Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
security update for drupal
Patch provided by the submitter.
Updated to version 4.6.8.
Drupal 4.6.8, 2006-06-01
------------------------
- fixed critical upload issue, see SA-2006-007
- fixed taxonomy XSS issue, see SA-2006-008
|
|
|
|
security fix for squirrelmail
Revisions pulled up:
- pkgsrc/mail/squirrelmail/Makefile 1.71, 1.73
- pkgsrc/mail/squirrelmail/distinfo 1.31, 1.32
- pkgsrc/mail/squirrelmail/patches/patch-ab 1.12
- pkgsrc/mail/squirrelmail/patches/patch-ac 1.3
- pkgsrc/mail/ja-squirrelmail/MESSAGE 1.3
- pkgsrc/mail/ja-squirrelmail/Makefile 1.27, 1.28, 1.30
- pkgsrc/mail/ja-squirrelmail/PLIST 1.4
- pkgsrc/mail/ja-squirrelmail/distinfo 1.9, 1.10, 1.11
- pkgsrc/mail/ja-squirrelmail/patches/patch-ab 1.3
- pkgsrc/mail/ja-squirrelmail/patches/patch-ac 1.3
- pkgsrc/mail/ja-squirrelmail/patches/patch-ad removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-ae removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-af removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-ag removed
- pkgsrc/mail/ja-squirrelmail/patches/patch-ah removed
Module Name: pkgsrc
Committed By: martti
Date: Tue Apr 11 05:24:20 UTC 2006
Modified Files:
pkgsrc/mail/squirrelmail: Makefile distinfo
Added Files:
pkgsrc/mail/squirrelmail/patches: patch-ab
Log Message:
Updated mail/squirrelmail to 1.4.6nb1
* added patch for Ukrainian translation (needed by the new
* squirrelmail-locales)
---
Module Name: pkgsrc
Committed By: taca
Date: Fri May 5 02:46:54 UTC 2006
Modified Files:
pkgsrc/mail/ja-squirrelmail: MESSAGE Makefile distinfo
Removed Files:
pkgsrc/mail/ja-squirrelmail/patches: patch-ab patch-ac patch-ad
patch-ae patch-af patch-ag patch-ah
Log Message:
Update ja-squirrelmail package to 1.4.6 after talking with martti@.
Prior to this release, there are security vulnerability the same as
squirrelmail 1.4.5.
This update made with temporary Japanese patch based on the patch
for 1.4.5.
---
Module Name: pkgsrc
Committed By: martti
Date: Fri May 5 05:32:36 UTC 2006
Modified Files:
pkgsrc/mail/ja-squirrelmail: Makefile PLIST distinfo
Added Files:
pkgsrc/mail/ja-squirrelmail/patches: patch-ab
Log Message:
Updated ja-squirrelmail to 1.4.6nb1
* sync with squirrelmail-1.4.6nb1
---
Module Name: pkgsrc
Committed By: tron
Date: Sun Jun 4 12:31:31 UTC 2006
Modified Files:
pkgsrc/mail/ja-squirrelmail: Makefile distinfo
pkgsrc/mail/squirrelmail: Makefile distinfo
Added Files:
pkgsrc/mail/ja-squirrelmail/patches: patch-ac
pkgsrc/mail/squirrelmail/patches: patch-ac
Log Message:
Add fix for security issue 2006-06-01 from SquirrelMail CVS repository.
Bump package revision.
|
|
|
|
security update for mysql5
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.13
- pkgsrc/databases/mysql5-client/distinfo 1.7
- pkgsrc/databases/mysql5-server/distinfo 1.8
Module Name: pkgsrc
Committed By: tron
Date: Sat Jun 3 15:29:13 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common distinfo
pkgsrc/databases/mysql5-server: distinfo
Log Message:
Update "mysql5-client" and "mysql5-server" packages to version 5.0.22.
This upgrade fixes the SQL injection vulnerability reported in SA20365.
|
|
|
|
security update for firefox and thunderbird
Revisions pulled up:
- pkgsrc/www/firefox/Makefile 1.35
- pkgsrc/www/firefox/Makefile-firefox.common 1.30, 1.33
- pkgsrc/www/firefox/distinfo 1.49, 1.50
- pkgsrc/www/firefox-gtk1/Makefile 1.13
- pkgsrc/www/firefox/patches/patch-fa removed
- pkgsrc/www/firefox/patches/patch-fb removed
- pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.15
- pkgsrc/mail/thunderbird/PLIST 1.14
- pkgsrc/mail/thunderbird/distinfo 1.23
- pkgsrc/mail/thunderbird-gtk1/PLIST 1.5
Module Name: pkgsrc
Committed By: ghen
Date: Thu May 4 05:16:13 UTC 2006
Modified Files:
pkgsrc/www/firefox: Makefile Makefile-firefox.common distinfo
pkgsrc/www/firefox-gtk1: Makefile
Removed Files:
pkgsrc/www/firefox/patches: patch-fa patch-fb
Log Message:
Update Firefox to 1.5.0.3, which is identical to our 1.5.0.2nb2 (except
for the advertized version), so there's no reason to upgrade. :-)
Fixes a denial of service vulnerability (MFSA 2006-30).
---
Module Name: pkgsrc
Committed By: ghen
Date: Sat Jun 3 08:04:36 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo
pkgsrc/mail/thunderbird-gtk1: PLIST
pkgsrc/www/firefox: Makefile-firefox.common distinfo
Log Message:
Update www/firefox and www/firefox-gtk to 1.5.0.4, mail/thunderbird and
mail/thunderbird-gtk1 to 1.5.0.4 (salo has already updated
www/firefox-bin). Note that thunderbird skipped one release number
(again) to stay on par with firefox.
These updates provide:
* improvements to product stability,
* several important security fixes (see below).
Fixed in Firefox 1.5.0.4:
MFSA 2006-43 Privilege escalation using addSelectionListener
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-41 File stealing by changing input type (variant)
MFSA 2006-39 "View Image" local resource linking (Windows)
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object
prototypes
MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-34 XSS viewing javascript: frames or images from context menu
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
Fixed in Thunderbird 1.5.0.4:
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-40 Double-free on malformed VCard
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object
prototypes
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
|
|
|
|
security update for firefox-bin
Revisions pulled up:
- pkgsrc/www/firefox-bin/Makefile 1.18
- pkgsrc/www/firefox-bin/distinfo 1.17
Module Name: pkgsrc
Committed By: salo
Date: Fri Jun 2 12:27:49 UTC 2006
Modified Files:
pkgsrc/www/firefox-bin: Makefile distinfo
Log Message:
Updated to version 1.5.0.4
Changes:
Fixes for security issues:
MFSA 2006-43 Privilege escalation using addSelectionListener
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-41 File stealing by changing input type (variant)
MFSA 2006-39 "View Image" local resource linking (Windows)
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object prototypes
MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-34 XSS viewing javascript: frames or images from context menu
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
|
|
|
|
security updates for postgresql
Revisions pulled up:
- pkgsrc/databases/postgresql73/Makefile.common 1.19
- pkgsrc/databases/postgresql73/distinfo 1.13
- pkgsrc/databases/postgresql73-docs/PLIST 1.7
- pkgsrc/databases/postgresql74/Makefile.common 1.36
- pkgsrc/databases/postgresql74/distinfo 1.21
- pkgsrc/databases/postgresql74-docs/PLIST 1.6
- pkgsrc/databases/postgresql80/Makefile.common 1.23
- pkgsrc/databases/postgresql80/distinfo 1.13
- pkgsrc/databases/postgresql80-client/PLIST 1.11
- pkgsrc/databases/postgresql81/Makefile.common 1.6
- pkgsrc/databases/postgresql81/distinfo 1.2
- pkgsrc/databases/postgresql81-client/PLIST 1.2
Module Name: pkgsrc
Committed By: joerg
Date: Fri May 26 17:47:58 UTC 2006
Modified Files:
pkgsrc/databases/postgresql73: Makefile.common distinfo
pkgsrc/databases/postgresql73-docs: PLIST
pkgsrc/databases/postgresql74: Makefile.common distinfo
pkgsrc/databases/postgresql74-docs: PLIST
pkgsrc/databases/postgresql80: Makefile.common distinfo
pkgsrc/databases/postgresql80-client: PLIST
pkgsrc/databases/postgresql81: Makefile.common distinfo
pkgsrc/databases/postgresql81-client: PLIST
Log Message:
Update PostgreSQL to 7.3.15, 7.4.13, 8.0.8 and 8.1.4 respectively.
