Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
|
|
|
|
databases/phpmyadmin security update
Revisions pulled up:
- databases/phpmyadmin/Makefile 1.96
- databases/phpmyadmin/distinfo 1.57
---
Module Name: pkgsrc
Committed By: tron
Date: Fri Dec 23 08:07:44 UTC 2011
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log Message:
Update "phpmyadmin" package to version 3.4.9. Changes since 3.4.8:
- bug #3442028 [edit] Inline editing enum fields with null shows
no dropdown
- bug #3442004 [interface] DB suggestion not correct for user with
underscore
- bug #3438420 [core] Magic quotes removed in PHP 5.4
- bug #3398788 [session] No feedback when result is empty
(signon auth_type)
- bug #3384035 [display] Problems regarding ShowTooltipAliasTB
- bug #3306875 [edit] Can't rename a database that contains views
- bug #3452506 [edit] Unable to move tables with triggers
- bug #3449659 [navi] Fast filter broken with table tree
- bug #3448485 [GUI] Firefox favicon frameset regression
- [core] Better compatibility with mysql extension
- [security] Self-XSS on export options (export server/database/table),
see PMASA-2011-20
- [security] Self-XSS in setup (host parameter), see PMASA-2011-19
|
|
|
|
graphics/jasper: security patch
Revisions pulled up:
- graphics/jasper/Makefile 1.34
- graphics/jasper/distinfo 1.14
- graphics/jasper/patches/patch-ai 1.2
---
Module Name: pkgsrc
Committed By: drochner
Date: Thu Dec 22 16:17:57 UTC 2011
Modified Files:
pkgsrc/graphics/jasper: Makefile distinfo
pkgsrc/graphics/jasper/patches: patch-ai
Log Message:
add patches from Redhat to add some input validation and fix a
memory allocation error; both could lead to heap buffer overflows
(CVE-2011-4516, CVE-2011-4517)
bump PKGREV
|
|
|
|
www/kazehakase: build fix
Revisions pulled up:
- www/kazehakase/distinfo 1.11
- www/kazehakase/patches/patch-src_kz-app.c 1.1
---
Module Name: pkgsrc
Committed By: joerg
Date: Mon Dec 12 19:10:37 UTC 2011
Modified Files:
pkgsrc/www/kazehakase: distinfo
Added Files:
pkgsrc/www/kazehakase/patches: patch-src_kz-app.c
Log Message:
Fix fallout from newer gnutls.
|
|
|
|
www/apache-tomcat6: security update
Revisions pulled up:
- www/apache-tomcat6/Makefile 1.10
- www/apache-tomcat6/PLIST 1.6
- www/apache-tomcat6/distinfo 1.7
---
Module Name: pkgsrc
Committed By: spz
Date: Tue Dec 13 09:44:17 UTC 2011
Modified Files:
pkgsrc/www/apache-tomcat6: Makefile PLIST distinfo
Log Message:
Upstream changelog:
Tomcat 6.0.35 (jfclere)
+++++++++++++++++++++++
Catalina
--------
fix Fix regression in decoding of parameters that contain spaces.
Patch by Willem Fibbe. (kkolinko)
Tomcat 6.0.34 (jfclere) not released
++++++++++++++++++++++++++++++++++++
Catalina
--------
fix 51550: Display an error page rather than an empty response
for an IllegalStateException caused by too many active sessions.
(markt)
add 51640: Improve the memory leak prevention for leaks triggered
by java.sql.DriverManager. (markt/kkolinko)
fix 51688: JreMemoryLeakPreventionListener now protects against
AWT thread creation. (schultz)
fix 51758: The digester (used for processing XML files) used
the logger name org.apache.commons.digester.Digester rather
than the expected org.apache.tomcat.util.digester.Digester.
The digester has been changed to use the expected logger name.
(kkolinko)
add 51862: Added a classesToInitialize attribute to
JreMemoryLeakPreventionListener to allow pre-loading of
configurable classes to avoid some classloader leaks. (slaurent)
fix 51872: Ensure that the access log always uses the correct
value for the remote IP address associated with the request
and that requests with multiple errors do not result in
multiple entries in the access log. (markt)
add Allow to overwrite the check for distributability of session
attributes by session implementations. (rjung)
add Provide the log format "OneLineFormatter" for JULI that
provides the same information as the default plus thread
name but on a single line. (markt/rjung)
fix Ensure the the memory leak protection for the HttpClient
keep-alive always operates even if the thread has already
stopped. (markt)
fix 51940: Do not limit saving of request bodies during FORM
authentication to POST requests since any HTTP method may
include a request body. Based on a patch by Nicholas Sushkin.
