.17 (released 2010-05-06, 25767 LoC):
# SECURITY FIX
* CVE-2010-1167: Fetchmail before release 6.3.17 did not properly sanitize
external input (mail headers and UID). When a multi-character locale (such as
# FEATURES
* Fetchmail now supports a --sslcertfile <file> option to specify a "CA bundle"
file (a file that contains trusted CA certificates). Since these bundled CA
files do not require c_rehash to be run, they are easier to use and immune to
OpenSSL library updates that affect the hash function.
* Fetchmail now supports a FETCHMAIL_INCLUDE_DEFAULT_X509_CA_CERTS
environment variable to force loading the default SSL CA certificate
locations even if --sslcertfile or --sslcertpath is used.
If neither option is in effect, fetchmail loads the default locations.
# REGRESSION FIX
* Fix string handling in rcfile scanner, which caused fetchmail to misparse a
run control file in certain circumstances. Fixes BerliOS bug #14257.
Patch by Michael Banack. This fixes a regression introduced before 6.3.0.
# BUG FIXES
* Plug memory leak when using a "defaults" entry in the run control file.
* Do not print SSL certificate mismatches unless verbose or --sslcertck is
enabled.
* Do not lose "set invisible" in fetchmailconf. (Michael Barnack)
# CHANGES
* Usability: SSL certificate chains are fully printed in -v -v mode, and there
are now helpful pointers to --sslcertpath and c_rehash for "unable to get
local issuer certificate" and self-signed certificates -- these usually hint
to missing root signing CAs in the certs directory.
* Several fixes for compiler (GCC, Intel C++, CLang) and autotools warnings
* Memory allocation failures will now cause abnormal program abort (SIGABRT),
no longer an exit with unspecified code.
# DOCUMENTATION
* Fix table of global option to read "set softbounce" where there used to be a
2nd copy of "set spambounce". Patch by Michael Banack, BerliOS Bug #17067.
* In the --sslcertpath description, mention that OpenSSL upgrade (and a 0.9.X
to 1.0.0 upgrade in particular) may require running c_rehash.
# TRANSLATION UPDATES
[zh_CN] Chinese/simplified (Ji Zheng-Yu)
[cs] Czech (Petr Pisar)
[nl] Dutch (Erwin Poeze)
[fr] French (Fr\xc3<A9>d\xc3<A9>ric Marchal)
[de] German
[id] Indonesian (Andhika Padmawan)
[it] Italian (Vincenzo Campanella)
[ja] Japanese (Takeshi Hamasaki)
[pl] Polish (Jakub Bogusz)
[sk] Slovak (Marcel Telka)
[vi] Vietnamese (Clytie Siddall)
# KNOWN BUGS AND WORKAROUNDS:
(this section floats upwards through the NEWS file so it stays with the
current release information - however, it was stuck with 6.3.8 for a while)
* fetchmail does not handle messages without Message-ID header well
(See sourceforge.net bug #780933)
* BSMTP is mostly untested and errors can cause corrupt output.
* Sun Workshop 6 (SPARC) is known to miscompile the configuration file lexer in
64-bit mode. Either compile 32-bit code or use GCC to compile 64-bit
fetchmail. Note that fetchmail doesn't take advantage of 64-bit code,
so compiling 32-bit SPARC code should not cause any difficulties.
* fetchmail does not track pending deletes over crashes
* the command line interface is sometimes a bit stubborn, for instance,
fetchmail -s doesn't work with a daemon running
fetchmail-6.3.16 (released 2010-04-06, 25574 LoC):
# BUG FIX
* Fix --interface option, broken in 6.3.15. Reported by Vladmimir Stavrinov.
Fixes Debian Bug #576717.
# CHANGE
* Call OpenSSL_add_all_algorithms(). This is needed to support non-mandatory
and non-standard algorithms in certificates.
Sjoerd Simons, to fix Debian Bug #576430.
OpenSSL 0.9.8* does not load - for instance - the SHA256 digest by default.