Common to all versions:
* Change the server to reject invalidly-encoded multibyte characters
in all cases (Tatsuo, Tom) While PostgreSQL has been moving in this
direction for some time, the checks are now applied uniformly to
all encodings and all textual input, and are now always errors not
merely warnings. This change defends against SQL-injection attacks
of the type described in CVE-2006-2313.
* Reject unsafe uses of \' in string literals As a server-side
defense against SQL-injection attacks of the type described in
CVE-2006-2314, the server now only accepts '' and not \' as a
representation of ASCII single quote in SQL string literals. By
default, \' is rejected only when client_encoding is set to a
client-only encoding (SJIS, BIG5, GBK, GB18030, or UHC), which is
the scenario in which SQL injection is possible. A new
configuration parameter backslash_quote is available to adjust
this behavior when needed. Note that full security against
CVE-2006-2314 may require client-side changes; the purpose of
backslash_quote is in part to make it obvious that insecure clients
are insecure.
* Modify libpq's string-escaping routines to be aware of encoding
considerations This fixes libpq-using applications for the
security issues described in CVE-2006-2313 and CVE-2006-2314.
Applications that use multiple PostgreSQL connections concurrently
should migrate to PQescapeStringConn() and PQescapeByteaConn() to
ensure that escaping is done correctly for the settings in use in
each database connection. Applications that do string escaping
"by hand" should be modified to rely on library routines instead.
* Fix some incorrect encoding conversion functions win1251_to_iso,
alt_to_iso, euc_tw_to_big5, euc_tw_to_mic, mic_to_euc_tw were all
broken to varying extents.
* Clean up stray remaining uses of \' in strings (Bruce, Jan)
* Fix server to use custom DH SSL parameters correctly (Michael Fuhr)
* Fix various minor memory leaks
Additionally for 7.4.13 and later:
* Fix bug that sometimes caused OR'd index scans to miss rows they
should have returned
* Fix WAL replay for case where a btree index has been truncated
* Fix SIMILAR TO for patterns involving | (Tom)
* Fix for Bonjour on Intel Macs (Ashley Clark)
Additionally for 8.0.8 and 8.1.4:
* Fix SELECT INTO and CREATE TABLE AS to create tables in the
default tablespace, not the base directory (Kris Jurka)
* Fix problem with password prompting on some Win32 systems (Robert
Kinberg)
Additionally for 8.1.4:
* Fix weak key selection in pgcrypto (Marko Kreen)
Errors in fortuna PRNG reseeding logic could cause a predictable
session key to be selected by pgp_sym_encrypt() in some cases.
This only affects non-OpenSSL-using builds.
* Make autovacuum visible in pg_stat_activity (Alvaro)
* Disable full_page_writes (Tom)
In certain cases, having full_page_writes off would cause crash
recovery to fail. A proper fix will appear in 8.2; for now it's
just disabled.
* Various planner fixes, particularly for bitmap index scans and
MIN/MAX optimization (Tom)
* Fix incorrect optimization in merge join (Tom)
Outer joins could sometimes emit multiple copies of unmatched
rows.
* Fix crash from using and modifying a plpgsql function in the same
transaction
* Improve qsort performance (Dann Corbit)
Currently this code is only used on Solaris.
* Improve pg_dump's handling of default values for domains
* Fix pg_dumpall to handle identically-named users and groups
reasonably (only possible when dumping from a pre-8.1 server) (Tom)
The user and group will be merged into a single role with LOGIN
permission. Formerly the merged role wouldn't have LOGIN
permission, making it unusable as a user.
* Fix pg_restore -n to work as documented (Tom)
|
|
|
|
security fix for awstats
Revisions pulled up:
- pkgsrc/www/awstats/Makefile 1.26
- pkgsrc/www/awstats/distinfo 1.15, 1.16
- pkgsrc/www/awstats/patches/patch-aa 1.5, 1.5
Module Name: pkgsrc
Committed By: minskim
Date: Tue May 30 04:33:12 UTC 2006
Modified Files:
pkgsrc/www/awstats: Makefile distinfo
Added Files:
pkgsrc/www/awstats/patches: patch-aa
Log Message:
Fix http://www.debian.org/security/2006/dsa-1075. Patch from Debian
GNU/Linux.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue May 30 19:50:25 UTC 2006
Modified Files:
pkgsrc/www/awstats: distinfo
pkgsrc/www/awstats/patches: patch-aa
Log Message:
Fix a problem with perl warnings and static page generation.
ok'ed minskim@
|
|
|
|
security update for tor
Revisions pulled up:
- pkgsrc/net/tor/MESSAGE 1.4
- pkgsrc/net/tor/Makefile 1.29
- pkgsrc/net/tor/distinfo 1.17
- pkgsrc/net/tor/patches/patch-ac 1.3
- pkgsrc/net/tor/patches/patch-ad 1.2
Module Name: pkgsrc
Committed By: jschauma
Date: Fri May 26 02:21:42 UTC 2006
Modified Files:
pkgsrc/net/tor: MESSAGE Makefile distinfo
pkgsrc/net/tor/patches: patch-ac patch-ad
Log Message:
- Update tor to latest stable version 0.1.1.20 via files from pkgsrc-wip
- maintainer -> tv
Changes (summary):
some major security fixes, including entry guards to protect the
beginning of the circuit, exit enclaves to protect the end, and better
firewall support; a new directory protocol that improves bandwidth use
and keeps clients more up to date; two new directory authorities;
a new ascii-based controller protocol that lets people easily write
applications to interact with Tor; and
many scalability and performance improvements
Full changes available at
http://archives.seul.org/or/announce/May-2006/msg00000.html
|
|
|
|
security fix for cscope
Revisions pulled up:
- pkgsrc/devel/cscope/Makefile 1.44
- pkgsrc/devel/cscope/distinfo 1.13
- pkgsrc/devel/cscope/patches/patch-ae 1.7
- pkgsrc/devel/cscope/patches/patch-af 1.6
- pkgsrc/devel/cscope/patches/patch-ag 1.3
- pkgsrc/devel/cscope/patches/patch-ah 1.3
- pkgsrc/devel/cscope/patches/patch-ai 1.3
- pkgsrc/devel/cscope/patches/patch-aj 1.1
- pkgsrc/devel/cscope/patches/patch-ak 1.1
- pkgsrc/devel/cscope/patches/patch-al 1.1
- pkgsrc/devel/cscope/patches/patch-am 1.1
- pkgsrc/devel/cscope/patches/patch-an 1.1
- pkgsrc/devel/cscope/patches/patch-ao 1.1
Module Name: pkgsrc
Committed By: tron
Date: Mon May 29 13:48:53 UTC 2006
Modified Files:
pkgsrc/devel/cscope: Makefile distinfo
pkgsrc/devel/cscope/patches: patch-af
Added Files:
pkgsrc/devel/cscope/patches: patch-ae patch-ag patch-ah patch-ai
patch-aj patch-ak patch-al patch-am patch-an patch-ao
Log Message:
Integrate Debian's fix for security whole reported in CVE-2004-2541.