(kkolinko)
fix 52091: Address performance issues related to lock contention
in StandardWrapper. Based on patch provided by Taiki Sugawara.
(kkolinko)
update In GenericPrincipal, SerializablePrincipal: Do not sort lists
of roles that have only one element. (kkolinko)
add Make configuration issue for CsrfPreventionFilter result in
the failure of the filter rather than just a warning message.
(kkolinko)
fix Ensure changes to the configuration of RemoteAddrValve and
RemoteHostValve via JMX are thread-safe. (kkolinko)
add Make configuration issue for RemoteAddrValve and
RemoteHostValve result in the failure of the valve rather
than just a warning message. (kkolinko)
update In RequestFilterValve (RemoteAddrValve, RemoteHostValve):
refactor value matching logic into separate method and expose
this new method isAllowed through JMX. (kkolinko)
add Improve performance of parameter processing for GET and POST
requests. Also add an option to limit the maximum number of
parameters processed per request. This defaults to 10000.
Excessive parameters are ignored. Note that FailedRequestFilter
can be used to reject the request if some parameters were
ignored. (markt/kkolinko)
add New filter FailedRequestFilter that will reject a request
if there were errors during HTTP parameter parsing. (kkolinko)
Coyote
------
fix 50394: Return -1 from read operation instead of throwing an
exception when encountering an EOF with the HTTP APR connector.
(kkolinko)
fix 51698: Fix CVE-2011-3190. Prevent AJP message injection. (markt)
fix Detect incomplete AJP messages and reject the associated
request if one is found. (markt)
fix 51794: Fix race condition in NioEndpoint selector.
Patch provided by dlord. (fhanik)
fix 51905: Fix infinite loop in AprEndpoint shutdown if acceptor
unlock fails. Reduce timeout before forcefully closing the
socket from 30s to 10s. (kkolinko)
fix 52121: Fix possible output corruption when compression is
enabled for a connector and the response is flushed.
Test case provided by David Marcks. (kkolinko)
fix Replace unneeded call that iterated events queue in
NioEndpoint.Poller. (kkolinko)
fix Improve MimeHeaders.toString(). (kkolinko)
fix Allow the BIO HTTP connector to be used with SSL when
running under Java 7. (markt)
fix Improve multi-byte character handling in all connectors. (rjung)
Jasper
------
fix 51220: Correct copy/paste error in original commit for this
issue. (markt)
fix 52091: Address performance issues related to log creation
in TagHandlerPool. Patch provided by Taiki Sugawara. (markt)
Cluster
-------
add 51736: Make rpcTimeout configurable in BackupManager. (kfujino)
add New cluster manager attribute sessionAttributeFilter allows
to filter which session attributes are replicated using a
regular expression applied to the attribute name. (rjung)
fix Avoid an unnecessary session ID change notice.
Notice of changed session ID by JvmRouteBinderValve is
unnecessary to BackupManager. In BackupManager, change of
session ID is replicated by the call of a setId() method.
(kfujino)
fix Fix unneeded duplicate resetDeltaRequest() call in
DeltaSession.setId(String). (kkolinko)
add When Context manager does not exist, no context manager
message is replied in order to avoid timeout (default 60 sec)
of GET_ALL_SESSIONS sync phase. (kfujino)
Webapps
-------
fix Correct the documentation for the connectionLinger attribute
of the HTTP connector. (markt)
add Show build date and version in the header on every
documentation page. (kkolinko)
fix 52049: Improve setup instructions for running as a Windows
service: correct information on how a JRE is identified and
selected. (markt)
update 52172: Clarify Tomcat build instructions. Patch provided by
bmargulies. (kkolinko)
Other
-----
update Update the native component of the APR/native connectors
to 1.1.22. (markt)
update Update the recommended version of the native component
of the APR/native connectors to 1.1.22. (kkolinko)
update Update the Eclipse compiler (used for JSPs) to 3.7. (markt)
fix Correct two typos in the Windows installer. (kkolinko)
fix 52059: In Windows uninstaller: Do not forget to remove
Tomcat keys from 32-bit registry on deinstallation. (kkolinko)
|
|
|
|
www/apache22 security patch
Revisions pulled up:
- www/apache22/Makefile 1.76
- www/apache22/distinfo 1.47
- www/apache22/patches/patch-modules_mappers_mod_rewrite.c 1.1
- www/apache22/patches/patch-modules_proxy_mod_proxy.c 1.1
---
Module Name: pkgsrc
Committed By: spz
Date: Tue Dec 13 15:37:57 UTC 2011
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
Added Files:
pkgsrc/www/apache22/patches: patch-modules_mappers_mod_rewrite.c
patch-modules_proxy_mod_proxy.c
Log Message:
add revision 1209432 from http://svn.apache.org/ as patches:
fix for CVE-2011-4317
|
|
security/openpam security patch
Revisions pulled up:
- security/openpam/Makefile 1.16
- security/openpam/distinfo 1.8
- security/openpam/patches/patch-ab 1.4
---
Module Name: pkgsrc
Committed By: spz
Date: Tue Dec 13 15:57:08 UTC 2011
Modified Files:
pkgsrc/security/openpam: Makefile distinfo
pkgsrc/security/openpam/patches: patch-ab
Log Message:
added prevention of CVE-2011-4122 taken from NetBSD src
|
|
textproc/chasen-base: security patch
Revisions pulled up:
- textproc/chasen-base/Makefile 1.21
- textproc/chasen-base/distinfo 1.11
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Dec 11 14:26:27 UTC 2011
Modified Files:
pkgsrc/textproc/chasen-base: Makefile distinfo
Log Message:
Add security patch for CVE-2011-4000 from official site.
