pkgsrcv2.git
2 years agoPullup ticket #3704. pkgsrc-2011Q4
tron [Tue, 20 Mar 2012 14:27:24 +0000 (14:27 +0000)]
Pullup ticket #3704.

2 years agoPullup ticket #3704 - requested by gdt
tron [Tue, 20 Mar 2012 14:26:26 +0000 (14:26 +0000)]
Pullup ticket #3704 - requested by gdt
net/quagga: security update

Revisions pulled up:
- net/quagga/Makefile                                           1.39
- net/quagga/distinfo                                           1.13

---
   Module Name: pkgsrc
   Committed By: gdt
   Date: Sun Mar 18 01:14:07 UTC 2012

   Modified Files:
    pkgsrc/net/quagga: Makefile distinfo

   Log Message:
   Update to 0.99.20.1, a security bugfix release.

   Multiple security bugfixes, including one for a BGP DOS.

2 years agoPullup tickets #3702 and 3703.
tron [Wed, 14 Mar 2012 17:45:32 +0000 (17:45 +0000)]
Pullup tickets #3702 and 3703.

2 years agoPullup ticket #3703 - requested by taca
tron [Wed, 14 Mar 2012 17:42:33 +0000 (17:42 +0000)]
Pullup ticket #3703 - requested by taca
www/contao29: security patch

Revisions pulled up:
- www/contao29/Makefile                                         1.20
- www/contao29/distinfo                                         1.12
- www/contao29/patches/patch-system_initialize.php              1.1

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Tue Mar 13 03:16:30 UTC 2012

   Modified Files:
    pkgsrc/www/contao29: Makefile distinfo
   Added Files:
    pkgsrc/www/contao29/patches: patch-system_initialize.php

   Log Message:
   Add a little experimental fix to prevent CSRF.

   Bump PKGREVISION.

2 years agoPullup ticket #3702 - requested by taca
tron [Wed, 14 Mar 2012 14:48:33 +0000 (14:48 +0000)]
Pullup ticket #3702 - requested by taca
security/openssl: security update

Revisions pulled up:
- security/openssl/Makefile                                     1.163
- security/openssl/distinfo                                     1.86
- security/openssl/patches/patch-asn_mime.c                     deleted

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Tue Mar 13 03:11:32 UTC 2012

   Modified Files:
    pkgsrc/security/openssl: Makefile distinfo
   Removed Files:
    pkgsrc/security/openssl/patches: patch-asn_mime.c

   Log Message:
   Update openssl pacakge to 0.9.8u.

    Changes between 0.9.8t and 0.9.8u [12 Mar 2012]

     *) Fix MMA (Bleichenbacher's attack on PKCS #1 v1.5 RSA padding) weakness
        in CMS and PKCS7 code. When RSA decryption fails use a random key for
        content decryption and always return the same error. Note: this attack
        needs on average 2^20 messages so it only affects automated senders. The
        old behaviour can be reenabled in the CMS code by setting the
        CMS_DEBUG_DECRYPT flag: this is useful for debugging and testing where
        an MMA defence is not necessary.
        Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering
        this issue. (CVE-2012-0884)
        [Steve Henson]

     *) Fix CVE-2011-4619: make sure we really are receiving a
        client hello before rejecting multiple SGC restarts. Thanks to
        Ivan Nestlerode <inestlerode@us.ibm.com> for discovering this bug.
        [Steve Henson]

2 years agopullup 3700
spz [Tue, 13 Mar 2012 01:37:32 +0000 (01:37 +0000)]
pullup 3700

2 years agoPullup ticket #3700 - requested by wiz
spz [Tue, 13 Mar 2012 01:35:03 +0000 (01:35 +0000)]
Pullup ticket #3700 - requested by wiz
x11/startup-notification: dependency pattern and build fixes

Revisions pulled up:
- x11/startup-notification/buildlink3.mk                        1.13-1.14

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: wiz
   Date: Sat Mar 10 13:31:55 UTC 2012

   Modified Files:
    pkgsrc/x11/startup-notification: buildlink3.mk

   Log Message:
   Fix patterns so that pbulk does not try to build startup-notification
   on systems where startup-notification010 is needed instead.
   Tested by bouyer.

   To generate a diff of this commit:
   cvs rdiff -u -r1.12 -r1.13 pkgsrc/x11/startup-notification/buildlink3.mk

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: wiz
   Date: Sun Mar 11 10:37:51 UTC 2012

   Modified Files:
    pkgsrc/x11/startup-notification: buildlink3.mk

   Log Message:
   Make ugly hack even uglier to fix build with modular.
   Fixes PR 46171 by David Shao.

   To generate a diff of this commit:
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/x11/startup-notification/buildlink3.mk

2 years agopullup 3701
spz [Mon, 12 Mar 2012 18:09:01 +0000 (18:09 +0000)]
pullup 3701

2 years agoPullup ticket #3701 - requested by drochner
spz [Mon, 12 Mar 2012 18:06:50 +0000 (18:06 +0000)]
Pullup ticket #3701 - requested by drochner
textproc/libxml2: security fix and HEAD compatibility

Revisions pulled up:
- textproc/libxml2/Makefile                                     1.113-1.114
- textproc/libxml2/distinfo                                     1.88-1.89
- textproc/libxml2/patches/patch-CVE-2012-0841-aa               1.1
- textproc/libxml2/patches/patch-CVE-2012-0841-ab               1.1
- textproc/libxml2/patches/patch-CVE-2012-0841-ac               1.1
- textproc/libxml2/patches/patch-aa                             1.24
- textproc/libxml2/patches/patch-ab                             1.22
- textproc/libxml2/patches/patch-am                             1.1

-------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Wed Feb 22 11:10:18 UTC 2012

   Modified Files:
           pkgsrc/textproc/libxml2: Makefile distinfo
           pkgsrc/textproc/libxml2/patches: patch-aa patch-ab
   Added Files:
           pkgsrc/textproc/libxml2/patches: patch-am

   Log Message:
   build the library thread-aware, i.e. use <pthread.h> but do not
   link against libpthread. (It doesn't create threads, just uses
   locking.) This seems to be wanted by some applications, eg vlc
   issues a warning on startup (with no visible consequences afaict,
   but anyway).
   I hope this works for other OSes too. If not, we should probably
   add support for these cases to mk/pthread.bl3.mk.
   bump PKGREV

   To generate a diff of this commit:
   cvs rdiff -u -r1.112 -r1.113 pkgsrc/textproc/libxml2/Makefile
   cvs rdiff -u -r1.87 -r1.88 pkgsrc/textproc/libxml2/distinfo
   cvs rdiff -u -r1.23 -r1.24 pkgsrc/textproc/libxml2/patches/patch-aa
   cvs rdiff -u -r1.21 -r1.22 pkgsrc/textproc/libxml2/patches/patch-ab
   cvs rdiff -u -r0 -r1.1 pkgsrc/textproc/libxml2/patches/patch-am

-------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Fri Mar  9 12:12:28 UTC 2012

   Modified Files:
           pkgsrc/textproc/libxml2: Makefile distinfo
   Added Files:
           pkgsrc/textproc/libxml2/patches: patch-CVE-2012-0841-aa
           patch-CVE-2012-0841-ab patch-CVE-2012-0841-ac

   Log Message:
   Add patch from upstream to add hash randomization.
   Without that, (untrusted) input can fill hash buckets uneven, causing
   high CPU load. (CVE-2012-0841)
   To get a patch which is simple enough to get pulled up to the stable
   pkgsrc branch, I've not touched "configure" but just assumed that
   the POSIX functions rand(), srand() and time() are present.
   bump PKGREV

   To generate a diff of this commit:
   cvs rdiff -u -r1.113 -r1.114 pkgsrc/textproc/libxml2/Makefile
   cvs rdiff -u -r1.88 -r1.89 pkgsrc/textproc/libxml2/distinfo
   cvs rdiff -u -r0 -r1.1 pkgsrc/textproc/libxml2/patches/patch-CVE-2012-0841-aa \
       pkgsrc/textproc/libxml2/patches/patch-CVE-2012-0841-ab \
       pkgsrc/textproc/libxml2/patches/patch-CVE-2012-0841-ac

2 years agopullup #3697
spz [Sun, 11 Mar 2012 10:46:25 +0000 (10:46 +0000)]
pullup #3697

2 years agoPullup ticket #3697 - requested by tron
spz [Sun, 11 Mar 2012 10:44:42 +0000 (10:44 +0000)]
Pullup ticket #3697 - requested by tron
mk/plist: fix for handling of man pages

Revisions pulled up:
- mk/plist/plist.mk                                             1.41

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: tron
   Date: Sun Mar  4 08:03:56 UTC 2012

   Modified Files:
    pkgsrc/mk/plist: plist.mk

   Log Message:
   Don't strip out "cat" manual pages if the package gets built via "imake".
   The settings in "MANINSTALL" don't apply here.

   To generate a diff of this commit:
   cvs rdiff -u -r1.40 -r1.41 pkgsrc/mk/plist/plist.mk

2 years agoPullup ticket #3699.
tron [Thu, 8 Mar 2012 06:44:58 +0000 (06:44 +0000)]
Pullup ticket #3699.

2 years agoPullup ticket #3699 - requested by he
tron [Thu, 8 Mar 2012 06:42:11 +0000 (06:42 +0000)]
Pullup ticket #3699 - requested by he
misc/openoffice3: build fix

Revisions pulled up:
- misc/openoffice3/Makefile                                     1.65 via patch
- misc/openoffice3/patches/patch-bo                             deleted

---
   Module Name: pkgsrc
   Committed By: he
   Date: Wed Mar  7 15:07:23 UTC 2012

   Modified Files:
    pkgsrc/misc/openoffice3: Makefile
   Removed Files:
    pkgsrc/misc/openoffice3/patches: patch-bo

   Log Message:
   Remove patch-bo, which is indirectly responsible for placing
   -R/usr/X11R7/lib early into the link line in extensions/source/plugin/unx/,
   creating another instance of "the pixman problem" when trying to build
   this package on NetBSD 5.1.  It appears that some other part of the
   makefile setup for OpenOffice3 is now responsible for inserting the
   appropriate -Wl,-R/usr/X11R7/lib into the linker line.
   The resulting package has been verify to build and start up, and
   fixes PR#46131.  Bump pkgrevision.

2 years agoPullup tickets #3695, #3696 and #3698.
tron [Tue, 6 Mar 2012 10:31:08 +0000 (10:31 +0000)]
Pullup tickets #3695, #3696 and #3698.

2 years agoPullup ticket #3698 - requested by pettai
tron [Tue, 6 Mar 2012 10:29:30 +0000 (10:29 +0000)]
Pullup ticket #3698 - requested by pettai
security/openssl: security patch

Revisions pulled up:
- security/openssl/Makefile                                     1.162
- security/openssl/distinfo                                     1.85
- security/openssl/patches/patch-asn_mime.c                     1.1

---
   Module Name: pkgsrc
   Committed By: pettai
   Date: Mon Mar  5 00:26:55 UTC 2012

   Modified Files:
    pkgsrc/security/openssl: Makefile distinfo
   Added Files:
    pkgsrc/security/openssl/patches: patch-asn_mime.c

   Log Message:
   Add fix for CVE-2006-7250

2 years agoPullup ticket #3696 - requested by obache
tron [Tue, 6 Mar 2012 10:08:22 +0000 (10:08 +0000)]
Pullup ticket #3696 - requested by obache
mail/imp: security update

Revisions pulled up:
- mail/imp/Makefile                                             1.58
- mail/imp/distinfo                                             1.26

---
   Module Name: pkgsrc
   Committed By: obache
   Date: Thu Feb 23 11:04:09 UTC 2012

   Modified Files:
    pkgsrc/mail/imp: Makefile distinfo

   Log Message:
   Update imp to 4.3.11.
   (while here, set LICENSE=gnu-gpl-v2.)

