Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
security update for bind9
- pkgsrc/net/bind9/Makefile 1.100, 1.101
- pkgsrc/net/bind9/PLIST 1.22
- pkgsrc/net/bind9/distinfo 1.36, 1.37
- pkgsrc/net/bind9/patches/patch-ad 1.7, 1.8
- pkgsrc/net/bind9/patches/patch-ai 1.9
Module Name: pkgsrc
Committed By: adrianp
Date: Sat Jun 21 22:13:22 UTC 2008
Modified Files:
pkgsrc/net/bind9: Makefile distinfo
pkgsrc/net/bind9/patches: patch-ad patch-ai
Log Message:
Fix two typos: inclue => include
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu Jul 10 21:05:30 UTC 2008
Modified Files:
pkgsrc/net/bind9: Makefile PLIST distinfo
pkgsrc/net/bind9/patches: patch-ad
Log Message:
Update to 9.4.2-P1
Please see CHANGES for all the details but the driving factor of this update
is:
2375. [security] Fully randomize UDP query ports to improve
forgery resilience. [RT #17949]
|
|
|
|
Security patch for ruby18-base
Revisions pulled up:
- lang/ruby18-base/Makefile 1.45 via patch
- lang/ruby18-base/distinfo 1.31 via patch
- lang/ruby18-base/patches/patch-ad 1.9 via patch
---
Module Name: pkgsrc
Committed By: tonnerre
Date: Thu Jul 3 21:06:10 UTC 2008
Modified Files:
pkgsrc/lang/ruby18-base: Makefile distinfo
Added Files:
pkgsrc/lang/ruby18-base/patches: patch-ad
Log Message:
Add a patch to fix the integer overflow in rb_ary_fill() in Ruby 1.8
which can be exploited to cause a denial of service through memory
exhaustion. (SN-2008-02)
|
|
Security update for clamav
Revisions pulled up:
- mail/clamav/Makefile 1.86
- mail/clamav/distinfo 1.53
---
Module Name: pkgsrc
Committed By: ghen
Date: Wed Jul 9 08:40:13 UTC 2008
Modified Files:
pkgsrc/mail/clamav: Makefile distinfo
Log Message:
Update to ClamAV 0.93.3 (security update during freeze, approved by agc).
* fix handling of .cld files
* libclamav/ole2_extract.c, sigtool: make sigtool compatible with the new
OLE2 scan scheme (bb#1086)
* libclamav/petite.c: fix another out of bounds memory read (bb#1000)
Reported by Secunia (CVE-2008-2713)
* clamd/others.c: add missing checks for recv() failures (bb#1079)
* libclamav/scanners.c: add missing check for file open failure (bb #1083).
* sigtool/sigtool.c: make use of the UNLINK command in cdiffs (bb#1080)
* sigtool/sigtool.c: verify MD5's in --run-cdiff
* libclamav/matcher-ac.c: fix handling of nodes which also match single
bytes (bb#1054)
* libclamav: faster loading of uncompressed .cld files, also fixes bb#1064
* merge r3816 from trunk (bb #947, AIX name collisions)
* freshclam/manager.c: add missing closesocket on error path (bb #1073)
|
|
Security update for seamonkey
Security update for seamonkey-bin
Revisions pulled up:
- www/seamonkey-bin/Makefile 1.23
- www/seamonkey-bin/distinfo 1.19
- www/seamonkey/Makefile-seamonkey.common 1.18
- www/seamonkey/PLIST 1.15
- www/seamonkey/distinfo 1.31-1.32
- www/seamonkey/patches/patch-af 1.2
- www/seamonkey/patches/patch-ap 1.5
- www/seamonkey/patches/patch-de 1.2
- www/seamonkey/patches/patch-dy 1.1
- www/seamonkey/patches/patch-dz 1.1
---
Module Name: pkgsrc
Committed By: ghen
Date: Sat Jul 5 12:04:38 UTC 2008
Modified Files:
pkgsrc/www/seamonkey: Makefile-seamonkey.common PLIST distinfo
pkgsrc/www/seamonkey-bin: Makefile distinfo
pkgsrc/www/seamonkey/patches: patch-af patch-ap patch-de
Log Message:
Update seamonkey, seamonkey-bin and seamonkey-gtk1 to Seamonkey 1.1.10.