Bump PKGREVISION.
|
|
|
|
www/apache22 security update
Revisions pulled up:
- www/apache22/Makefile 1.75
- www/apache22/distinfo 1.45
- www/apache22/patches/patch-server_protocol.c 1.2
---
Module Name: pkgsrc
Committed By: tron
Date: Wed Dec 7 22:58:12 UTC 2011
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
pkgsrc/www/apache22/patches: patch-server_protocol.c
Log Message:
Add improved fix for proxy vulnerability reported in CVE-2011-3368.
This should also fix CVE-2011-3639 and possibly CVE-2011-4317, both
part of SA46987.
|
|
net/icsi-finger security update
Revisions pulled up:
- doc/CHANGES-2011 1.2900
- net/icsi-finger/Makefile 1.17-1.19
- net/icsi-finger/distinfo 1.10-1.13
- net/icsi-finger/patches/patch-ak 1.2-1.4
- net/icsi-finger/patches/patch-al 1.2
- net/icsi-finger/patches/patch-an 1.1
- net/icsi-finger/patches/patch-lib_util_c 1.1
---
Module Name: pkgsrc
Committed By: is
Date: Thu Nov 10 09:42:22 UTC 2011
Modified Files:
pkgsrc/net/icsi-finger: distinfo
Added Files:
pkgsrc/net/icsi-finger/patches: patch-an
Log Message:
Missed part of the fix for 64bit time_t from 2011/01/18 12:28:25.
The maintainance program packet2ascii (actually, the ascii2packet part)
needed to be fixed, too.
---
Module Name: pkgsrc
Committed By: is
Date: Thu Nov 10 09:59:53 UTC 2011
Modified Files:
pkgsrc/net/icsi-finger: Makefile
Log Message:
Missed part of the fix for 64bit time_t from 2011/01/18 12:28:25.
The maintainance program packet2ascii (actually, the ascii2packet part)
needed to be fixed, too.
---
Module Name: pkgsrc
Committed By: dholland
Date: Tue Nov 15 00:11:07 UTC 2011
Modified Files:
pkgsrc/net/icsi-finger: distinfo
pkgsrc/net/icsi-finger/patches: patch-ak patch-al
Added Files:
pkgsrc/net/icsi-finger/patches: patch-lib_util_c
Log Message:
Use stdlib.h instead of private decls of malloc; remove union wait. Should
fix build with newer gcc and maybe also clang.
---
Module Name: pkgsrc
Committed By: is
Date: Tue Nov 15 13:04:47 UTC 2011
Modified Files:
pkgsrc/doc: CHANGES-2011
pkgsrc/net/icsi-finger: Makefile distinfo
pkgsrc/net/icsi-finger/patches: patch-ak
Log Message:
replace mktemp() by mkstemp(), updating net/icsi-finger to 1.0.27nb6
---
Module Name: pkgsrc
Committed By: is
Date: Tue Nov 22 09:04:49 UTC 2011
Modified Files:
pkgsrc/net/icsi-finger: Makefile distinfo
pkgsrc/net/icsi-finger/patches: patch-ak
Log Message:
Remove a data-dependent case of segmentation fault in in.fingerd.
|
|
|
|
devel/p5-PAR: security update
Revisions pulled up:
- devel/p5-PAR/Makefile 1.17
- devel/p5-PAR/distinfo 1.7
---
Module Name: pkgsrc
Committed By: gls
Date: Sun Dec 4 20:52:25 UTC 2011
Modified Files:
pkgsrc/devel/p5-PAR: Makefile distinfo
Log Message:
Update devel/p5-PAR to 1.005.
