| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
sysutils/xfce4-thunar: security fix
Revisions pulled up:
- sysutils/xfce4-thunar/Makefile 1.44
- sysutils/xfce4-thunar/distinfo 1.12
- sysutils/xfce4-thunar/patches/patch-thunar_thunar-gdk-extensions.c 1.1
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tnn
Date: Sun Mar 13 03:45:53 UTC 2016
Modified Files:
pkgsrc/sysutils/xfce4-thunar: Makefile distinfo
Added Files:
pkgsrc/sysutils/xfce4-thunar/patches:
patch-thunar_thunar-gdk-extensions.c
Log Message:
patch CVE-2013-7447
To generate a diff of this commit:
cvs rdiff -u -r1.43 -r1.44 pkgsrc/sysutils/xfce4-thunar/Makefile
cvs rdiff -u -r1.11 -r1.12 pkgsrc/sysutils/xfce4-thunar/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/sysutils/xfce4-thunar/patches/patch-thunar_thunar-gdk-extensions.c
|
|
devel/nss: security update
Revisions pulled up:
- devel/nss/Makefile 1.106
- devel/nss/distinfo 1.55
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: ryoon
Date: Sat Feb 6 22:09:56 UTC 2016
Modified Files:
pkgsrc/devel/nss: Makefile distinfo
Log Message:
Update to 3.22
Changelog:
The NSS team has released Network Security Services (NSS) 3.22,
which is a minor release.
New functionality:
* RSA-PSS signatures are now supported (bug 1215295)
* Pseudorandom functions based on hashes other than SHA-1 are now supported
* Enforce an External Policy on NSS from a config file (bug 1009429)
New Functions:
* PK11_SignWithMechanism - an extended version PK11_Sign()
* PK11_VerifyWithMechanism - an extended version of PK11_Verify()
* SSL_PeerSignedCertTimestamps - Get signed_certificate_timestamp
TLS extension data
* SSL_SetSignedCertTimestamps - Set signed_certificate_timestamp
TLS extension data
New Types:
* ssl_signed_cert_timestamp_xtn is added to SSLExtensionType
* Constants for several object IDs are added to SECOidTag
New Macros:
* SSL_ENABLE_SIGNED_CERT_TIMESTAMPS
* NSS_USE_ALG_IN_SSL
* NSS_USE_POLICY_IN_SSL
* NSS_RSA_MIN_KEY_SIZE
* NSS_DH_MIN_KEY_SIZE
* NSS_DSA_MIN_KEY_SIZE
* NSS_TLS_VERSION_MIN_POLICY
* NSS_TLS_VERSION_MAX_POLICY
* NSS_DTLS_VERSION_MIN_POLICY
* NSS_DTLS_VERSION_MAX_POLICY
* CKP_PKCS5_PBKD2_HMAC_SHA224
* CKP_PKCS5_PBKD2_HMAC_SHA256
* CKP_PKCS5_PBKD2_HMAC_SHA384
* CKP_PKCS5_PBKD2_HMAC_SHA512
* CKP_PKCS5_PBKD2_HMAC_GOSTR3411 - (not supported)
* CKP_PKCS5_PBKD2_HMAC_SHA512_224 - (not supported)
* CKP_PKCS5_PBKD2_HMAC_SHA512_256 - (not supported)
table Changes:
* NSS C++ tests are built by default, requiring a C++11 compiler.
Set the NSS_DISABLE_GTESTS variable to 1 to disable building these tests.
The HG tag is NSS_3_22_RTM. NSS 3.22 requires NSPR 4.11 or newer.
To generate a diff of this commit:
cvs rdiff -u -r1.105 -r1.106 pkgsrc/devel/nss/Makefile
cvs rdiff -u -r1.54 -r1.55 pkgsrc/devel/nss/distinfo
|
|
|
|
chat/libotr: security fix
Revisions pulled up:
- chat/libotr/Makefile 1.18
- chat/libotr/distinfo 1.12
---
Module Name: pkgsrc
Committed By: gdt
Date: Wed Mar 9 18:04:17 UTC 2016
Modified Files:
pkgsrc/chat/libotr: Makefile distinfo
Log Message:
Update to 4.1.1.
This is a security release addressing CVE-2016-2851.
- Fix an integer overflow bug that can cause a heap buffer overflow (and
from there remote code execution) on 64-bit platforms
- Fix possible free() of an uninitialized pointer
- Be stricter about parsing v3 fragments
- Add a testsuite ("make check" to run it), but only on Linux for now,
since it uses Linux-specific features such as epoll
- Fix a memory leak when reading a malformed instance tag file
- Protocol documentation clarifications
|
|
devel/git-base: security fix
Revisions pulled up:
- devel/git-base/Makefile 1.22-1.23
- devel/git-base/PLIST 1.11-1.12
- devel/git-base/distinfo 1.42-1.46
- devel/git-base/patches/patch-builtin_pack-objects.c 1.1
- devel/git-base/patches/patch-builtin_rev-list.c 1.1
- devel/git-base/patches/patch-http-push.c 1.1
- devel/git-base/patches/patch-list-objects.c 1.1
- devel/git-base/patches/patch-list-objects.h 1.1
- devel/git-base/patches/patch-pack-bitmap-write.c 1.1
- devel/git-base/patches/patch-pack-bitmap.c 1.1
- devel/git-base/patches/patch-reachable.c 1.1
- devel/git-base/patches/patch-revision.c 1.1
- devel/git-base/patches/patch-revision.h 1.1
- devel/git/Makefile.version 1.36-1.39
---
Module Name: pkgsrc
Committed By: adam
Date: Fri Jan 8 17:37:20 UTC 2016
Modified Files:
pkgsrc/devel/git: Makefile.version
pkgsrc/devel/git-base: PLIST distinfo
Log Message:
Changes 2.7.0:
UI, Workflows & Features
* The appearance of "gitk", particularly on high DPI monitors, have
been improved. "gitk" also comes with an undated translation for
Swedish and Japanese.
* "git remote" learned "get-url" subcommand to show the URL for a
given remote name used for fetching and pushing.
* There was no way to defeat a configured rebase.autostash variable
from the command line, as "git rebase --no-autostash" was missing.
* "git log --date=local" used to only show the normal (default)
format in the local timezone. The command learned to take 'local'
as an instruction to use the local timezone with other formats,
* The refs used during a "git bisect" session is now per-worktree so
that independent bisect sessions can be done in different worktrees
created with "git worktree add".