Bump package revision.
|
|
|
|
install fix for phpldapadmin
Revisions pulled up:
- pkgsrc/databases/phpldapadmin/Makefile 1.22
Module Name: pkgsrc
Committed By: adrianp
Date: Sun May 28 18:18:44 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: Makefile
Log Message:
Fix a bug in the Makefile which caused the files to be installed with
the wrong permissions.
Bump PKGREVISION
|
|
|
|
security update for drupal
Revisions pulled up:
- pkgsrc/www/drupal/Makefile 1.8, 1.9, 1.10
- pkgsrc/www/drupal/distinfo 1.8
- pkgsrc/www/drupal/PLIST 1.2, 1.3
Module Name: pkgsrc
Committed By: adrianp
Date: Fri May 26 16:56:19 UTC 2006
Modified Files:
pkgsrc/www/drupal: Makefile distinfo
Log Message:
Drupal 4.6.7, 2006-05-24
------------------------
- fixed critical SQL issue, see SA-2006-005
---
Module Name: pkgsrc
Committed By: adrianp
Date: Fri May 26 17:14:35 UTC 2006
Modified Files:
pkgsrc/www/drupal: Makefile PLIST
Log Message:
Add missing .htaccess file. Thanks to taca@ for spotting this.
Fix pkglint warnings
---
Module Name: pkgsrc
Committed By: adrianp
Date: Sat May 27 15:52:54 UTC 2006
Modified Files:
pkgsrc/www/drupal: Makefile PLIST
Log Message:
Fix an issue with binary packages pointed out by salo@
Bump PKGREVISION
|
|
|
|
security fix for mpg123
Revisions pulled up:
- pkgsrc/audio/mpg123/Makefile 1.42
- pkgsrc/audio/mpg123/distinfo 1.27
- pkgsrc/audio/mpg123/patches/patch-ai 1.4
- pkgsrc/audio/mpg123-esound/Makefile 1.17
- pkgsrc/audio/mpg123-nas/Makefile 1.20
Module Name: pkgsrc
Committed By: drochner
Date: Fri May 26 12:16:13 UTC 2006
Modified Files:
pkgsrc/audio/mpg123: Makefile distinfo
pkgsrc/audio/mpg123/patches: patch-ai
Log Message:
fix buffer overflow (CVE-2006-1655), from Debian
bump PKGREVISION
---
Module Name: pkgsrc
Committed By: drochner
Date: Fri May 26 12:33:37 UTC 2006
Modified Files:
pkgsrc/audio/mpg123-esound: Makefile
pkgsrc/audio/mpg123-nas: Makefile
Log Message:
also bump PKGREVISION for mpg123 security fix, pointed out
by Joerg Sonnenberger
|
|
|
|
build and other fixes for clisp
Revisions pulled up:
- pkgsrc/lang/clisp/Makefile 1.52, 1.54
- pkgsrc/lang/clisp/distinfo 1.12
- pkgsrc/lang/clisp/patches/patch-aa 1.13
- pkgsrc/lang/clisp/patches/patch-ab 1.9
- pkgsrc/lang/clisp/patches/patch-ac 1.7
- pkgsrc/lang/clisp/patches/patch-ad 1.7
- pkgsrc/lang/clisp/patches/patch-ae 1.7
- pkgsrc/lang/clisp/patches/patch-af 1.6
- pkgsrc/lang/clisp/patches/patch-ag 1.4
Module Name: pkgsrc
Committed By: wiz
Date: Tue Apr 4 19:12:10 UTC 2006
Modified Files:
pkgsrc/lang/clisp: Makefile
Log Message:
Fix build on amd64. Add same workaround for other 64-bit platforms.
Remove outdated comment.
From Martijn in PR 33189.
---
Module Name: pkgsrc
Committed By: joerg
Date: Wed May 10 18:26:34 UTC 2006
Modified Files:
pkgsrc/lang/clisp: Makefile distinfo
pkgsrc/lang/clisp/patches: patch-aa
Added Files:
pkgsrc/lang/clisp/patches: patch-ab patch-ac patch-ad patch-ae patch-af
patch-ag
Log Message:
Readd the various pieces for DragonFly. Explicitly disable mmap,
it currently doesn't work.
|
|
|
|
security fix for noweb
Revisions pulled up:
- pkgsrc/devel/noweb/Makefile 1.33
- pkgsrc/devel/noweb/distinfo 1.4
- pkgsrc/devel/noweb/patches/patch-ab 1.1
- pkgsrc/devel/noweb/patches/patch-ac 1.1
- pkgsrc/devel/noweb/patches/patch-ad 1.1
- pkgsrc/devel/noweb/patches/patch-ae 1.1
- pkgsrc/devel/noweb/patches/patch-af 1.1
- pkgsrc/devel/noweb/patches/patch-ag 1.1
- pkgsrc/devel/noweb/patches/patch-ah 1.1
- pkgsrc/devel/noweb/patches/patch-ai 1.1
- pkgsrc/devel/noweb/patches/patch-aj 1.1
- pkgsrc/devel/noweb/patches/patch-ak 1.1
- pkgsrc/devel/noweb/patches/patch-al 1.1
- pkgsrc/devel/noweb/patches/patch-am 1.1
- pkgsrc/devel/noweb/patches/patch-an 1.1
Module Name: pkgsrc
Committed By: joerg
Date: Tue May 23 16:07:04 UTC 2006
Modified Files:
pkgsrc/devel/noweb: Makefile distinfo
Added Files:
pkgsrc/devel/noweb/patches: patch-ab patch-ac patch-ad patch-ae
patch-af patch-ag patch-ah patch-ai patch-aj patch-ak patch-al
patch-am patch-an
Log Message:
Fix insecure temporary file generation. Based on Debian patchset,
but handles more cases. Bump revision.
|
|
|
|
security update for phpldapadmin
Revisions pulled up:
- pkgsrc/databases/phpldapadmin/MESSAGE 1.5, 1.6
- pkgsrc/databases/phpldapadmin/Makefile 1.19, 1.20, 1.21
- pkgsrc/databases/phpldapadmin/PLIST 1.6, 1.7
- pkgsrc/databases/phpldapadmin/distinfo 1.8, 1.9
- pkgsrc/databases/phpldapadmin/patches/patch-aa removed
- pkgsrc/databases/phpldapadmin/patches/patch-ab removed
Module Name: pkgsrc
Committed By: adrianp
Date: Thu May 18 22:13:46 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: MESSAGE Makefile PLIST distinfo
Removed Files:
pkgsrc/databases/phpldapadmin/patches: patch-aa patch-ab
Log Message:
Updated phpldapadmin to 0.9.8.3
Thanks to Yoshito Komatsu for feedback and testing
A summary of changes include:
This release fixes some minor bugs and some security alerts.
Code syntax fixing tests
HTML Validation fixes
Added support for binary attrs in templates & HTML Validation fixes
Few minor bug fixes.
Changed default login attribute back to "dn".