Security fixes in this version:
MFSA 2008-33 Crash and remote code execution in block reflow
MFSA 2008-32 Remote site run as local file via Windows URL shortcut
MFSA 2008-31 Peer-trusted certs can use alt names to spoof
MFSA 2008-30 File location URL in directory listings not escaped properly
MFSA 2008-29 Faulty .properties file results in uninitialized memory being used
MFSA 2008-28 Arbitrary socket connections with Java LiveConnect on Mac OS X
MFSA 2008-27 Arbitrary file upload via originalTarget and DOM Range
MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript()
MFSA 2008-24 Chrome script loading from fastload file
MFSA 2008-23 Signed JAR tampering
MFSA 2008-22 XSS through JavaScript same-origin violation
MFSA 2008-21 Crashes with evidence of memory corruption (rv:1.8.1.15)
MFSA 2008-20 Crash in JavaScript garbage collector
For more info, see http://www.seamonkey-project.org/releases/seamonkey1.1.10/
---
Module Name: pkgsrc
Committed By: ghen
Date: Sun Jul 6 06:46:05 UTC 2008
Modified Files:
pkgsrc/www/seamonkey: distinfo
Added Files:
pkgsrc/www/seamonkey/patches: patch-dy patch-dz
Log Message:
Fix build on DragonFly, similar fix as for Firefox from PR pkg/39096
|
|
DragonFly build fix for firefox
Revisions pulled up:
- www/firefox/distinfo 1.79
- www/firefox/patches/patch-dx 1.3
- www/firefox/patches/patch-dy 1.1
---
Module Name: pkgsrc
Committed By: ghen
Date: Sun Jul 6 06:45:30 UTC 2008
Modified Files:
pkgsrc/www/firefox: distinfo
Added Files:
pkgsrc/www/firefox/patches: patch-dx patch-dy
Log Message:
Fix build on DragonFly, from PR pkg/39096.
|
|
|
|
Security update for ruby packages
Apply patches to update Ruby to version 1.8.6 patchlevel 230 to fix
the security vulnerability reported in CVE-2008-2726.
|
|
|
|
Security update for firefox, firefox-bin and firefox-gtk1
Revisions pulled up:
- www/firefox-bin/Makefile 1.43
- www/firefox-bin/distinfo 1.43
- www/firefox/Makefile-firefox.common 1.58
- www/firefox/PLIST 1.29
- www/firefox/distinfo 1.78
- www/firefox/patches/patch-af 1.6
- www/firefox/patches/patch-ap 1.9
- www/firefox/patches/patch-de 1.2
---
Module Name: pkgsrc
Committed By: ghen
Date: Wed Jul 2 09:03:35 UTC 2008
Modified Files:
pkgsrc/www/firefox: Makefile-firefox.common PLIST distinfo
pkgsrc/www/firefox-bin: Makefile distinfo
pkgsrc/www/firefox/patches: patch-af patch-ap patch-de
Log Message:
Update firefox, firefox-bin and firefox-gtk1 to 2.0.0.15.
Part of patch-af has been fixed upstream.
Security fixes in this version:
MFSA 2008-33 Crash and remote code execution in block reflow
MFSA 2008-32 Remote site run as local file via Windows URL shortcut
MFSA 2008-31 Peer-trusted certs can use alt names to spoof
MFSA 2008-30 File location URL in directory listings not escaped properly
MFSA 2008-29 Faulty .properties file results in uninitialized memory being used
MFSA 2008-28 Arbitrary socket connections with Java LiveConnect on Mac OS X
MFSA 2008-27 Arbitrary file upload via originalTarget and DOM Range
MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript()
MFSA 2008-24 Chrome script loading from fastload file
MFSA 2008-23 Signed JAR tampering
MFSA 2008-22 XSS through JavaScript same-origin violation
MFSA 2008-21 Crashes with evidence of memory corruption (rv:1.8.1.15)
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.15/releasenotes/
|
|
|
|
squid: fixes security problems
pkgsrc/www/squid/Makefile 1.206,1.207
pkgsrc/www/squid/distinfo 1.138,1.139
Module Name: pkgsrc
Committed By: taca
Date: Sat Jun 21 10:33:55 UTC 2008
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Update squid package to 2.6.20 (2.6.STABLE20).
It would be last 2.6 stable release.
Changes to squid-2.6.STABLE20 (25 Apr 2008)
- Bug #2263: Custom log formats fail to log file sizes >2GB properly
on 32-bit platforms
- Fix stripping NT domain in squid_ldap_group
- Bug #2278: Cache-Control: max-stale=0 forwarded wrongly as max-stale
(without delta)
- Bug #2283: Fails to parse chunked encoding using chunk extensions
- Bug #420: Deal properly with empty list HTTP header members
- Windows Server 2008 support
- Bug #1886: tcp_outgoing_address acl doesn't work with indirect
source address (follow-x-forwarded-for)
- Bug #2296: Stuck in 100% CPU when fetching an corrupt peer digest
- Add support for the resolv.conf domain directive, and also
automatically derived default domain
- minimum_icp_query_timeout directive
- Bug #2329: Range header ignored on HIT
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Sun Jun 29 01:02:09 UTC 2008
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Update www/squid package to 2.6.21 (2.6.STABLE21) which contains
two security fixes:
- Bug #1993: Memory leak in http_reply_access deny processing
- Bug #2122: In some situations collapsed_forwarding could leak
private information
Changes to squid-2.6.STABLE21 (27 June 2008)
- Bug #2350: Bugs in Linux kernel capabilities code
- Bug #2241: weights not applied properly in round-robin peer
selection
- Off by one error in DNS label decompression could cause valid DNS
messages to be rejected
- logformat docs contain extra whitespace
- Reject ridiculously large ASN.1 lengths
- Fix SNMP reporting of counters with a value > 0xFF80000
- Correct spelling of WCCPv2 dst_port_hash to match the source
- Plug some "squid -k reconfigure" memory leaks. Mostly SSL related.