Reported as OpenSSL RT#2224.
fetchmail-6.3.15 (released 2010-03-28, 25572 LoC):
# FEATURE
* Fetchmail now supports a bad-header command line or rcfile option that takes
exactly one argument, accept or reject (default). This specifies how messages
with bad headers retrieved from the current server are to be treated.
# BUG FIXES
* In the rcfile, recognize "local" as abbreviation for "localdomains", as
documented. The short form has not ever worked since this feature was added in
January 1997. Reported by Fr\xc3<A9>d\xc3<A9>ric Marchal.
* Do not close stdout when using mda and "bsmtp -" at the same time.
* Log operating system errors when BSMTP writes fail.
* Fix verbose mode progress formatting regression from 6.3.10; SMTP trace lines
were no longer on a line of their own. Reported by Melchior Franz.
* Check seteuid() return value and abort running MDA if switch fails.
* Set global flags in a consistent manner. Make --nosoftbounce and
--nobounce work from command line (these used to work in rcfiles).
Reported and fix confirmed working by N.J. Mann. (Sunil Shetye)
* Properly import h_errno declarations, even on systems where h_errno isn't a
macro. (Adds ./configure check, fixes Cygwin dllimport warnings.)
# CHANGES
* The repository has been converted and moved from the Subversion (SVN) format
kindly hosted by Graham Wilson over the past years to Git format hosted on
Gitorious.org. My deepest thanks to Graham Wilson for this service that
kept us going when BerliOS's Subversion service was faulty in its early days.
* This opportunity was used to convert BRANCH_6-2 and BRANCH_1-9-9 to
GnuPG-signed tags, as a sign that these are now closed.
* The outdated SVN trunk is now called "oldtrunk" in Git just to save the work
for future reference. All development in the past few years was on BRANCH_6-3.
* master was branched from BRANCH_6-3. BRANCH_6-3 is now obsolete (and in fact
was also converted to a tag to record where the conversion from SVN to Git
took place).
* "make check" now skips HTML validation if xmllint or XHTML DTD are missing.
# DOCUMENTATION
* Web site and documentation were adjusted to reflect the SVN->Git move.
* The fetchmail manual page is now much clearer on the user id switching
(seteuid) when using --mda while running as the super user.
# TRANSLATION UPDATES, by language name
* [zh_CN] Chinese (Simplified), by Ji Zheng-Yu
* [cs] Czech, by Petr Pisar
* [nl] Dutch, by Erwin Poeze
* [fr] French, by Fr\xc3<A9>d\xc3<A9>ric Marchal
* [de] German
* [id] Indonesian, by Andhika Padmawan
* [it] Italian, by Vincenzo Campanella
* [ja] Japanese, by Takeshi Hamasaki
* [pl] Polish, by Jakub Bogusz
* [vi] Vietnamese, by Clytie Siddall
To generate a diff of this commit:
cvs rdiff -u -r0 -r1.1 pkgsrc/mail/fetchmail/MESSAGE
cvs rdiff -u -r1.171 -r1.172 pkgsrc/mail/fetchmail/Makefile
cvs rdiff -u -r1.41 -r1.42 pkgsrc/mail/fetchmail/distinfo
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun May 9 11:45:28 UTC 2010
Modified Files:
pkgsrc/mail/fetchmail: Makefile distinfo
Added Files:
pkgsrc/mail/fetchmail/patches: patch-aa
Log Message:
Add patch by Matthias Andree to avoid warnings about insecure connections
if SSL fingerprints are used.
To generate a diff of this commit:
cvs rdiff -u -r1.172 -r1.173 pkgsrc/mail/fetchmail/Makefile
cvs rdiff -u -r1.42 -r1.43 pkgsrc/mail/fetchmail/distinfo
cvs rdiff -u -r0 -r1.8 pkgsrc/mail/fetchmail/patches/patch-aa
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun May 9 11:54:21 UTC 2010
Modified Files:
pkgsrc/mail/fetchmailconf: Makefile
Log Message:
Unbreak "fetchmailconf" package by updating it to version 6.3.17 as well.
