| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
Changes:
* Fixes made to btree find_by_data
* pkgconfig patch from Eric Dorland
* Fixes some gib_hash glitches including a possible core dump
While here, I might as well take maintership.
|
|
|
|
|
|
|
|
The news utility prints news items stored in /var/news. When invoked
without any arguments, news prints the name and timestamp of each current
item followed by its contents, most recent first. An item is considered
``current'' if it has a modification time newer than the file
~/.news_time, a file that news creates if it does not exist. If that
file does exist, news will update the timestamp on that file each time it
is run.
This version of the System V news utility was written by Jan Schaumann
<jschauma@NetBSD.org> following the manual page from an IRIX system.
|
|
|
|
Changes:
* Add an action to set the window type atom
* Add an action to set the decorate window hint in OpenBox
* Watch all screens for events, instead of just the default
* Add an action to set the geometry of a window
|
|
Changes:
* Fix various focus issues when removing or deleting images.
* Fix bug where GQview would hang until an editor command completed.
* Fix full screen interfering with xscreensaver lock.
* Fix date text utf-8 warnings.
* File management operations no longer turn off full screen.
* Fix unexpected layout order change in options window.
* Fix crash when starting slide show from folder tree right click menu.
* Miscellaneous fixes from 1.5 devel branch.
|
|
- Remove patch-as and patch-ah as they are now outdated and included in the src
- ok'ed snj@, wiz@
- Thanks to epg@ for final check
This version of Apache is principally a bug fix release. Of particular note
is that 2.0.51 addresses five security vulnerabilities:
An input validation issue in IPv6 literal address parsing which can result
in a negative length parameter being passed to memcpy.
[CAN-2004-0786]
A buffer overflow in configuration file parsing could allow a local user to
gain the privileges of a httpd child if the server can be forced to parse a
carefully crafted .htaccess file.
[CAN-2004-0747]
A segfault in mod_ssl which can be triggered by a malicious remote server,
if proxying to SSL servers has been configured.
[CAN-2004-0751]
A potential infinite loop in mod_ssl which could be triggered given
particular timing of a connection abort.
[CAN-2004-0748]
A segfault in mod_dav_fs which can be remotely triggered by an indirect lock
refresh request.
[CAN-2004-0809]
For further details, see http://www.apache.org/dist/httpd/Announcement2.html
and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
|
|
- Fix permissions on installed .h files
- ok'ed snj@, wiz@
- Thanks to epg@ for final check
This version of Apache is principally a bug fix release. Of particular note is
that 2.0.51 addresses five security vulnerabilities:
An input validation issue in IPv6 literal address parsing which can result in
a negative length parameter being passed to memcpy.
[CAN-2004-0786]
A buffer overflow in configuration file parsing could allow a local user to
gain the privileges of a httpd child if the server can be forced to parse a
carefully crafted .htaccess file.
[CAN-2004-0747]
A segfault in mod_ssl which can be triggered by a malicious remote server,
if proxying to SSL servers has been configured.
[CAN-2004-0751]
A potential infinite loop in mod_ssl which could be triggered given
particular timing of a connection abort.
[CAN-2004-0748]
A segfault in mod_dav_fs which can be remotely triggered by an indirect lock
refresh request.
[CAN-2004-0809]
For further details, see http://www.apache.org/dist/httpd/Announcement2.html
and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
|
|
|
|
|
|
See commit log for www/firefox/Makefile-firefox.common for more details.
Several security holes have been fixed. See the page below for details.
http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
|
|
when MOZ_GTK2 is set.
Add a way to specify a different mozilla.sh script.
|
|
|
|
|
|
|
|
What's new from Release Notes:
* Global Inbox
POP3 users can now combine all of their POP3 accounts into a single
global inbox under local folders.
* Comprehensive Data Migration
Switching to Thunderbird has never been easier since Thunderbird can
now migrate all of your e-mail data including settings, mail folders
and address book data from common mail applications such as the
Mozilla 1.x Suite, Outlook Express, Outlook and Eudora.