- Bug #1993: Memory leak in http_reply_access deny processing
- Bug #2122: In some situations collapsed_forwarding could leak
private information
- Bug #2376: Round-Robin becomes unbalanced when a peer dies and comes
back
- Bug #2387: The calculation of the number of hash buckets need to
account for the memory size, not only disk size
- Bug #2393: DNS requests retried indefinitely at full speed on failed
TCP connection
- Bug #2393: DNS retransmit queue could get hold up
- Correct socket syscalls statistics in commResetFD()
|
|
|
|
phpmyadmin: bug fixes many
pkgsrc/databases/phpmyadmin/Makefile 1.71,1.72
pkgsrc/databases/phpmyadmin/distinfo 1.34,1.35
Module Name: pkgsrc
Committed By: tron
Date: Sun Jun 8 14:15:28 UTC 2008
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log Message:
Update "phpmyadmin" package to version 2.11.6. Changes since 2.11.5.2:
- bug #1903724 [interface] Displaying of very large queries
in error message
- bug #1905711 [compatibility] Functions deprecated in PHP 5.3:
is_a() and get_magic_quotes_gpc()
- bug [lang] catalan wrong accented characters
- bug #1893034 [Export] SET NAMES for importing with command-line
client
+ [lang] Russian update
- bug #1910485 [core] Unsetting the whitelist during the loop
- bug #1906980 [Export] Import of VIEWs fails if temp table exists
- bug #1812763 [Copy] Table copy when server is in ANSI_QUOTES
sql_mode
- bug #1918531 [compatibility] Navigation isn't w3.org valid
- bug #1926357 [data] BIT defaults displayed incorrectly
- patch #1930057 [auth] colon in password prevents HTTP login
on CGI/IIS
- patch #1929553 [lang] Don't output BOM character in Swedish
language file
- patch #1895796 [lang] Typo in Japanese lang files
- bug #1935652 [auth] Access denied (show warning about mcrypt
on login page)
- bug #1906983 [export] Reimport of FUNCTION fails
- bug #1919808 [operations] Renaming a database fails to handle
functions
- bug #1934401 [core] Cannot force a language
- bug #1944077 [core] Config file containing a BOM
- bug #1947189 [scripts] Missing head tag in scripts/signon.php
+ [lang] Romanian update
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sat Jun 28 11:11:15 UTC 2008
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log Message:
Update "phpmyadmin" package to version 2.11.7. Changes since 2.11.6:
- bug #1908719 [interface] New field cannot be auto-increment and
primary key
- [dbi] Incorrect interpretation for some mysqli field flags
- bug #1910621 [display] part 1: do not display a TEXT utf8_bin
as BLOB (fixed for mysqli extension only)
- [interface] sanitize the after_field parameter,
thanks to Norman Hippert
- [structure] do not remove the BINARY attribute in drop-down
- bug #1955386 [session] Overriding session.hash_bits_per_character
- [interface] sanitize the table comments in table print view,
thanks to Norman Hippert
- bug #1939031 Auto_Increment selected for TimeStamp by Default
- patch #1957998 [display] No tilde for InnoDB row counter when
we know it for sure, thanks to Vladyslav Bakayev - dandy76
- bug #1955572 [display] alt text causes duplicated strings
- bug #1762029 [interface] Cannot upload BLOB into existing row
- bug #1981043 [export] HTML in exports getting corrupted,
thanks to Jason Judge - jasonjudge
- bug #1936761 [interface] BINARY not treated as BLOB:
update/delete issues
- protection against XSS when register_globals is on and .htaccess
has no effect, thanks to Tim Starling
- bug #1996943 [export] Firefox 3 and .sql.gz (corrupted);
detect Gecko 1.9, thanks to Juergen Wind
|
|
|
|
nasm: fixes bug in nasm which is a "possible" security issue
revisions pulled up:
pkgsrc/devel/nasm/Makefile 1.36
pkgsrc/devel/nasm/distinfo 1.16
pkgsrc/devel/nasm/patches/patch-ad 1.8
Module Name: pkgsrc
Committed By: tron
Date: Tue Jun 17 14:06:25 UTC 2008
Modified Files:
pkgsrc/devel/nasm: Makefile distinfo
Added Files:
pkgsrc/devel/nasm/patches: patch-ad
Log Message:
Add a patch from the "nasm" GIT repository to fix a crash triggered by
certain assembler files. This closes the security hole reported in SA30594
(which is IMHO highly debatable).