Changes since version 6.3.14:
# BUG FIXES
* Do not lose "set invisible" in fetchmailconf. (Michael Barnack)
To generate a diff of this commit:
cvs rdiff -u -r1.78 -r1.79 pkgsrc/mail/fetchmailconf/Makefile
tron [Sun, 9 May 2010 14:20:24 +0000 (14:20 +0000)]
Pullup ticket #3110.
tron [Sun, 9 May 2010 13:00:26 +0000 (13:00 +0000)]
Pullup ticket #3110 - requested wiz
databases/mysql51-server: portability fix
Revisions pulled up:
- databases/mysql51-server/distinfo 1.5
- databases/mysql51-server/patches/patch-al delete
---
Module Name: pkgsrc
Committed By: wiz
Date: Sat May 8 20:48:37 UTC 2010
Modified Files:
pkgsrc/databases/mysql51-server: distinfo
Removed Files:
pkgsrc/databases/mysql51-server/patches: patch-al
Log Message:
Fix build on DragonFly by removing DragonFly-specific patch.
From Alexander Polakov in PR 43280.
tron [Sat, 8 May 2010 22:23:08 +0000 (22:23 +0000)]
Pullup ticket #3109.
tron [Sat, 8 May 2010 22:21:46 +0000 (22:21 +0000)]
Pullup ticket #3109 - requested by tez
devel/pcre: security update
Revisions pulled up:
- devel/pcre/Makefile 1.56
- devel/pcre/distinfo 1.38
---
Module Name: pkgsrc
Committed By: drochner
Date: Tue Apr 13 16:49:43 UTC 2010
Modified Files:
pkgsrc/devel/pcre: Makefile distinfo
Log Message:
update to 8.02
changes:
-Unicode data tables have been updated to Unicode 5.2.0
-bugfixes
tron [Thu, 6 May 2010 12:15:55 +0000 (12:15 +0000)]
Pullup tickets #3103 and #3106.
tron [Thu, 6 May 2010 12:14:39 +0000 (12:14 +0000)]
Pullup ticket #3106 - requested by tez
lang/gcc34: security patch
Revisions pulled up:
- lang/gcc34/Makefile 1.45
- lang/gcc34/distinfo 1.20
---
Module Name: pkgsrc
Committed By: tez
Date: Tue May 4 20:46:31 UTC 2010
Modified Files:
pkgsrc/lang/gcc34: Makefile distinfo
Added Files:
pkgsrc/lang/gcc34/patches: patch-cd
Log Message:
Add patch to embedded libltdl for CVE-2009-3736 from:
http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html
tron [Thu, 6 May 2010 09:53:32 +0000 (09:53 +0000)]
Pullup ticket #3103 - requested by markd
x11/kdebase-workspace4: security patch
Revisions pulled up:
- x11/kdebase-workspace4/Makefile 1.13 via patch
- x11/kdebase-workspace4/distinfo 1.7 via patch
---
Module Name: pkgsrc
Committed By: markd
Date: Wed May 5 11:52:48 UTC 2010
Modified Files:
pkgsrc/x11/kdebase-workspace4: Makefile distinfo
Log Message:
Fix for CVE-2010-0436. Bump PKGREVISION.
tron [Tue, 4 May 2010 22:56:05 +0000 (22:56 +0000)]
Pullup tickets #3101 and #3102.
tron [Tue, 4 May 2010 22:54:58 +0000 (22:54 +0000)]
Pullup ticket #3102 - requested by gdt
chat/jabberd: portability fix
Revisions pulled up:
- chat/jabberd/Makefile 1.33
- chat/jabberd/distinfo 1.8
- chat/jabberd/patches/patch-ad 1.4
---
Module Name: pkgsrc
Committed By: gdt
Date: Tue May 4 18:33:35 UTC 2010
Modified Files:
pkgsrc/chat/jabberd: Makefile distinfo
pkgsrc/chat/jabberd/patches: patch-ad
Log Message:
Call SSL_library_init() before any other operations. Fixes "no
ciphers" problem with newer openssl. From
http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/2005-October/000219.html
tron [Tue, 4 May 2010 22:51:43 +0000 (22:51 +0000)]
Pullup ticket #3101 - requested by taca
typolight27: build fix
Revisions pulled up:
- www/typolight27/Makefile 1.17
- www/typolight27/distinfo 1.11
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 4 13:18:19 UTC 2010
Modified Files:
pkgsrc/www/typolight27: Makefile distinfo
Log Message:
Since DISTFILES has been changed with the same filename, now
specify DIST_SUBDIR. Fix PR pkg/43249 reported by Robert Elz.