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu May 18 22:22:37 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: Makefile
Log Message:
Add a missing DEPENDS from the package update
---
Module Name: pkgsrc
Committed By: adrianp
Date: Sun May 21 11:58:25 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: distinfo
Log Message:
Fix checksums
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue May 23 20:51:44 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: MESSAGE Makefile PLIST
Log Message:
Watch for non-empty config/ directory
Use CONF_FILES_PERMS to install the conf.php file
Don't use WWW_USER to set permissions as that assumes apache is always installed
Bump PKGREVISION
Fix binary packages (pointed out by salo@)
|
|
|
|
security update for libextractor
Revisions pulled up:
- pkgsrc/devel/libextractor/Makefile 1.16, 1.17
- pkgsrc/devel/libextractor/PLIST 1.6
- pkgsrc/devel/libextractor/distinfo 1.13, 1.14
- pkgsrc/devel/libextractor/patches/patch-ab 1.4, 1.5
- pkgsrc/devel/libextractor/patches/patch-ac removed
- pkgsrc/devel/libextractor/patches/patch-ad 1.6, 1.7
Module Name: pkgsrc
Committed By: adam
Date: Mon May 1 21:06:56 UTC 2006
Modified Files:
pkgsrc/devel/libextractor: Makefile PLIST distinfo
pkgsrc/devel/libextractor/patches: patch-ab patch-ad
Removed Files:
pkgsrc/devel/libextractor/patches: patch-ac
Log Message:
Changes 0.5.13:
Added dictionaries for Finnish, French, Gaelic and Swedish
(for printable extractors).
Word history extraction works (wordleaker).
exiv2 works.
Added Python binding.
libextractor becomes a GNU package.
Thumbnails work.
---
Module Name: pkgsrc
Committed By: adam
Date: Tue May 23 10:52:22 UTC 2006
Modified Files:
pkgsrc/devel/libextractor: Makefile distinfo
pkgsrc/devel/libextractor/patches: patch-ab patch-ad
Log Message:
Changes 0.5.14:
* Bug fixes
* MPEG2 support
|
|
|
|
portability build fix for dovecot
Revisions pulled up:
- pkgsrc/mail/dovecot/Makefile 1.52
- pkgsrc/mail/dovecot/distinfo 1.30
- pkgsrc/mail/dovecot/patches/patch-af 1.1
Module Name: pkgsrc
Committed By: ghen
Date: Sun May 21 13:48:51 UTC 2006
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Added Files:
pkgsrc/mail/dovecot/patches: patch-af
Log Message:
Fix a problem with non-C99 compilers (reported on NetBSD 1.6 and
Solaris). The patch is from dovecot CVS (see the thread following
http://www.dovecot.org/list/dovecot/2006-May/013389.html), via PR
pkg/33489. Bump PKGREVISION.
|
|
|
|
sync sendmail with HEAD
Revisions pulled up:
- pkgsrc/mail/sendmail/Makefile 1.87
- pkgsrc/mail/sendmail/Makefile.common 1.34
- pkgsrc/mail/sendmail/distinfo 1.28
- pkgsrc/mail/sendmail/patches/patch-ag 1.12
- pkgsrc/mail/sendmail/patches/patch-ai removed
- pkgsrc/mail/sendmail/patches/patch-aj removed
- pkgsrc/mail/sendmail/patches/patch-ak removed
- pkgsrc/mail/sendmail/patches/patch-al removed
Module Name: pkgsrc
Committed By: adrianp
Date: Fri May 12 22:23:09 UTC 2006
Modified Files:
pkgsrc/mail/sendmail: Makefile Makefile.common distinfo
pkgsrc/mail/sendmail/patches: patch-ag
Removed Files:
pkgsrc/mail/sendmail/patches: patch-ai patch-aj patch-ak patch-al
Log Message:
Update to sendmail 8.13.6
> 8.13.6/8.13.6 2006/03/22
> SECURITY: Replace unsafe use of setjmp(3)/longjmp(3) in the server
> and client side of sendmail with timeouts in the libsm I/O
> layer and fix problems in that code. Also fix handling of
> a buffer in sm_syslog() which could have been used as an
> attack vector to exploit the unsafe handling of
> setjmp(3)/longjmp(3) in combination with signals.
> Problem detected by Mark Dowd of ISS X-Force.
> Handle theoretical integer overflows that could triggered if
> the server accepted headers larger than the maximum
> (signed) integer value. This is prevented in the default
> configuration by restricting the size of a header, and on
> most machines memory allocations would fail before reaching
> those values. Problems found by Phil Brass of ISS.
> If a server returns 421 for an RSET command when trying to start
> another transaction in a session while sending mail, do
> not trigger an internal consistency check. Problem found
> by Allan E Johannesen of Worcester Polytechnic Institute.
> If a server returns a 5xy error code (other than 501) in response
> to a STARTTLS command despite the fact that it advertised
> STARTTLS and that the code is not valid according to RFC
> 2487 treat it nevertheless as a permanent failure instead
> of a protocol error (which has been changed to a
> temporary error in 8.13.5). Problem reported by Jeff
> A. Earickson of Colby College.
> Clear SMTP state after a HELO/EHLO command. Patch from John
> Myers of Proofpoint.
> Observe MinQueueAge option when gathering entries from the queue
> for sorting etc instead of waiting until the entries are
> processed. Patch from Brian Fundakowski Feldman.
> Set up TLS session cache to properly handle clients that try to
> resume a stored TLS session.
> Properly count the number of (direct) child processes such that
> a configured value (MaxDaemonChildren) is not exceeded.
> Based on patch from Attila Bruncsak.
> LIBMILTER: Remove superfluous backslash in macro definition
> (libmilter.h). Based on patch from Mike Kupfer of
> Sun Microsystems.
> LIBMILTER: Don't try to set SO_REUSEADDR on UNIX domain sockets.
> This generates an error message from libmilter on
> Solaris, though other systems appear to just discard the
> request silently.
> LIBMILTER: Deal with sigwait(2) implementations that return
> -1 and set errno instead of returning an error code
> directly. Patch from Chris Adams of HiWAAY Informations
> Services.
> Portability:
> Fix compilation checks for closefrom(3) and statvfs(2)
> in NetBSD. Problem noted by S. Moonesamy, patch from
> Andrew Brown.
|
|
|
|
security update for openldap
Revisions pulled up:
- pkgsrc/databases/openldap/Makefile 1.111, 1.112, 1.113
- pkgsrc/databases/openldap/PLIST 1.26
- pkgsrc/databases/openldap/distinfo 1.45, 1.46, 1.47
- pkgsrc/databases/openldap/patches/patch-ac 1.11
- pkgsrc/databases/openldap/patches/patch-ad 1.7
- pkgsrc/databases/openldap/patches/patch-ah 1.5
- pkgsrc/databases/openldap/patches/patch-am 1.5
Module Name: pkgsrc
Committed By: grant
Date: Fri Apr 7 00:35:02 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile
Log Message:
fix avl_* function prototype conflicts on Solaris, so this now builds
on Solaris.
---
Module Name: pkgsrc
Committed By: ghen
Date: Mon May 15 19:01:23 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile PLIST distinfo
pkgsrc/databases/openldap/patches: patch-ac patch-ah patch-am
Log Message:
Update OpenLDAP from 2.3.11 to 2.3.21. Ok with joerg.
