Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
security fix for snort
Revisions pulled up:
- pkgsrc/net/snort/Makefile.common 1.17
- pkgsrc/net/snort/PLIST 1.18
- pkgsrc/net/snort/distinfo 1.24
- pkgsrc/net/snort-mysql/Makefile 1.12
- pkgsrc/net/snort-contrib/DESCR removed
- pkgsrc/net/snort-contrib/Makefile removed
- pkgsrc/net/snort-contrib/PLIST removed
- pkgsrc/net/snort-contrib/distinfo removed
Module Name: pkgsrc
Committed By: adrianp
Date: Fri Jan 28 23:02:41 UTC 2005
Modified Files:
pkgsrc/net/snort: Makefile Makefile.common PLIST
Log Message:
Update to snort 2.3.0
2005-01-25 - Snort 2.3.0 Final Released
* Fixed issue with sfPortscan reporting incorrect IP datagram length.
Thanks Jon Hart for the test case and finding the bug, and Marc Norton
for resolving the issue.
* Threshold/Suppression now prints properly when logging to syslog.
Thanks Sekure for pointing out the problem. Thanks Steve Sturges for
working on the fix.
* Threshold memcap argument now correctly handles non-integer input.
Thanks nnposter for the patch.
* Fixed issue reported by Allan Jensen, where on MacOS X, ppp links were
not decoded properly. Thanks Dan Roelker for the fix.
* Snort manual and FAQ are updated for 2.3. Thanks Jen Harvey for your
work on putting it all together.
2004-12-15 - Snort 2.3.0 RC2 Released
* Small performance improvement to arpspoof and also fixed a problem
where the list of configured IP/MAC entries would contain only one
entry and leaked memory (Jeff Nathan).
* Fixed a problem affecting MacOS X where linking may fail with
non-standard libraries when global symbols are encountered multiple
times (Jeff Nathan).
* Ignore RST|ACK midstream pickup case so we don't get an evasive TCP
alerts. Thanks for the report, Sekure. Thanks Dan Roelker for the fix.
* Moved CheckLogDir() to after parsing snort.conf (for IDS mode) so the
logdir config will work if the default or command-line logdir does not
exist on the system. Thanks Dan Roelker.
* Fixed bug when setting the doe_ptr on a successful pcre match.
It is now set relative to base_ptr. Thanks Steve Sturges for the
fix.
* Added from_beginning and multiplier options for byte_jump.
from_beginning skips bytes from the beginning of the content,
instead of from the location immediately following the number
of bytes to skip. multiplier takes a numeric argument, and
skips x times that number of bytes. Thanks again to Steve Sturges.
* In "fast" output, now log only actual packet contents when UDP
data length is greater than actual data length. Thanks Brian
Caswell for spotting this, and Andrew Mullican for working on the fix.
* Please check the ChangeLog for further details.
2004-11-18 - Snort 2.3.0 RC1 Released
* Added IPS functionality from Snort-Inline. A big thanks to the
Snort-Inline guys (Jed Haile, Rob McMillen, William Metcalf, and Victor
Julien). Also, Thanks Dan Roelker for doing the integrating of
Snort-Inline into the official Snort project.
* Added new portscan detector. The design and implementation was headed
up by Dan Roelker, and included Marc Norton and Jeremy Hewlett.
* Numerous changes for better 64bit Snort support from Jeremy Hewlett and
Marc Norton. Additionally, an --enable-64bit-gcc option was added to
configure. However, there are still some memory alignment issues to
work out before 64bit mode is fully functional, patches are welcomed.
Thanks Chris Baker for doing 64bit testing.
* Added not_established keyword to the flow detection option. This allows
snort to do dynamic firewall rulesets. Experimental for now.
* Added an enforce_state keyword to stream4 so we won't pick up midstream
sessions. This works well for asynchronous links and also for
just monitoring legitimate traffic.
* Relocated ./contrib files to http://www.snort.org/dl/contrib as many
are not maintained by Sourcefire and are out of date. The rpm and
schema files have been relocated in their respective 'rpm' and 'schemas'
directories under the snort parent directory.
* perfmonitor config line can now be configured with "accumulate" or
"reset." Thanks Marc Norton for the feature, and Barry Basselgia for
pointing out the issue. Thanks Scott Dexter and Andreas Ostling for
doing some initial testing.