The change was installed TYPOlight's version string only but
binary package has changed. So, bump PKGREVISION.
tron [Sun, 2 May 2010 23:23:26 +0000 (23:23 +0000)]
Pullup tickets #3097 and #3098.
tron [Sun, 2 May 2010 23:22:11 +0000 (23:22 +0000)]
Pullup ticket #3098 - requested by taca
www/typolight28: security update
Revisions pulled up:
- www/typolight28/Makefile 1.6-1.7
- www/typolight28/Makefile.version 1.6
- www/typolight28/PLIST 1.5
- www/typolight28/distinfo 1.6-1.7
---
ommitted By: taca
Date: Sat Apr 17 18:23:35 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile distinfo
Added Files:
pkgsrc/www/typolight28/patches: patch-aa patch-ab patch-ac
Log Message:
Add patches to disable autoresize plugin of TinyMCE since it cause
unexpected redisplay with large editing area.
This change is derived from TYPOlight's SVN repository.
(http://dev.typolight.org/projects/typolight/repository/revisions/317
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat May 1 23:42:56 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile Makefile.version PLIST distinfo
Removed Files:
pkgsrc/www/typolight28/patches: patch-aa patch-ab patch-ac
Log Message:
Update typolight28 package from 2.8.2 to 2.8.3.
Version 2.8.3 (2010-05-01)
--------------------------
- Removed the TinyMCE autoresize plugin
- Fixed: function idnaEncode() encoded the URL multiple times (#1829)
- Fixed: insert tags were not removed in the page description (#1856)
- Fixed: the download element was not hidden if there was no downloadable file (#1853)
- Fixed: ampersand characters were not converted to entities in meta files (#1823, #1831)
- Fixed: image paths were converted to absolute URLs during PDF export (#1843)
- Fixed: search index URLs were incorrect when alias usage is disabled (#1864)
- Fixed: automatically deactivate invalid e-mail addresses while sending newsletters
- Fixed: skipFirst had no effect on news lists without pagination (#1872)
- Fixed: the ModuleWizard and TableWizard were dependent on tl_content (#1883)
- Fixed: the XML news/calendar feeds were not updated if modified via Ajax (#1833)
- Fixed: CSV import failed if the Safe Mode Hack was enabled (#1908)
- Fixed a remote code execution vulnerability in the PDF export function
- Fixed some minor issues
tron [Sun, 2 May 2010 23:13:25 +0000 (23:13 +0000)]
Pullup ticket #3098 - requested by taca
www/typolight28: security update
Revisions pulled up:
- www/typolight28/Makefile.version 1.5
- www/typolight28/PLIST 1.4
- www/typolight28/distinfo 1.5
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 13 15:43:59 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile.version PLIST distinfo
Log Message:
Update typolight28 package to 2.8.2.