Includes a fix for CVE 2011-4114.
Upstream changes:
[Changes for 1.005 - Dec 2, 2011]
- run all tests using a nonce PAR_TMPDIR (otherwise CPAN Testers
goes crazy as top level /tmp/par-USER directories (or similar)
from previous tests may now be considered "unsafe")
[Changes for 1.004 - Nov 30, 2011]
- back out r1241: it causes errors in PAR::Packer's test suite
- change "unsafe directory" error message to match the wording
used by PAR::Packer
- remove "debian" sub directory: it isn't released to CPAN and
Debian will supply its own anyway
- remove some cruft from MANIFEST.SKIP
[Changes for 1.003 - Nov 28, 2011]
- RT #69560/CVE-2011-4114: PAR packed files are extracted to unsafe
and predictable temporary directories
(Note: this bug was originally reported against PAR::Packer, but
it applies to PAR as well)
- create parent of cache directory (i.e. /tmp/par-USER) with mode 0700
- if it already exists, make sure that (and bail out if not)
- it's not a symlink
- it's mode 0700
- it's owned by USER
- Fix a problem packing XML::LibXSLT on Windows (see the thread starting
with http://www.nntp.perl.org/group/perl.par/2011/02/msg4919.html)
- Die (with a hopefully useful message) if any error is encountered
during an Archive::Zip extract operation
|
|
graphics/xart: build fix
Revisions pulled up:
- graphics/xart/distinfo 1.15
- graphics/xart/patches/patch-ad 1.3
- graphics/xart/patches/patch-ak 1.2
- graphics/xart/patches/patch-image.h 1.1
- graphics/xart/patches/patch-main.c 1.1
- graphics/xart/patches/patch-protocol.c 1.1
- graphics/xart/patches/patch-rw_readGIF.c 1.1
- graphics/xart/patches/patch-rw_readWriteXBM.c 1.1
- graphics/xart/patches/patch-rw_readWriteXWD.c 1.1
---
Module Name: pkgsrc
Committed By: joerg
Date: Mon Dec 5 22:48:59 UTC 2011
Modified Files:
pkgsrc/graphics/xart: distinfo
pkgsrc/graphics/xart/patches: patch-ad patch-ak
Added Files:
pkgsrc/graphics/xart/patches: patch-image.h patch-main.c
patch-protocol.c patch-rw_readGIF.c patch-rw_readWriteXBM.c
patch-rw_readWriteXWD.c
Log Message:
Fix build with newer GCC
|
|
|
|
devel/opal: build fix
Revisions pulled up:
- devel/opal/distinfo 1.9
- devel/opal/patches/patch-configure 1.1
- devel/opal/patches/patch-configure.ac 1.1
- devel/opal/patches/patch-plugins_configure 1.1
- devel/opal/patches/patch-plugins_configure.ac 1.1
- devel/opal/patches/patch-plugins_video_H.263-1998_h263-1993.cxx 1.1
- devel/opal/patches/patch-plugins_video_MPEG4-ffmpeg_mpeg4.cxx 1.1
- devel/opal/patches/patch-plugins_video_common_dyna.cxx 1.1
---
Module Name: pkgsrc
Committed By: marino
Date: Sun Dec 4 22:06:04 UTC 2011
Modified Files:
pkgsrc/devel/opal: distinfo
Added Files:
pkgsrc/devel/opal/patches: patch-configure patch-configure.ac
patch-plugins_configure patch-plugins_configure.ac
patch-plugins_video_H.263-1998_h263-1993.cxx
patch-plugins_video_MPEG4-ffmpeg_mpeg4.cxx
patch-plugins_video_common_dyna.cxx
Log Message:
devel/opal: Fix incompatibility with ffmpeg / Add DragonFly support
Several plugins of Opal weren't building because the function names
in the ffmpeg libraries changed (they were prefixed with "ff_").