* Fixed 64-bit bug in sfmemcap.c found and tested by Ryan Matteson
and Clay McClure. Thanks guys.
* Fixed reference times to match log time for first packet, for an event
generated by a reassembled packet. Incremented event ID to give
unique ID for each packet. Also made unified logging compatible with
Windows. Thanks Andrew Mullican for the fix.
* Fixed linux perfmonitoring stats for the 2.6 kernel. Thanks to
everyone that reported this bug. Thanks Dan Roelker for the fix.
* Get thresholding/suppression to work for alerts that do not
contain an ip header (primarily decode alerts). Thanks
Brian Caswell.
* Fix conditions where snort would log double web alerts that
contained only content options (no uricontents). Thanks to kawa for
finding and reporting this bug.
* Fix suppression/thresholding bug for non-rule alerts. Thanks to
Alex Butcher for reporting it to us.
* Many other bug fixes, please check the ChangeLog for details.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 29 03:27:58 UTC 2005
Modified Files:
pkgsrc/net/snort: distinfo
Log Message:
Update distinfo for snort-2.3.0.
---
Module Name: pkgsrc
Committed By: adrianp
Date: Fri Jan 28 23:03:59 UTC 2005
Modified Files:
pkgsrc/net/snort-mysql: Makefile
Log Message:
Sync and minor tidy up for snort 2.3.0 release.
---
Module Name: pkgsrc
Committed By: adrianp
Date: Fri Jan 28 22:51:27 UTC 2005
Removed Files:
pkgsrc/net/snort-contrib: DESCR Makefile PLIST distinfo
Log Message:
As of snort 2.3.0 all contrib files are now available from:
http://www.snort.org/dl/contrib/
|
|
|
|
security fix for dillo
Revisions pulled up:
- pkgsrc/www/dillo/Makefile 1.23-1.24
- pkgsrc/www/dillo/PLIST 1.10
- pkgsrc/www/dillo/distinfo 1.20-1.21
- pkgsrc/www/dillo/patches/patch-aa 1.5
- pkgsrc/www/dillo/patches/patch-ac 1.6
Module Name: pkgsrc
Committed By: jmmv
Date: Tue Jan 4 14:09:17 UTC 2005
Modified Files:
pkgsrc/www/dillo: Makefile PLIST distinfo
Added Files:
pkgsrc/www/dillo/patches: patch-aa
Log Message:
Properly handle the dpidrc configuration file. Bump PKGREVISION to 1.
Closes PR pkg/28854 by Alexander Becher.
---
Module Name: pkgsrc
Committed By: adrianp
Date: Mon Jan 10 21:54:36 UTC 2005
Modified Files:
pkgsrc/www/dillo: Makefile distinfo
Added Files:
pkgsrc/www/dillo/patches: patch-ac
Log Message:
Patch for recent security issue - bump to nb2
http://secunia.com/advisories/13760/
|
|
|
|
security fix for p5-DBI
Revisions pulled up:
- pkgsrc/databases/p5-DBI/Makefile 1.28
- pkgsrc/databases/p5-DBI/distinfo 1.14
- pkgsrc/databases/p5-DBI/patches/patch-aa 1.1
- pkgsrc/databases/p5-DBI/patches/patch-ab 1.1
Module Name: pkgsrc
Committed By: kim
Date: Sat Jan 29 18:30:47 UTC 2005
Modified Files:
pkgsrc/databases/p5-DBI: Makefile distinfo
Added Files:
pkgsrc/databases/p5-DBI/patches: patch-aa patch-ab
Log Message:
Apply Debian DSA-658 fix for CAN-2005-0077:
- do not create a PID file by default
http://www.debian.org/security/2005/dsa-658
|
|
|
|
security fix for gpdf
Revisions pulled up:
- pkgsrc/print/gpdf/Makefile 1.22
- pkgsrc/print/gpdf/distinfo 1.9
Module Name: pkgsrc
Committed By: jmmv
Date: Thu Feb 3 10:43:53 UTC 2005
Modified Files:
pkgsrc/print/gpdf: Makefile distinfo
Log Message:
Update to 2.8.3:
Version 2.8.3
-------------
* Fix for CAN 2005-0064 (Derek Noonburg)
* Fix font encoding code for Type1C fonts and freetype > 2.1.7
Version 2.8.2
-------------
* Fix potential buffer overflow in xpdf colorspace handling code.