Version 2.8.2 (2010-04-13)
--------------------------
- Updated TCPDF to version 4.9.011 (#1802)
- Updated TinyMCE to version 3.3.2 (#1711)
- Updated MooTools More to version 1.2.4.4 (#1697)
- Added: added the white Mediabox theme (#1637)
- Added: DC_Table "oncut_callback" and "oncopy_callback" (#1745)
- Added: added the active record to "ondelete_callbacks" (#1721)
- Added: added class "trail" to the custom navigation module (#1691)
- Added: added the wildcard ##token## to the newsletter subscription
module (#1729)
- Added: added the Russian typolinks translation to TinyMCE (#1744)
- Added: the image resizer now considers the file modification time (#1743)
- Added: added ­ as basic entity (#1768)
- Added: added the "mode" parameter to the image insert tag (#1712)
- Added: added a loadDataContainer hook (#1687)
- Added: added an addComment hook (#1669)
- Fixed: special HTML characters were encoded twice (#1642)
- Fixed: the newsletter reader failed to replace insert tags (#1645)
- Fixed: the subtree navigation did not work in the popup file manager (#1653)
- Fixed: the BBCode parser did not add missing URI protocols (#1658)
- Fixed: PDF exports contained incorrect download links (#1654)
- Fixed: the option "always show in sitemap" did not work for hidden
pages (#1679)
- Fixed: the downloads element did not hide meta.txt files (#1688)
- Fixed: the downloads element did not pass all meta information (#1689)
- Fixed: reverted the changes to the navigation menu (#1635)
- Fixed: the function addToUrl() generated invalid URLs in the front end (#1707)
- Fixed: the Config library did not handle numeric strings correctly (#286)
- Fixed: the Mediabox plugin did not support .jpeg file extensions (#1728)
- Fixed: the file manager allowed invalid file and folder names (#1699)
- Fixed: the news and event reader did not overwrite the page
description (#1702)
- Fixed: regular users were not able to copy/move multiple content
elements (#1715)
- Fixed: the PDF export function did not handle whitespace characters
correctly (#1716)
- Fixed: news headlines appeared twice in link headlines (#1749)
- Fixed: the search module did not remove insert tags from the
keywords string (#1750)
- Fixed: the file tree widget did not validate the mounted paths (#1746)
- Fixed: the task center e-mails contained invalid links (#1753)
- Fixed: the option "show protected pages" also showed guest pages (#1694)
- Fixed: the list wizard did not render correctly if the first item
was empty (#1740)
- Fixed: System::idnaEncode() encoded more than just the domain name (#1748)
- Fixed: the Captcha field was missing class="mandatory" (#1767)
- Fixed: the newsletter recipient importer did not count correctly (#1732)
- Fixed: regular users could not edit comments on unmounted pages (#1659)
- Fixed: the ZipReader class failed to handle empty files (#1804)
- Fixed: the Newsletter module did not embed images correctly (#1799)
- Fixed: parameters passed to the file insert tag were cached by the
Input object (#1818)
- Fixed a possible request forgery vulnerability in the back end
- Fixed some minor issues
tron [Sun, 2 May 2010 23:09:23 +0000 (23:09 +0000)]
Pullup ticket #3097 - requested by taca
typolight27: security update
Revisions pulled up:
- www/typolight27/Makefile.version 1.9
- www/typolight27/distinfo 1.10
---
Module Name: pkgsrc
Committed By: taca
Date: Sat May 1 23:41:16 UTC 2010
Modified Files:
pkgsrc/www/typolight27: Makefile.version distinfo
Log Message:
Update typolight27 package from 2.7.6 to 2.7.7.
Version 2.7.7 (2010-05-01)
--------------------------
- Consolidated security update
spz [Sun, 25 Apr 2010 18:20:21 +0000 (18:20 +0000)]
pullup #3092
spz [Sun, 25 Apr 2010 18:18:54 +0000 (18:18 +0000)]
Pullup ticket 3092 - requested by dholland
build fix
Revisions pulled up:
- pkgsrc/wm/golem/distinfo 1.7
Files added:
pkgsrc/wm/golem/patches/patch-ah
pkgsrc/wm/golem/patches/patch-ai
pkgsrc/wm/golem/patches/patch-aj
--------------------------------------------------------------------
Module Name: pkgsrc
Committed By: dholland
Date: Sat Apr 24 19:28:31 UTC 2010
Modified Files:
pkgsrc/wm/golem: distinfo
Added Files:
pkgsrc/wm/golem/patches: patch-ah patch-ai
Log Message:
Fix energizer-bunny-makefiles.
To generate a diff of this commit:
cvs rdiff -u -r1.5 -r1.6 pkgsrc/wm/golem/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/wm/golem/patches/patch-ah \
pkgsrc/wm/golem/patches/patch-ai
--------------------------------------------------------------------
Module Name: pkgsrc
Committed By: dholland
Date: Sat Apr 24 19:36:14 UTC 2010
Modified Files:
pkgsrc/wm/golem: distinfo
Added Files:
pkgsrc/wm/golem/patches: patch-aj
Log Message:
Hack around build problem with -current's lex.