|
|
|
|
Security update for ruby packages
Apply patches to update Ruby to version 1.8.6 patchlevel 230 to fix
the security vulnerability reported in CVE-2008-2726.
|
|
|
|
Security patch for horde
Manually add backport of the following fix:
- http://lists.horde.org/archives/announce/2008/000415.html
|
|
Security patch for apache2
Revisions pulled up:
- devel/apr0/Makefile 1.5
- www/apache2/Makefile 1.124
- www/apache2/Makefile.common 1.26
---
Module Name: pkgsrc
Committed By: he
Date: Sun Jun 22 23:01:19 UTC 2008
Modified Files:
pkgsrc/devel/apr0: Makefile
pkgsrc/www/apache2: Makefile Makefile.common
Log Message:
As indicated by comments on pkgsrc-c, move PKGREVISION setting to
individual Makefile files and out of Makefile.common.
|
|
|
|
Security patch for apache2
Revisions pulled up:
- www/apache2/Makefile.common 1.25
- www/apache2/distinfo 1.53
- www/apache2/patches/patch-ap 1.5
---
Module Name: pkgsrc
Committed By: he
Date: Fri Jun 20 13:28:08 UTC 2008
Modified Files:
pkgsrc/www/apache2: Makefile.common distinfo
Added Files:
pkgsrc/www/apache2/patches: patch-ap
Log Message:
Apply the patch for CVE-2008-2364 from apache.
Bump pkg revision.
|
|
Security patch for modular-xorg-server
Revisions pulled up:
- x11/modular-xorg-server/Makefile 1.30 via patch
- x11/modular-xorg-server/distinfo 1.21
- x11/modular-xorg-server/patches/patch-ac 1.3
- x11/modular-xorg-server/patches/patch-ae 1.5
- x11/modular-xorg-server/patches/patch-da delete
- x11/modular-xorg-server/patches/patch-ed 1.2
- x11/modular-xorg-server/patches/patch-ef 1.2
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri Jun 20 13:34:40 UTC 2008
Modified Files:
pkgsrc/x11/modular-xorg-server: Makefile distinfo
pkgsrc/x11/modular-xorg-server/patches: patch-ed patch-ef
Added Files:
pkgsrc/x11/modular-xorg-server/patches: patch-ac patch-ae
Removed Files:
pkgsrc/x11/modular-xorg-server/patches: patch-da
Log Message:
modular-xorg-server-1.3.0.0nb9:
Fix CVE-2008-1377, CVE-2008-1379, CVE-2008-2360, CVE-2008-2361 and
CVE-2008-2362 based on upstream patches.
|
|
|
|
Security patch for geeklog
Revisions pulled:
- www/geeklog/Makefile 1.17-1.18
- www/geeklog/Makefile.common 1.6
- www/geeklog/distinfo 1.7
- www/geeklog/patches/patch-ah 1.1
---
Module Name: pkgsrc
Committed By: joerg
Date: Mon May 26 00:40:24 UTC 2008
Modified Files:
pkgsrc/www/geeklog: Makefile
Log Message:
Needs full pax dependency. Bump revision.
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Jun 19 14:08:42 UTC 2008
Modified Files:
pkgsrc/www/geeklog: Makefile Makefile.common distinfo
Added Files:
pkgsrc/www/geeklog/patches: patch-ah
Log Message:
Add a security fix for kses, HTML filter which isn't used with default
configuration: http://www.geeklog.net/article.php/kses.
Also fix one pkglint warning.
Bump PKGREVISION.
|
|
Security fix
Revisions pulled up:
- pkgsrc/misc/openoffice2-bin/Makefile 1.36
- pkgsrc/misc/openoffice2-bin/distinfo 1.15
Module Name: pkgsrc
Committed By: tron
Date: Sun Jun 15 12:22:52 UTC 2008
Modified Files:
pkgsrc/misc/openoffice2-bin: Makefile distinfo
Log Message:
Update "openoffice2-bin" package to version 2.4.1.
This version fixes various bugs including the security vulnerability
reported in CVE-2008-2152.
To generate a diff of this commit:
cvs rdiff -r1.35 -r1.36 pkgsrc/misc/openoffice2-bin/Makefile
cvs rdiff -r1.14 -r1.15 pkgsrc/misc/openoffice2-bin/distinfo
|
|
Security fix (fixes CVE-2008-2152)
Revisions pulled up:
- pkgsrc/misc/openoffice2/Makefile 1.47
- pkgsrc/misc/openoffice2/distinfo 1.40
Module Name: pkgsrc
Committed By: hira
Date: Fri Jun 13 11:20:15 UTC 2008
Modified Files:
pkgsrc/misc/openoffice2: Makefile distinfo
Log Message:
Update to 2.4.1. This release fixes CVE-2008-2152.