(Derek Noonburg) - CAN 2004-1125
* Fix bookmarks navigation. (Martin Sjogren, Marco Pesenti Gritti)
- #159937
* Show "Exit Fullscreen" button only on current workspace. (Gordon
Ingram) - #161225
* Fix crash with broken embedded fonts. (Martin) - #161066
* Fix several crashes with mouse-over-links. (Martin) - #156784
* Translation updates: Vincent van Adrighem (nl)
|
|
|
|
security fix for xpdf
Revisions pulled up:
- pkgsrc/print/xpdf/Makefile 1.35
- pkgsrc/print/xpdf/distinfo 1.18
Module Name: pkgsrc
Committed By: drochner
Date: Wed Jan 19 10:01:03 UTC 2005
Modified Files:
pkgsrc/print/xpdf: Makefile distinfo
Log Message:
the daily security patch: update to 3.00pl3, fixes:
http://www.idefense.com/application/poi/display?id=186&type=vulnerabilities
|
|
|
|
distfiles fix for squid
Revisions pulled up:
- pkgsrc/www/squid/Makefile 1.131-1.132
- pkgsrc/www/squid/distinfo 1.77-1.78
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 1 01:31:10 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Update squid package to squid-2.5.7nb11.
squid-2.5.STABLE7-response_splitting.patch was updated, so update distinfo
and DIST_SUBDIR. It seems that a patch to one more file was added.
* 2005-01-31 01:50 (Security issue)
Strengthen Squid from HTTP response splitting cache pollution attack
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 1 10:22:20 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Fix file name of a patch file which squid people fix its typo.
Noted by salo@ first and PR pkg/29181 later.
|
|
|
|
generate and upload checksums for bulk builds
Revisions pulled up:
- pkgsrc/mk/bulk/build.conf-example 1.24-1.26
- pkgsrc/mk/bulk/upload 1.20-1.21
Module Name: pkgsrc
Committed By: jschauma
Date: Mon Jan 24 03:41:34 UTC 2005
Modified Files:
pkgsrc/mk/bulk: upload
Log Message:
Add bits to allow bulk-builders to generate checksums for the binary
packages they upload (by setting the optional variable MKSUMS=yes) and,
also optionally, PGP signing them (by setting SIGN_AS=username@NetBSD.org,
for example).
---
Module Name: pkgsrc
Committed By: jschauma
Date: Mon Jan 24 13:08:19 UTC 2005
Modified Files:
pkgsrc/mk/bulk: build.conf-example
Log Message:
Add MKSUMS and SIGN_AS (the former defaulting to yes, the latter
commented out).
---
Module Name: pkgsrc
Committed By: tv
Date: Mon Jan 24 13:21:13 UTC 2005
Modified Files:
pkgsrc/mk/bulk: build.conf-example
Log Message:
Not all OS's have all the checksum tools available to make MKSUMS=yes
work. Default it to "no" instead.
---
Module Name: pkgsrc
Committed By: jschauma
Date: Mon Jan 24 15:00:48 UTC 2005
Modified Files:
pkgsrc/mk/bulk: build.conf-example upload
Log Message:
Per default, only create md5 and sha1 checksums.
(These are available on all platforms via digest(1).)
Set commands for other checksums on a per OPSYS basis.
Set MKSUSM=yes back as the default.
|
|
Correct the version in BUILDLINK_RECOMMENDED, the package is still at 1rc6,
not 1rc8 on the branch.
Noted by Bartosz Kuzma in private mail.
|
|
|
|
security fix for squid
Revisions pulled up:
- pkgsrc/www/squid/Makefile 1.130
- pkgsrc/www/squid/distinfo 1.76
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 29 00:51:42 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Apply a new official patch which contains security problem.