To generate a diff of this commit:
cvs rdiff -u -r1.6 -r1.7 pkgsrc/wm/golem/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/wm/golem/patches/patch-aj
tron [Sun, 25 Apr 2010 18:17:42 +0000 (18:17 +0000)]
Pullup tickets #3093 and #3094.
tron [Sun, 25 Apr 2010 18:16:59 +0000 (18:16 +0000)]
Pullup ticket #3094 - requested by taca
mail/postfix: build fix
mail/postfix-current: build fix
Revisions pulled up:
- mail/postfix-current/distinfo 1.58
- mail/postfix-current/patches/patch-ag 1.22
- mail/postfix/distinfo 1.130
- mail/postfix/patches/patch-ag 1.30
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 16 15:32:59 UTC 2010
Modified Files:
pkgsrc/mail/postfix: distinfo
pkgsrc/mail/postfix-current: distinfo
pkgsrc/mail/postfix-current/patches: patch-ag
pkgsrc/mail/postfix/patches: patch-ag
Log Message:
Add patch to fix closefrom() problem on FreeBSD.
tron [Sun, 25 Apr 2010 18:04:31 +0000 (18:04 +0000)]
Pullup ticket #3093 - requested by taca
lang/php53: bug fix
Revisions pulled up:
- lang/php53/Makefile 1.3
- lang/php53/distinfo 1.3
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 16 15:19:23 UTC 2010
Modified Files:
pkgsrc/lang/php53: Makefile distinfo
Log Message:
Explicitly set PKGNAME to handle PKG_OPTIONS properly, noted by
PR pkg/43170 by Nathaniel Madura. And add suhosin-patch to distinfo.
Bump PKG_REVISION.
tron [Fri, 23 Apr 2010 09:09:58 +0000 (09:09 +0000)]
Pullup ticket #3091 - requested by gls
net/bind96: portability fix
Revisions pulled up:
- net/bind96/Makefile 1.15
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Apr 22 20:22:26 UTC 2010
Modified Files:
pkgsrc/net/bind96: Makefile
Log Message:
Disable kqueue on Dragonfly to make bind96 work.
As reported by Justin Sherrill in PR pkg/43195.
Bump PKGREVISION.
tron [Fri, 23 Apr 2010 09:08:35 +0000 (09:08 +0000)]
Pullup tickets #3090 and #3091.
tron [Fri, 23 Apr 2010 08:56:26 +0000 (08:56 +0000)]
Pullup ticket #3090 - requested by gls
net/bind95: portability fix
Revisions pulled up:
- net/bind95/Makefile 1.17
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Apr 22 20:21:09 UTC 2010
Modified Files:
pkgsrc/net/bind95: Makefile
Log Message:
Disable kqueue on Dragonfly to make bind95 work.
As reported by Justin Sherrill in PR pkg/43195.
Bump PKGREVISION.
tron [Thu, 22 Apr 2010 18:00:27 +0000 (18:00 +0000)]
Pullup tickets #3088 and #3089.
tron [Thu, 22 Apr 2010 17:58:58 +0000 (17:58 +0000)]
Pullup ticket #3089 - requested by joerg
pkgtools/pkg_install: bootstrap fix
Revisions pulled up:
- net/libfetch/files/fetch.cat3 1.14
---
Module Name: pkgsrc
Committed By: joerg
Date: Thu Apr 22 14:11:16 UTC 2010
Modified Files:
pkgsrc/net/libfetch/files: fetch.cat3
Log Message:
Regen.