Here are all the changes:
OpenLDAP 2.3.21 Release
Fixed libldap referral chasing issue (ITS#4448)
Fixed libldap invalid free bug (ITS#4436)
Fixed libldap mutex leak (ITS#4441)
Fixed libldap_r thr_yield(2) return handling (ITS#4469)
Fixed slapd syncprov/glue interaction issue (ITS#4323, ITS#4417)
Fixed slapd operational attrs in presence of global overlays (ITS#4431)
Fixed slapd "threads" config value checking (ITS#4433)
Fixed slapd connection index bound check (ITS#4449)
Fixed slapd connection cleanup (ITS#4465)
Fixed slapd slap_realloc misuse (ITS#4477)
Fixed slapd size limit check when pagesize=3D1 (ITS#4479)
Fixed slapd-bdb/hdb cache issue (ITS#4439)
Fixed slapd-ldbm crash on modify bug (ITS#4464)
Fixed slapd-ldap potential bind deadlock (ITS#4409)
Fixed slapd-ldap/meta conn expiration concurrency (ITS#4429)
Fixed slapd-ldap failed bind connection trashing (ITS#4428)
Fixed slapd-ldap/meta chase-referrals disabling (ITS#4447)
Fixed slapd-ldap controls forwarding (ITS#4457)
Fixed slapd-ldap pretty DN in proxied requests (ITS#4456)
Fixed slapd-ldbm crash on modify bug (ITS#4464)
Fixed slapd-meta write error mapping (ITS#4419)
Removed lint
Build Environment
Added slapo-auditlog build support (ITS#4372)
Fixed multi-precision sizeof detection (ITS#4416)
Fixed liblunicode build (ITS#4435)
Updated libtool to version 1.5.22 (ITS#4471)
Updated shtool to version 2.0.5
OpenLDAP 2.3.20 Release
Added libldap SASL workaround for broken LDAP servers (ITS#4391)
Fixed libldap/slapd valuesReturnFilter OID (ITS#4404)
Fixed slapd config_generic_wrapper missing parameter bug (ITS#4376)
Fixed slapd extensible filter value normalization bug (ITS#4380)
Fixed slapd context CSN not updating issue (ITS#4384)
Fixed slapd non-read/write epoll event handling (ITS#4395)
Fixed slapd syncrepl de-normalize UUID issue
Fixed slapd syncrepl dynamic reconfig issue (ITS#4401)
Added slapd syncrepl log messages (ITS#4369)
Added slapd permissive modify/increment support
Added slapd dynamically registered debug level support
Fixed slapd connectionless LDAP support
Fixed slapd cn=3Dconfig error on create failure issue (ITS#4407)
Fixed slapd-bdb/hdb wake listener on runqueue submit (ITS#4385)
Fixed slapd-ldap/meta resources leaks on multiple binds (ITS#4387)
Fixed slapd-ldap/meta assert on connection shutdown (ITS#4390)
Added slapd-meta subtree-exclude feature
Fixed slapo-syncprov update latency issue (ITS#4385)
Fixed slapo-auditlog crash (ITS#4394)
Fixed slapo-accesslog unbind crash (ITS#4386)
Fixed slurpd reject error formating (ITS#4382)
Fixed ldappasswd unbind issue (ITS#4403)
Fixed slapo-pcache assert on attrsonly search (ITS#4406)
Added slapo-pcache max_queries enhancement (ITS#4225)
Added slapo-pcache negative caching enhancement
Build Environment
Fixed liblunicode cross compiling problem (ITS#4363)
Updated <netinet/tcp.h> detection for AIX (ITS#4312)
Updated multi-precision library detection
Documentation
Updated misc. manual pages
OpenLDAP 2.3.19 Release
Fixed libldap disable DH key exchange with DH params (ITS#4354)
Fixed libldap_r thread pool destroy hang (ITS#4349,ITS#4368)
Fixed slapd slap_daemon destroy issue (ITS#4370)
Fixed slapd-hdb livelock issue (ITS#4360)
Fixed slapd-bdb/hdb auto-recovery issue (ITS#4361,ITS#4373)
Fixed slapd-bdb/hdb BDB 4.4 compatibility issues (ITS#4362)
Fixed slapo-ppolicy modify issue (ITS#4355)
Fixed slapo-syncprov/pcache filter dup issue (ITS#4364)
Fixed slapo-syncprov playlog nentries reset issue (ITS#4365)
Build environment
Fixed slaptools when --disable-debug (ITS#4351)
Fixed slapd(8) solaris select(2) issue (ITS#4357)
OpenLDAP 2.3.18 Release
Fixed slapd syncrepl variable used before set bug (ITS#4331)
Updated slapd-meta retry capabilities (ITS#4328)
Fixed slapd-bdb slapcat autorecover bug (ITS#4324)
Fixed slapo-chain search limits (ITS#4336)
Fixed slapo-pcache attrsets issues (ITS#4316)
Fixed slapo-translucent connection destroy (ITS#4334)
Fixed slapd-config handling of attribute options (ITS#4339)
Fixed slapd-ldap idassert resource leak (ITS#4326)
Fixed slapd-meta nretries issue (ITS#4059)
Fixed slapd wake_listener loses wakes (ITS#4343)
Fixed slapd connection manager issue (ITS#4338)
Fixed slapd handling of old style configuration directives (ITS#4341)
Removed slapd-bdb/hdb extraneous yields (ITS#3950)
Build Environment
Removed problematic Linux sched_yield(2) workarounds (ITS#3950)
Documentation
Updated release documents
Updated misc. manual pages
OpenLDAP 2.3.17 Release
Fixed slapd anonymous proxy authorization issue (ITS#4320)
Fixed slapd-ldap/meta session reuse issue (ITS#4315)
Fixed slapd-ldap idassert anon-to-anon issue (ITS#4321)
Fixed slapd-monitor thread issue (ITS#4318)
Build environment
Updated Linux sched_yield(2) workaround to use nanosleep(2) (ITS#3950)
Fixed configure report-to URL
OpenLDAP 2.3.16 Release
Fixed slapd-bdb reindexing via cn=3Dconfig not noticed issue (ITS#4260)
Fixed slapd-monitor connection search crash (ITS#4300)
Flapd slapd cn=3Dconfig bad ACL syntax modify crash (ITS#4306)
Fixed slapd ACL/suffix configuration issue (ITS#4307)
Fixed slapd-bdb/hdb cache issue (ITS#4308)
Fixed slapd-bdb/hdb/ldbm suffix add with default referral issue (ITS#4310)
Fixed slapd-ldbm compare cache release issue (ITS#4313)
Fixed slapd syncrepl time/size limit parsing
Fixed slapi slapi_op_bind_callback fix (ITS#4311)
Fixed slapi pluginlog fix (ITS#4291)
Fixed ldapsearch response control handling issue
Build environment
Replace sched_yield(2) on Linux with select(2) (ITS#3950)
Documentation
Added slapd-bdb(5) cachefree description
Updated misc. manual pages
OpenLDAP 2.3.15 Release
Fixed slapd strerror logging bug (ITS#4292)
Fixed slapd ACL add/delete fraction issue (ITS#4295)
Fixed slapd ACL users selfwrite issue (ITS#4299)
Fixed slapd attrs/objectclass replog issues (ITS#4298)
Fixed slapd-ldap password modify exop password return (ITS#4294)
Build environment
Disable test030-relay when threads are unavailable (ITS#4297)
OpenLDAP 2.3.14 Release
Fixed slapd assertion control restrictions