   -------
   v4.3.11
   -------

   [mms] SECURITY: Fix XSS vulnerabilities on the compose page, the contacts popup
          window, and with certain IMAP mailbox names.

   -------
   v4.3.10
   -------

   [jan] Don't submit the action form when reloading messages with iTip
          attachments (Bug #9502).

2 years agoPullup ticket #3695 - requested by obache
tron [Tue, 6 Mar 2012 09:51:46 +0000 (09:51 +0000)]
Pullup ticket #3695 - requested by obache
www/horde: security update

Revisions pulled up:
- www/horde/Makefile                                            1.73
- www/horde/PLIST                                               1.26
- www/horde/distinfo                                            1.30

---
   Module Name: pkgsrc
   Committed By: obache
   Date: Thu Feb 23 10:34:08 UTC 2012

   Modified Files:
    pkgsrc/www/horde: Makefile PLIST distinfo

   Log Message:
   Update horde to 3.3.13.
   (while here, set LICENSE=gnu-lgpl-v2, move empty directory handling to PLIST)
   -------
   v3.3.13
   -------

   [mms] SECURITY: Fix XSS vulnerability in email form field validation.
   [jan] Fix UTF-8 support with Firefox 10 or later.
   [jan] Add support for resetting passwords to LDAP driver.

   -------
   v3.3.12
   -------

   [jan] Convert charset of group names in SQL driver (Bug #9611).
   [jan] Fix deleting of SyncML anchors if PHP short_open_tag is off (Bug #9349).
   [jan] Add an experimental new Share SQL driver with better performance.
   [jan] Fix integer overflow in ASN.1 parser for S/MIME messages.
   [jan] Fix splitread database usage in VFS (Bug #9467).
   [jan] Fix invalidating permission cache in SQL driver (Bug #9392).

2 years agoPullup tickets #3693 and #3694.
tron [Mon, 5 Mar 2012 23:53:47 +0000 (23:53 +0000)]
Pullup tickets #3693 and #3694.

2 years agoPullup ticket #3694 - requested by obache
tron [Mon, 5 Mar 2012 23:52:56 +0000 (23:52 +0000)]
Pullup ticket #3694 - requested by obache
net/p5-Net-Amazon: compatibility update

Revisions pulled up:
- net/p5-Net-Amazon/Makefile                                    1.10
- net/p5-Net-Amazon/distinfo                                    1.6

---
   Module Name: pkgsrc
   Committed By: obache
   Date: Fri Feb 10 10:50:45 UTC 2012

   Modified Files:
    pkgsrc/net/p5-Net-Amazon: Makefile distinfo

   Log Message:
   Update p5-Net-Amazon to 0.61.
   (WSDL older than 2011-08-01 will not be supported after Feb 22, 2012)

   0.61 (10/28/2011)
       (cb) rt 71937; Amazon now requires an Associate Tag, so enforce usage.
       (cb) The ListLookup operation has been removed from the WSDL (from 2010!),
            scrub all of the wishlist operations as a result.
       (cb) Update to the latest WSDL - 2011-08-01.

2 years agoPullup ticket #3693 - requested by taca
tron [Mon, 5 Mar 2012 23:28:41 +0000 (23:28 +0000)]
Pullup ticket #3693 - requested by taca
devel/ruby-activesupport3: security patch
devel/ruby-activesupport31: security patch
www/ruby-actionpack3: security patch
www/ruby-actionpack31: security patch

Revisions pulled up:
- devel/ruby-activesupport3/Makefile                            1.6
- devel/ruby-activesupport3/distinfo                            1.11
- devel/ruby-activesupport3/patches/patch-lib_active__support_core__ext_string_output__safety.rb 1.1
- devel/ruby-activesupport31/Makefile                           1.3
- devel/ruby-activesupport31/distinfo                           1.2
- devel/ruby-activesupport31/patches/patch-lib_active__support_core__ext_string_output__safety.rb 1.1
- www/ruby-actionpack3/Makefile                                 1.11
- www/ruby-actionpack3/distinfo                                 1.11
- www/ruby-actionpack3/patches/patch-lib_action__view_helpers_capture__helper.rb 1.1
- www/ruby-actionpack31/Makefile                                1.2
- www/ruby-actionpack31/distinfo                                1.2
- www/ruby-actionpack31/patches/patch-lib_action__view_helpers_capture__helper.rb 1.1

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Sat Mar  3 04:47:15 UTC 2012

   Modified Files:
    pkgsrc/devel/ruby-activesupport3: Makefile distinfo
    pkgsrc/devel/ruby-activesupport31: Makefile distinfo
    pkgsrc/www/ruby-actionpack3: Makefile distinfo
    pkgsrc/www/ruby-actionpack31: Makefile distinfo
   Added Files:
    pkgsrc/devel/ruby-activesupport3/patches:
        patch-lib_active__support_core__ext_string_output__safety.rb
    pkgsrc/devel/ruby-activesupport31/patches:
        patch-lib_active__support_core__ext_string_output__safety.rb
    pkgsrc/www/ruby-actionpack3/patches:
        patch-lib_action__view_helpers_capture__helper.rb
    pkgsrc/www/ruby-actionpack31/patches:
        patch-lib_action__view_helpers_capture__helper.rb

   Log Message:
   Add fix for CVE-2012-1098 to:

    devel/ruby-activesupport3
    devel/ruby-activesupport31
    www/ruby-actionpack3
    www/ruby-actionpack31

   And bump each PKGREVISION.

2 years agopullup 3691
spz [Wed, 29 Feb 2012 19:34:14 +0000 (19:34 +0000)]
pullup 3691

2 years agoPullup ticket #3691 - requested by tron
spz [Wed, 29 Feb 2012 19:32:08 +0000 (19:32 +0000)]
Pullup ticket #3691 - requested by tron
mail/postfix: build fix

Revisions pulled up:
- mail/postfix/distinfo                                         1.141
- mail/postfix/patches/patch-ag                                 1.33
- mail/postfix/patches/patch-ai                                 1.27

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: taca
   Date: Mon Feb 27 03:01:30 UTC 2012

   Modified Files:
    pkgsrc/mail/postfix: distinfo
    pkgsrc/mail/postfix/patches: patch-ag patch-ai

   Log Message:
   Build fix for NetBSD 6.0_BETA.

   To generate a diff of this commit:
   cvs rdiff -u -r1.140 -r1.141 pkgsrc/mail/postfix/distinfo
   cvs rdiff -u -r1.32 -r1.33 pkgsrc/mail/postfix/patches/patch-ag
   cvs rdiff -u -r1.26 -r1.27 pkgsrc/mail/postfix/patches/patch-ai

2 years agoPullup ticket #3690.
tron [Tue, 28 Feb 2012 23:41:23 +0000 (23:41 +0000)]
Pullup ticket #3690.

2 years agoPullup ticket #3690 - requested by martin
tron [Tue, 28 Feb 2012 23:40:07 +0000 (23:40 +0000)]
Pullup ticket #3690 - requested by martin
lang/perl5: build fix

Revisions pulled up:
- lang/perl5/distinfo                                           1.82
- lang/perl5/patches/patch-hints_netbsd.sh                      1.1

---
   Module Name:   pkgsrc
   Committed By:  obache
   Date:          Fri Feb 17 14:04:01 UTC 2012

   Modified Files:
          pkgsrc/lang/perl5: distinfo
   Added Files:
          pkgsrc/lang/perl5/patches: patch-hints_netbsd.sh

   Log Message:
   Fixes build on NetBSD-6.x, PR 46037.
   patch provided by nonaka@.

2 years agoPullup #3689.
tron [Thu, 23 Feb 2012 15:55:46 +0000 (15:55 +0000)]
Pullup #3689.

2 years agoPullup ticket #3689 - requested by wiz
tron [Thu, 23 Feb 2012 15:53:57 +0000 (15:53 +0000)]
Pullup ticket #3689 - requested by wiz
security/putty: security update
security/putty-devel: removed

Revisions pulled up:
- doc/CHANGES-2012                                              1.565
- security/Makefile                                             1.426
- security/putty-devel/DESCR                                    deleted
- security/putty-devel/Makefile                                 deleted
- security/putty-devel/PLIST                                    deleted
- security/putty-devel/distinfo                                 deleted
- security/putty-devel/patches/patch-aa                         deleted
- security/putty-devel/patches/patch-ak                         deleted
- security/putty-devel/patches/patch-al                         deleted
- security/putty-devel/patches/patch-am                         deleted
- security/putty-devel/patches/patch-an                         deleted
- security/putty-devel/patches/patch-ldisc.c                    deleted
- security/putty/Makefile                                       1.23
- security/putty/distinfo                                       1.10-1.11
- security/putty/options.mk                                     1.1
- security/putty/patches/patch-aa                               deleted
- security/putty/patches/patch-ac                               deleted
- security/putty/patches/patch-ad                               deleted
- security/putty/patches/patch-ae                               deleted
- security/putty/patches/patch-af                               deleted
- security/putty/patches/patch-ag                               deleted
- security/putty/patches/patch-ai                               deleted
- security/putty/patches/patch-aj                               deleted
- security/putty/patches/patch-ak                               deleted
- security/putty/patches/patch-al                               deleted
- security/putty/patches/patch-am                               deleted
- security/putty/patches/patch-an                               deleted
- security/putty/patches/patch-import.c                         1.1
- security/putty/patches/patch-ldisc.c                          1.1
- security/putty/patches/patch-terminal.c                       1.1
- security/putty/patches/patch-unix_Makefile.gtk                1.1
- security/putty/patches/patch-unix_gtkwin.c                    1.1
- security/putty/patches/patch-unix_uxnet.c                     1.1
- security/putty/patches/patch-windows_window.c                 1.1

---
   Module Name: pkgsrc
   Committed By: wiz
   Date: Wed Feb 22 15:27:17 UTC 2012

   Modified Files:
    pkgsrc/security/putty: Makefile distinfo
   Added Files:
    pkgsrc/security/putty: options.mk
    pkgsrc/security/putty/patches: patch-import.c patch-terminal.c
        patch-unix_Makefile.gtk patch-unix_gtkwin.c patch-unix_uxnet.c
        patch-windows_window.c
   Removed Files:
    pkgsrc/security/putty/patches: patch-aa patch-ac patch-ad patch-ae
        patch-af patch-ag patch-ai patch-aj patch-ak patch-al patch-am
        patch-an

   Log Message:
   Update to 0.62, keeping all pkgsrc patches which have not been fed upstream (hi roy! hi rillig!)

   2011-12-10 PuTTY 0.62 released

   PuTTY 0.62 is out, containing only bug fixes from 0.61, in particular a security fix preventing passwords from being accidentally
   retained in memory.

   2011-11-27 PuTTY 0.62 pre-release builds available

   PuTTY 0.61 had a few noticeable bugs in it (but nothing security-related), so we are planning to make a 0.62 release containing just bug
   fixes. The Wishlist page lists the bugs that will be fixed by the 0.62 release. The Download page now contains pre-release snapshots of
   0.62, which contain those bug fixes and should be otherwise stable. (The usual development snapshots, containing other development since
   0.61, are also still available.)

   2011-07-12 PuTTY 0.61 is released

   PuTTY 0.61 is out, after over four years (sorry!), with new features, bug fixes, and compatibility updates for Windows 7 and various SSH
   server software.