* Users who are too busy to type three extra keystrokes to ask for
"git stash show -p" can now set stash.showPatch configuration
variable to true to always see the actual patch, not just the list
of paths affected with feel for the extent of damage via diffstat.
* "quiltimport" allows to specify the series file by honoring the
$QUILT_SERIES environment and also --series command line option.
* The use of 'good/bad' in "git bisect" made it confusing to use when
hunting for a state change that is not a regression (e.g. bugfix).
The command learned 'old/new' and then allows the end user to
say e.g. "bisect start --term-old=fast --term-new=slow" to find a
performance regression.
* "git interpret-trailers" can now run outside of a Git repository.
* "git p4" learned to reencode the pathname it uses to communicate
with the p4 depot with a new option.
* Give progress meter to "git filter-branch".
* Allow a later "!/abc/def" to override an earlier "/abc" that
appears in the same .gitignore file to make it easier to express
"everything in /abc directory is ignored, except for ...".
* Teach "git p4" to send large blobs outside the repository by
talking to Git LFS.
* Prepare for Git on-disk repository representation to undergo
backward incompatible changes by introducing a new repository
format version "1", with an extension mechanism.
* "git worktree" learned a "list" subcommand.
* "git clone --dissociate" learned that it can be used even when
"--reference" was not used at the same time.
* "git blame" learnt to take "--first-parent" and "--reverse" at the
same time when it makes sense.
* "git checkout" did not follow the usual "--[no-]progress"
convention and implemented only "--quiet" that is essentially
a superset of "--no-progress". Extend the command to support the
usual "--[no-]progress".
* The semantics of transfer.hideRefs configuration variable have been
extended to work better with the ref "namespace" feature that lets
you throw unrelated bunches of repositories in a single physical
repository and virtually serve them as separate ones.
* send-email config variables whose values are pathnames now go
through the ~username/ expansion.
* bash completion learnt to TAB-complete recipient addresses given
to send-email.
* The credential-cache daemon can be told to ignore SIGHUP to work
around issue when running Git from inside emacs.
* "git push" learned new configuration for doing "--recurse-submodules"
on each push.
* "format-patch" has learned a new option to zero-out the commit
object name on the mbox "From " line.
---
Module Name: pkgsrc
Committed By: adam
Date: Sun Feb 7 10:27:23 UTC 2016
Modified Files:
pkgsrc/devel/git: Makefile.version
pkgsrc/devel/git-base: PLIST distinfo
Log Message:
Git v2.7.1 Release Notes
========================
Fixes since v2.7
----------------
* An earlier change in 2.5.x-era broke users' hooks and aliases by
exporting GIT_WORK_TREE to point at the root of the working tree,
interfering when they tried to use a different working tree without
setting GIT_WORK_TREE environment themselves.
* The "exclude_list" structure has the usual "alloc, nr" pair of
fields to be used by ALLOC_GROW(), but clear_exclude_list() forgot
to reset 'alloc' to 0 when it cleared 'nr' to discard the managed
array.
* "git send-email" was confused by escaped quotes stored in the alias
files saved by "mutt", which has been corrected.
* A few unportable C construct have been spotted by clang compiler
and have been fixed.
* The documentation has been updated to hint the connection between
the '--signoff' option and DCO.
* "git reflog" incorrectly assumed that all objects that used to be
at the tip of a ref must be commits, which caused it to segfault.
* The ignore mechanism saw a few regressions around untracked file
listing and sparse checkout selection areas in 2.7.0; the change
that is responsible for the regression has been reverted.
* Some codepaths used fopen(3) when opening a fixed path in $GIT_DIR
(e.g. COMMIT_EDITMSG) that is meant to be left after the command is
done. This however did not work well if the repository is set to
be shared with core.sharedRepository and the umask of the previous
user is tighter. They have been made to work better by calling
unlink(2) and retrying after fopen(3) fails with EPERM.
* Asking gitweb for a nonexistent commit left a warning in the server
log.
* "git rebase", unlike all other callers of "gc --auto", did not
ignore the exit code from "gc --auto".
* Many codepaths that run "gc --auto" before exiting kept packfiles
mapped and left the file descriptors to them open, which was not
friendly to systems that cannot remove files that are open. They
now close the packs before doing so.
* A recent optimization to filter-branch in v2.7.0 introduced a
regression when --prune-empty filter is used, which has been
corrected.
* The description for SANITY prerequisite the test suite uses has
been clarified both in the comment and in the implementation.
* "git tag" started listing a tag "foo" as "tags/foo" when a branch
named "foo" exists in the same repository; remove this unnecessary
disambiguation, which is a regression introduced in v2.7.0.
* The way "git svn" uses auth parameter was broken by Subversion
1.9.0 and later.
* The "split" subcommand of "git subtree" (in contrib/) incorrectly
skipped merges when it shouldn't, which was corrected.
* A few options of "git diff" did not work well when the command was
run from a subdirectory.
* dirname() emulation has been added, as Msys2 lacks it.
* The underlying machinery used by "ls-files -o" and other commands
have been taught not to create empty submodule ref cache for a
directory that is not a submodule. This removes a ton of wasted
CPU cycles.
* Drop a few old "todo" items by deciding that the change one of them
suggests is not such a good idea, and doing the change the other
one suggested to do.
* Documentation for "git fetch --depth" has been updated for clarity.
* The command line completion learned a handful of additional options
and command specific syntax.
Also includes a handful of documentation and test updates.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Feb 29 10:50:55 UTC 2016
Modified Files:
pkgsrc/devel/git: Makefile.version
pkgsrc/devel/git-base: distinfo
Log Message:
Changes 2.7.2:
* The low-level merge machinery has been taught to use CRLF line
termination when inserting conflict markers to merged contents that
are themselves CRLF line-terminated.
* "git worktree" had a broken code that attempted to auto-fix
possible inconsistency that results from end-users moving a
worktree to different places without telling Git (the original
repository needs to maintain backpointers to its worktrees, but
"mv" run by end-users who are not familiar with that fact will
obviously not adjust them), which actually made things worse
when triggered.
* "git push --force-with-lease" has been taught to report if the push
needed to force (or fast-forwarded).
* The emulated "yes" command used in our test scripts has been
tweaked not to spend too much time generating unnecessary output
that is not used, to help those who test on Windows where it would
not stop until it fills the pipe buffer due to lack of SIGPIPE.
* The vimdiff backend for "git mergetool" has been tweaked to arrange
and number buffers in the order that would match the expectation of
majority of people who read left to right, then top down and assign
buffers 1 2 3 4 "mentally" to local base remote merge windows based
on that order.