* 2005-01-28 23:16 (Security issue) Buffer overflow in WCCP recvfrom() call
Bump PKG_REVISION and now squid-2.5.7nb10.
|
|
|
|
security fix for f2c
Revisions pulled up;
- pkgsrc/lang/f2c/Makefile 1.33
- pkgsrc/lang/f2c/buildlink3.mk 1.4
- pkgsrc/lang/f2c/distinfo 1.13
- pkgsrc/lang/f2c/patches/patch-ac 1.15
- pkgsrc/lang/f2c/patches/patch-ae 1.10
- pkgsrc/lang/f2c/patches/patch-ag 1.10
- pkgsrc/lang/f2c/patches/patch-ak 1.1
Modified Files:
pkgsrc/lang/f2c: Makefile buildlink3.mk distinfo
pkgsrc/lang/f2c/patches: patch-ac patch-ae patch-ag
Added Files:
pkgsrc/lang/f2c/patches: patch-ak
Log Message:
update to f2c-20001205nb8
This addresses a temp file symlink race vulnerability. The f2c patch
is adapted from the debian one. The f2c-f77 (wrapper script which
emulates a fortran compiler) patch was done a bit differently.
|
|
|
|
update win32-codecs
Revisions pulled up:
- pkgsrc/multimedia/win32-codecs/Makefile 1.13
- pkgsrc/multimedia/win32-codecs/PLIST 1.8
- pkgsrc/multimedia/win32-codecs/distinfo 1.11
Module Name: pkgsrc
Committed By: ben
Date: Thu Jan 27 23:53:13 UTC 2005
Modified Files:
pkgsrc/multimedia/win32-codecs: Makefile PLIST distinfo
Log Message:
Update win32-codecs to 050115. Changes unknown. Update necessary
because older distfile versions are removed. This addresses PR#29137
|
|
|
|
compatibility fix for dlopen.builtin.mk
Revisions pulled up:
- pkgsrc/mk/dlopen.builtin.mk 1.10
Module Name: pkgsrc
Committed By: jlam
Date: Thu Jan 20 15:22:39 UTC 2005
Modified Files:
pkgsrc/mk: dlopen.builtin.mk
Log Message:
Also match NetBSD security releases, e.g. 2.0.1, when deciding whether
using dlopen() implies linking against libpthread. Idea for fix from
PR pkg/29022 and probably also fixes PR pkg/28800.
|
|
|
|
distfile fix for awstats
Revisions pulled up:
- pkgsrc/www/awstats/Makefile 1.13
- pkgsrc/www/awstats/distinfo 1.7
Module Name: pkgsrc
Committed By: minskim
Date: Wed Jan 26 15:55:41 UTC 2005
Modified Files:
pkgsrc/www/awstats: Makefile distinfo
Log Message:
Distfile changed without bumping the version number. Noted by adrianp@.
diff(1) shows that some default values have been changed.
Set DIST_SUBDIR and bump PKGREVISION.
|
|
|
|
security fix for bind9
Revisions pulled up:
- pkgsrc/net/bind9/Makefile 1.65
- pkgsrc/net/bind9/distinfo 1.20
Module Name: pkgsrc
Committed By: tron
Date: Wed Jan 26 09:32:31 UTC 2005
Modified Files:
pkgsrc/net/bind9: Makefile distinfo
Log Message:
Apply ISC patch to fix a potential DoS in BIND 9.3.0 reported
in VU#938617.
Bump package version number to 9.3.0pl1 because of this.
|
|
|
|
build fix for postfix
Revisions pulled up:
- pkgsrc/mail/postfix/distinfo 1.80
- pkgsrc/mail/postfix/options.mk 1.14
- pkgsrc/mail/postfix/files/patch-inet6-ni_withscopeid 1.1
- pkgsrc/mail/postfix/patches/patch-aj removed
Module Name: pkgsrc
Committed By: kim
Date: Tue Dec 28 16:13:28 UTC 2004
Modified Files:
pkgsrc/mail/postfix: distinfo options.mk
Added Files:
pkgsrc/mail/postfix/files: patch-inet6-ni_withscopeid
Removed Files:
pkgsrc/mail/postfix/patches: patch-aj
Log Message:
Apply NI_WITHSCOPEID patch only if the inet6 option is enabled.