These function names were updated, but a couple of the plugins also
needed changes for a modern gcc. Finally, DragonFly support was
added to the various configuration scripts.
|
|
|
|
www/py-clearsilver security fix
Revisions pulled up:
- www/clearsilver/distinfo 1.16
- www/clearsilver/patches/patch-python_neo__cgi.c 1.1
- www/py-clearsilver/Makefile 1.15
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Dec 1 20:53:54 UTC 2011
Modified Files:
pkgsrc/www/py-clearsilver: Makefile
Log Message:
Add a fix for CVE 2011-4357, taken from
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=649322
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Dec 1 20:50:49 UTC 2011
Modified Files:
pkgsrc/www/clearsilver: distinfo
Added Files:
pkgsrc/www/clearsilver/patches: patch-python_neo__cgi.c
Log Message:
Add a fix for CVE 2011-4357, taken from
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=649322
|
|
net/p5-Net-Libdnet build fix/update
Revisions pulled up:
- net/p5-Net-Libdnet/Makefile 1.8
- net/p5-Net-Libdnet/distinfo 1.3
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Dec 1 21:14:22 UTC 2011
Modified Files:
pkgsrc/net/p5-Net-Libdnet: Makefile distinfo
Log Message:
Update p5-Net-Libdnet to 0.96.
pkgsrc changes:
- - Set LICENSE
- - Add dependency to p5-Class-Gomor, as reported in PR pkg/45674.
Upstream changes:
0.96 Wed Nov 16 23:07:38 CET 2011
- bugfix: default to be compiled against libdnet (and not libdumbnet)
- update: added some die() in example programs
0.95 Sun Mar 13 23:47:10 CET 2011
- new: added ubuntu and standard patchs. See README.
0.94 Fri Jan 14 11:09:49 CET 2011
- bugfix: tohash method in pod
- applied http://rt.cpan.org/Public/Bug/Display.html?id=52359
0.93 Thu Jan 13 11:07:07 CET 2011
- update: makes components more inline with local install
of libdnet
- update: copyright notice
|
|
|
|
databases/phpmyadmin: security update
Revisions pulled up:
- databases/phpmyadmin/Makefile 1.95
- databases/phpmyadmin/distinfo 1.56
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Fri Dec 2 23:39:30 UTC 2011
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log Message:
Update "phpmyadmin" package to version 3.4.8. Changes since 3.4.7.1:
- bug #3425230 [interface] enum data split at space char (more space to edi=
t)
- bug #3426840 [interface] ENUM/SET editor can't handle commas in values
- bug #3427256 [interface] no links to browse/empty views and tables
- bug #3430377 [interface] Deleted search results remain visible
- bug #3428627 [import] ODS import ignores memory limits
- bug #3426836 [interface] Visual column separation
- bug #3428065 [parser] TRUE not recognized by parser
+ patch #3433770 [config] Make location of php-gettext configurable
- patch #3430291 [import] Handle conflicts in some open_basedir situations
- bug #3431427 [display] Dropdown results - setting NULL does not work
- patch #3428764 [edit] Inline edit on multi-server configuration
- patch #3437354 [core] Notice: Array to string conversion in PHP 5.4
- [interface] When ShowTooltipAliasTB is true, VIEW is wrongly shown as the
view name in main panel db Structure page
- bug #3439292 [core] Fail to synchronize column with name of keyword
- bug #3425156 [interface] Add column after drop
- [interface] Avoid showing the password in phpinfo()'s output
- bug #3441572 [GUI] 'newer version of phpMyAdmin' message not shown in IE8
- bug #3407235 [interface] Entering the key through a lookup window does no=
t reset NULL
- [security] Self-XSS on database names (Synchronize), see PMASA-2011-18
- [security] Self-XSS on database names (Operations/rename), see PMASA-2011=
-18
- [security] Self-XSS on column type (Create index), see PMASA-2011-18
- [security] Self-XSS on column type (table Search), see PMASA-2011-18
- [security] Self-XSS on invalid query (table overview), see PMASA-2011-18
To generate a diff of this commit:
cvs rdiff -u -r1.94 -r1.95 pkgsrc/databases/phpmyadmin/Makefile
cvs rdiff -u -r1.55 -r1.56 pkgsrc/databases/phpmyadmin/distinfo
|
|
|
|
security/p5-Digest security update
Revisions pulled up:
- security/p5-Digest/Makefile 1.23
- security/p5-Digest/distinfo 1.10
---
Module Name: pkgsrc
Committed By: he
Date: Thu Dec 1 22:35:14 UTC 2011
Modified Files:
pkgsrc/security/p5-Digest: Makefile distinfo
Log Message:
Update to version 1.17.
Upstream changes:
Gisle Aas (6):
Less noisy 'git status' output
Merge pull request #1 from schwern/bug/require_eval
Don't clobber $@ in Digest->new [RT#50663]
More meta info added to Makefile.PL
Fix typo in RIPEMD160 [RT#50629]
Add schwern's test files
Michael G. Schwern (5):
Turn on strict.