* The documentation for "git clean" has been corrected; it mentioned
that .git/modules/* are removed by giving two "-f", which has never
been the case.
* Paths that have been told the index about with "add -N" are not
quite yet in the index, but a few commands behaved as if they
already are in a harmful way.
---
Module Name: pkgsrc
Committed By: adam
Date: Sat Mar 12 11:33:32 UTC 2016
Modified Files:
pkgsrc/devel/git: Makefile.version
pkgsrc/devel/git-base: Makefile distinfo
Log Message:
Changes 2.7.3:
* Traditionally, the tests that try commands that work on the
contents in the working tree were named with "worktree" in their
filenames, but with the recent addition of "git worktree"
subcommand, whose tests are also named similarly, it has become
harder to tell them apart. The traditional tests have been renamed
to use "work-tree" instead in an attempt to differentiate them.
* Many codepaths forget to check return value from git_config_set();
the function is made to die() to make sure we do not proceed when
setting a configuration variable failed.
* Handling of errors while writing into our internal asynchronous
process has been made more robust, which reduces flakiness in our
tests.
* "git show 'HEAD:Foo[BAR]Baz'" did not interpret the argument as a
rev, i.e. the object named by the the pathname with wildcard
characters in a tree object.
* "git rev-parse --git-common-dir" used in the worktree feature
misbehaved when run from a subdirectory.
* The "v(iew)" subcommand of the interactive "git am -i" command was
broken in 2.6.0 timeframe when the command was rewritten in C.
* "git merge-tree" used to mishandle "both sides added" conflict with
its own "create a fake ancestor file that has the common parts of
what both sides have added and do a 3-way merge" logic; this has
been updated to use the usual "3-way merge with an empty blob as
the fake common ancestor file" approach used in the rest of the
system.
* The memory ownership rule of fill_textconv() API, which was a bit
tricky, has been documented a bit better.
* The documentation did not clearly state that the 'simple' mode is
now the default for "git push" when push.default configuration is
not set.
* Recent versions of GNU grep are pickier when their input contains
arbitrary binary data, which some of our tests uses. Rewrite the
tests to sidestep the problem.
* A helper function "git submodule" uses since v2.7.0 to list the
modules that match the pathspec argument given to its subcommands
(e.g. "submodule add <repo> <path>") has been fixed.
* "git config section.var value" to set a value in per-repository
configuration file failed when it was run outside any repository,
but didn't say the reason correctly.
* The code to read the pack data using the offsets stored in the pack
idx file has been made more carefully check the validity of the
data in the idx.
---
Module Name: pkgsrc
Committed By: sevan
Date: Wed Mar 16 19:38:52 UTC 2016
Modified Files:
pkgsrc/devel/git-base: Makefile distinfo
Added Files:
pkgsrc/devel/git-base/patches: patch-builtin_pack-objects.c
patch-builtin_rev-list.c patch-http-push.c patch-list-objects.c
patch-list-objects.h patch-pack-bitmap-write.c patch-pack-bitmap.c
patch-reachable.c patch-revision.c patch-revision.h
Log Message:
Patch for CVE-2016-2324
Obtained via Debian Security Tracker
https://security-tracker.debian.org/tracker/CVE-2016-2324
https://github.com/git/git/commit/9831e92bfa833ee9c0ce464bbc2f941ae6c2698d
Bump pkgrev
|
|
|
|
net/bind99: security fix
Revisions pulled up:
- net/bind99/Makefile 1.54
- net/bind99/distinfo 1.37
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Mar 10 00:50:35 UTC 2016
Modified Files:
pkgsrc/net/bind99: Makefile distinfo
Log Message:
Update bind99 package to 9.9.8pl4 (BIND 9.9.8-P4).
--- 9.9.8-P4 released ---
4319. [security] Fix resolver assertion failure due to improper
DNAME handling when parsing fetch reply messages.
(CVE-2016-1286) [RT #41753]
4318. [security] Malformed control messages can trigger assertions
in named and rndc. (CVE-2016-1285) [RT #41666]
|
|
net/bind910: security fix
Revisions pulled up:
- net/bind910/Makefile 1.18
- net/bind910/distinfo 1.15
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Mar 10 00:48:41 UTC 2016
Modified Files:
pkgsrc/net/bind910: Makefile distinfo
Log Message:
Update bind910 to 9.10.3pl4 (BIND 9.10.3-P4), security release.
--- 9.10.3-P4 released ---
4322. [security] Duplicate EDNS COOKIE options in a response could
trigger an assertion failure. (CVE-2016-2088)
[RT #41809]
4319. [security] Fix resolver assertion failure due to improper
DNAME handling when parsing fetch reply messages.
(CVE-2016-1286) [RT #41753]
4318. [security] Malformed control messages can trigger assertions
in named and rndc. (CVE-2016-1285) [RT #41666]
|
|
|
|
lang/php70: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.128
- lang/php70/distinfo 1.6
- lang/php70/patches/patch-configure 1.2
- lang/php70/patches/patch-ext_opcache_config.m4 deleted
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:20:17 UTC 2016
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php70: distinfo
pkgsrc/lang/php70/patches: patch-configure
Removed Files:
pkgsrc/lang/php70/patches: patch-ext_opcache_config.m4
Log Message:
Update php70 to 7.0.4 (PHP 7.0.4), including security fxies.
03 Mar 2016 PHP 7.0.4
- Core:
. Fixed bug (Low probability segfault in zend_arena). (Laruence)
. Fixed bug #71441 (Typehinted Generator with return in try/finally crashes).
(Bob)
. Fixed bug #71442 (forward_static_call crash). (Laruence)
. Fixed bug #71443 (Segfault using built-in webserver with intl using
symfony). (Laruence)
. Fixed bug #71449 (An integer overflow bug in php_implode()). (Stas)
. Fixed bug #71450 (An integer overflow bug in php_str_to_str_ex()). (Stas)
. Fixed bug #71474 (Crash because of VM stack corruption on Magento2).
(Dmitry)
. Fixed bug #71485 (Return typehint on internal func causes Fatal error
when it throws exception). (Laruence)
. Fixed bug #71529 (Variable references on array elements don't work when
using count). (Nikita)
. Fixed bug #71601 (finally block not executed after yield from). (Bob)
. Fixed bug #71637 (Multiple Heap Overflow due to integer overflows in
xml/filter_url/addcslashes). (Stas)
- CLI server:
. Fixed bug #71559 (Built-in HTTP server, we can download file in web by bug).