---
   Module Name: pkgsrc
   Committed By: wiz
   Date: Wed Feb 22 15:30:21 UTC 2012

   Modified Files:
    pkgsrc/security/putty: distinfo
   Added Files:
    pkgsrc/security/putty/patches: patch-ldisc.c

   Log Message:
   Add a patch from the putty-devel package (not needed on my -current though)

---
   Module Name: pkgsrc
   Committed By: wiz
   Date: Wed Feb 22 15:31:06 UTC 2012

   Modified Files:
    pkgsrc/doc: CHANGES-2012
    pkgsrc/security: Makefile
   Removed Files:
    pkgsrc/security/putty-devel: DESCR Makefile PLIST distinfo
    pkgsrc/security/putty-devel/patches: patch-aa patch-ak patch-al
        patch-am patch-an patch-ldisc.c

   Log Message:
   Remove putty-devel, older than putty now.

2 years agoPullup ticket 3688
sbd [Tue, 21 Feb 2012 02:44:01 +0000 (02:44 +0000)]
Pullup ticket 3688

2 years agoPullup ticket #3688 - requested by tron
sbd [Tue, 21 Feb 2012 02:43:01 +0000 (02:43 +0000)]
Pullup ticket #3688 - requested by tron
meta-pkgs/netbsd-www dependence update

Revisions pulled up:
- meta-pkgs/netbsd-www/Makefile                                 1.26

---
   Module Name: pkgsrc
   Committed By: tron
   Date: Mon Feb 20 19:59:47 UTC 2012

   Modified Files:
    pkgsrc/meta-pkgs/netbsd-www: Makefile

   Log Message:
   Update "netbsd-www" package to version 1.6:
   Add more TeX dependences to really allow building the NetBSD website.

2 years agopullup #3687
spz [Sun, 19 Feb 2012 13:58:45 +0000 (13:58 +0000)]
pullup #3687

2 years agoPullup ticket #3687 - requested by tron
spz [Sun, 19 Feb 2012 13:56:36 +0000 (13:56 +0000)]
Pullup ticket #3687 - requested by tron
graphics/png: security update

Revisions pulled up:
- graphics/png/Makefile                                         1.144-1.146
- graphics/png/distinfo                                         1.91-1.93

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: drochner
   Date: Sat Feb 18 15:16:59 UTC 2012

   Modified Files:
    pkgsrc/graphics/png: Makefile distinfo
   Added Files:
    pkgsrc/graphics/png/patches: patch-CVE-2011-3026

   Log Message:
   fix possible buffer overflow due to integer overflow in malloc()
   size calculation (2011-3026), patch from Chromium via Redhat/Debian
   bump PKGREV

   To generate a diff of this commit:
   cvs rdiff -u -r1.143 -r1.144 pkgsrc/graphics/png/Makefile
   cvs rdiff -u -r1.90 -r1.91 pkgsrc/graphics/png/distinfo
   cvs rdiff -u -r0 -r1.1 pkgsrc/graphics/png/patches/patch-CVE-2011-3026

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: wiz
   Date: Sat Feb 18 15:42:57 UTC 2012

   Modified Files:
    pkgsrc/graphics/png: Makefile distinfo
   Removed Files:
    pkgsrc/graphics/png/patches: patch-CVE-2011-3026

   Log Message:
   Update to 1.5.9rc01, which includes the official patch for CVE-2011-3026.

   Version 1.5.9beta01 [February 3, 2012]
     Rebuilt configure scripts in the tar distributions.

   Version 1.5.9beta02 [February 16, 2012]
     Removed two unused definitions from scripts/pnglibconf.h.prebuilt
     Removed some unused arrays (with #ifdef) from png_read_push_finish_row().
     Removed tests for no-longer-used *_EMPTY_PLTE_SUPPORTED from pngstruct.h

   Version 1.5.9rc01 [February 17, 2012]
     Fixed CVE-2011-3026 buffer overrun bug.  Deal more correctly with the test
       on iCCP chunk length. Also removed spurious casts that may hide problems
       on 16-bit systems.

   To generate a diff of this commit:
   cvs rdiff -u -r1.144 -r1.145 pkgsrc/graphics/png/Makefile
   cvs rdiff -u -r1.91 -r1.92 pkgsrc/graphics/png/distinfo
   cvs rdiff -u -r1.1 -r0 pkgsrc/graphics/png/patches/patch-CVE-2011-3026

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: tron
   Date: Sun Feb 19 09:26:39 UTC 2012

   Modified Files:
    pkgsrc/graphics/png: Makefile distinfo

   Log Message:
   Update "libpng" package to version 1.5.9. There are no change since
   version 1.5.9rc01 except of the minor detail that you can actually
   fetch the distfile.

   To generate a diff of this commit:
   cvs rdiff -u -r1.145 -r1.146 pkgsrc/graphics/png/Makefile
   cvs rdiff -u -r1.92 -r1.93 pkgsrc/graphics/png/distinfo

2 years agoPullup ticket 3686
sbd [Sun, 19 Feb 2012 04:20:38 +0000 (04:20 +0000)]
Pullup ticket 3686

2 years agoPullup ticket #3686 - requested by tron
sbd [Sun, 19 Feb 2012 04:19:43 +0000 (04:19 +0000)]
Pullup ticket #3686 - requested by tron
databases/phpmyadmin security update

Revisions pulled up:
- databases/phpmyadmin/Makefile                                 1.97-1.98
- databases/phpmyadmin/PLIST                                    1.25
- databases/phpmyadmin/distinfo                                 1.58-1.59

---
   Module Name: pkgsrc
   Committed By: tron
   Date: Thu Feb 16 20:19:25 UTC 2012

   Modified Files:
    pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo

   Log Message:
   Update "phpmyadmin" package to version 3.4.10. Changes since 3.4.9:
   - bug #3460090 [interface] TextareaAutoSelect feature broken
   - patch #3375984 [export] PHP Array export might generate invalid php code
   - bug #3049209 [import] Import from ODS ignores cell that is the same as
     cell before
   - bug #3463933 [display] SELECT DISTINCT displays wrong total records found
   - patch #3458944 [operations] copy table data missing
     SET SQL_MODE='NO_AUTO_VALUE_ON_ZERO'
   - bug #3469254 [edit] Setting data to NULL and drop-downs
   - bug #3477063 [edit] Missing set fields and values in generated INSERT query
   - bug #3460867 [libraries] license issue with TCPDF (updated to 5.9.145)

---
   Module Name: pkgsrc
   Committed By: tron
   Date: Sat Feb 18 23:04:45 UTC 2012

   Modified Files:
    pkgsrc/databases/phpmyadmin: Makefile distinfo

   Log Message:
   pdatep "phpmyadmin" package to version 3.4.10.1. Changes since 3.4.10:
   - [security] XSS in replication setup, see PMASA-2012-1

2 years agoPullup tickets #3684 and #3685.
tron [Sat, 18 Feb 2012 23:36:42 +0000 (23:36 +0000)]
Pullup tickets #3684 and #3685.

2 years agoPullup ticket #3685 - requested by drochner
tron [Sat, 18 Feb 2012 23:35:28 +0000 (23:35 +0000)]
Pullup ticket #3685 - requested by drochner
lang/python25: security patch
lang/python26: security patch
lang/python27: security patch
lang/python31: security patch

Revisions pulled up:
- lang/python25/Makefile                                        1.37 via patch
- lang/python25/distinfo                                        1.22
- lang/python25/patches/patch-CVE-2012-0845                     1.1
- lang/python26/Makefile                                        1.45 via patch
- lang/python26/distinfo                                        1.43
- lang/python26/patches/patch-CVE-2012-0845                     1.1
- lang/python27/Makefile                                        1.11 via patch
- lang/python27/distinfo                                        1.15
- lang/python27/patches/patch-CVE-2012-0845                     1.1
- lang/python31/Makefile                                        1.6 via patch
- lang/python31/distinfo                                        1.8
- lang/python31/patches/patch-CVE-2012-0845                     1.1

---
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Wed Feb 15 12:21:41 UTC 2012

   Modified Files:
           pkgsrc/lang/python26: Makefile distinfo
   Added Files:
           pkgsrc/lang/python26/patches: patch-CVE-2012-0845

   Log Message:
   add patch from Python issue#14001 to fix xmlrpc server endless loop
   by malformed request
   bump PKGREV

---
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Wed Feb 15 16:08:26 UTC 2012

   Modified Files:
           pkgsrc/lang/python25: Makefile distinfo
           pkgsrc/lang/python27: Makefile distinfo
           pkgsrc/lang/python31: Makefile distinfo
   Added Files:
           pkgsrc/lang/python25/patches: patch-CVE-2012-0845
           pkgsrc/lang/python27/patches: patch-CVE-2012-0845
           pkgsrc/lang/python31/patches: patch-CVE-2012-0845

   Log Message:
   apply fix for CVE-2012-0845 to other Python versions too
   (2.4 is not affected)

2 years agoPullup ticket #3684 - requested by drochner
tron [Sat, 18 Feb 2012 23:17:50 +0000 (23:17 +0000)]
Pullup ticket #3684 - requested by drochner
audio/libvorbis: security patch

Revisions pulled up:
- audio/libvorbis/Makefile                                      1.52
- audio/libvorbis/distinfo                                      1.21
- audio/libvorbis/patches/patch-CVE-2012-0444                   1.1

---
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Fri Feb 17 12:23:24 UTC 2012

   Modified Files:
           pkgsrc/audio/libvorbis: Makefile distinfo
   Added Files:
           pkgsrc/audio/libvorbis/patches: patch-CVE-2012-0444

   Log Message:
   add patch from upstream to fix possible memory corruption by
   malicious Ogg Vorbis files
   bump PKGREV

2 years agoPullup ticket 3683
sbd [Sat, 18 Feb 2012 01:39:47 +0000 (01:39 +0000)]
Pullup ticket 3683

2 years agoPullup ticket #3683 - requested by obache
sbd [Sat, 18 Feb 2012 01:38:57 +0000 (01:38 +0000)]
Pullup ticket #3683 - requested by obache
lang/sun-{jre,jdk}6 security update

Revisions pulled up:
- lang/sun-jdk6/Makefile                                        1.28
- lang/sun-jdk6/PLIST.linux-i386                                1.2
- lang/sun-jdk6/PLIST.linux-x86_64                              1.2
- lang/sun-jdk6/distinfo                                        1.17
- lang/sun-jre6/Makefile                                        1.35
- lang/sun-jre6/PLIST.linux-i386                                1.23
- lang/sun-jre6/PLIST.linux-x86_64                              1.5
- lang/sun-jre6/distinfo                                        1.20
- lang/sun-jre6/sfiles-i386.mk                                  1.6
- lang/sun-jre6/sfiles-x86_64.mk                                1.2

---
   Module Name: pkgsrc
   Committed By: obache
   Date: Fri Feb 17 08:16:14 UTC 2012

   Modified Files:
    pkgsrc/lang/sun-jdk6: Makefile PLIST.linux-i386 PLIST.linux-x86_64
        distinfo
    pkgsrc/lang/sun-jre6: Makefile PLIST.linux-i386 PLIST.linux-x86_64
        distinfo sfiles-i386.mk sfiles-x86_64.mk

   Log Message:
   Java SE 6 Update 31

   * Olson Data 2011l

   * Bug Fixes

      This release contains fixes for security vulnerabilities. For more information,
      see Oracle Java SE Critical Patch Update Advisory.
      http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html

2 years agoFixup fromcvs/togit conversion
pkgsrc fixup [Thu, 16 Feb 2012 02:54:53 +0000 (18:54 -0800)]
Fixup fromcvs/togit conversion

2 years agoPullup ticket #3682.
tron [Tue, 14 Feb 2012 09:48:31 +0000 (09:48 +0000)]
Pullup ticket #3682.