Closes PR pkg/28756
|
|
|
|
security fix for squid
Revisions pulled up:
- pkgsrc/www/squid/Makefile 1.129
- pkgsrc/www/squid/distinfo 1.75
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 26 15:29:03 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Update new and disabled official patches. The new patch includes
security fix.
o 2005-01-21 12:10 (Minor)
Disable Path-MTU discovery on intercepted requests
o 2005-01-21 12:43 (Security issue)
Strengthen Squid from HTTP response splitting cache pollution attack
Bump package revision.
|
|
|
|
security fix for webmin
Revisions pulled up:
- pkgsrc/sysutils/webmin/DEINSTALL 1.3
- pkgsrc/sysutils/webmin/Makefile 1.4-1.5
- pkgsrc/sysutils/webmin/distinfo 1.3
- pkgsrc/sysutils/webmin/files/webmin.sh 1.2
- pkgsrc/sysutils/webmin/patches/patch-aa 1.3
Module Name: pkgsrc
Committed By: jlam
Date: Sun Jan 23 04:36:27 UTC 2005
Modified Files:
pkgsrc/sysutils/webmin: DEINSTALL Makefile distinfo
pkgsrc/sysutils/webmin/files: webmin.sh
pkgsrc/sysutils/webmin/patches: patch-aa
Log Message:
Update sysutils/webmin to webmin-1.170. Changes from version 1.150
include:
* Added the new Bandwidth Monitoring module, for generating simple
reports of network traffic by port, time and host on Linux systems.
* Added the Cluster Copy module, for copying files to multiple servers
either on schedule or manually.
* Added the Backup Configuration Files module, for backing up and
restoring config files known to Webmin.
* Several improvements to the Linux firewall module, including pre-
and post commands, cluster support and the ability to reset the
firewall configuration.
* Support for selecting specific MySQL and PostgreSQL tables to back
up, and improved searching in the MySQL module.
* Automatic email notification for users approaching their disk quotas.
* The timezone can now be set in the System Time module on Linux,
Solaris and FreeBSD.
* Added the new Sarg Squid access reporting module. Thanks to Omar
Armas for sponsoring its development.
* Added support for NFSv4 to the Disk and Network Filesystems module.
* In the MySQL and PostgreSQL modules, all databases can now be backed
up at once, either manually or on a configured schedule.
* Added the ability to delete multiple users at once to the Users and
Groups module.
* Added support for MD5 encryption for Webmin passwords, to avoid the
8-character effective password length limit.
* The BIND module can now create and edit delegation-only zones.
* When PAM is used for Unix authentication, expired passwords are now
detected and the user is prompted to select a new password (if this
feature is enabled on the Webmin Configuration module).
---
Module Name: pkgsrc
Committed By: jlam
Date: Sun Jan 23 06:20:43 UTC 2005
Modified Files:
pkgsrc/sysutils/webmin: Makefile
Log Message:
Use the openssl/buildlink3.mk file to properly handle a built-in OpenSSL
distribution for the location of the "openssl" binary (used to generate
the self-signed certificate).
|
|
|
|
security fix for koffice
Revisions pulled up:
- pkgsrc/misc/koffice/Makefile 1.52-1.53
- pkgsrc/misc/koffice/distinfo 1.20
- pkgsrc/misc/koffice/patches/patch-ae 1.6
Module Name: pkgsrc
Committed By: darcy
Date: Sun Jan 9 10:56:14 UTC 2005
Modified Files:
pkgsrc/misc/koffice: Makefile
Log Message:
Package builds with latest version of Python.
---
Module Name: pkgsrc
Committed By: markd
Date: Fri Jan 21 11:32:12 UTC 2005
Modified Files:
pkgsrc/misc/koffice: Makefile distinfo
Added Files:
pkgsrc/misc/koffice/patches: patch-ae
Log Message:
latest xpdf vulnerability as it occurs in kword pdf import filter.
http://www.kde.org/info/security/advisory-20050120-1.txt
Bump PKGREVISION.
|
|
|
|
security fix for unarj
Revisions pulled up:
- pkgsrc/archivers/unarj/Makefile 1.18-1.19
- pkgsrc/archivers/unarj/PLIST 1.2
- pkgsrc/archivers/unarj/distinfo 1.3-1.4
- pkgsrc/archivers/unarj/files/Makefile 1.1-1.2
- pkgsrc/archivers/unarj/patches/patch-aa 1.6
- pkgsrc/archivers/unarj/patches/patch-ab 1.4
- pkgsrc/archivers/unarj/patches/patch-ad 1.1
Module Name: pkgsrc
Committed By: wiz
Date: Fri Jan 21 14:30:05 UTC 2005
Modified Files:
pkgsrc/archivers/unarj: Makefile PLIST distinfo
Log Message:
Update to 2.65. (Documented) changes:
UNARJ 2.65 - Fixed table boundaries per suggestion of
UNARJ 2.63 - Added additional header data checks.