Release Notes:
http://development.openoffice.org/releases/2.4.1.html
To generate a diff of this commit:
cvs rdiff -r1.46 -r1.47 pkgsrc/misc/openoffice2/Makefile
cvs rdiff -r1.39 -r1.40 pkgsrc/misc/openoffice2/distinfo
|
|
|
|
security fix for fetchmail
- pkgsrc/mail/fetchmail/Makefile 1.167
- pkgsrc/mail/fetchmail/distinfo 1.39
- pkgsrc/mail/fetchmail/patches/patch-ab 1.18
Module Name: pkgsrc
Committed By: obache
Date: Thu Jun 19 11:29:49 UTC 2008
Modified Files:
pkgsrc/mail/fetchmail: Makefile distinfo
Added Files:
pkgsrc/mail/fetchmail/patches: patch-ab
Log Message:
Add patch for CVE-2008-2711.
Taken from http://fetchmail.berlios.de/fetchmail-SA-2008-01.txt
Bump PKGREVISION.
|
|
|
|
security update for vim
- pkgsrc/editors/vim-share/Makefile.common 1.107-1.109
- pkgsrc/editors/vim-share/distinfo 1.96-1.98
- pkgsrc/editors/vim-share/version.mk 1.51-1.53
Module Name: pkgsrc
Committed By: martti
Date: Fri May 9 09:47:21 UTC 2008
Modified Files:
pkgsrc/editors/vim-share: Makefile.common distinfo version.mk
Log Message:
Updated editors/vim-share to 7.1.297
2258 7.1.284 compiler warnings for functions without prototype
5787 7.1.285 (extra) Mac: dialog hotkeys don't work
2045 7.1.286 (after 7.1.103) "w" at end of buffer moves cursor too far
1859 7.1.287 crash when reversing a list after using it
3182 7.1.288 (after 7.1.281) cscope leaves behind temp files with gvim
1979 7.1.289 when EXITFREE is defined and 'acd' is set freed memory is used
2146 7.1.290 reading unwritten bytes when spell checking with large indent
1940 7.1.291 compiler warning for int-long conversion
6698 7.1.292 when using a pattern with "\@<=" the submatches can be wrong
3087 7.1.293 spell checking considers super/subscript chars as word chars
2336 7.1.294 leaking memory when executing a shell command
6102 7.1.295 vimtutor only works with vim, not gvim
9374 7.1.296 SELinux is not supported
1855 7.1.297 wrong parenmatch highlighting after search/replace dialog
---
Module Name: pkgsrc
Committed By: martti
Date: Mon Jun 2 11:19:53 UTC 2008
Modified Files:
pkgsrc/editors/vim-share: Makefile.common distinfo version.mk
Log Message:
Updated editors/vim-share to 7.1.305
1558 7.1.298 src/gvimtutor is not distributed
9490 7.1.299 filetype detection fails for file name with special characters
1959 7.1.300 value of asmsyntax argument isn't checked for valid characters
1673 7.1.301 "File/Save" menu in Insert mode doesn't update tab page label
1485 7.1.302 (after 7.1.299) compilation error on MS-Windows
12135 7.1.304 shortpath_for_invalid_fname() is too complex and wrong
4735 7.1.305 can't edit compressed file with special characters in the name
---
Module Name: pkgsrc
Committed By: martti
Date: Thu Jun 19 05:55:44 UTC 2008
Modified Files:
pkgsrc/editors/vim-share: Makefile.common distinfo version.mk
Log Message:
Updated editors/vim-share to 7.1.315
2153 7.1.306 some Unicode symbol chars are handled like word chars
23714 7.1.307 many warnings when compiling with Python 2.5
2673 7.1.308 when in readonly mode ":options" produces an error
3989 7.1.309 installing and testing with a shadow directory doesn't work
8024 7.1.310 incomplete utf-8 byte sequence at end of the file not detected
2547 7.1.311 compiler warning for missing sentinel in X code
2346 7.1.312 there is no check for error number mistakes in .po files
3425 7.1.313 status and tile not updated when using netbeans setModified
1915 7.1.314 'pastetoggle' is written to the session file without escaping
3287 7.1.315 crash with specific search pattern using look-behind match
|
|
|
|
Security patch for evolution
Revisions pulled up (via patch):
- mail/evolution/Makefile 1.134
- mail/evolution/distinfo 1.58
- mail/evolution/patches/patch-ac 1.18
- mail/evolution/patches/patch-ad 1.10
---
Module Name: pkgsrc
Committed By: drochner
Date: Thu Jun 5 11:08:08 UTC 2008
Modified Files:
pkgsrc/mail/evolution: Makefile distinfo
Added Files:
pkgsrc/mail/evolution/patches: patch-ac patch-ad
Log Message:
fix two buffer overflows in iCalendar code (CVE-2008-1108, CVE-2008-1109),
patches from upstream CVS, bump PKGREVISION
|
|
Fix old-style bulk builds
Revisions pulled up:
- mk/bulk/build 1.104
- pkgtools/pkg_install/Makefile 1.154
---
Module Name: pkgsrc
Committed By: he
Date: Sun Jun 8 21:04:30 UTC 2008
Modified Files:
pkgsrc/mk/bulk: build
pkgsrc/pkgtools/pkg_install: Makefile
Log Message:
Commit two fixes which at least for me appear to be required when
doing an old-style bulk build on 4.0 or older systems:
- in mk/bulk/build, do "make update" instead of "make install + clean"
when installing a new pkg_install
- in pkgtools/pkg_install/Makefile, don't try to use our own
executables (${WORKDIR}/pkg_add/pkg_add etc.) if they don't exist
Discussed with joerg, and even though he's not entirely happy
with the latter change, he didn't appear to have a better suggestion.