(Johannes, Anatol)
- CURL:
. Fixed bug #71523 (Copied handle with new option CURLOPT_HTTPHEADER crashes
while curl_multi_exec). (Laruence)
. Fixed memory leak in curl_getinfo(). (Leigh)
- Date:
. Fixed bug #71525 (Calls to date_modify will mutate timelib_rel_time,
causing date_date_set issues). (Sean DuBois)
- Fileinfo:
. Fixed bug #71434 (finfo throws notice for specific python file). (Laruence)
- FPM:
. Fixed bug #62172 (FPM not working with Apache httpd 2.4 balancer/fcgi
setup). (Matt Haught, Remi)
. Fixed bug #71269 (php-fpm dumped core). (Mickaƫl)
- Opcache:
. Fixed bug #71584 (Possible use-after-free of ZCG(cwd) in Zend Opcache).
(Yussuf Khalil)
- PCRE:
. Fixed bug #71537 (PCRE segfault from Opcache). (Laruence)
- phpdbg:
. Fixed inherited functions from unspecified files being included in
phpdbg_get_executable(). (Bob)
- SOAP:
. Fixed bug #71610 (Type Confusion Vulnerability - SOAP /
make_http_soap_request()). (Stas)
- Standard:
. Fixed bug #71603 (compact() maintains references in php7). (Laruence)
. Fixed bug #70720 (strip_tags improper php code parsing). (Julien)
- XMLRPC:
. Fixed bug #71501 (xmlrpc_encode_request ignores encoding option). (Hieu Le)
- Zip:
. Fixed bug #71561 (NULL pointer dereference in Zip::ExtractTo). (Laruence)
|
|
|
|
www/ruby-actionpack32: security fix
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.23
- devel/ruby-activemodel32/distinfo 1.23
- devel/ruby-activesupport32/distinfo 1.23
- devel/ruby-railties32/distinfo 1.23
- lang/ruby/rails.mk 1.54
- mail/ruby-actionmailer32/distinfo 1.23
- www/ruby-actionpack32/distinfo 1.23
- www/ruby-activeresource32/distinfo 1.23
- www/ruby-rails32/distinfo 1.23
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:23:26 UTC 2016
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails to 3.2.22.2.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:24:32 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.22.2.
No chnage except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:24:59 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.22.2.
No chnage except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:25:33 UTC 2016
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.22.2.
No chnage except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:26:08 UTC 2016
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.22.2.
No chnage except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:27:42 UTC 2016
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.22.2.
Fixes CVE-2016-2097 and CVE-2016-2098.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:28:40 UTC 2016
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.22.2.
No chnage except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:29:07 UTC 2016
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.22.2.
No chnage except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:29:26 UTC 2016
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.22.2.
No chnage except version.
|
|
lang/php56: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.127
- lang/php56/distinfo 1.24
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:18:51 UTC 2016
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php56: distinfo
Log Message:
Update php56 to 5.6.19 (PHP 5.6.19), including security fixes.
03 Mar 2016, PHP 5.6.19
- CLI server:
. Fixed bug #71559 (Built-in HTTP server, we can download file in web by bug).
(Johannes, Anatol)
- CURL:
. Fixed bug #71523 (Copied handle with new option CURLOPT_HTTPHEADER crashes
while curl_multi_exec). (Laruence)
- Date:
. Fixed bug #68078 (Datetime comparisons ignore microseconds). (Willem-Jan
Zijderveld)
. Fixed bug #71525 (Calls to date_modify will mutate timelib_rel_time,
causing date_date_set issues). (Sean DuBois)
- Fileinfo:
. Fixed bug #71434 (finfo throws notice for specific python file). (Laruence)
- FPM:
. Fixed bug #62172 (FPM not working with Apache httpd 2.4 balancer/fcgi
setup). (Matt Haught, Remi)
- Opcache:
. Fixed bug #71584 (Possible use-after-free of ZCG(cwd) in Zend Opcache).
(Yussuf Khalil)
- PDO MySQL:
. Fixed bug #71569 (#70389 fix causes segmentation fault). (Nikita)
- Phar:
. Fixed bug #71498 (Out-of-Bound Read in phar_parse_zipfile()). (Stas)
- Standard:
. Fixed bug #70720 (strip_tags improper php code parsing). (Julien)
- WDDX:
. Fixed bug #71587 (Use-After-Free / Double-Free in WDDX Deserialize). (Stas)
- XSL:
. Fixed bug #71540 (NULL pointer dereference in xsl_ext_function_php()).
(Stas)
- Zip:
. Fixed bug #71561 (NULL pointer dereference in Zip::ExtractTo). (Laruence)
|
|
lang/php55: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.126
- lang/php55/distinfo 1.50
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Mar 5 05:17:33 UTC 2016
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php55: distinfo
Log Message:
Update php55 to 5.5.33, security fixes.
03 Mar 2016, PHP 5.5.33
- Phar:
. Fixed bug #71498 (Out-of-Bound Read in phar_parse_zipfile()). (Stas)
- WDDX:
. Fixed bug #71587 (Use-After-Free / Double-Free in WDDX Deserialize). (Stas)
|
|
|
|
www/netsurf: security update
Revisions pulled up:
- www/netsurf/Makefile 1.49
- www/netsurf/PLIST 1.4
- www/netsurf/distinfo 1.5
- www/netsurf/patches/patch-nsgenbind_src_Makefile 1.1
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: leot
Date: Fri Mar 4 01:28:02 UTC 2016
Modified Files:
pkgsrc/www/netsurf: Makefile PLIST distinfo
Added Files:
pkgsrc/www/netsurf/patches: patch-nsgenbind_src_Makefile
Log Message:
Update www/netsurf to 3.4.
Changes:
NetSurf 3.4
-----------
NetSurf 3.4 features many optimisations to improve performance over
previous releases. It also contains many bug fixes, including
improvements to page layout. This is also the first release to
contain the Duktape JavaScript engine. While our JavaScript bindings
have seen a lot of development for this release, JavaScript remains
disabled by default as the support is incomplete. We recommend all
users upgrade to NetSurf 3.4.
To generate a diff of this commit:
cvs rdiff -u -r1.48 -r1.49 pkgsrc/www/netsurf/Makefile
cvs rdiff -u -r1.3 -r1.4 pkgsrc/www/netsurf/PLIST
cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/netsurf/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/www/netsurf/patches/patch-nsgenbind_src_Makefile
|
|
mail/exim: security fix
Revisions pulled up:
- mail/exim-html/Makefile 1.30-1.31
- mail/exim-html/PLIST 1.14
- mail/exim-html/distinfo 1.25-1.26
- mail/exim/Makefile 1.142-1.143
- mail/exim/distinfo 1.63-1.64
- mail/exim/patches/patch-aa 1.24
---
Module Name: pkgsrc
Committed By: bsiegert
Date: Sun Jan 10 20:55:57 UTC 2016
Modified Files:
pkgsrc/mail/exim: Makefile distinfo
pkgsrc/mail/exim/patches: patch-aa
Log Message:
Update exim to 4.86.