2 years agoPullup ticket #3682 - requested by riz
tron [Tue, 14 Feb 2012 09:48:13 +0000 (09:48 +0000)]
Pullup ticket #3682 - requested by riz
lang/php5: build fix

Revisions pulled up:
- lang/php5/distinfo                                            1.92-1.93
- lang/php5/patches/patch-main_streams_cast.c                   1.1

---
   Module Name:    pkgsrc
   Committed By:   taca
   Date:           Thu Feb  2 15:44:22 UTC 2012

   Modified Files:
           pkgsrc/lang/php5: distinfo
   Added Files:
           pkgsrc/lang/php5/patches: patch-main_streams_cast.c

   Log Message:
   Trying to fix build problem on NetBSD current recently.

---
   Module Name:    pkgsrc
   Committed By:   taca
   Date:           Thu Feb  2 15:47:13 UTC 2012

   Modified Files:
           pkgsrc/lang/php5: distinfo

   Log Message:
   Remove none existing patch files.

2 years agopullup #3681
spz [Mon, 13 Feb 2012 20:43:15 +0000 (20:43 +0000)]
pullup #3681

2 years agoPullup ticket #3681 - requested by riz
spz [Mon, 13 Feb 2012 20:42:03 +0000 (20:42 +0000)]
Pullup ticket #3681 - requested by riz
devel/m4: build fixes

Revisions pulled up:
- devel/m4/Makefile                                             1.66
- devel/m4/distinfo                                             1.34
- devel/m4/patches/patch-ab                                     1.12
- devel/m4/patches/patch-ac                                     1.10

-------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   christos
   Date:           Tue Jan 31 00:58:44 UTC 2012

   Added Files:
           pkgsrc/devel/m4/patches: patch-ab patch-ac

   Log Message:
   update for new fpos_t

   To generate a diff of this commit:
   cvs rdiff -u -r0 -r1.12 pkgsrc/devel/m4/patches/patch-ab
   cvs rdiff -u -r0 -r1.10 pkgsrc/devel/m4/patches/patch-ac

-------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   christos
   Date:           Tue Jan 31 01:00:13 UTC 2012

   Modified Files:
           pkgsrc/devel/m4: Makefile

   Log Message:
   bump patchlevel

   To generate a diff of this commit:
   cvs rdiff -u -r1.65 -r1.66 pkgsrc/devel/m4/Makefile

-------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   christos
   Date:           Tue Jan 31 01:12:46 UTC 2012

   Modified Files:
           pkgsrc/devel/m4: distinfo

   Log Message:
   update.

   To generate a diff of this commit:
   cvs rdiff -u -r1.33 -r1.34 pkgsrc/devel/m4/distinfo

2 years agopullup #3680
spz [Sun, 12 Feb 2012 23:07:43 +0000 (23:07 +0000)]
pullup #3680

2 years agoPullup ticket #3680 - requested by sbd
spz [Sun, 12 Feb 2012 23:05:51 +0000 (23:05 +0000)]
Pullup ticket #3680 - requested by sbd
emulators/qemu: build fix

Revisions pulled up:
- emulators/qemu/Makefile                                       1.87

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: sbd
   Date: Thu Feb  9 22:53:37 UTC 2012

   Modified Files:
    pkgsrc/emulators/qemu: Makefile

   Log Message:
   Use the --mandir configure arg to set the manpage directory.

   To generate a diff of this commit:
   cvs rdiff -u -r1.86 -r1.87 pkgsrc/emulators/qemu/Makefile

2 years agoPullup ticket 3679
sbd [Sun, 12 Feb 2012 01:37:35 +0000 (01:37 +0000)]
Pullup ticket 3679

2 years agoPullup ticket #3679 - requested by spz
sbd [Sun, 12 Feb 2012 01:36:32 +0000 (01:36 +0000)]
Pullup ticket #3679 - requested by spz
devel/apr security update

Revisions pulled up:
- devel/apr/Makefile                                            1.68
- devel/apr/distinfo                                            1.34
- devel/apr/patches/patch-tables_apr__hash.c                    1.1
- devel/apr/patches/patch-test_testhash.c                       1.1

---
   Module Name: pkgsrc
   Committed By: spz
   Date: Sat Feb 11 12:44:09 UTC 2012

   Modified Files:
    pkgsrc/devel/apr: Makefile distinfo
   Added Files:
    pkgsrc/devel/apr/patches: patch-tables_apr__hash.c
        patch-test_testhash.c

   Log Message:
   fix CVE-2012-0840 with patches taken from the Apache svn

2 years agoPullup ticket 3677
sbd [Thu, 9 Feb 2012 21:42:17 +0000 (21:42 +0000)]
Pullup ticket 3677

2 years agoPullup ticket #3677 - requested by wiz
sbd [Thu, 9 Feb 2012 21:41:46 +0000 (21:41 +0000)]
Pullup ticket #3677 - requested by wiz
Additon of startup-notification010 to x11 SUBDIR list

Revisions pulled up:
- x11/Makefile                                                  1.642

---
   Module Name: pkgsrc
   Committed By: wiz
   Date: Thu Feb  2 11:32:48 UTC 2012

   Modified Files:
    pkgsrc/x11: Makefile

   Log Message:
   + startup-notification010.

2 years agoPullup ticket #3676 - requested by wiz
tron [Wed, 8 Feb 2012 20:54:25 +0000 (20:54 +0000)]
Pullup ticket #3676 - requested by wiz
x11/startup-notification010: new package
x11/startup-notification: suport older native X11 via "startup-notification010"

Revisions pulled up:
- x11/startup-notification/buildlink3.mk                        1.12
- x11/startup-notification010/Makefile 1.1.1.1
- x11/startup-notification010/DESCR 1.1.1.1
- x11/startup-notification010/distinfo 1.1.1.1
- x11/startup-notification010/PLIST 1.1.1.1
- x11/startup-notification010/patches/patch-aa 1.1.1.1
- x11/startup-notification010/patches/patch-ab 1.1.1.1

---
    Module Name: pkgsrc
    Committed By: wiz
    Date: Thu Feb  2 11:31:33 UTC 2012

    Update of /cvsroot/pkgsrc/x11/startup-notification010
    In directory ivanova.netbsd.org:/tmp/cvs-serv24369

    Log Message:
    Initial import of startup-notification-0.10nb1 for NetBSD-5.[0-9], from
    Robert Elz.

    startup-notification provides mechanisms allowing a desktop environment to
    track application startup, to provide user feedback and other features.

    This is an older version to allow compatibility with native X11 in
    NetBSD 5 and earlier (pre-xcb).
---
   Module Name: pkgsrc
   Committed By: wiz
   Date: Thu Feb  2 11:33:32 UTC 2012

   Modified Files:
    pkgsrc/x11/startup-notification: buildlink3.mk

   Log Message:
   On NetBSD<5.99 with native X, use startup-notification010 instead,
   which does not use XCB (which is not provided by native X in older
   NetBSD releases). From Robert Elz.

2 years agoPullup tickets #3673 and #3676.
tron [Wed, 8 Feb 2012 20:12:23 +0000 (20:12 +0000)]
Pullup tickets #3673 and #3676.

2 years agoPullup ticket #3676 - requested by wiz
tron [Wed, 8 Feb 2012 20:11:25 +0000 (20:11 +0000)]
Pullup ticket #3676 - requested by wiz
x11/startup-notification010: new package
x11/startup-notification: suport older native X11 via "startup-notification010"

Revisions pulled up:
- x11/startup-notification/buildlink3.mk                        1.12
- x11/startup-notification010/Makefile 1.1.1.1
- x11/startup-notification010/DESCR 1.1.1.1
- x11/startup-notification010/distinfo 1.1.1.1
- x11/startup-notification010/PLIST 1.1.1.1
- x11/startup-notification010/patches/patch-aa 1.1.1.1
- x11/startup-notification010/patches/patch-ab 1.1.1.1

---
    Module Name: pkgsrc
    Committed By: wiz
    Date: Thu Feb  2 11:31:33 UTC 2012

    Update of /cvsroot/pkgsrc/x11/startup-notification010
    In directory ivanova.netbsd.org:/tmp/cvs-serv24369

    Log Message:
    Initial import of startup-notification-0.10nb1 for NetBSD-5.[0-9], from
    Robert Elz.

    startup-notification provides mechanisms allowing a desktop environment to
    track application startup, to provide user feedback and other features.

    This is an older version to allow compatibility with native X11 in
    NetBSD 5 and earlier (pre-xcb).
---
   Module Name: pkgsrc
   Committed By: wiz
   Date: Thu Feb  2 11:33:32 UTC 2012

   Modified Files:
    pkgsrc/x11/startup-notification: buildlink3.mk

   Log Message:
   On NetBSD<5.99 with native X, use startup-notification010 instead,
   which does not use XCB (which is not provided by native X in older
   NetBSD releases). From Robert Elz.

2 years agoPullup ticket #3673 - requested by pettai
tron [Wed, 8 Feb 2012 18:52:25 +0000 (18:52 +0000)]
Pullup ticket #3673 - requested by pettai
emulators/suse113_openssl: security update

Revisions pulled up:
- emulators/suse113_openssl/Makefile                            1.8
- emulators/suse113_openssl/distinfo                            1.7

---
   Module Name: pkgsrc
   Committed By: chs
   Date: Thu Jan 19 15:54:55 UTC 2012

   Modified Files:
    pkgsrc/emulators/suse113_openssl: Makefile distinfo

   Log Message:
   update to libopenssl1_0_0-1.0.0-6.13.1.
   fixes CVE-2011-4108 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 =
   E-2012-0027.

2 years agoPullup ticket 3675
sbd [Tue, 7 Feb 2012 20:46:02 +0000 (20:46 +0000)]
Pullup ticket 3675

2 years agoPullup ticket #3675 - requested by minskim
sbd [Tue, 7 Feb 2012 20:44:55 +0000 (20:44 +0000)]
Pullup ticket #3675 - requested by minskim
www/awstats security update

Revisions pulled up:
- www/awstats/Makefile                                          1.46
- www/awstats/distinfo                                          1.29
- www/awstats/patches/patch-wwwroot_cgi-bin_awredir.pl          1.1

---
   Module Name:    pkgsrc
   Committed By:   minskim
   Date:           Sun Feb  5 23:58:07 UTC 2012

   Modified Files:
           pkgsrc/www/awstats: Makefile distinfo
   Added Files:
           pkgsrc/www/awstats/patches: patch-wwwroot_cgi-bin_awredir.pl

   Log Message:
   Fix XSS vulnerabilities in awstats.

   Patch from awstat's CVS repo.

2 years agoPullup ticket #3674.
tron [Sun, 5 Feb 2012 22:56:51 +0000 (22:56 +0000)]
Pullup ticket #3674.

2 years agoPullup ticket #3674 - requested by pettai
tron [Sun, 5 Feb 2012 22:56:27 +0000 (22:56 +0000)]
Pullup ticket #3674 - requested by pettai
graphics/png: security update

Revisions pulled up:
- graphics/png/Makefile                                         1.143
- graphics/png/distinfo                                         1.90

---
   Module Name: pkgsrc
   Committed By: wiz
   Date: Wed Feb  1 23:05:19 UTC 2012

   Modified Files:
    pkgsrc/graphics/png: Makefile distinfo

   Log Message:
   Update to 1.5.8:

   Version 1.5.8beta01 [January 15, 2011]
    Removed '#include config.h"' from contrib/libtests/pngvalid.c.  It's not
      needed and causes trouble for VPATH building.
    Moved AC_MSG_CHECKING([if libraries can be versioned]) later to the proper
      location in configure.ac (Gilles Espinasse).
    Fix bug in pngerror.c: some long warnings were being improperly truncated
      (bug introduced in libpng-1.5.3beta05).