UNARJ 2.61 - Added chapter and encryption information.
---
Module Name: pkgsrc
Committed By: wiz
Date: Fri Jan 21 14:30:32 UTC 2005
Added Files:
pkgsrc/archivers/unarj/files: Makefile
Log Message:
Add Makefile, since distfiles comes without one.
--
Module Name: pkgsrc
Committed By: wiz
Date: Fri Jan 21 14:41:16 UTC 2005
Modified Files:
pkgsrc/archivers/unarj/patches: patch-aa
Log Message:
regen with correct offsets
--
Module Name: pkgsrc
Committed By: wiz
Date: Fri Jan 21 14:42:10 UTC 2005
Modified Files:
pkgsrc/archivers/unarj: Makefile distinfo
pkgsrc/archivers/unarj/files: Makefile
Added Files:
pkgsrc/archivers/unarj/patches: patch-ab patch-ad
Log Message:
Add two patches from RedHat, fixing CAN-2004-0947 and CAN-2004-1027.
Bump PKGREVISION.
|
|
|
|
security fix for squid
Revisions pulled up:
- pkgsrc/www/squid/Makefile 1.125-1.128
- pkgsrc/www/squid/distinfo 1.73-1.74
Module Name: pkgsrc
Committed By: taca
Date: Sun Jan 16 15:46:25 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile
Log Message:
Set PKG_USERS and PKG_GROUPS with SQUID_USER and SQUID_GROUP.
Now squid's user and group are handled by bsd.pkg.install.mk properly.
Thanks much to Volker Wiegand at t-online dot de noted this problem
by private mail.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: kim
Date: Wed Jan 19 00:19:27 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile
Log Message:
Record SQUID_USER and SQUID_GROUP in BUILD_DEFS.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 19 14:56:55 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Apply three official patch including a minor security problem.
o 2005-01-17 04:29 (Minor Secuity issue) Sanity check usernames
in squid_ldap_auth
o 2005-01-17 02:52 (Minor) FQDN names truncated on compressed DNS
responses
o 2005-01-17 02:52 (Minor) Internal DNS memory leak on malformed
responses
Bump package revision; squid-2.5.7nb7.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Jan 21 13:41:27 UTC 2005
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Update new official patched.
o 2005-01-21 12:43 (Security issue)
Strengthen Squid from HTTP response splitting cache pollution attack
o 2005-01-21 12:10 (Minor)
Icons fails to load on non-anonymous FTP when using
short_icons_url directive
o 2005-01-21 12:10 (Minor)
FTP data connection fails on some FTP servers when requesting
directory without a trailing slash
One patch has problem to apply and hold to apply
o 2005-01-21 12:10 (Minor) Disable Path-MTU discovery on intercepted
requests
Bump package revision.
|
|
|
|
remove thunderbird-bin package
Module Name: pkgsrc
Committed By: wiz
Date: Thu Jan 20 14:00:41 UTC 2005
Modified Files:
pkgsrc/mail: Makefile
Removed Files:
pkgsrc/mail/thunderbird-bin: DESCR Makefile
Makefile.Linux.i386 Makefile.SunOS.i386
Makefile.SunOS.sparc PLIST distinfo
Log Message:
Remove old (and vulnerable) thunderbird-bin package. Ok'd by grant.
|
|
|
|
security fix for etheral
Revisions pulled up:
- pkgsrc/net/ethereal/Makefile 1.101-1.102
- pkgsrc/net/ethereal/PLIST 1.19
- pkgsrc/net/ethereal/distinfo 1.32
Module Name: pkgsrc
Committed By: minskim
Date: Sat Jan 1 17:55:38 UTC 2005
Modified Files:
pkgsrc/net/ethereal: Makefile
Log Message:
Add missing dependencies (glib2, pkgconfig) and bump PKGREIVISION.