Fixed slapd sc_prev update after free bug (ITS#4237)
Fixed slapd pid file creation (ITS#4241,4251)
Fixed slapd DEBUG dependency (ITS#4245)
Added slapd warning for excessive threads number (ITS#4249)
Fixed slapd passwd incomplete mod structure issue (ITS#4278)
Fixed slapd ACL exact attrval clause normalization (ITS#4255)
Fixed slapd modify/delete by ordered index issue
Fixed slapd strerror NULL bug (ITS#4285)
Fixed slapd-glue issues (ITS#4084,4133)
Fixed slapd-hdb idl Delete bug (ITS#4250)
Fixed slapd-hdb cache deadlock (ITS#4254)
Fixed slapd-bdb/hdb alock_close bug (ITS#4259)
Fixed slapd-bdb dn2id IDL cache bug (ITS#4263)
Fixed slapd-bdb/hdb mode argument parsing (ITS#4257)
Fixed slapd-bdb/hdb cn=3Dconfig reindexing (ITS#4260)
Fixed slapd-bdb/hdb cn=3Dconfig olcDbIndex modify/replace (ITS#4262)
Fixed slapd-bdb/hdb lockup issue (ITS#4184)
Fixed slapd-ldap anonymous identity assertion (ITS#4272)
Added slapd-ldap/meta idle-timeout support (ITS#4115)
Fixed slapd-meta bind-timeout handling
Fixed slapd-sql plug leak
Fixed slapo-dynlist/dyngroup nonexistant object return code (ITS#4224)
Updated slapo-dynlist (ITS#3756,3781)
Fixed slapo-rwm static DN free bug (ITS#4248)
Fixed slapo-syncprov unpublished control (ITS#4238)
Fixed slapo-syncprov message id issue
Fixed slapo-unique extraneous searches (ITS#4267)
Build environment
Fixed thread dependency of test028 (ITS#4141)
Updated test026-dn
Updated test033-glue-syncrepl (ITS#4264)
Documentation
Updated slapd.conf(5) and Admin Guide (ITS#4146,4266)
Updated slapo-dynlist(5) (ITS#4197)
Updated slapo-pcache(5) (ITS#4232)
Updated slapindex(8) (ITS#4242)
OpenLDAP 2.3.13 Release
Fixed libldap/liblutil MSG_ACCRIGHTSLEN bug (ITS#4206)
Fixed libldap ldap_bv2escaped_filter_value issue (ITS#4212)
Fixed liblutil URL value-specs issue (ITS#4221)
Fixed slapd sizelimit disclose issue (ITS#4213)
Fixed slapd gentlehup write restrict issue (ITS#3717)
Fixed slapd gentlehup abnormal issue (ITS#4217)
Fixed slapd delta-sync subtree scope issue (ITS#4227)
Fixed slapd cn=3Dconfig OID/name pollution issue (ITS#4185)
Fixed slapd cn=3Dconfig rootdn issue (ITS#4192)
Fixed slapd cn=3Dconfig slaptest -F without -f issue (ITS#4194)
Fixed slapd cn=3Dconfig ACL issue (ITS#4218)
Fixed slapd-bdb negative results IDL cache issue (ITS#4223)
Fixed slapd-bdb cursor close issue (ITS#4226)
Fixed slapd-hdb slapadd -q issue (ITS#4210)
Fixed slapd-hdb missing results issue (ITS#4186)
Fixed slapd-ldap potential double free issue (ITS#4189)
Fixed slapd-meta matched DN issue (ITS#4195)
Fixed slapd-meta DN cache issue (ITS#4196)
Fixed slapd-monitor shadow issue (ITS#4214)
Fixed slapo-accesslog delta-syncrepl issue (ITS#4198)
Fixed slapo-accesslog cleanup issue (ITS#4209)
Fixed slapo-chain resource leak issue (ITS#4140)
Fixed slapo-chain identity assertion issue (ITS#4256)
Fixed slapo-pcache attrset check issue (ITS#4199)
Fixed slapd-bdb readonly dirty alock issue (ITS#4201)
Fixed slapd-pcache non-requested attributes issues (ITS#4203,4204)
Fixed slaptest -F -f success with unsupported issue (ITS#4220)
Build environment
Improved Berkeley DB detection (ITS#3809)
Updated DB_CONFIG example (ITS#4229)
Documentation
Updated ldif(5) to include change record description
OpenLDAP 2.3.12 Release
Fixed libldap ldapi:// authdn construction
Added libldap ldap_bv2escaped_filter_value (ITS#2535)
Added libldap/slapd TLS DSA certificate support (ITS#4017)
Fixed libldap SASL bind issue (ITS#4158)
Fixed ldapmodrdn empty line handling (ITS#4101)
Fixed client tools additional info printing (ITS#4147)
Updated slapd ldaps:// not configured fix (ITS#4082,4083)
Fixed slapd connection crashes (ITS#4108)
Fixed slapd illegal S option bug (ITS#4119)
Fixed slapd cn=3Dmonitor log level mod issue (ITS#4091)
Fixed slapd cn=3Dconfig bad access issue (ITS#4111)
Fixed slapd cn=3Dconfig access modify issue (ITS#4127)
Fixed slapd cn=3Dconfig init issue (ITS#4128)
Fixed slapd non-reentrant libwrap issue (ITS#4099)
Fixed slapd thread v. tools_threads settings
Fixed slapd spurious defer message (ITS#3850)
Fixed slapd attribute SYNTAX OIDM issue (ITS#4116)
Fixed slapd modify empty sequence bug (ITS#4183)
Fixed slapd-bdb uninitialized condition in tool mode (ITS#4143)
Fixed slapd-bdb empty suffix and syncprov issue (ITS#4171)
Fixed slapd-hdb syncrepl deadlock issue (ITS#4088)
Added slapd-ldap write op timeout support (ITS#4157)
Fixed slapd-ldap/slapo-chain matched dn handling (ITS#4176)
Fixed slapd-meta invalid DN attrs normalize/pretty issue (ITS#4107)
Fixed slapd-meta rootdn erroneous success issue (ITS#4122)
Fixed slapd-meta proxying bind result issue (ITS#4129)
Fixed slapd-meta/slapo-rwm rwm-mapping issue (ITS#4086)
Fixed slapd-meta per-target retry (ITS#4150)
Fixed slapd-meta size/time limit handling (ITS#4145)
Fixed slapd-sql size limit count (ITS#4181)
Fixed slapo-ppolicy pwdFailureTime after bind success issue (ITS#4134)
Fixed slapo-ppolicy add passord_hash quality config dependency
Fixed slapo-syncprov LDAP response types (ITS#4183)
Added slapd delta syncrepl support
Added slapadd thread support
Updated slapcat subordinate database handling (ITS#4089)
Added slapd/slaptest pid/arg file consistency check (ITS#4074)
Updated slaptools default debug level to "none" (ITS#4044)
Fixed slurpd backwards compat issue (ITS#4151)
Added slurpd pid/arg file consistency check (ITS#4152)
Updated contrib smbk5pwd module
Removed lint
Build environment
Fixed libldap HSTRERROR issue (ITS#4124)
Fixed slapd AIX IFMT issue (ITS#4123)
Added slapd-bind test program
Added inet_ntoa_b support for VxWorks (ITS#3440)
Updated test036 (ITS#4095)
Fixed test036 cmp issue (ITS#4142)
Dropped SSLeay support
Documentation
slapd.conf(5) defaultSearchBase issue (ITS#4162)
slap tool man pages wll typo (ITS#4169)
---
Module Name: pkgsrc
Committed By: taca
Date: Thu May 18 05:14:11 UTC 2006
Modified Files:
pkgsrc/databases/openldap: distinfo
pkgsrc/databases/openldap/patches: patch-ad
Log Message:
Fix build problem of libraries/liblutil/sha1.c; function proto type
mis-match.