* RSS Integration
Thunderbird now features a built in RSS reader which allows you to
easily subscribe to and read news and weblogs that support RSS.
* Improved Privacy Controls
In order to help protect your privacy, Thunderbird now automatically
blocks remote image requests in e-mails from senders you don't know.
* Improved Quick Search
Thunderbird now makes it even easier to manage your e-mail. Quick
search now supports many different types of search criteria including
the ability to search message body text. Thunderbird can also
highlight the quick search terms in the message body.
* Other New Features
Support for using a master password to encrypt saved e-mail account passwords.
Linux GNOME users can now make Thunderbird their default e-mail client
(Tools > Options > General).
If your network uses proxy authentication for HTTP, Thunderbird now
correctly prompts for proxy authentication instead of silently
failing.
Bug fixes too numerous to mention!
---
Several security holes have been fixed. See the page bellow for
detail.
http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
from Release Notes:
---
Firefox is a fast, full-featured browser that makes browsing more
efficient than ever before. More information about Firefox is
available.
Firefox Preview Release (henceforth refered to as PR) is a Technology
Preview. While this software works well enough to be relied upon as
your primary browser in most cases, we make no guarantees of its
performance or stability. It is a pre-release product and should not
be relied upon for mission-critical tasks. See the License Agreement
for more information.
These release notes cover what's new, download and installation
instructions, known issues and frequently asked questions for the
Firefox PR release. Please read these notes and the bug filing
instructions before reporting any bugs to Bugzilla.
We want to hear your feedback about Firefox. Please join us in the
Firefox forums, hosted by MozillaZine.
What's New
Here's what's new in this release of Firefox:
* Live Bookmarks
You can now subscribe to and read RSS feeds in your
Bookmarks. When you visit a page that advertises a RSS feed by using a
<link> tag, a RSS icon will appear in the status bar. Click it to view
a list of feeds the page is offering. Click one to subscribe - this
adds a Bookmark Folder that contains all the recent posts from the
feed.
* Improved Find
Find is easier and more powerful now with our new Find
toolbar. The Find toolbar (which shows at the bottom of the browser
window) automatically highlights text in the page as you type and has
a useful highlight feature.
* Managing Annoyances and Protecting Security
You can now open blocked popups, and the Extension install
system now blocks all attempts to install software from sites other
than update.mozilla.org. Users can add other sites to a list that
allows them to offer software, but software is never automatically
installed. In addition to these steps, several other measures have
been taken to prevent phishing attacks and to highlight when a page is
being viewed over a secure connection.
* Better Bookmarks
Numerous improvements to bookmarks including more reliable
presentation of Site icons, and a split pane view in the Bookmarks
window.
* Strong Encryption For Passwords Available
Passwords saved with the Password Manager can now be more easily
encrypted with strong encryption by creating a "Master Password". If
you create a Master Password, you are prompted once per session to
enter the Master Password so that Password Manager can automatically
fill in site logins. A useful feature for people who share computers
with others and want improved security.
* Improved Compatibility for IE users
Undetectable document.all support for site compatibility and
improved compatibility for keyboard accelerators further smooth the
transition for IE users
* Better System Integration for GNOME users
You can now configure Firefox as your Default Browser on GNOME,
and Firefox will adhere to your GNOME settings for edit field key
bindings, etc.
* And a horde of other bug fixes...
See The Burning Edge's Bigger Picture for more details.
-----
Several security holes have been fixed. See the page bellow for
detail.
http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
|
|
|
|
* maketemp now creates an empty file with the given name, instead of merely
returning the name of a nonexistent file. This closes a security hole.