---
Module Name: pkgsrc
Committed By: salo
Date: Fri Jan 21 00:33:24 UTC 2005
Modified Files:
pkgsrc/net/ethereal: Makefile PLIST distinfo
Log Message:
Update to version 0.10.9
This release fixes the following security-related issues:
- The COPS dissector could go into an infinite loop. (CAN-2005-0006)
- The DLSw dissector could cause an assertion, making Ethereal exit
prematurely. (CAN-2005-0007)
- The DNP dissector could cause memory corruption. (CAN-2005-0008)
- The Gnutella dissector could cause an assertion, making Ethereal exit
prematurely. (CAN-2005-0009)
- The MMSE dissector could free static memory. (CAN-2005-0010)
- The X11 protocol dissector is vulnerable to a string buffer overflow.
(CAN-2005-0084)
- Please see the application advisory for more information
Everyone is encouraged to upgrade.
New and updated features:
=========================
- Ethereal will now detect and flag weak 802.11 WEP IVs.
- Windows Sniffer timestamp handling has been greatly improved.
- A bug which made Ethereal crash at startup on Windows 98 and Windows ME
systems has been fixed.
- Ethereal and Tethereal now support a personal "hosts" file.
- Invalid field length handling has been greatly improved.
- The capture progress window title now shows the interface name.
New protocol support:
=====================
- ALC, AMR, CRMF, JXTA, NORM, PKIXCMP, PROFINET CBA
Updated protocol support:
=========================
- AIM, ARP, BGP, BOOTP/DHCP, COPS, DAAP, DCERPC EPM, DCERPC, DCOM, DHCPv6,
DLSw, DNP, DNS, EAPOL, eDonkey, FC-dNS, FC-FCS, FC-SWILS, FCIP, FCSB3, FIX,
GIOP, Gnutella, GSM A, GSM SMS, GTP, H.225, H.245, HTTP, ICMP, IEEE 802.11,
IEEE 802a, image/GIF, image/JFIF, Kerberos, L2TP, LDAP, LLC, LMP, MGCP,
MIME Multipart, MMSE, MPLS, MTP2, NBNS, NDMP, NMAS, NSIP, OLSR, PER, pflog,
PGM, PostgreSQL, PPP, PRES, Q.931, RADIUS, RTCP, RTP, SDP, SEBEK, SIGCOMP,
SIP, SLSK, SMB, SMPP, SRVLOC, SSL/TLS, T.38, TACACS, TCAP, TCP, X11
New and updated capture file support:
=====================================
- Windows Sniffer
|
|
|
|
security fix for kdegraphics3
Revisions pulled up:
- pkgsrc/graphics/kdegraphics3/Makefile 1.45
- pkgsrc/graphics/kdegraphics3/distinfo 1.25
- pkgsrc/graphics/kdegraphics3/patches/patch-ac 1.4
Module Name: pkgsrc
Committed By: markd
Date: Thu Jan 20 12:36:58 UTC 2005
Modified Files:
pkgsrc/graphics/kdegraphics3: Makefile distinfo
Log Message:
Latest xpdf vulnerability
http://www.kde.org/info/security/advisory-20050119-1.txt
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: markd
Date: Thu Jan 20 12:39:56 UTC 2005
Added Files:
pkgsrc/graphics/kdegraphics3/patches: patch-ac
Log Message:
add patch that was supposed to be in last commit.
|
|
|
|
build fix for nbitools
Revisions pulled up:
- pkgsrc/devel/nbitools/buildlink3.mk 1.3
Module Name: pkgsrc
Committed By: minskim
Date: Tue Jan 18 17:05:21 UTC 2005
Modified Files:
pkgsrc/devel/nbitools: buildlink3.mk
Log Message:
Let packages that require nbitools use GNU make on Linux, because
imake in nbitools generates Makefile that needs GNU make on Linux.
|
|
|
|
build fix for octave-forge
Patch supplied by the requester.
Add missing USE_FORTRAN to allow this package to compile.
|
|
|