   Version 1.5.8rc01 [January 21, 2012]
    No changes.

   Version 1.5.8rc02 [January 25, 2012]
    Fixed Min/GW uninstall to remove libpng.dll.a
    Conditionalize the install rules for MINGW and CYGWIN in CMakeLists.txt

2 years agopullup 3666
spz [Sun, 5 Feb 2012 18:42:28 +0000 (18:42 +0000)]
pullup 3666

2 years agoPullup ticket #3666 - requested by tron
spz [Sun, 5 Feb 2012 18:41:14 +0000 (18:41 +0000)]
Pullup ticket #3666 - requested by tron
net/samba: functionality fixes

Revisions pulled up:
- net/samba/Makefile                                            1.210-1.215
- net/samba/PLIST                                               1.48
- net/samba/PLIST.Linux                                         1.1-1.2
- net/samba/PLIST.NetBSD                                        1.1
- net/samba/buildlink3.mk                                       1.9
- net/samba/distinfo                                            1.80-1.83
- net/samba/options.mk                                          1.28
- net/samba/patches/patch-al                                    deleted
- net/samba/patches/patch-client_client.c                       1.1-1.3

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: sbd
   Date: Mon Jan 30 07:24:42 UTC 2012

   Modified Files:
    pkgsrc/net/samba: distinfo
   Removed Files:
    pkgsrc/net/samba/patches: patch-al

   Log Message:
   Remove patch-al, its not actually a patch just a file with the words
   "Changes were applied."

   To generate a diff of this commit:
   cvs rdiff -u -r1.79 -r1.80 pkgsrc/net/samba/distinfo
   cvs rdiff -u -r1.8 -r0 pkgsrc/net/samba/patches/patch-al

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: tron
   Date: Mon Jan 30 13:44:06 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile distinfo
   Added Files:
    pkgsrc/net/samba/patches: patch-client_client.c

   Log Message:
   Restore compatibility of "smbclient" with CIFS server on the
   Apple Time Capsule.

   To generate a diff of this commit:
   cvs rdiff -u -r1.209 -r1.210 pkgsrc/net/samba/Makefile
   cvs rdiff -u -r1.80 -r1.81 pkgsrc/net/samba/distinfo
   cvs rdiff -u -r0 -r1.1 pkgsrc/net/samba/patches/patch-client_client.c

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: adam
   Date: Mon Jan 30 15:44:02 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile PLIST buildlink3.mk options.mk
   Added Files:
    pkgsrc/net/samba: PLIST.NetBSD

   Log Message:
   Moved NetBSD files into PLIST.NetBSD; fixed couple pkglint issues

   To generate a diff of this commit:
   cvs rdiff -u -r1.210 -r1.211 pkgsrc/net/samba/Makefile
   cvs rdiff -u -r1.47 -r1.48 pkgsrc/net/samba/PLIST
   cvs rdiff -u -r0 -r1.1 pkgsrc/net/samba/PLIST.NetBSD
   cvs rdiff -u -r1.8 -r1.9 pkgsrc/net/samba/buildlink3.mk
   cvs rdiff -u -r1.27 -r1.28 pkgsrc/net/samba/options.mk

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: tron
   Date: Mon Jan 30 15:48:11 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile distinfo
    pkgsrc/net/samba/patches: patch-client_client.c

   Log Message:
   Fix botch in last patch which meant that we were ignoring almost all
   errors in response to SMB echo packets.

   The new fix doesn't look particular nice but should at least do
   The Right Thing(TM).

   To generate a diff of this commit:
   cvs rdiff -u -r1.211 -r1.212 pkgsrc/net/samba/Makefile
   cvs rdiff -u -r1.81 -r1.82 pkgsrc/net/samba/distinfo
   cvs rdiff -u -r1.1 -r1.2 pkgsrc/net/samba/patches/patch-client_client.c

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: tron
   Date: Mon Jan 30 23:07:06 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile distinfo
    pkgsrc/net/samba/patches: patch-client_client.c

   Log Message:
   Third time's the charm:
   Replace patch for SMBecho compatibility problem with patch provided by
   the Samba maintainers. Successfully tested with an Apple Time Capsule.

   To generate a diff of this commit:
   cvs rdiff -u -r1.212 -r1.213 pkgsrc/net/samba/Makefile
   cvs rdiff -u -r1.82 -r1.83 pkgsrc/net/samba/distinfo
   cvs rdiff -u -r1.2 -r1.3 pkgsrc/net/samba/patches/patch-client_client.c

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: sbd
   Date: Tue Jan 31 05:54:06 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile
   Added Files:
    pkgsrc/net/samba: PLIST.Linux

   Log Message:
   Add PLIST.Linux

   To generate a diff of this commit:
   cvs rdiff -u -r1.213 -r1.214 pkgsrc/net/samba/Makefile
   cvs rdiff -u -r0 -r1.1 pkgsrc/net/samba/PLIST.Linux

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: sbd
   Date: Tue Jan 31 06:34:02 UTC 2012

   Modified Files:
    pkgsrc/net/samba: PLIST.Linux

   Log Message:
   Fix the $NetBSD$ tag

   To generate a diff of this commit:
   cvs rdiff -u -r1.1 -r1.2 pkgsrc/net/samba/PLIST.Linux

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: sbd
   Date: Tue Jan 31 06:53:31 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile

   Log Message:
   Add missing zlib buildlink and on Linux only uuid buildlink.

   Bump PKGREVISION.

   To generate a diff of this commit:
   cvs rdiff -u -r1.214 -r1.215 pkgsrc/net/samba/Makefile

2 years agoUpdate entry for ticket #3672.
tron [Sat, 4 Feb 2012 14:21:50 +0000 (14:21 +0000)]
Update entry for ticket #3672.

2 years agoPullup ticket #3672 - requested by bouyer
tron [Sat, 4 Feb 2012 14:21:29 +0000 (14:21 +0000)]
Pullup ticket #3672 - requested by bouyer
sysutils/xentools33: build fix
sysutils/xentools41: bug fix

Revisions pulled up:
- sysutils/xentools33/Makefile                                  1.28
- sysutils/xentools33/distinfo                                  1.26
- sysutils/xentools33/patches/patch-blktaplib_h                 1.1
- sysutils/xentools33/patches/patch-io_ring_h                   1.1
- sysutils/xentools41/Makefile                                  1.14
- sysutils/xentools41/distinfo                                  1.16
- sysutils/xentools41/patches/patch-df                          1.1

---
   Module Name:    pkgsrc
   Committed By:   cegger
   Date:           Mon Jan  9 14:06:35 UTC 2012

   Modified Files:
           pkgsrc/sysutils/xentools33: Makefile distinfo
   Added Files:
           pkgsrc/sysutils/xentools33/patches: patch-blktaplib_h patch-io_ring_h

   Log Message:
   Apply fixes for gcc 4.5. I cannot reproduce the
   error message show in PR 45386.
   Bump revision.

---
   Module Name:    pkgsrc
   Committed By:   cegger
   Date:           Thu Jan 26 11:19:24 UTC 2012

   Modified Files:
           pkgsrc/sysutils/xentools41: Makefile distinfo
   Added Files:
           pkgsrc/sysutils/xentools41/patches: patch-df

   Log Message:
   Apply patch 79d1d3311319f3390f540f547becaba9d957f84c
   from qemu upstream:

   Fill in word 64 of IDENTIFY data to indicate support for PIO modes 3 and 4.
   This allows NetBSD guests to use UltraDMA modes instead of just PIO mode 0.

   With this patch I can no longer reproduce PR 42455.
   Bump package revision.

2 years agoPullup ticket #3672.
tron [Sat, 4 Feb 2012 12:42:35 +0000 (12:42 +0000)]
Pullup ticket #3672.

2 years agoPullup ticket #3672 - requested by bouyer
tron [Sat, 4 Feb 2012 12:42:21 +0000 (12:42 +0000)]
Pullup ticket #3672 - requested by bouyer
sysutils/xentools33: security patch
sysutils/xentools41: security patch

Revisions pulled up:
- sysutils/xentools33/Makefile                                  1.29 via patch
- sysutils/xentools33/distinfo                                  1.27 via patch
- sysutils/xentools33/patches/patch-qemu-e1000-CVSE-2012-0029   1.1
- sysutils/xentools41/Makefile                                  1.15 via patch
- sysutils/xentools41/distinfo                                  1.17
- sysutils/xentools41/patches/patch-qemu-e1000-CVSE-2012-0029   1.1

---
   Module Name: pkgsrc
   Committed By: bouyer
   Date: Fri Feb  3 17:00:25 UTC 2012

   Modified Files:
    pkgsrc/sysutils/xentools33: Makefile distinfo
    pkgsrc/sysutils/xentools41: Makefile distinfo
   Added Files:
    pkgsrc/sysutils/xentools33/patches: patch-qemu-e1000-CVSE-2012-0029
    pkgsrc/sysutils/xentools41/patches: patch-qemu-e1000-CVSE-2012-0029

   Log Message:
   Pull up fix from Xen repository, fixing CVE-2012-0029:
   Heap-based buffer overflow in the process_tx_desc function in the
   e1000 emulation allows the guest to cause a denial of service (QEMU
   crash) and possibly execute arbitrary code via crafted legacy mode
   packets.

   Bump PKGREVISION

2 years agoPullup ticket 3671
sbd [Sat, 4 Feb 2012 08:34:07 +0000 (08:34 +0000)]
Pullup ticket 3671

2 years agoPullup ticket #3671 - requested by taca
sbd [Sat, 4 Feb 2012 08:32:55 +0000 (08:32 +0000)]
Pullup ticket #3671 - requested by taca
lang/php53 security and build fixes.

Revisions pulled up:
- lang/php53/Makefile                                           1.22-1.23
- lang/php53/Makefile.common                                    1.10
- lang/php53/Makefile.php                                       1.13
- lang/php53/distinfo                                           1.32-1.35
- lang/php53/patches/patch-main_php__variables.c                deleted
- lang/php53/patches/patch-main_streams_cast.c                  1.1

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Thu Feb  2 15:44:09 UTC 2012

   Modified Files:
    pkgsrc/lang/php53: distinfo
   Added Files:
    pkgsrc/lang/php53/patches: patch-main_streams_cast.c

   Log Message:
   Trying to fix build problem on NetBSD current recently.

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Thu Feb  2 16:00:40 UTC 2012

   Modified Files:
    pkgsrc/lang/php53: Makefile distinfo
   Added Files:
    pkgsrc/lang/php53/patches: patch-main_php__variables.c

   Log Message:
   Add fix for "Critical PHP Remote Vulnerability Introduced in Fix for PHP
   Hashtable Collision DOS" by revision 323007 from PHP's repository.

   http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/

   Bump PKGREVISION.

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Thu Feb  2 16:19:44 UTC 2012

   Modified Files:
    pkgsrc/lang/php53: distinfo
    pkgsrc/lang/php53/patches: patch-main_php__variables.c

   Log Message:
   And more fix for memory leaks by revision 323013 from PHP's repository.
   Hopefully, these 18 minutes is allowed to avoid to PKGREVISION bump.