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri May 19 14:46:10 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile distinfo
Log Message:
Update to OpenLDAP 2.3.23.
OpenLDAP 2.3.23 Release
Fixed slapd-ldap improper free bug (ITS#4550)
OpenLDAP 2.3.22 Release
Fixed libldap referral input destroy issue (ITS#4533)
Fixed libldap ldap_sort_entries tail bug (ITS#4536)
Fixed libldap default connection concurrency issue (ITS#4541)
Fixed libldap_r thread debug missing break
Fixed libldap_r tpool cleanup
Fixed liblutil strtoul(3) usage (ITS#4503)
Fixed liblutil time resolution issue (ITS#4514)
Updated ldapdelete(1) to stdout bug (ITS#4453)
Updated ldapsearch(1) BASE output (ITS#4504)
Fixed slapd backglue issue (ITS#4529)
Fixed slapd cn=3Dconfig (ITS#4512)
Fixed slapd cn=3Dconfig ACL application fix
Fixed slapd cn=3Dconfig olcLimits (ITS#4515)
Fixed slapd dynacl tgrant/tdeny initialization
Fixed slapd runqueue use of freed memory (ITS#4517)
Fixed slapd slap_send_ldap_result bug (ITS#4499)
Fixed slapd thread pool init issue (ITS#4513)
Added slapd syncrepl mandatory searchbase check
Fixed slapd-bdb/hdb pre/post-read freeing (ITS#4532)
Fixed slapd-bdb/hdb pre/post-read unavailable issue (ITS#4538)
Fixed slapd-bdb/hdb referral issue (ITS#4548)
Fixed slapd-hdb IDL sort issue (ITS#4531)
Fixed slapd-ldap proxyAuthz of bound identity/override (ITS#4497)
Fixed slapd-ldap/meta protocol version propagation (ITS#4488)
Fixed slapd-ldap fd cleanup (ITS#4474)
Fixed slapd-ldif deadlock (ITS#4500)
Fixed slapd-shell lutil_atoi issue (ITS#4495)
Fixed slapadd cn=3Dconfig issue (ITS#4194)
Fixed slapo-accesslog log purging issue (ITS#4505)
Added slapo-accesslog reqOld feature
Fixed slapo-auditlog missing return codes
Fixed slapo-ppolicy BER tags issue (ITS#4528)
Fixed slapo-ppolicy rebind bug (ITS#4516)
Fixed slapo-refint delete prohibit issue (ITS#4442)
Fixed slapo-syncprov MODs cause DELs (ITS#4423)
Fixed slapo-syncprov/syncrepl sessionlog issue (ITS#4534)
Added slapo-syncprov extra logging
Fixed slapo-translucent modifications (ITS#4527)
Fixed slurpd potential overflow issue
Build Environment
Fixed OSF1 compilation problem (ITS#4537)
Fixed test020-proxycache disabled debug issue (ITS#4491)
Fixed test033-glue-syncrepl overlay detection (ITS#4544)
Documentation
Fixed slapd(8) logging header reference (ITS#4509)
Clarified slapd.conf(5) "disable bind_anon" feature
|
|
|
|
security update for mysql5
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.11, 1.12
- pkgsrc/databases/mysql5-client/distinfo 1.6
- pkgsrc/databases/mysql5-client/patches/patch-ae 1.5
- pkgsrc/databases/mysql5-client/patches/patch-af 1.4
- pkgsrc/databases/mysql5-client/patches/patch-ag 1.2
- pkgsrc/databases/mysql5-server/Makefile 1.13
- pkgsrc/databases/mysql5-server/PLIST 1.6
- pkgsrc/databases/mysql5-server/distinfo 1.7
- pkgsrc/databases/mysql5-server/patches/patch-ac 1.2
- pkgsrc/databases/mysql5-server/patches/patch-ag 1.4
- pkgsrc/databases/mysql5-server/patches/patch-al 1.2
Module Name: pkgsrc
Committed By: cube
Date: Thu May 18 16:11:15 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common distinfo
pkgsrc/databases/mysql5-client/patches: patch-ae patch-af patch-ag
pkgsrc/databases/mysql5-server: Makefile PLIST distinfo
pkgsrc/databases/mysql5-server/patches: patch-ac patch-ag patch-al
Log Message:
Update to version 5.0.21.
Full listing of changes:
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html
Notable changes include:
- Security enhancement: Added the global max_prepared_stmt_count system
variable to limit the total number of prepared statements in the
server.
- The default for the innodb_thread_concurrency system variable was
changed to 8.
- Fixes for CVE-2006-1516, CVE-2006-1517 and CVE-2006-1518.
And a lot of bug fixes.
---
Module Name: pkgsrc
Committed By: tron
Date: Fri May 19 23:01:02 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common
Log Message:
Fix build problem under Mac OS X by repairing broken OpenSSL (shared)
library detection.
|
|
|
|
security fix for xine-lib
Revisions pulled up:
- pkgsrc/multimedia/xine-lib/Makefile 1.35, 1.36
- pkgsrc/multimedia/xine-lib/distinfo 1.28, 1.29
- pkgsrc/multimedia/xine-lib/patches/patch-at 1.3
- pkgsrc/multimedia/xine-lib/patches/patch-aw 1.3
Module Name: pkgsrc
Committed By: drochner
Date: Wed May 3 12:32:10 UTC 2006
Modified Files:
pkgsrc/multimedia/xine-lib: Makefile distinfo
Added Files:
pkgsrc/multimedia/xine-lib/patches: patch-aw
Log Message:
another missing mutex init
bump PKGREVISION
---
Module Name: pkgsrc
Committed By: tron
Date: Thu May 18 18:45:37 UTC 2006
Modified Files:
pkgsrc/multimedia/xine-lib: Makefile distinfo
Added Files:
pkgsrc/multimedia/xine-lib/patches: patch-at
Log Message:
Fix security problem reported in CVE-2006-1664.
Bump package revision because of this fix.
|
|
|
|
security update for nagios
Revisions pulled up:
- pkgsrc/net/nagios-base/Makefile 1.8
- pkgsrc/net/nagios-base/distinfo 1.3
- pkgsrc/net/nagios-base/patches/patch-ah 1.1
Module Name: pkgsrc
Committed By: bouyer
Date: Wed May 17 20:47:41 UTC 2006
Modified Files:
pkgsrc/net/nagios-base: Makefile distinfo
Added Files:
pkgsrc/net/nagios-base/patches: patch-ah
Log Message:
Update to 2.3.1: fix another content-length buffer overflow in CGIs.
|
|
|
|
security update for awstats
Revisions pulled up:
- pkgsrc/www/awstats/MESSAGE 1.6
- pkgsrc/www/awstats/Makefile 1.25
- pkgsrc/www/awstats/PLIST 1.9, 1.10
- pkgsrc/www/awstats/distinfo 1.14
- pkgsrc/www/awstats/patches/patch-aa removed
- pkgsrc/www/awstats/patches/patch-ab 1.4
Module Name: pkgsrc
Committed By: minskim
Date: Tue May 16 18:13:55 UTC 2006
Modified Files:
pkgsrc/www/awstats: MESSAGE Makefile PLIST distinfo
pkgsrc/www/awstats/patches: patch-ab
Removed Files:
pkgsrc/www/awstats/patches: patch-aa
Log Message:
Update awstats to 6.6.
Major changes since 6.4:
- Fixed CVE-2006-2237.
- All geoip plugins support the PurePerl version.
- Possible use of vhost in extra section.
- Support IPv6 in AllowAccessFromWebToFollowingIPAddresses parameter.
- Added svn family to browsers detection.