Convert tests to use Test::More
Untabify
Turn Digest::Dummy into a real file which exercises the
Digest->new() require logic.
Close the eval "require $module" security hole in Digest->new($algorithm)
|
|
|
|
editors/emacs20: bug fix patch
Revisions pulled up:
- editors/emacs20/distinfo 1.19-1.22
- editors/emacs20/patches/patch-ab 1.4
- editors/emacs20/patches/patch-bm 1.2-1.4
- editors/emacs20/patches/patch-cb deleted
---
Module Name: pkgsrc
Committed By: dholland
Date: Thu Dec 1 04:05:41 UTC 2011
Modified Files:
pkgsrc/editors/emacs20: distinfo
pkgsrc/editors/emacs20/patches: patch-ab
Log Message:
Patch up configure tests for cpp to avoid problems when running gcc
4.5's cpp on makefiles. PR 45669.
Unfortunately, this does not by itself fix the build; now I'm getting
./temacs -batch -l loadup dump
gmake[1]: *** [emacs] Segmentation fault
and I have a bad feeling that this may be the same issue that the
other emacs versions are sometimes hitting.
---
Module Name: pkgsrc
Committed By: dholland
Date: Thu Dec 1 04:51:30 UTC 2011
Modified Files:
pkgsrc/editors/emacs20: distinfo
pkgsrc/editors/emacs20/patches: patch-bm
Removed Files:
pkgsrc/editors/emacs20/patches: patch-cb
Log Message:
Fold patch-cb into patch-bm since they patch the same file. Related to
PR 45669. hi joerg!
---
Module Name: pkgsrc
Committed By: dholland
Date: Thu Dec 1 05:07:23 UTC 2011
Modified Files:
pkgsrc/editors/emacs20: distinfo
pkgsrc/editors/emacs20/patches: patch-bm
Log Message:
Add __asm __volatile("":::"memory") at a critical point in alloc.c.
gcc thinks it knows the semantics of malloc and so it thinks it can
optimize out the manipulation of __malloc_hook; however, doing so causes
the subsequent malloc call to come back to itself, leading to an infinite
recursion and SIGSEGV in temacs.
This fixes the remaining part of PR 45669.
Someone(TM) should check if this issue affects other Emacs versions
and/or XEmacs.
---
Module Name: pkgsrc
Committed By: dholland
Date: Thu Dec 1 05:12:57 UTC 2011
Modified Files:
pkgsrc/editors/emacs20: distinfo
pkgsrc/editors/emacs20/patches: patch-bm
Log Message:
Extend previous to realloc and free as well, which is almost certainly
necessary. PR 45669.
|
|
|
|
comms/kermit: build fix
Revisions pulled up:
- comms/kermit/Makefile 1.78
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun Nov 20 12:01:50 UTC 2011
Modified Files:
pkgsrc/comms/kermit: Makefile
Log Message:
Fix build under recent versions of Mac OS X by selectin a make target
that actually exists.
To generate a diff of this commit:
cvs rdiff -u -r1.77 -r1.78 pkgsrc/comms/kermit/Makefile
|
|
|
|
misc/kdeutils4: security patch
Revisions pulled up:
- misc/kdeutils4/Makefile 1.27 via patch
- misc/kdeutils4/distinfo 1.15
- misc/kdeutils4/patches/patch-ark_part_part.cpp 1.1
---
Module Name: pkgsrc
Committed By: markd
Date: Sun Nov 20 02:10:58 UTC 2011
Modified Files:
pkgsrc/misc/kdeutils4: Makefile distinfo
Added Files:
pkgsrc/misc/kdeutils4/patches: patch-ark_part_part.cpp
Log Message:
Fix directory traversal issue (CVE-2011-2725).