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Fri Feb  3 03:10:34 UTC 2012

   Modified Files:
    pkgsrc/lang/php53: Makefile Makefile.common Makefile.php distinfo
   Removed Files:
    pkgsrc/lang/php53/patches: patch-main_php__variables.c

   Log Message:
   Update php53 package to 5.3.10.  Below security fix is already included
   in php-5.3.9nb2 package.

   02 Feb 2012, PHP 5.3.10

   - Core:
     . Fixed arbitrary remote code execution vulnerability reported by Stefan
       Esser, CVE-2012-0830. (Stas, Dmitry)

2 years agoPullup tickets #3667, #3668, #3669 and #3670.
tron [Thu, 2 Feb 2012 20:10:17 +0000 (20:10 +0000)]
Pullup tickets #3667, #3668, #3669 and #3670.

2 years agoPullup ticket #3670 - requested by bouyer
tron [Thu, 2 Feb 2012 20:08:41 +0000 (20:08 +0000)]
Pullup ticket #3670 - requested by bouyer
net/smokeping: security update

Revisions pulled up:
- net/smokeping/MESSAGE                                         1.5
- net/smokeping/Makefile                                        1.28
- net/smokeping/PLIST                                           1.12
- net/smokeping/distinfo                                        1.14
- net/smokeping/files/smokeping.conf                            1.2
- net/smokeping/patches/patch-aa                                1.11
- net/smokeping/patches/patch-ab                                1.11
- net/smokeping/patches/patch-ac                                1.9
- net/smokeping/patches/patch-ad                                1.6
- net/smokeping/patches/patch-ae                                1.2
- net/smokeping/patches/patch-af                                1.1
- net/smokeping/patches/patch-ag                                1.1

---
   Module Name: pkgsrc
   Committed By: bouyer
   Date: Thu Feb  2 18:54:35 UTC 2012

   Modified Files:
    pkgsrc/net/smokeping: MESSAGE Makefile PLIST distinfo
    pkgsrc/net/smokeping/files: smokeping.conf
    pkgsrc/net/smokeping/patches: patch-aa patch-ab patch-ac patch-ad
        patch-ae
   Added Files:
    pkgsrc/net/smokeping/patches: patch-af patch-ag

   Log Message:
   Update smokeping from 2.4.2 to 2.6.7, fixing SA47678.

   Major changes between 2.4 and 2.6:
   New in Version 2.6

       Added automake support for easy "configure, make install" installation
       fixed strftime bug when sending alert mails

   New in Version 2.5

       Switched from SpeedyCGI to FastCGI
       DismanPing probe by Bill Fenner
       OpenSSHJunOSPing (Sponsoerd by Juniper)
       SIP Ping Probe (Sponsored by ANI Networks)
       Support alert patterns with upper AND lower limit: (>a<b)
       SmokeTrace removed. Check out remOcular.
       Updated Prototype and scriptaculous libraries
       ExpLoss matcher by Konoplev V.Konoplev
       Improved slave update performance

2 years agoPullup ticket #3669 - requested by bouyer
tron [Thu, 2 Feb 2012 19:55:49 +0000 (19:55 +0000)]
Pullup ticket #3669 - requested by bouyer
devel/p5-Config-Grammar: new package

Revisions pulled up:
- devel/Makefile                                                1.1559
- devel/p5-Config-Grammar/DESCR 1.1.1.1
- devel/p5-Config-Grammar/Makefile 1.1.1.1
- devel/p5-Config-Grammar/distinfo 1.1.1.1

---
   Module Name: pkgsrc
   Committed By: bouyer
   Date: Thu Feb  2 19:00:10 UTC 2012

   Modified Files:
    pkgsrc/devel: Makefile

   Log Message:
   Add p5-Config-Grammar

2 years agoPullup ticket #3668 - requested by taca
tron [Thu, 2 Feb 2012 19:45:40 +0000 (19:45 +0000)]
Pullup ticket #3668 - requested by taca
www/drupal7: security update

Revisions pulled up:
- www/drupal7/Makefile                                          1.3
- www/drupal7/PLIST                                             1.2
- www/drupal7/distinfo                                          1.2

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Wed Feb  1 23:55:16 UTC 2012

   Modified Files:
    pkgsrc/www/drupal7: Makefile PLIST distinfo

   Log Message:
   Update drupal7 package to 7.11.

   Drupal 7.11, 2012-02-01
   ----------------------
   - Fixed security issues (Multiple vulnerabilities), see SA-CORE-2012-001.

2 years agoPullup ticket #3667 - requested by taca
tron [Thu, 2 Feb 2012 19:32:19 +0000 (19:32 +0000)]
Pullup ticket #3667 - requested by taca
www/drupal6: security update

Revisions pulled up:
- www/drupal/Makefile                                           1.49
- www/drupal6/Makefile                                          1.30-1.31
- www/drupal6/distinfo                                          1.22
- www/drupal7/Makefile                                          1.2

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Sun Jan 29 22:27:27 UTC 2012

   Modified Files:
    pkgsrc/www/drupal: Makefile
    pkgsrc/www/drupal6: Makefile
    pkgsrc/www/drupal7: Makefile

   Log Message:
   Remove CONFLICTS since these pacakges have the same PKGBASE.

   Bump PKGREVISION of www/drupal and www/drupal6 to reflect this change.

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Wed Feb  1 23:54:40 UTC 2012

   Modified Files:
    pkgsrc/www/drupal6: Makefile distinfo

   Log Message:
   Update drupal6 package to 6.23.

   Drupal 6.23, 2012-02-01
   ----------------------
   - Fixed security issues (Cross site scripting), see SA-CORE-2012-001.

2 years agoFixup fromcvs/togit conversion
pkgsrc fixup [Mon, 30 Jan 2012 15:35:26 +0000 (07:35 -0800)]
Fixup fromcvs/togit conversion

2 years agoPullup ticket #3665.
tron [Sun, 29 Jan 2012 23:47:04 +0000 (23:47 +0000)]
Pullup ticket #3665.

2 years agoPullup ticket #3665 - requested by taca
tron [Sun, 29 Jan 2012 23:46:40 +0000 (23:46 +0000)]
Pullup ticket #3665 - requested by taca
net/samba: security update

Revisions pulled up:
- net/samba/Makefile                                            1.209
- net/samba/Makefile.mirrors                                    1.8-1.9
- net/samba/distinfo                                            1.79

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Sun Jan 29 22:01:19 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile Makefile.mirrors distinfo

   Log Message:
   Update samba package to 3.6.3.  Quote from release notes:

   Samba 3.6.3:

    This is a security release in order to address
    CVE-2012-0817 (Memory leak/Denial of service).

    o  CVE-2012-0817:
       The Samba File Serving daemon (smbd) in Samba versions
       3.6.0 to 3.6.2 is affected by a memory leak that can
       cause a server denial of service.

   Samba 3.6.2:

    Major enhancements in Samba 3.6.2 include:

    o  Make Winbind receive user/group information (bug #8371).
    o  Several SMB2 fixes.

   For complete changes, please refer
   http://www.samba.org/samba/history/samba-3.6.2.html and
   http://www.samba.org/samba/history/samba-3.6.3.html.

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Sun Jan 29 22:05:38 UTC 2012

   Modified Files:
    pkgsrc/net/samba: Makefile.mirrors

   Log Message:
   Revert accidently commited my trial local change.

2 years agoPullup ticket 3663
sbd [Sat, 28 Jan 2012 06:27:19 +0000 (06:27 +0000)]
Pullup ticket 3663

2 years agoPullup ticket #3663 - requested by drochner
sbd [Sat, 28 Jan 2012 06:26:19 +0000 (06:26 +0000)]
Pullup ticket #3663 - requested by drochner
www/curl security update

Revisions pulled up:
- www/curl/Makefile                                             1.110
- www/curl/distinfo                                             1.73
- www/curl/patches/patch-ba                                     1.1
- www/curl/patches/patch-bb                                     1.1
- www/curl/patches/patch-bc                                     1.1
- www/curl/patches/patch-bd                                     1.1
- www/curl/patches/patch-be                                     1.1
- www/curl/patches/patch-bf                                     1.1

---
   Module Name:    pkgsrc
   Committed By:   drochner
   Date:           Thu Jan 26 11:25:55 UTC 2012

   Modified Files:
           pkgsrc/www/curl: Makefile distinfo
   Added Files:
           pkgsrc/www/curl/patches: patch-ba patch-bb patch-bc patch-bd patch-be
               patch-bf

   Log Message:
   add patches from upstream to fix 2 security problems:
   -data injection attack for certain protocols (CVE-2012-0036)
   -SSL CBC IV vulnerability (OpenSSL related, CVE-2011-3389)
   bump PKGREV

2 years agoPullup tickets #3660 and #3662.
tron [Thu, 26 Jan 2012 23:45:32 +0000 (23:45 +0000)]
Pullup tickets #3660 and #3662.

2 years agoPullup ticket #3662 - requested by gls
tron [Thu, 26 Jan 2012 23:44:34 +0000 (23:44 +0000)]
Pullup ticket #3662 - requested by gls
www/moodle: security update

Revisions pulled up:
- www/moodle/Makefile                                           1.9
- www/moodle/PLIST                                              1.7
- www/moodle/distinfo                                           1.7

---
   Module Name: pkgsrc
   Committed By: gls
   Date: Sun Jan 22 12:16:02 UTC 2012

   Modified Files:
    pkgsrc/www/moodle: Makefile PLIST distinfo

   Log Message:
   Update www/moodle to 2.1.4

   Fixes many security advisories, see below in the changelog.

   Highlights

   MDL-28710 - CSS class names have been added for rating div/span elements
   enabling theming
   MDL-29579 - Question text included in export of quiz statistics report in
   Moodle 2.1

   Functional changes

   MDL-19147 - Single Simple forums are no longer targets for moving (and losing)
   discussions
   MDL-30273 - Students and teachers can add additional topics to a simple forum
   discussion

   Security issues

   MSA-12-0001 - Recaptcha transmission consistency issue
   MSA-12-0003 - Added password protection
   MSA-12-0004 - Added profile image security
   MSA-12-0005 - Encryption enhancement
   MSA-12-0006 - Additional email address validation
   MSA-12-0007 - Email injection prevention
   MSA-12-0008 - Unsynchronised access via tokens
   MSA-12-0009 - Role access issue
   MSA-12-0010 - Unauthorised access to session key
   MSA-12-0011 - Browser autofill password issue
   MSA-12-0012 - Form validation issue

   Fixes and improvements

   MDL-30376 - Glossary RSS feed no longer generates error
   MDL-30378 - Site page links fixed in Navigation blocks
   MDL-30460 - Wiki image dropdown includes files with upper case suffixes
   MDL-30466 - Writing to database fixed for restoring a course with uses course
   completion
   MDL-30569 - Editing the front page when defaulthomepage = mymoodle now works as
   expected
   MDL-28180 - Duplicating an assignment that has course completion enabled no
   longer breaks course completion for the course
   MDL-27314 - It is now possible to delete or regrade quiz attempts in separate
   groups mode
   MDL-29730 - Fixed Lesson question shortanswer with regexp option
   MDL-30260 - Emailstop option fixed

2 years agoPullup ticket #3660 - requested by ghen
tron [Thu, 26 Jan 2012 23:39:10 +0000 (23:39 +0000)]
Pullup ticket #3660 - requested by ghen
net/powerdns: build fix
net/powerdns-ldap: build fix
net/powerdns-mysql: build fix
net/powerdns-pgsql: build fix
net/powerdns-sqlite: build fix

Revisions pulled up:
- net/powerdns-ldap/Makefile                                    1.8-1.9
- net/powerdns-ldap/PLIST                                       1.2-1.3
- net/powerdns-mysql/Makefile                                   1.8-1.9
- net/powerdns-mysql/PLIST                                      1.3-1.4
- net/powerdns-pgsql/Makefile                                   1.10-1.11
- net/powerdns-pgsql/PLIST                                      1.2-1.3
- net/powerdns-sqlite/Makefile                                  1.5-1.6
- net/powerdns-sqlite/PLIST                                     1.2-1.3
- net/powerdns/Makefile                                         1.6-1.7
- net/powerdns/PLIST                                            1.3-1.4
- net/powerdns/distinfo                                         1.10
- net/powerdns/patches/patch-configure                          1.1

---
   Module Name: pkgsrc
   Committed By: ghen
   Date: Mon Jan 23 15:11:54 UTC 2012

   Modified Files:
    pkgsrc/net/powerdns: Makefile PLIST distinfo
    pkgsrc/net/powerdns-ldap: Makefile PLIST
    pkgsrc/net/powerdns-mysql: Makefile PLIST
    pkgsrc/net/powerdns-pgsql: Makefile PLIST
    pkgsrc/net/powerdns-sqlite: Makefile PLIST
   Added Files:
    pkgsrc/net/powerdns/patches: patch-configure

   Log Message:
   Fix unportable == check in configure (I did not have PKG_DEVELOPER=yes when
   previously updating this pkg), noted by joerg.
   Also fix some PLIST issues (introduced with the same update).