Exim version 4.86
-----------------
JH/01 Bug 1545: The smtp transport option "retry_include_ip_address" is now
expanded.
JH/02 The smtp transport option "multi_domain" is now expanded.
JH/03 The smtp transport now requests PRDR by default, if the server offers
it.
JH/04 Certificate name checking on server certificates, when exim is a client,
is now done by default. The transport option tls_verify_cert_hostnames
can be used to disable this per-host. The build option
EXPERIMENTAL_CERTNAMES is withdrawn.
JH/05 The value of the tls_verify_certificates smtp transport and main options
default to the word "system" to access the system default CA bundle.
For GnuTLS, only version 3.0.20 or later.
JH/06 Verification of the server certificate for a TLS connection is now tried
(but not required) by default. The verification status is now logged by
default, for both outbound TLS and client-certificate supplying inbound
TLS connections
JH/07 Changed the default rfc1413 lookup settings to disable calls. Few
sites use this now.
JH/08 The EXPERIMENTAL_DSN compile option is no longer needed; all Delivery
Status Notification (bounce) messages are now MIME format per RFC 3464.
Support for RFC 3461 DSN options NOTIFY,ENVID,RET,ORCPT can be advertised
under the control of the dsn_advertise_hosts option, and routers may
have a dsn_lasthop option.
JH/09 A timeout of 2 minutes is now applied to all malware scanner types by
default, modifiable by a malware= option. The list separator for
the options can now be changed in the usual way. Bug 68.
JH/10 The smtp_receive_timeout main option is now expanded before use.
JH/11 The incoming_interface log option now also enables logging of the
local interface on delivery outgoing connections.
JH/12 The cutthrough-routing facility now supports multi-recipient mails,
if the interface and destination host and port all match.
JH/13 Bug 344: The verify = reverse_host_lookup ACL condition now accepts a
/defer_ok option.
JH/14 Bug 1573: The spam= ACL condition now additionally supports Rspamd.
Patch from Andrew Lewis.
JH/15 Bug 670: The spamd_address main option (for the spam= ACL condition)
now supports optional time-restrictions, weighting, and priority
modifiers per server. Patch originally by <rommer%active.by@localhost>.
JH/16 The spamd_address main option now supports a mixed list of local
and remote servers. Remote servers can be IPv6 addresses, and
specify a port-range.
JH/17 Bug 68: The spamd_address main option now supports an optional
timeout value per server.
JH/18 Bug 1581: Router and transport options headers_add/remove can
now have the list separator specified.
JH/19 Bug 392: spamd_address, and clamd av_scanner, now support retry
option values.
JH/20 Bug 1571: Ensure that $tls_in_peerdn is set, when verification fails
under OpenSSL.
JH/21 Support for the A6 type of dns record is withdrawn.
JH/22 Bug 608: The result of a QUIT or not-QUIT toplevel ACL now matters
rather than the verbs used.
JH/23 Bug 1572: Increase limit on SMTP confirmation message copy size
from 255 to 1024 chars.
JH/24 Verification callouts now attempt to use TLS by default.
HS/01 DNSSEC options (dnssec_require_domains, dnssec_request_domains)
are generic router options now. The defaults didn't change.
JH/25 Bug 466: Add RFC2322 support for MIME attachment filenames.
Original patch from Alexander Shikoff, worked over by JH.
HS/02 Bug 1575: exigrep falls back to autodetection of compressed
files if ZCAT_COMMAND is not executable.
JH/26 Bug 1539: Add timout/retry options on dnsdb lookups.
JH/27 Bug 286: Support SOA lookup in dnsdb lookups.
JH/28 Bug 1588: Do not use the A lookup following an AAAA for setting the FQDN.
Normally benign, it bites when the pair was led to by a CNAME;
modern usage is to not canoicalize the domain to a CNAME target
(and we were inconsistent anyway for A-only vs AAAA+A).
JH/29 Bug 1632: Removed the word "rejected" from line logged for ACL discards.
JH/30 Check the forward DNS lookup for DNSSEC, in addition to the reverse,
when evaluating $sender_host_dnssec.
JH/31 Check the HELO verification lookup for DNSSEC, adding new
$sender_helo_dnssec variable.
JH/32 Bug 1397: Enable ECDHE on OpenSSL, just the NIST P-256 curve.
JH/33 Bug 1346: Note MAIL cmd seen in -bS batch, to avoid smtp_no_mail log.
JH/34 Bug 1648: Fix a memory leak seen with "mailq" and large queues.
JH/35 Bug 1642: Fix support of $spam_ variables at delivery time. Was
documented as working, but never had. Support all but $spam_report.
JH/36 Bug 1659: Guard checking of input smtp commands again pseudo-command
added for tls authenticator.
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Jan 11 08:35:32 UTC 2016
Modified Files:
pkgsrc/mail/exim-html: Makefile PLIST distinfo
Log Message:
Match mail/exim version
---
Module Name: pkgsrc
Committed By: wiedi
Date: Wed Mar 2 20:13:18 UTC 2016
Modified Files:
pkgsrc/mail/exim: Makefile distinfo
pkgsrc/mail/exim-html: Makefile distinfo
Log Message:
Update mail/exim and mail/exim-html to 4.86.2
Exim version 4.86.2
-------------------
Portability relase of 4.86.1
Exim version 4.86.1
-------------------
HS/04 Add support for keep_environment and add_environment options.
This fixes CVE-2016-1531.
All installations having Exim set-uid root and using 'perl_startup' are
vulnerable to a local privilege escalation. Any user who can start an
instance of Exim (and this is normally *any* user) can gain root
privileges. If you do not use 'perl_startup' you *should* be safe.
New options
-----------
We had to introduce two new configuration options:
keep_environment =
add_environment =
Both options are empty per default. That is, Exim cleans the complete
environment on startup. This affects Exim itself and any subprocesses,
as transports, that may call other programs via some alias mechanisms,
as routers (queryprogram), lookups, and so on. This may affect used
libraries (e.g. LDAP).