|
|
x11/kdelibs4: security patch
Revisions pulled up:
- x11/kdelibs4/Makefile 1.30 via patch
- x11/kdelibs4/distinfo 1.21 via patch
- x11/kdelibs4/patches/patch-kio_kssl_ksslcertificatebox.cpp 1.1
- x11/kdelibs4/patches/patch-kioslave_http_http.cpp 1.1
---
Module Name: pkgsrc
Committed By: markd
Date: Sun Nov 20 02:08:11 UTC 2011
Modified Files:
pkgsrc/x11/kdelibs4: Makefile distinfo
Added Files:
pkgsrc/x11/kdelibs4/patches: patch-
kio_kssl_ksslcertificatebox.cpp
patch-kioslave_http_http.cpp
Log Message:
don't interpret html tags. KDE Security Advisory 20111003-1
|
|
x11/kdebase3: security patch
Revisions pulled up:
- x11/kdebase3/Makefile 1.163 via patch
- x11/kdebase3/distinfo 1.114
- x11/kdebase3/patches/patch-kcheckpass_checkpass_pam.c 1.1
---
Module Name: pkgsrc
Committed By: markd
Date: Sat Nov 19 21:17:28 UTC 2011
Modified Files:
pkgsrc/x11/kdebase3: Makefile distinfo
Added Files:
pkgsrc/x11/kdebase3/patches: patch-kcheckpass_checkpass_pam.c
Log Message:
Dont allow a path in pam_service. CVE-2011-4122
|
|
|
|
x11/kdebase-workspace4: security patch
Revisions pulled up:
- x11/kdebase-workspace4/Makefile 1.31 via patch
- x11/kdebase-workspace4/distinfo 1.18
- x11/kdebase-workspace4/patches/patch-kcheckpass_checkpass_pam.c 1.1
---
Module Name: pkgsrc
Committed By: markd
Date: Sat Nov 19 21:12:05 UTC 2011
Modified Files:
pkgsrc/x11/kdebase-workspace4: Makefile distinfo
Added Files:
pkgsrc/x11/kdebase-workspace4/patches: patch-kcheckpass_checkpass_pam.c
Log Message:
Dont allow a path in pam_service. CVE-2011-4122
|
|
graphics/freetype2: security update
Revisions pulled up:
- graphics/freetype2/Makefile 1.85
- graphics/freetype2/distinfo 1.46
---
Module Name: pkgsrc
Committed By: drochner
Date: Tue Nov 15 19:42:17 UTC 2011
Modified Files:
pkgsrc/graphics/freetype2: Makefile distinfo
Log Message:
update to 2.4.8
changes:
-fixed vulnerabilities in handling CID-keyed PostScript fonts
(CVE-2011-3439)
-new API 'FT_Get_PS_Font_Value'
|
|
|
|
mail/dovecot2: security update
Revisions pulled up:
- mail/dovecot2/Makefile 1.16
- mail/dovecot2/PLIST 1.9
- mail/dovecot2/distinfo 1.13
---
Module Name: pkgsrc
Committed By: ghen
Date: Thu Nov 17 08:10:01 UTC 2011
Modified Files:
pkgsrc/mail/dovecot2: Makefile PLIST distinfo
Log Message:
Update to Dovecot 2.0.16.
* VSZ limits weren't being enforced for any processes. On server with
large mailboxes you may now see errors about it if the limits aren't
high enough. To fix them, either increase individual service {
vsz_limit } values or simply increase the default_vsz_limit setting.
* Proxying: If using ssl=3Dyes or starttls=3Dyes with a hostname (not IP)
as proxy destination, require that the certificate matches the given
hostname.
* LMTP: Changed default client_limit to 1. This should improve LMTP
throughput with default settings.
* dsync: Quota is no longer enforced (i.e. dsync can't fail because
user is over quota).
+ Added "auto" mail storage driver, which can be used to autodetect
mailbox location and format. This behavior is already the default
for empty mail_location setting, so this change is mainly useful for
shared namespace's location setting.
+ checkpassword: Export all auth %variables to AUTH_* environment.
|
|
|
|
databases/phpldapadmin security fix
Revisions pulled up:
- databases/phpldapadmin/Makefile 1.32
- databases/phpldapadmin/distinfo 1.11
---
Module Name: pkgsrc
Committed By: obache
Date: Thu Nov 17 12:44:02 UTC 2011
Modified Files:
pkgsrc/databases/phpldapadmin: Makefile distinfo
Log Message:
Update phpldapadmin to 1.2.2.
RELEASE NOTES
-------------
This is a minor release update to fix some bugs that were discovered after the
release of 1.2.1.1.
There are some security fixes in this release - I suggest you upgrade your
version of PLA to avoid any exploits.