   Bump PKGREVISION of affected packages.

---
   Module Name: pkgsrc
   Committed By: ghen
   Date: Wed Jan 25 10:21:12 UTC 2012

   Modified Files:
    pkgsrc/net/powerdns: Makefile PLIST
    pkgsrc/net/powerdns-ldap: Makefile PLIST
    pkgsrc/net/powerdns-mysql: Makefile PLIST
    pkgsrc/net/powerdns-pgsql: Makefile PLIST
    pkgsrc/net/powerdns-sqlite: Makefile PLIST

   Log Message:
   Previous PLIST change was wrong due to a libdir bug now fixed by sbd.  Revert
   PLIST and bump PKGREVISION again for powerdns + modules.

2 years agoPullup tickets 3658 and 3659
sbd [Sat, 21 Jan 2012 09:05:39 +0000 (09:05 +0000)]
Pullup tickets 3658 and 3659

2 years agoPullup ticket #3659 - requested by taca
sbd [Sat, 21 Jan 2012 09:02:55 +0000 (09:02 +0000)]
Pullup ticket #3659 - requested by taca
lang/php53 suhosin-patch update.

Revisions pulled up:
- lang/php53/Makefile                                           1.21
- lang/php53/Makefile.php                                       1.12
- lang/php53/distinfo                                           1.31

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Fri Jan 20 03:22:08 UTC 2012

   Modified Files:
    pkgsrc/lang/php53: Makefile Makefile.php distinfo

   Log Message:
   Use official suhosin-patch for PHP 5.3.9 instead of local one based on
   for PHP5.3.7.

   Bump PKGREVISION.

2 years agoPullup ticket #3658 - requested by taca
sbd [Sat, 21 Jan 2012 09:02:46 +0000 (09:02 +0000)]
Pullup ticket #3658 - requested by taca
security/php-suhosin security fix

Revisions pulled up:
- security/php-suhosin/Makefile                                 1.5
- security/php-suhosin/distinfo                                 1.4

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Fri Jan 20 03:23:34 UTC 2012

   Modified Files:
    pkgsrc/security/php-suhosin: Makefile distinfo

   Log Message:
   Update php-suhosin package to 0.9.33 to fix security problem.

                            SektionEins GmbH
                           www.sektioneins.de

                        -= Security  Advisory =-

        Advisory: Suhosin PHP Extension Transparent Cookie Encryption Stack
   Buffer Overflow
    Release Date: 2012/01/19
   Last Modified: 2012/01/19
          Author: Stefan Esser [stefan.esser[at]sektioneins.de]

     Application: Suhosin Extension <= 0.9.32.1
        Severity: A possible stack buffer overflow in Suhosin extension's
                  transparent cookie encryption that can only be triggered
                  in an uncommon and weakened Suhosin configuration can lead
                  to arbitrary remote code execution, if the FORTIFY_SOURCE
                  compile option was not used when Suhosin was compiled.
            Risk: Medium
   Vendor Status: Suhosin Extension 0.9.33 was released which fixes this
   vulnerability
       Reference: http://www.suhosin.org/
                  https://github.com/stefanesser/suhosin

2 years agoPullup ticket #3657.
tron [Thu, 19 Jan 2012 22:27:27 +0000 (22:27 +0000)]
Pullup ticket #3657.

2 years agoPullup ticket #3657 - requested by ryoon
tron [Thu, 19 Jan 2012 22:26:27 +0000 (22:26 +0000)]
Pullup ticket #3657 - requested by ryoon
devel/jenkins: security update

Revisions pulled up:
- devel/jenkins/Makefile                                        1.3
- devel/jenkins/PLIST                                           1.2
- devel/jenkins/distinfo                                        1.2

---
   Module Name: pkgsrc
   Committed By: ryoon
   Date: Thu Jan 19 14:39:21 UTC 2012

   Modified Files:
    pkgsrc/devel/jenkins: Makefile PLIST distinfo

   Log Message:
   Update to 1.424.2

   * This release contains security fix.
     See http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2012-01-10.cb

   Changelog:
   * Viewing large console logs with timestamper plugin cause Jenkins
     to crash (issue 9349)
   * Maven3 parallel build fails with java.util.ConcurrentModificationException
     in Jenkins (issue 11256)
   * Jenkins PID changes after restart (issue 11742)
   * Running Jenkins with the bundeled Winstone is succeptible to the hash table
     attack http://www.ocert.org/advisories/ocert-2011-003.html (SECURITY-22)

2 years agoPullup tickets 3654 and 3656
sbd [Thu, 19 Jan 2012 06:14:03 +0000 (06:14 +0000)]
Pullup tickets 3654 and 3656

2 years agoPullup ticket #3656 - requested by taca
sbd [Thu, 19 Jan 2012 06:11:48 +0000 (06:11 +0000)]
Pullup ticket #3656 - requested by taca
security/openssl security fix

Revisions pulled up:
- security/openssl/Makefile                                     1.160
- security/openssl/distinfo                                     1.84

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Thu Jan 19 00:51:23 UTC 2012

   Modified Files:
    pkgsrc/security/openssl: Makefile distinfo

   Log Message:
   Update security/openssl package to 0.9.8t.

    OpenSSL CHANGES
    _______________

    Changes between 0.9.8s and 0.9.8t [18 Jan 2012]

     *) Fix for DTLS DoS issue introduced by fix for CVE-2011-4109.
        Thanks to Antonio Martin, Enterprise Secure Access Research and
        Development, Cisco Systems, Inc. for discovering this bug and
        preparing a fix. (CVE-2012-0050)
        [Antonio Martin]

2 years agoPullup ticket #3654 - requested by tron
sbd [Thu, 19 Jan 2012 06:07:36 +0000 (06:07 +0000)]
Pullup ticket #3654 - requested by tron
textproc/libxml2 security patch

Revisions pulled up:
- textproc/libxml2/Makefile                                     1.112
- textproc/libxml2/distinfo                                     1.86
- textproc/libxml2/patches/patch-al                             1.3

---
   Module Name: pkgsrc
   Committed By: drochner
   Date: Tue Jan 17 14:43:44 UTC 2012

   Modified Files:
    pkgsrc/textproc/libxml2: Makefile distinfo
    pkgsrc/textproc/libxml2/patches: patch-al

   Log Message:
   add patch from upstream to fix potential DOS problem (CVE-2011-3905)
   bump PKGREV

2 years agoPullup ticket #3653.
tron [Wed, 18 Jan 2012 19:55:47 +0000 (19:55 +0000)]
Pullup ticket #3653.

2 years agoPullup ticket #3653 - requested by spz
tron [Wed, 18 Jan 2012 19:54:36 +0000 (19:54 +0000)]
Pullup ticket #3653 - requested by spz
www/apache22: security patch

Revisions pulled up:
- www/apache22/Makefile                                         1.77
- www/apache22/distinfo                                         1.48
- www/apache22/patches/patch-server_scoreboard.c                1.1
- www/apache22/patches/patch-server_util.c                      1.2

---
   Module Name: pkgsrc
   Committed By: spz
   Date: Tue Jan 17 20:48:29 UTC 2012

   Modified Files:
    pkgsrc/www/apache22: Makefile distinfo
    pkgsrc/www/apache22/patches: patch-server_util.c
   Added Files:
    pkgsrc/www/apache22/patches: patch-server_scoreboard.c

   Log Message:
   add patch for CVE-2012-0031 taken from Revision 1231058 of http://svn.apache.org/
   update patch for http://secunia.com/advisories/45793/

2 years agoPullup ticket #3652.
tron [Tue, 17 Jan 2012 22:42:33 +0000 (22:42 +0000)]
Pullup ticket #3652.

2 years agoPullup ticket #3652 - requested by sbd
tron [Tue, 17 Jan 2012 22:40:38 +0000 (22:40 +0000)]
Pullup ticket #3652 - requested by sbd
x11/kdebase-workspace4: build fix

Revisions pulled up:
- x11/kdebase-workspace4/Makefile                               1.34 via patch
- x11/kdebase-workspace4/PLIST.Linux                            1.1
- x11/kdebase-workspace4/distinfo                               1.19
- x11/kdebase-workspace4/patches/patch-plasma_generic_dataengines_rss_CMakeLists.txt 1.1

---
   Module Name: pkgsrc
   Committed By: sbd
   Date: Tue Jan 17 00:44:56 UTC 2012

   Modified Files:
    pkgsrc/x11/kdebase-workspace4: distinfo
   Added Files:
    pkgsrc/x11/kdebase-workspace4/patches:
        patch-plasma_generic_dataengines_rss_CMakeLists.txt

   Log Message:
   Fix build with gcc45 and current boost libs

---
   Module Name: pkgsrc
   Committed By: sbd
   Date: Tue Jan 17 00:57:55 UTC 2012

   Modified Files:
    pkgsrc/x11/kdebase-workspace4: Makefile
   Added Files:
    pkgsrc/x11/kdebase-workspace4: PLIST.Linux

   Log Message:
   Add PLIST.Linux for Linux only files.

   Bump PKGREVISION.