** THIS MAY BREAK your existing installation **
If both options are not used in the configuration, Exim issues a warning
on startup. This warning disappears if at least one of these options is
used (even if set to an empty value).
keep_environment should contain a list of trusted environment variables.
(Do you trust PATH?). This may be a list of names and REs.
keep_environment = ^LDAP_ : FOO_PATH
To add (or override) variables, you can use add_environment:
add_environment = <; PATH=/sbin:/usr/sbin
New behaviour
-------------
Now Exim changes it's working directory to / right after startup,
even before reading it's configuration. (Later Exim changes it's working
directory to $spool_directory, as usual.)
Exim only accepts an absolute configuration file path now, when using
the -C option.
|
|
|
|
graphics/graphite2: security fix
Revisions pulled up:
- graphics/graphite2/Makefile 1.3
- graphics/graphite2/PLIST 1.3
- graphics/graphite2/distinfo 1.5
- graphics/graphite2/patches/patch-Graphite.cmake deleted
- graphics/graphite2/patches/patch-src_CMakeLists.txt 1.3
---
Module Name: pkgsrc
Committed By: wiz
Date: Tue Jan 26 13:56:23 UTC 2016
Modified Files:
pkgsrc/graphics/graphite2: Makefile PLIST distinfo
pkgsrc/graphics/graphite2/patches: patch-src_CMakeLists.txt
Removed Files:
pkgsrc/graphics/graphite2/patches: patch-Graphite.cmake
Log Message:
Update graphite2 to 1.3.5. Updated provided by coypu on pkgsrc-users.
1.3.5
. Bug fixes
. Security bug fix
. Fix ARM misalignment problem
. Track latest cmake
1.3.4
. Transition from Mercurial to Git
. Bug fixes
. Fix Collision Kerning ignoring some diacritics
. Handle pass bits 16-31 to speed up fonts with > 16 passes
. Various minor fuzz bug fixes
. Make Coverity happy
. Add GR_FALLTHROUGH macro for clang c++11
1.3.3
. Slight speed up in Collision Avoidance
. Remove dead bidi code
. Bug fixes
. Between pass bidi reorderings and at the end
. Decompressor fuzz bugs
. Other fuzz bugs
1.3.2
. Remove full bidi. All segments are assumed to be single directioned.
. Bug fixes:
. Decompressor corner cases
. Various fuzz bugs
1.3.1
. Deprecation warning: Full bidi support is about to be deprecated. Make contact
if this impacts you.
. Change compression block format slightly to conform to LZ4
. Bug fixes:
. Handle mono direction text with diacritics consistently. Fonts
now see the direction they expect consistently and bidi now
gives expected results.
. Fixed lots of fuzz bugs
. Coverity cleanups
. Build now works for clang and/or asan and/or afl etc.
1.3.0
. Add collision avoidance
. Shift Collider
. Kern Collider
. Octabox outlines and subboxes
. Add compressed Silf and Glat table support
. Bug fixes:
. Stop loops forming in the child, sibling tree
. Handle bidi mirroring correctly if no bidi occurring
|
|
www/squid3: security fix
Revisions pulled up:
- www/squid3/Makefile 1.60
- www/squid3/distinfo 1.47
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Feb 24 06:38:57 UTC 2016
Modified Files:
pkgsrc/www/squid3: Makefile distinfo
Log Message:
Update squid3 package to 3.5.15, security release.
* SQUID-2016:2 - Multiple Denial of Service issues in HTTP Response
processing
http://www.squid-cache.org/Advisories/SQUID-2016_2.txt
Changes to squid-3.5.15 (23 Feb 2016):
- Bug 3870: assertion failed: String.cc: 'len_ + len <65536' in ESI::CustomParser
- Fix multiple assertion on String overflows
- Fix unit test errors on MacOS
- Better handling of huge response headers. Fewer incorrect "Bug #3279" messages.
- Log noise reduction for eCAP
|
|
|
|
www/drupal6: security fix
Revisions pulled up:
- www/drupal6/Makefile 1.56
- www/drupal6/distinfo 1.38
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 25 15:13:55 UTC 2016
Modified Files:
pkgsrc/www/drupal6: Makefile distinfo
Log Message:
Update drupal6 to 6.38, security release and last Drupal 6 release.
Drupal 6.38, 2016-02-24 - Final release
---------------------------------------
- Fixed security issues (multiple vulnerabilities). See SA-CORE-2016-001.
- Previously unreleased documentation fixes.
|
|
www/drupal7: security fix
Revisions pulled up:
- www/drupal7/Makefile 1.38
- www/drupal7/PLIST 1.14
- www/drupal7/distinfo 1.29
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 25 15:15:57 UTC 2016
Modified Files:
pkgsrc/www/drupal7: Makefile PLIST distinfo
Log Message:
Update drupal7 to 7.43 including security fix.
Drupal 7.43, 2016-02-24
-----------------------
- Fixed security issues (multiple vulnerabilities). See SA-CORE-2016-001.
Drupal 7.42, 2016-02-03
-----------------------
- Stopped invoking hook_flush_caches() on every cron run, since some modules
use that hook for expensive operations that are only needed on cache clears.
- Changed the default .htaccess and web.config to block Composer-related files.
- Added static caching to module_load_include() to improve performance.
- Fixed double-encoding bugs in select field widgets provided by the Options
module. The fix deprecates the 'strip_tags' property on option widgets and
replaces it with a new 'strip_tags_and_unescape' property (minor data
structure change).
- Improved MySQL 5.7 support by changing the MySQL database driver to stop
using the ANSI SQL mode alias, which has different meanings for different
MySQL versions.
- Fixed a regression introduced in Drupal 7.39 which prevented autocomplete
functionality from working on servers that are not configured to
automatically recognize index.php.
- Updated the Archive_Tar PEAR package to the latest 1.4.0 release, to fix bugs
with tar file handling on various operating systems.
- Fixed fatal errors on node preview when a field is displayed in the node
teaser but hidden in the full node view. The fix removes a
field_attach_prepare_view() call from the node_preview() function since it is
redundant with one in the node preview theme layer.
- Improved the description of the "Trimmed" format option on text fields
(translatable string change, and minor UI and data structure change).
- Numerous small bug fixes.
- Numerous API documentation improvements.
- Additional automated test coverage..0 release, to fix bugs
with tar file handling on various operating systems.
- Fixed fatal errors on node preview when a field is displayed in the node
teaser but hidden in the full node view. The fix removes a
field_attach_prepare_view() call from the node_preview() function since it is
redundant with one in the node preview theme layer.