- RSS catcher/readers in robot database.
- LogFormat=3D2 can now change its value dynamically if logformat change.
- More new features and bug fixes.
---
Module Name: pkgsrc
Committed By: minskim
Date: Wed May 17 16:39:47 UTC 2006
Modified Files:
pkgsrc/www/awstats: PLIST
Log Message:
Correct file names. Reported by Yoshito Komatsu in PR pkg/33501.
|
|
|
|
security update for dovecot
Revisions pulled up:
- pkgsrc/mail/dovecot/Makefile 1.47, 1.48, 1.49, 1.51
- pkgsrc/mail/dovecot/PLIST 1.9, 1.10
- pkgsrc/mail/dovecot/distinfo 1.26, 1.27, 1.28, 1.29
- pkgsrc/mail/dovecot/patches/patch-aa 1.6
- pkgsrc/mail/dovecot/patches/patch-ab 1.12
- pkgsrc/mail/dovecot/patches/patch-ac removed
- pkgsrc/mail/dovecot/patches/patch-ad removed
- pkgsrc/mail/dovecot/patches/patch-ae removed
Module Name: pkgsrc
Committed By: ghen
Date: Tue Apr 4 09:38:46 UTC 2006
Modified Files:
pkgsrc/mail/dovecot: Makefile PLIST distinfo
pkgsrc/mail/dovecot/patches: patch-aa patch-ab
Removed Files:
pkgsrc/mail/dovecot/patches: patch-ac patch-ad patch-ae
Log Message:
Update Dovecot from 1.0beta3 to 1.0beta5. The beta4 release had SSL issues
which were fixed again in beta5.
patch-ac and patch-ad were taken from CVS and are not needed anymore.
Changes in Dovecot 1.0beta4:
* Changed the default lock_method back to fcntl. Apparently flock
gives problems with some systems.
* mbox: mailboxes beginning with '.' are now also listed
* Replaced mail_use_modules and mail_modules settings with mail_plugins
and mail_plugin_dir. Now instead of loading all plugins from the
directory, you'll have to give a list of plugins to load. If the
plugin couldn't be loaded, the process exits instead of just
ignoring the problem (this is important with ACL plugin).
+ Added support for "master users" who can log in as other people.
The master username can be given either in authorization ID
string with SASL PLAIN mechanism or by setting
auth_master_user_separator and giving it within the normal username
string.
+ Added ACL plugin with ACL file backend. This however doesn't mean
that there yet exists a proper shared folder support. If master user
logged in as someone else, the ACLs are checked as the master user.
+ Added some Dovecot extensions to checkpassword passdb, see ChangeLog
+ Updated passwd-file format to allow specifying any key=value fields
+ Maildir++ quota support and several quota fixes
+ passdb supporting extra fields: Added "allow_nets" option which takes
a comma separated list of IPs/networks where to allow user to log in.
+ NFS: Handle ESTALE errors the best way we can
+ IMAP now writes to log when client disconnects
+ In shared mailboxes (if dovecot-shared file exists) \Seen flags are
now kept only in index files, so as long as each user has a separate
index file they have separate \Seen flags.
- Fixes to DIGEST-MD5 realm handling so it works with more clients
- BODYSTRUCTURE -> BODY conversion from cache file was broken with
mails containing message/rfc822 parts.
- Fixed several memory leaks
- We could have sent client FETCH notifications about messages before
telling about them with EXISTS
- Compiling fixes for Solaris and some other OSes
- Fixed problem with internal timeout handling code, which caused eg.
outlook-idle workaround to break.
- If /dev/urandom didn't exist, we didn't seed OpenSSL's random number
generator properly. Patch by Vilmos Nebehaj.
- Maildir: Recent flags weren't always immediately removed from mails
when mailbox was opened.
- Several changes to SSL proxying code, hopefully making it work
better.
Changes in Dovecot 1.0beta5:
- Beta4's SSL proxying rewrite worked worse than I thought.
Reverted it back to original code.
- Filesystem quota plugin now looks up the mount path correctly.
---
Module Name: pkgsrc
Committed By: xtraeme
Date: Wed Apr 12 18:19:16 UTC 2006
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
Update to 1.0beta6:
v1.0.beta6 2006-04-12
* The login and master usernames were reversed when using
master_user_separator (now the order is UW-IMAP compatible).
* Killing dovecot master process now kills all IMAP and POP3
processes also.
+ -a parameter to dovecot prints now all settings that Dovecot uses.
-n prints all settings that are different from defaults.
+ Added pop3_lock_session setting
+ %M modifier returns string's MD5 sum. Patch by Ben Winslow
- PLAIN SASL authentication wasn't working properly, causing failed
logins with some clients (broken in beta4)
- Fixes to Maildir++ quota, should actually work now
- Don't crash if passwd-file has entries without passwords
(eg. deny=yes databases)
- Fixed prefetch userdb to work nicely with other userdbs
- If master process runs out of file descriptors, don't go to
infinite loop (unlikely to have happened unless the OS's default
fd limit was too low)
- Fixed non-plaintext password lookups from LDAP. Patch by Lior Okman
- %U modifier was actually lowercasing the string. Patch by
Ben Winslow
---
Module Name: pkgsrc
Committed By: ghen
Date: Fri Apr 14 19:01:53 UTC 2006
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
Update dovecot to 1.0beta7:
+ Added shutdown_clients setting to control if existing imap/pop3 processes
should be killed when master is.
- Master login fixes, PLAIN authentication was still broken..
---
Module Name: pkgsrc
Committed By: grant
Date: Fri May 12 11:02:48 UTC 2006
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
update dovecot to 1.0beta8.
changes since 1.0beta7:
* Fixed a security hole with mbox: "1 LIST .. *" command could
list all directories and files under the mbox root directory, so
if your mails were stored in eg. /var/mail/%u/ directory, the
command would list everything under /var/mail.
+ Unless nfs_check=no or mmap_disable=yes, check for the first login
if the user's index directory exists in NFS mount. If so, refuse to
run. This is done only on first login to avoid constant extra
overhead.
+ If we have plugins set and imap_capability unset, figure out the
IMAP capabilities automatically by running imap binary at startup.
The generated capability list isn't updated until Dovecot is
restarted completely, so if you add or remove IMAP plugins you
should restart. If you have problems related to this, set
imap_capabilities setting manually to work around it.
+ Added auth_username_format setting
- pop3_lock_session setting wasn't really working
- Lots of fixes related to quota handling. It's still not working
perfectly though.
- Lots of index handling fixes, especially with mmap_disable=yes
- Maildir: saving mails could have sometimes caused "Append with UID
n, but next_uid = m" errors
- flock() locking never timeouted because ignoring SIGALRM caused the
system call just to be restarted when SIGALRM occurred (probably not
with all OSes though?)
- kqueue: Fixed "Unrecognized event". Patch by Vaclav Haisman
---
Module Name: pkgsrc
Committed By: jwise
Date: Fri May 12 15:47:39 UTC 2006
Modified Files:
pkgsrc/mail/dovecot: PLIST
Log Message:
Fix missing file (lib/dovecot/pop3/lib01_quota_plugin.so) in PLIST.
|
|
|
|
update checksum for qmail Darwin patch
Revisions pulled up:
- pkgsrc/mail/qmail/distinfo 1.15
Module Name: pkgsrc
Committed By: schmonz
Date: Thu May 11 20:10:10 UTC 2006
Modified Files:
pkgsrc/mail/qmail: distinfo
Log Message:
The descriptive text at the beginning of panther.patch has been changed;
update checksums.
|