2 years agopullup #3640
spz [Sun, 15 Jan 2012 16:54:44 +0000 (16:54 +0000)]
pullup #3640

2 years agoPullup ticket #3640 - requested by tron
spz [Sun, 15 Jan 2012 16:52:46 +0000 (16:52 +0000)]
Pullup ticket #3640 - requested by tron
security update for net/wireshark

Revisions pulled up:
- net/wireshark/Makefile                                        1.73
- net/wireshark/distinfo                                        1.52
- net/wireshark/patches/patch-bd                                deleted

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By: tron
   Date: Wed Jan 11 09:48:24 UTC 2012

   Modified Files:
    pkgsrc/net/wireshark: Makefile distinfo
   Removed Files:
    pkgsrc/net/wireshark/patches: patch-bd

   Log Message:
   Update "wireshark" package to version 1.6.5. Changes since 1.6.4:
   - Bug Fixes
     The following vulnerabilities have been fixed.
        o wnpa-sec-2012-01
          Laurent Butti discovered that Wireshark failed to properly
          check record sizes for many packet capture file formats. (Bug
          6663, bug 6666, bug 6667, bug 6668, bug 6669, bug 6670)
          Versions affected: 1.4.0 to 1.4.10, 1.6.0 to 1.6.4.
        o wnpa-sec-2012-02
          Wireshark could dereference a NULL pointer and crash. (Bug
          6634)
          Versions affected: 1.4.0 to 1.4.10, 1.6.0 to 1.6.4.
        o wnpa-sec-2012-03
          The RLC dissector could overflow a buffer. (Bug 6391)
          Versions affected: 1.4.0 to 1.4.10, 1.6.0 to 1.6.4.
      The following bugs have been fixed:
        o "Closing File!" Dialog Hangs. (Bug 3046)
        o Sub-fields of data field should appear in exported PDML as
          children of the data field instead of as siblings to it. (Bug
          3809)
        o Incorrect time differences displayed with time reference set.
          (Bug 5580)
        o Wrong packet type association of SNMP trap after TFTP
          transfer. (Bug 5727)
        o SSL/TLS decryption needs wireshark to be rebooted. (Bug 6032)
        o Export HTTP Objects -> save all crashes Wireshark. (Bug 6250)
        o Wireshark Netflow dissector complains there is no template
          found though the template is exported. (Bug 6325)
        o DCERPC EPM tower UUID must be interpreted always as little
          endian. (Bug 6368)
        o Crash if no recent files. (Bug 6549)
        o IPv6 frame containing routing header with 0 segments left
          calculates wrong UDP checksum. (Bug 6560)
        o IPv4 UDP/TCP Checksum incorrect if routing header present.
          (Bug 6561)
        o Incorrect Parsing of SCPS Capabilities Option introduced in
          response to bug 6194. (Bug 6562)
        o Various crashes after loading NetMon2.x capture file. (Bug
          6578)
        o Fixed compilation of dumpcap on some systems (when
          MUST_DO_SELECT is defined). (Bug 6614)
        o SIGSEGV in SVN 40046. (Bug 6634)
        o Wireshark dissects TCP option 25 as an "April 1" option. (Bug
          6643)
        o ZigBee ZCL Dissector reports invalid status. (Bug 6649)
        o ICMPv6 DNSSL option malformed on padding. (Bug 6660)
        o Wrong tvb_get_bits function call in packet-csn1.c. (Bug 6708)
        o [UDP] - Length Field of Pseudo Header while computing CheckSum
          is not correct. (Bug 6711)
        o pcapio.c: bug in libpcap_write_interface_description_block.
          (Bug 6719)
        o Memory leaks in various dissectors.
        o Bytes highlighted in wrong Byte pane when field selected in
          Details pane.
   - Updated Protocol Support
      BGP, BMC CSN1, DCERPC EPM, DCP(ETSI) DMP DTLS GSM Management, H245
      HPTEAM, ICMPv6, IEEE 802.15.4 IPSEC IPv4, IPv6, ISAKMP KERBEROS
      LDSS NFS RLC, RPC-NETLOGON RRC RTMPT SIGCOMP SSL SYSLOG TCP, UDP,
      XML ZigBee ZCL
   - New and Updated Capture File Support
      Accellent 5Views, AIX iptrace, HP-UX nettl, I4B, Microsoft Network
      Monitor, Novell LANalyzer, PacketLogger, Pcap-ng, Sniffer,
      Tektronix K12, WildPackets {Airo,Ether}Peek.

   To generate a diff of this commit:
   cvs rdiff -u -r1.72 -r1.73 pkgsrc/net/wireshark/Makefile
   cvs rdiff -u -r1.51 -r1.52 pkgsrc/net/wireshark/distinfo
   cvs rdiff -u -r1.1 -r0 pkgsrc/net/wireshark/patches/patch-bd

2 years agoFixup fromcvs/togit conversion
pkgsrc fixup [Fri, 13 Jan 2012 21:55:45 +0000 (13:55 -0800)]
Fixup fromcvs/togit conversion

2 years agoPullup tickets #3646, #3647, #3648, #3649, #3650 and #3651.
tron [Fri, 13 Jan 2012 16:11:36 +0000 (16:11 +0000)]
Pullup tickets #3646, #3647, #3648, #3649, #3650 and #3651.

2 years agoPullup ticket #3650 - requested by ghen
tron [Fri, 13 Jan 2012 14:03:32 +0000 (14:03 +0000)]
Pullup ticket #3650 - requested by ghen
net/powerdns: security update
net/powerdns-ldap: security update
net/powerdns-mysql: security update
net/powerdns-pgsql: security update
net/powerdns-sqlite: security update

Revisions pulled up:
- net/powerdns-ldap/Makefile                                    1.7
- net/powerdns-mysql/Makefile                                   1.7
- net/powerdns-pgsql/Makefile                                   1.9
- net/powerdns/Makefile.common                                  1.6
- net/powerdns/distinfo                                         1.9
- net/powerdns/patches/patch-aa                                 1.3
- net/powerdns/patches/patch-ac                                 deleted
- net/powerdns/patches/patch-ad                                 deleted
- net/powerdns/patches/patch-ae                                 deleted
- net/powerdns/patches/patch-af                                 deleted
- net/powerdns/patches/patch-ag                                 deleted
- net/powerdns/patches/patch-ah                                 deleted
- net/powerdns/patches/patch-pdns_misc.hh                       deleted

---
   Module Name: pkgsrc
   Committed By: ghen
   Date: Fri Jan 13 12:12:49 UTC 2012

   Modified Files:
    pkgsrc/net/powerdns: Makefile.common distinfo
    pkgsrc/net/powerdns-ldap: Makefile
    pkgsrc/net/powerdns-mysql: Makefile
    pkgsrc/net/powerdns-pgsql: Makefile
    pkgsrc/net/powerdns/patches: patch-aa
   Removed Files:
    pkgsrc/net/powerdns/patches: patch-ac patch-ad patch-ae patch-af
        patch-ag patch-ah patch-pdns_misc.hh

   Log Message:
   Upgrade to PowerDNS 2.9.22.5, including a fix for CVE-2012-0206.

2 years agoPullup ticket #3649 - requested by obache
tron [Fri, 13 Jan 2012 13:20:49 +0000 (13:20 +0000)]
Pullup ticket #3649 - requested by obache
www/mediawiki: security update

Revisions pulled up:
- www/mediawiki/Makefile                                        1.18
- www/mediawiki/PLIST                                           1.7
- www/mediawiki/distinfo                                        1.11

---
   Module Name: pkgsrc
   Committed By: obache
   Date: Fri Jan 13 11:27:17 UTC 2012

   Modified Files:
    pkgsrc/www/mediawiki: Makefile PLIST distinfo

   Log Message:
   Update mediawiki to 1.17.2.

   == MediaWiki 1.17.2 ==
   2012-01-11

   This a maintenance and security release of the MediaWiki 1.17 branch.

   === Security changes ===
   * (bug 33117) prop=revisions allows deleted text to be exposed through cache pollution.

   === Changes since 1.17.1 ===
   * (bug 32709) Private Wiki users were always taken to Special:Badtitle on login.

   == MediaWiki 1.17.1 ==

   2011-11-24

   This a maintenance and security release of the MediaWiki 1.17 branch.

   === Security changes ===
   * (bug 32276) Skins were generating output using the internal page title which
      would allow anonymous users to determine wheter a page exists, potentially
      leaking private data. In fact, the curid and oldid request parameters would
      allow page titles to be enumerated even when they are not guessable.
   * (bug 32616) action=ajax requests were dispatched to the relevant internal
      functions without any read permission checks being done. This could lead to
      data leakage on private wikis.

2 years agoPullup ticket #3648 - requested by drochner
tron [Fri, 13 Jan 2012 13:10:42 +0000 (13:10 +0000)]
Pullup ticket #3648 - requested by drochner
textproc/libxml2: security patch

Revisions pulled up:
- textproc/libxml2/Makefile                                     1.111
- textproc/libxml2/distinfo                                     1.85
- textproc/libxml2/patches/patch-al                             1.2

---
   Module Name: pkgsrc
   Committed By: drochner
   Date: Thu Jan 12 11:25:10 UTC 2012

   Modified Files:
    pkgsrc/textproc/libxml2: Makefile distinfo
    pkgsrc/textproc/libxml2/patches: patch-al

   Log Message:
   add 2 patches from upstream:
   -fix buffer overflow on entity references with long name (CVE-2011-3919)
   -fix error handling on realloc() failure
   bump PKGREV

2 years agoPullup ticket #3647 - requested by gdt
tron [Fri, 13 Jan 2012 13:02:05 +0000 (13:02 +0000)]
Pullup ticket #3647 - requested by gdt
filesystems/tahoe-lafs: security update

Revisions pulled up:
- filesystems/tahoe-lafs/Makefile                               1.10
- filesystems/tahoe-lafs/distinfo                               1.7
- filesystems/tahoe-lafs/patches/patch-aa                       1.2

---
   Module Name: pkgsrc
   Committed By: gdt
   Date: Fri Jan 13 01:14:56 UTC 2012

   Modified Files:
    pkgsrc/filesystems/tahoe-lafs: Makefile distinfo
    pkgsrc/filesystems/tahoe-lafs/patches: patch-aa

   Log Message:
   Update to 1.9.1 (security fix):

   Release 1.9.1 (2012-01-12)
   --------------------------

   Security-related Bugfix
   '''''''''''''''''''''''

   - Fix flaw that would allow servers to cause undetected corruption when
     retrieving the contents of mutable files (both SDMF and MDMF). (`#1654`_)

   .. _`#1654`: https://tahoe-lafs.org/trac/tahoe-lafs/ticket/1654

2 years agoPullup ticket #3646 - requested by joerg
tron [Fri, 13 Jan 2012 12:12:29 +0000 (12:12 +0000)]
Pullup ticket #3646 - requested by joerg
lang/php: build for PHP extensions

Revisions pulled up:
- lang/php/ext.mk                                               1.24

---
   Module Name: pkgsrc
   Committed By: joerg
   Date: Thu Jan 12 18:25:50 UTC 2012

   Modified Files:
    pkgsrc/lang/php: ext.mk

   Log Message:
   Catch up with PHP 5.3 base.

2 years agoUpdate entry for ticket #3641.
tron [Thu, 12 Jan 2012 19:54:20 +0000 (19:54 +0000)]
Update entry for ticket #3641.

2 years agoPullup ticket #3641 - requested by taca
tron [Thu, 12 Jan 2012 19:53:15 +0000 (19:53 +0000)]
Pullup ticket #3641 - requested by taca
databases/php-mssql: security update
meta-pkgs/php53-extensions: security update

Revisions pulled up:
- lang/php53/distinfo                                           1.30
- lang/php53/patches/patch-php__mssql.h                         deleted
- meta-pkgs/php53-extensions/Makefile                           1.5

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Thu Jan 12 12:58:47 UTC 2012

   Modified Files:
    pkgsrc/lang/php53: distinfo
   Removed Files:
    pkgsrc/lang/php53/patches: patch-php__mssql.h

   Log Message:
   Fix build problem of databases/php-mssql.

---
   Module Name: pkgsrc
   Committed By: taca
   Date: Thu Jan 12 16:59:54 UTC 2012

   Modified Files:
    pkgsrc/meta-pkgs/php53-extensions: Makefile

   Log Message:
   Fix build problem along with update of php53; overhaul.

   * Don't specify upper limit version to depend.  Since PHP extensions are
     prefixed with PHP_PKG_PREFIX, it is no need to specify.
   * Relax lower limit version to depend for php extensions which aren't
     bundled in PHP 5.3.9 distribution file; reflecting recent change of
     lang/php/ext.mk

   To be safer, bump PKGREVISION.