(Now it builds on Darwin/MacOSX; no more 'sigstack' linking error.)
|
|
- distfile has moved
- license has changed. Patches are the result of de-fuzzing the
old patches since the new source files have the new (less restrictive)
license.
|
|
No vulnerability exists because of this, but I think
it is best to have this applied. (However, no entry
in the vulnerabilities file will be added.)
|
|
|
|
(when there is no sudo binary temporarily!)
|
|
(by extension). Evidence suggests there is (at best) a bad interaction
between pth and the thread memory allocator inside tcl, as witnessed by
the tcl-scotty's package failure to install if threads is enabled on
1.6.2_STABLE/i386. Interestingly, the version with native threads on
2.0_BETA/alpha works just nicely.
|
|
|
|
|
|
|
|
|
|
|
|
Mozilla 1.7.3 is a security update to Mozilla 1.7 that fixes a several
security vulnerabilities.
#93 "Send page" heap overrun (258005)
#92 javascript clipboard access (257523)
#91 Privilege request confusion (253942)
#90 Buffer overflow when displaying VCard (257314)
#89 BMP integer overflow (255067)
#88 javascript: link dragging (250862)
#87 non-ascii hostname heap overrun (256316)
#86 Malicious POP3 server III (245066, 226669)
#85 Wrong file permissions after installing on Linux (231083, 235781)
#84 Wrong file permissions in linux archive (254303)
See the page bellow for detail
http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
|
|
|
|
Changes since 2.10.0:
* Changes in 2.10.1 from 2.10.0
Version 2.10.1 is a bug fix version of 2.10.0.
** Fixed after message buffer kill, prefetch doesn't work.
** Default value of wl-delete-folder-alist,
wl-folder-hierarchy-access-folders are changed.
** Support localdir and pipe folder rename.
** Fixed message and error argument. Use %s for variable.
** Now, response from IMAP server (e.g. \Noselect, \Flagged)
parse case-ignore.
** Fixed elmo-msgdb-extra-fields field are case sensitive.
** Fixed IMAP folder included ~, expand to home directory.
** Fixed the problem that msgdb be destroyed when print-length or
print-level has Non-nil value.
** Fixed a problem that wl-folder-move-cur-folder doesn't work.
** Fixed a problem that wl-draft-reedit doesn't work properly on Meadow.
** Fixed a problem that wl-summary-pack-number doesn't work on
Maildir, shimbun, and pipe folders.
** Fixed a problem that cache file is not protected even if it is marked
as important.
** Fixed a problem that %# in wl-summary-line-format cannot handle large
number.
** Fixed a problem to remove password even if SMTP AUTH failed at non-auth
phase.
** Default value of wl-message-buffer-prefetch-folder-type-list,
wl-message-buffer-prefetch-idle-time, and
wl-message-buffer-prefetch-depth are changed.
** Fixed to compile on XEmacs without mule feature.
|
|
|
|
|
|
|
|
Changes since 1.0.0:
Version 1.2.3:
- IPv6 support on Windows systems
- The configuration file supports all commands and arguments related to
TLS and authentication, even if TLS and/or GNU SASL support is not
compiled in
- The GNU SASL library is not required to support DIGEST-MD5 and NTLM
anymore. This means you can now use the packaged versions of the library
from Gentoo or Debian sarge.
- You can use the -v/--version option to find out which authentication
methods are supported.
Version 1.2.2:
- Enhancements to the logfile command:
- All available information is now written to the logfile (new fields:
mailsize=..., smtpmsg='...', errormsg='...').
- Logging to standard output is possible by using "logfile -"
Version 1.2.1:
- No new features.
Version 1.2.0:
- This version can be compiled without TLS/SSL support; use
--disable-ssl if you really want that.
- Read the entries for versions 1.1.x for more changes since the last
stable version 1.0.0.
Version 1.1.3:
- New option -i for compatibility with mail(1).
- New 'logfile' command; see man page for details.
Version 1.1.2:
- No user visible changes.
Version 1.1.1:
- The tls_nostarttls command now sets the default port to 465 (ssmtp).
Version 1.1.0:
- Support for SMTP command pipelining. On high latency networks, this
may increase transmission speed, especially when sending to many
recipients.
- The short option for --file, -f, has changed to -F
- A new option --from/-f is available to set the envelope from address.
- A new option --serverinfo/-S is available to print information
about the capabilities and limitations of an SMTP server
|
|
out URL where it will re-appear hopefully soon.
|
|
|