tron [Thu, 22 Apr 2010 17:53:38 +0000 (17:53 +0000)]
Pullup ticket #3088 - requested by tnn
multimedia/mplayer-plugin: build fix
Revisions pulled up;
- multimedia/mplayer-plugin/distinfo 1.2
- multimedia/mplayer-plugin/patches/patch-aa 1.2
- multimedia/mplayer-plugin/patches/patch-ab delete
- multimedia/mplayer-plugin/patches/patch-ad delete
- multimedia/mplayer-plugin/patches/patch-ag 1.2
---
Module Name: pkgsrc
Committed By: tnn
Date: Wed Apr 21 15:58:03 UTC 2010
Modified Files:
pkgsrc/multimedia/mplayer-plugin: distinfo
pkgsrc/multimedia/mplayer-plugin/patches: patch-aa patch-ag
Removed Files:
pkgsrc/multimedia/mplayer-plugin/patches: patch-ab patch-ad
Log Message:
fix xulrunner-1.9.2.x build breakage reported on pkgsrc-users@
spz [Wed, 21 Apr 2010 06:32:13 +0000 (06:32 +0000)]
pullup #3086
spz [Wed, 21 Apr 2010 06:30:05 +0000 (06:30 +0000)]
Pullup ticket 3086 - requested by taca
security update
Revisions pulled up:
- pkgsrc/databases/mysql51-client/Makefile 1.4
- pkgsrc/databases/mysql51-client/Makefile.common 1.5
- pkgsrc/databases/mysql51-client/distinfo 1.2
- pkgsrc/databases/mysql51-server/Makefile 1.4
- pkgsrc/databases/mysql51-server/PLIST 1.3
- pkgsrc/databases/mysql51-server/distinfo 1.3
Files added:
pkgsrc/databases/mysql51-server/patches/patch-av
--------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 20 22:58:10 UTC 2010
Modified Files:
pkgsrc/databases/mysql51-client: Makefile Makefile.common distinfo
pkgsrc/databases/mysql51-server: Makefile PLIST distinfo
Added Files:
pkgsrc/databases/mysql51-server/patches: patch-av
Log Message:
Update mysql51-client/mysql51-server package to 5.1.45.
This is maintainous release and please refer for full changes:
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-45.html
Added a patch for recent security problem to mysql51-server, too.
http://secunia.com/advisories/39454
To generate a diff of this commit:
cvs rdiff -u -r1.3 -r1.4 pkgsrc/databases/mysql51-client/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/databases/mysql51-client/Makefile.common
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/databases/mysql51-client/distinfo
cvs rdiff -u -r1.3 -r1.4 pkgsrc/databases/mysql51-server/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/databases/mysql51-server/PLIST \
pkgsrc/databases
tron [Tue, 20 Apr 2010 21:30:30 +0000 (21:30 +0000)]
Pullup tickets #3083, #3084 and #3085.
tron [Tue, 20 Apr 2010 21:29:41 +0000 (21:29 +0000)]
Pullup ticket #3085 - requested by minskim
print/abcm2ps: security update
Revisions pulled up:
- print/abcm2ps/Makefile 1.6
- print/abcm2ps/PLIST 1.5
- print/abcm2ps/distinfo 1.6
---
Module Name: pkgsrc
Committed By: minskim
Date: Tue Apr 20 17:40:47 UTC 2010
Modified Files:
pkgsrc/print/abcm2ps: Makefile PLIST distinfo
Log Message:
Update abcm2ps to 5.9.13.
This version fixes several security vulnerabilities including Secunia
Advisory SA39345. For other changes, see share/doc/abcm2ps/Changes.
tron [Tue, 20 Apr 2010 21:26:19 +0000 (21:26 +0000)]
Pullup ticket #3084 - requested by minskim
print/dvipsk: security patch
Revisions pulled up:
- print/dvipsk/Makefile 1.5
- print/dvipsk/distinfo 1.4
- print/dvipsk/patches/patch-ab 1.3
---
Module Name: pkgsrc
Committed By: minskim
Date: Tue Apr 20 17:07:28 UTC 2010
Modified Files:
pkgsrc/print/dvipsk: Makefile distinfo
Added Files:
pkgsrc/print/dvipsk/patches: patch-ab
Log Message:
Avoid integer overflow (CVE-2010-0739).
Patch from TeX Live repository (Revision 17559).
projects / pkgsrc.git / log