This, and putting /usr/pkg/sbin earlier than /usr/sbin in the $PATH
appears to be required to get an old-style bulk build going.
|
|
|
|
security update for freetype2
- pkgsrc/graphics/freetype2/Makefile 1.64
- pkgsrc/graphics/freetype2/PLIST 1.15
- pkgsrc/graphics/freetype2/distinfo 1.26
Module Name: pkgsrc
Committed By: drochner
Date: Wed Jun 11 10:35:21 UTC 2008
Modified Files:
pkgsrc/graphics/freetype2: Makefile PLIST distinfo
Log Message:
update to 2.3.6
This fixes some integer overflow/memory corruption/heap overflow
security problems: CVE-2008-1806, CVE-2008-1807, CVE-2008-1808
other changes:
-new function `FT_Get_CID_Registry_Ordering_Supplement' gives
access to those fields in a CID-keyed font
-code to validate the new `MATH' OpenType table
-API for cmap 14 support
-A new face flag FT_FACE_FLAG_CID_KEYED
-misc bugfixes and other improvements
|
|
security patch for apache22
- pkgsrc/www/apache22/Makefile 1.26
- pkgsrc/www/apache22/distinfo 1.10
- pkgsrc/www/apache22/patches/patch-ab 1.6
Module Name: pkgsrc
Committed By: tron
Date: Thu Jun 12 14:12:19 UTC 2008
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
Added Files:
pkgsrc/www/apache22/patches: patch-ab
Log Message:
Add patch for CVE-2008-2364 from the Apache SVN repository.
|
|
security patch + build fixes for net-snmp
- pkgsrc/net/net-snmp/Makefile 1.69-1.70
- pkgsrc/net/net-snmp/distinfo 1.44-1.46
- pkgsrc/net/net-snmp/files/cpu_dragonfly.c 1.3
- pkgsrc/net/net-snmp/patches/patch-ai 1.4-1.5
- pkgsrc/net/net-snmp/patches/patch-aj 1.5
- pkgsrc/net/net-snmp/patches/patch-ak 1.4
- pkgsrc/net/net-snmp/patches/patch-am 1.7
- pkgsrc/net/net-snmp/patches/patch-de 1.5
- pkgsrc/net/net-snmp/patches/patch-dk removed
- pkgsrc/net/net-snmp/patches/patch-ep 1.3
Module Name: pkgsrc
Committed By: christos
Date: Thu Jun 5 19:09:41 UTC 2008
Modified Files:
pkgsrc/net/net-snmp: Makefile distinfo
pkgsrc/net/net-snmp/files: cpu_dragonfly.c
pkgsrc/net/net-snmp/patches: patch-am patch-de
Added Files:
pkgsrc/net/net-snmp/patches: patch-ai patch-aj patch-ak
Log Message:
PR/36978: Hasso Tepper: Make net-snmp work on dragonfly.
While I am here make it run again on NetBSD (hi clown boy)
---
Module Name: pkgsrc
Committed By: tron
Date: Fri Jun 6 16:18:04 UTC 2008
Modified Files:
pkgsrc/net/net-snmp: distinfo
pkgsrc/net/net-snmp/patches: patch-ai
Removed Files:
pkgsrc/net/net-snmp/patches: patch-dk
Log Message:
Combine the to patches for "agent/mibgroup/mibII/ip.c" to make this
actually build.