CHANGES SINCE 1.2.1.1
---------------------
dece0f4 Release 1.2.2
d58f011 Language Translation merge from launchpad
696c266 Additional fix for SF Feature #3387473
2d018aa SF Feature #3387473 - Support for schema discovery using OpenLDAP's cn=config DN
cddf783 Add an alert when RFC3866 tags are being used
1e1fcab SF Bug #3398344 - Import LDIF overwrites entries
d8ab7fc SF Patch #3391547 - Option for minmal mode
56830f1 SF Patch #3391389 - Option to initially open the tree
6c8b623 SF Patch #3391371 - Fix for schema link deactivation
7fc4f0c SF Patch #3391039 - Remove eval commands from PHP code
059b83b SF Bug #3391046 - Loading entries with many attributes is very slow
4089ffa SF Bug #3392644 - Cannot authenticate if password starts or ends with spaces
c57a927 Disable supplied modifiction templates, it confused too many people
d5744b0 SF Bug #3370546 - AjaxEnabled create and delete entry fails on IE9
76e6dad SF Bug #3417184 - PHP Code Injection Vulnerability
5d4245f SF Bug #3395004 - config.php.example refers to lang/en.php
80d027d SF Bug #3373466 - Unable to define force_may attributes
64668e8 Remove XSS vulnerabilty in debug code
caeba72 SF Bug #3355722 - Issue in MultiList attribute type
0782730 SF Bug #3355732 - Cosmetic issue in functions.php -> get_icon()
446faf7 FIX SASL configuration example
afa4a95 Fix SASL implementation - enabled GSSAPI
5987194 SF Bug #3304785 - posixGroup creation template uses cn instead of uid
ddb5ed0 Enabled hiding base DNs that users dont have access to
7649b9b SF Feature #3298820 - Only custom templates
|
|
|
|
net/bind96 security update
Revisions pulled up:
- net/bind96/Makefile 1.21
- net/bind96/distinfo 1.14
---
Module Name: pkgsrc
Committed By: spz
Date: Wed Nov 16 22:26:07 UTC 2011
Modified Files:
pkgsrc/net/bind96: Makefile distinfo
Log Message:
BIND 9.6-ESV-R5-P1 is a security patch for BIND 9.6-ESV-R5.
* BIND 9 nameservers performing recursive queries could cache an invalid
record and subsequent queries for that record could crash the resolvers
with an assertion failure. [RT #26590]
|
|
net/bind97 security update
Revisions pulled up:
- net/bind97/Makefile 1.10
- net/bind97/distinfo 1.10
---
Module Name: pkgsrc
Committed By: spz
Date: Wed Nov 16 21:49:57 UTC 2011
Modified Files:
pkgsrc/net/bind97: Makefile distinfo
Log Message:
BIND 9.7.4-P1 is a security patch for BIND 9.7.4.
* BIND 9 nameservers performing recursive queries could cache an invalid
record and subsequent queries for that record could crash the resolvers
with an assertion failure. [RT #26590]
|
|
net/bind98 security update
Revisions pulled up:
- net/bind98/Makefile 1.6
- net/bind98/distinfo 1.6-1.7
- net/bind98/patches/patch-bin_dig_dighost.c 1.1
---
Module Name: pkgsrc
Committed By: spz
Date: Wed Nov 16 21:34:44 UTC 2011
Modified Files:
pkgsrc/net/bind98: Makefile distinfo
Log Message:
BIND 9.8.1-P1 is security patch for BIND 9.8.1.
* BIND 9 nameservers performing recursive queries could cache an invalid
record and subsequent queries for that record could crash the resolvers
with an assertion failure. [RT #26590]
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Nov 17 00:48:09 UTC 2011
Modified Files:
pkgsrc/net/bind98: distinfo
Added Files:
pkgsrc/net/bind98/patches: patch-bin_dig_dighost.c
Log Message:
Fix build problem on NetBSD current, maybe caused by newer gcc.
* Avoid to use true as variable name.
|
|
|
|
multimedia/ffmpeg security update
Revisions pulled up:
- multimedia/ffmpeg/Makefile 1.73-1.74
- multimedia/ffmpeg/Makefile.common 1.13-1.14
- multimedia/ffmpeg/distinfo 1.45-1.46
- multimedia/ffmpeg/patches/patch-configure 1.14
---
Module Name: pkgsrc
Committed By: drochner
Date: Fri Oct 7 12:20:39 UTC 2011
Modified Files:
pkgsrc/multimedia/ffmpeg: Makefile Makefile.common distinfo
Log Message:
update to 0.7.6
changes:
-security fixes to many demuxers and decoders
-bugfixes
---
Module Name: pkgsrc
Committed By: drochner
Date: Mon Nov 7 10:43:35 UTC 2011
Modified Files:
pkgsrc/multimedia/ffmpeg: Makefile.common distinfo
pkgsrc/multimedia/ffmpeg/patches: patch-configure
Log Message:
update to 0.7.7
"fixes around 90 bugs, several of which are security relevant"
(sorry, no details in the release notes)
---
Module Name: pkgsrc
Committed By: drochner
Date: Mon Nov 7 10:45:36 UTC 2011
Modified Files:
pkgsrc/multimedia/ffmpeg: Makefile
Log Message:
update for new release date
|