- Improved the description of the "Trimmed" format option on text fields
(translatable string change, and minor UI and data structure change).
- Numerous small bug fixes.
- Numerous API documentation improvements.
- Additional automated test coverage.
|
|
databases/postgresql94: security fix
Revisions pulled up:
- databases/postgresql94-docs/PLIST 1.7
- databases/postgresql94-plperl/Makefile 1.4
- databases/postgresql94/Makefile 1.3
- databases/postgresql94/Makefile.common 1.7
- databases/postgresql94/distinfo 1.9
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Feb 25 01:38:56 UTC 2016
Modified Files:
pkgsrc/databases/postgresql94: Makefile.common distinfo
pkgsrc/databases/postgresql94-docs: PLIST
pkgsrc/databases/postgresql94-plperl: Makefile
Log Message:
Update to PostgreSQL 9.4.6 (2016-02-11)
Heads up: For upgrading past 9.4.5, users of jsonb_path_ops GIN indexes
should perform a REINDEX, because of a hash calculation fix.
This release fixes two security issues, as well as several bugs found
over the last four months.
CVE-2016-0773 Unicode regular expression buffer overflow
CVE-2016-0766 PL/Java privilege escalation
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Feb 25 01:46:57 UTC 2016
Modified Files:
pkgsrc/databases/postgresql94: Makefile
Log Message:
drop PKGREVISION after update
|
|
|
|
databases/postgresql93: security fix
Revisions pulled up:
- databases/postgresql93-docs/PLIST 1.12
- databases/postgresql93-plperl/Makefile 1.8
- databases/postgresql93/Makefile 1.7
- databases/postgresql93/Makefile.common 1.15
- databases/postgresql93/distinfo 1.16
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Feb 25 00:06:30 UTC 2016
Modified Files:
pkgsrc/databases/postgresql93: Makefile.common distinfo
pkgsrc/databases/postgresql93-docs: PLIST
pkgsrc/databases/postgresql93-plperl: Makefile
Log Message:
Update to PostgreSQL 9.3.11 (2016-02-11)
This release fixes two security issues, as well as several bugs found
over the last four months.
CVE-2016-0773 Unicode regular expression buffer overflow
CVE-2016-0766 PL/Java privilege escalation
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Feb 25 01:45:39 UTC 2016
Modified Files:
pkgsrc/databases/postgresql93: Makefile
Log Message:
drop PKGREVISION after update
|
|
databases/postgresql92: security fix
Revisions pulled up:
- databases/postgresql92-client/PLIST 1.5
- databases/postgresql92-docs/PLIST 1.15
- databases/postgresql92/Makefile.common 1.19
- databases/postgresql92/distinfo 1.17
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Feb 25 00:41:54 UTC 2016
Modified Files:
pkgsrc/databases/postgresql92: Makefile.common distinfo
pkgsrc/databases/postgresql92-client: PLIST
pkgsrc/databases/postgresql92-docs: PLIST
Log Message:
Update to PostgreSQL 9.2.15 (2016-02-11)
This release fixes two security issues, as well as several bugs found
over the last four months.
CVE-2016-0773 Unicode regular expression buffer overflow
CVE-2016-0766 PL/Java privilege escalation
|
|
databases/postgresql91: security fix
Revisions pulled up:
- databases/postgresql91-client/PLIST 1.5
- databases/postgresql91-docs/PLIST 1.22
- databases/postgresql91/Makefile 1.11
- databases/postgresql91/Makefile.common 1.28
- databases/postgresql91/distinfo 1.27
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Feb 25 01:06:31 UTC 2016
Modified Files:
pkgsrc/databases/postgresql91: Makefile.common distinfo
pkgsrc/databases/postgresql91-client: PLIST
pkgsrc/databases/postgresql91-docs: PLIST
Log Message:
Update to PostgreSQL 9.1.20 (2016-02-11)
This release fixes two security issues, as well as several bugs found
over the last four months.
CVE-2016-0773 Unicode regular expression buffer overflow
CVE-2016-0766 PL/Java privilege escalation
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Feb 25 01:45:06 UTC 2016
Modified Files:
pkgsrc/databases/postgresql91: Makefile
Log Message:
drop PKGREVISION after update
|
|
www/typo3_62: security fix
Revisions pulled up:
- www/typo3_62/Makefile 1.14
- www/typo3_62/PLIST 1.10
- www/typo3_62/distinfo 1.12
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 23 15:43:32 UTC 2016
Modified Files:
pkgsrc/www/typo3_62: Makefile PLIST distinfo
Log Message:
Update typo3_62 package to 6.2.19 (TYPO3 6.2.19), security release.
2016-02-23 6828e26 [RELEASE] Release of TYPO3 6.2.19 (TYPO3 Release Team)
2016-02-23 1b446ce #73458 [SECURITY] Limit the search results per page (Benni Mack)
2016-02-23 b55c5e7 #73450 [SECURITY] Escape output of tt_content.default (Georg Ringer)
2016-02-23 f071653 #73449 [SECURITY] Stored XSS in shortcut functionality (Wouter Wolters)
2016-02-23 844369e #61269 [SECURITY] XML entity expansion (Benni Mack)
2016-02-22 bfcd0ca #73607 [TASK] Remove adodb diff (Christian Kuhn)
2016-02-20 d3be3f7 #73480 [TASK] Disallow Composer installation with PHP 7.x (Mathias Brodala)
2016-02-18 b3225d1 #73518 [BUGFIX] Fix disabled menu item state for l18n_cfg=1 (Mathias Brodala)
2016-02-17 438d90a #58752 [BUGFIX] Remove addQueryStringMethod parameter from widget links (Nicole Cordes)
|
|
security/libgcrypt: security fix
Revisions pulled up:
- security/libgcrypt/Makefile 1.74
- security/libgcrypt/distinfo 1.62
---
Module Name: pkgsrc
Committed By: wiz
Date: Thu Feb 11 13:36:37 UTC 2016
Modified Files:
pkgsrc/security/libgcrypt: Makefile distinfo
Log Message:
Update libgcrypt to 1.6.5:
Noteworthy changes in version 1.6.5 (2016-02-09) [C20/A0/R5]
------------------------------------------------
* Mitigate side-channel attack on ECDH with Weierstrass curves
[CVE-2015-7511]. See http://www.cs.tau.ac.IL/~tromer/ecdh/ for
details.
* Fix build problem on Solaris.
|
|
www/typo3_62: security fix
Revisions pulled up:
- www/typo3_62/Makefile 1.13
- www/typo3_62/distinfo 1.11
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 16 13:00:02 UTC 2016
Modified Files:
pkgsrc/www/typo3_62: Makefile distinfo
Log Message:
Update typo3_62 to 6.2.18 (TYPO4 6.2.18), security release.