---
Module Name: pkgsrc
Committed By: tron
Date: Thu Jun 12 13:32:24 UTC 2008
Modified Files:
pkgsrc/net/net-snmp: Makefile distinfo
pkgsrc/net/net-snmp/patches: patch-ep
Log Message:
Add patch for CVE-2008-0960 from the Net-SNMP project page on Sourceforge.
|
|
|
|
latest update for clamav
- pkgsrc/mail/clamav/Makefile 1.84
- pkgsrc/mail/clamav/distinfo 1.52
- pkgsrc/mail/clamav/patches/patch-ah 1.15
- pkgsrc/mail/clamav/patches/patch-ba 1.3
Module Name: pkgsrc
Committed By: martti
Date: Tue Jun 10 08:23:54 UTC 2008
Modified Files:
pkgsrc/mail/clamav: Makefile distinfo
pkgsrc/mail/clamav/patches: patch-ah patch-ba
Log Message:
Updated mail/clamav to 0.93.1
* libclamav/petite.c: fix possible invalid memory access (bb#1000)
Reported by Damian Put
* clamdscan/clamdscan.c: don't show scan summary when clamd cannot be
contacted (bb#1041)
* libclamav/hashtab.[ch], scanners.c: avoid using C99 flexible array members
(bb #1039)
* libclamav/unzip.c: correct the previous fix
* libclamav/unzip.c: check for unprefixed bz2 - bb#1038
* libclamav/ole2_extract.c: revert last commit
* libclamav/ole2_extract.c: use cli_unlink
* libclamav/ole2_extract.c: partial scan of broken ole files
* contrib/init/RedHat: check for already running clamav-milter (bb #823)
* libclamav/regex: avoid name collisions on AIX (bb #947)
sync with libc: minor cleanups
* doc/clamdoc.tex: add a note about forking daemons (bb#906)
* libclamav/Makefile.am: link .la files first, this
should avoid linking to old libclamav as in bb #931
* libclamav/readdb.h: read daily.cfg stored inside .cld containers (bb#1006)
* libclamav/mbox.c, shared/network.c: prevent uninitialized use of hostent
structure (bb #1003).
* libclamav/mspack.c: downgrade some error messages (bb#911)
* clamav-milter: retrieve db version from daily.cld (bb#942)
* libclamav/scanners.c: don't return CL_EMAX* error codes to
applications (bb#1001)
* clamscan/manager.c: print information about clean files when the RAR
code is not compiled-in (bb#999)
* libclamav/unzip.c: remove detection of Suspect.Zip and
Exploit.Zip.ModifiedHeaders (bb#997)
* libclamav: scan for embedded PEs inside OLE2 files (bb#914)
* libclamav/cvd.c: add work-around for zlib issues with mixed data (bb#932)
* libclamav/others.h: explicitely cast some constants (bb#936)
* sigtool/sigtool.c: bb#938 (sigtool --list-sigs not working with .cld files)
* libclamav/dconf.h: fix flag code assignment (bb #952)
* libclamav/iana_tld.h, libclamav/phishcheck.c: update TLD list (bb #925)
|
|
|
|
Security patch for star
Revisions pulled up:
- archivers/star/Makefile 1.22
- archivers/star/distinfo 1.9
- archivers/star/patches/patch-ad 1.1
---
Module Name: pkgsrc
Committed By: tonnerre
Date: Sun Jun 8 02:40:38 UTC 2008
Modified Files:
pkgsrc/archivers/star: Makefile distinfo
Added Files:
pkgsrc/archivers/star/patches: patch-ad
Log Message:
Fix directory traversal vulnerability (CVE-2007-4134) in star.
|
|
Security patch for exiv2
Revisions pulled up:
- graphics/exiv2/Makefile 1.18
- graphics/exiv2/distinfo 1.11
- graphics/exiv2/patches/patch-aa 1.1
---
Module Name: pkgsrc
Committed By: gdt
Date: Sat Jun 7 23:01:28 UTC 2008
Modified Files:
pkgsrc/graphics/exiv2: Makefile distinfo
Added Files:
pkgsrc/graphics/exiv2/patches: patch-aa
Log Message:
Add patch:
From upstream SVN, svn diff -r 1388:1399.
Fixes http://dev.robotbattle.com/bugs/view.php?id=0000546.
PKGREVISION++.
|
|
Security update for GraphicsMagick
Apply patch to update the package to version 1.1.14:
Significant changes associated with GraphicsMagick 1.1.14:
Bugs Fixed:
o Noise generation was not working correctly for anything but a Q8
build.
o Poisson noise generator was extremely slow. Now it is reasonably
fast.
o PDF reader now computes bounding box for rotated PDFs correctly.
Security Fixes:
o Cineon reader: Fixed crash with broken file from Sami Liedes.
o PICT reader: Fixed crash with broken files from Sami Liedes.
o XCF reader: Fixed crash with broken files from Sami Liedes.
Security Issue Not Fixed:
o JP2/JPC reader: Several JPEG-2000 files from Sami Liedes broken
collection cause crashes in Jasper. This is not GraphicsMagick's
fault.
Significant changes associated with GraphicsMagick 1.1.13:
Bugs Fixed:
o Documentation is now installed according to the conventions
established by the configure script. This results in documentation
being installed under /usr/local/share/doc/GraphicsMagick by default.
o HWB colorspace now works correctly.
o Composition with CopyOpacity now produces an image with
transparency (as expected).
o Composition now preserves the canvas colorspace.
o Composition with a displacement map (-displace) no longer leaks an
image.
o Alpha composition now works as expected when both pixels involved
include transparency.
o -gamma multiple channel syntax now works as documented.
o Now compiles with Visual C++ 2008.
|
|
Security patches for mit-krb5
Revisions pulled up:
- security/mit-krb5/Makefile 1.43
- security/mit-krb5/distinfo 1.20
- security/mit-krb5/patches/patch-at 1.2
- security/mit-krb5/patches/patch-bh 1.1
- security/mit-krb5/patches/patch-bi 1.1
- security/mit-krb5/patches/patch-bj 1.1
- security/mit-krb5/patches/patch-bk 1.1
- security/mit-krb5/patches/patch-bl 1.1
---
Module Name: pkgsrc
Committed By: tonnerre
Date: Sat Jun 7 23:58:11 UTC 2008
Modified Files:
pkgsrc/security/mit-krb5: Makefile distinfo
pkgsrc/security/mit-krb5/patches: patch-at
Added Files:
pkgsrc/security/mit-krb5/patches: patch-bh patch-bi patch-bj
patch-bk patch-bl
Log Message:
Add more patches, now for MITKRB5-SA-2007-006, MITKRB5-SA-2008-001 and
MITKRB5-SA-2008-002. Bump PKGREVISION now finally.
|
|
Security patches for mit-krb5
Revisions pulled up:
- security/mit-krb5/Makefile 1.42
- security/mit-krb5/distinfo 1.17-1.19
- security/mit-krb5/patches/patch-ai 1.3-1.4
- security/mit-krb5/patches/patch-au 1.1-1.2
- security/mit-krb5/patches/patch-av 1.1-1.2
- security/mit-krb5/patches/patch-aw 1.1-1.2
- security/mit-krb5/patches/patch-ax 1.1-1.2
- security/mit-krb5/patches/patch-ay 1.1-1.2
- security/mit-krb5/patches/patch-az 1.1-1.2
- security/mit-krb5/patches/patch-ba 1.1-1.3
- security/mit-krb5/patches/patch-bb 1.1-1.2
- security/mit-krb5/patches/patch-bc 1.1-1.2
- security/mit-krb5/patches/patch-bd 1.1-1.2
- security/mit-krb5/patches/patch-be 1.1-1.2
- security/mit-krb5/patches/patch-bf 1.1
- security/mit-krb5/patches/patch-bg 1.1
---
Module Name: pkgsrc
Committed By: tonnerre
Date: Sat Jun 7 18:36:07 UTC 2008
Modified Files:
pkgsrc/security/mit-krb5: Makefile distinfo
Added Files:
pkgsrc/security/mit-krb5/patches: patch-ai patch-au patch-av
patch-aw patch-ax patch-ay patch-az patch-ba patch-bb patch-bc patch-bd
patch-be
Log Message:
Add security patches for 3 Kerberos vulnerabilities:
- telnetd username and environment sanitizing vulnerabilities ("-f
root") as described in MIT Kerberos advisory 2007-001.
- krb5_klog_syslog() problems with overly long log strings as described
in MIT Kerberos advisory 2007-002.
- GSS API kg_unseal_v1() double free vulnerability as described in the
MIT Kerberos advisory 2007-003.
---
Module Name: pkgsrc
Committed By: tonnerre
Date: Sat Jun 7 20:22:18 UTC 2008
Modified Files:
pkgsrc/security/mit-krb5: distinfo
pkgsrc/security/mit-krb5/patches: patch-ai patch-au patch-av
patch-aw patch-ax patch-ay patch-az patch-ba patch-bb patch-bc patch-bd
patch-be
Log Message:
Remove parts of a different security patch which slipped in but are not
supported yet. Don't bump revision as the package didn't build before.
---
Module Name: pkgsrc
Committed By: tonnerre
Date: Sat Jun 7 22:26:10 UTC 2008
Modified Files:
pkgsrc/security/mit-krb5: distinfo
pkgsrc/security/mit-krb5/patches: patch-ba
Added Files:
pkgsrc/security/mit-krb5/patches: patch-bf patch-bg
Log Message:
Add patches for MITKRB5-SA-2007-004 and MITKRB5-SA-2007-005. PKGREVISION
will be bumped again once some other patches are in.
|
|
|
|
|