2016-02-16 0d56422 [RELEASE] Release of TYPO3 6.2.18 (TYPO3 Release Team)
2016-02-16 3256617 #58896 [SECURITY] SQLi in DBAL (Morton Jonuschat)
2016-02-16 c88aa57 #54205 [SECURITY] XSS in form extension (Wouter Wolters)
2016-02-16 4e639be #25244 [SECURITY] XSS in content element "Form" (Helmut Hummel)
2016-02-16 a511709 #72240 [SECURITY] XSS in Link Validator (Steffen M?ller)
2016-02-12 ba30380 #73083 [BUGFIX] Deduplicate "Hide default translation of page" logic (Morton Jonuschat)
2016-02-12 1afa712 #72388 [FOLLOWUP][BUGFIX] Table wizard: large fields and BR-tags (Morton Jonuschat)
2016-02-12 413430b #73006 [BUGFIX] Failing Unit Tests on Windows systems (Nicole Cordes)
2016-02-10 0548314 #59180 [BUGFIX] Re-enable export of multiple records via clipboard (Bernhard Kraft)-02-10 0548314 #59180 [BUGFIX] Re-enable export of multiple records via clipboard (Bernhard Kraft)
2016-02-09 f9599a1 #65866 [BUGFIX] Fallback to version of ext_emconf.php if not found in Composer (Peter Niederlag)
2016-02-08 3af6506 #58693 [BUGFIX] impexp ignore file reference records with missing related files (Marc Bastian Heinrichs)
2016-02-05 df80dee #73158 [BUGFIX] ImpExp: Correct casing for FAL function call (Benni Mack)
2016-02-05 d1ca79c #73103 [BUGFIX] Off-by-one error in FAL's LocalDriver (Andreas Fernandez)
2016-02-01 daaf9e0 #72936 [BUGFIX] Reallow '0' as valid userFunc argument in TypoScript (Frank Naegler)
2016-01-29 05d2711 #70307 [BUGFIX] CategoryRegistry::addTcaColumn() ignores displayCond (Benni Mack)
2016-01-29 fd30582 #72964 [BUGFIX] Clear cache system icon is shown for non admin in dev context (Benni Mack)
2016-01-26 4fbed24 #72943 [TASK] Switch mirror links to https (Nicole Cordes)
2016-01-22 a59665c #72635 [BUGFIX] SimpleFileBackend::setCacheDirectory returns valid path name (Jan Helke)
2016-01-22 941308f #72892 [BUGFIX] Remove newline from PLACEHOLDER marker in indexed_search (Wouter Wolters)
2016-01-21 842e6dfdb #72786 [TASK] Hide "Save document and create a new one" in filelist (Gianluigi Martino)
2016-01-20 89b1024 [BUGFIX] Add missing return type to createVersionNumberedFilename (Thomas L?ffler)
2016-01-18 87c98c7 #72762 [BUGFIX] Clarify extension dependency skipping (Nicole Cordes)
2016-01-16 9f5c9df #72755 [BUGFIX] Apply hsc() to exception debug output (Markus Klein)
2016-01-15 908a266 #72357 [BUGFIX] Copy DataHandler::enableLogging to sub objects (Morton Jonuschat)
2016-01-15 739a3de #72388 [BUGFIX] Table wizard: large fields and BR-tags (Anja Leichsenring)
2016-01-15 43ee970 #72734 [FOLLOWUP] Fix call to not existing function (Anja Leichsenring)
2016-01-15 1278e9f #72648 [BUGFIX] Automatically remove BOM from files before concatenation (Christian Futterlieb)
2016-01-15 35745fa #72712 [TASK] Allow access to visible content within /.well-known/ directory (Cedric Ziel)
2016-01-15 640c494 #72709 [BUGFIX] ImpExp: Do not show error message for recursive relations (Markus Klein)
2016-01-08 1eea942 #72598 [BUGFIX] Remove debug echo from checkDeniedSuburls (Morton Jonuschat)
2016-01-01 264d1bd #72501 [TASK] Update copyright year to 2016 (Benni Mack)
2015-12-30 967391f #72475 [SECURITY] XSS in belog module (Morton Jonuschat)
2015-12-30 639f8f2 #66135 [BUGFIX] Computed properties are queried in workspace context (Oliver Hader)
2015-12-29 d959bb8 #72450 [TASK] Expose identifier and path of functional test instance (Oliver Hader)
2015-12-23 141cd7d #72047 [BUGFIX] Fix NumberRangeValidator using startRange and endRange (Stephan Gro?berndt)
|
|
|
|
sysutils/salt: security fix
Revisions pulled up:
- sysutils/salt/Makefile 1.34-1.36
- sysutils/salt/PLIST 1.15
- sysutils/salt/distinfo 1.17-1.19
- sysutils/salt/patches/patch-salt_modules_cron.py 1.1
- sysutils/salt/patches/patch-salt_modules_status.py 1.1
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: khorben
Date: Thu Feb 4 22:05:36 UTC 2016
Modified Files:
pkgsrc/sysutils/salt: Makefile distinfo
Added Files:
pkgsrc/sysutils/salt/patches: patch-salt_modules_status.py
Log Message:
Avoid a crash in "status.diskusage" when not on Linux or FreeBSD
Bump PKGREVISION in the process.
To generate a diff of this commit:
cvs rdiff -u -r1.33 -r1.34 pkgsrc/sysutils/salt/Makefile
cvs rdiff -u -r1.16 -r1.17 pkgsrc/sysutils/salt/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/sysutils/salt/patches/patch-salt_modules_status.py
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: sevan
Date: Sun Feb 7 23:55:01 UTC 2016
Modified Files:
pkgsrc/sysutils/salt: Makefile PLIST distinfo
Log Message:
Update to 2015.8.5, from PR#50779 addresses CVE-2016-1866
Salt 2015.8.5 is identical to the 2015.8.4 release with the addition of a f=
ix
for issue 30820, fixed by PR #30833.
SECURITY FIX
CVE-2016-1866: Improper handling of clear messages on the minion, which cou=
ld
result in executing commands not sent by the master.
This issue affects only the 2015.8.x releases of Salt. In order for an atta=
cker
to use this attack vector, they would have to execute a successful attack o=
n an
existing TCP connection between minion and master on the pub port. It does =
not
allow an external attacker to obtain the shared secret or decrypt any encry=
pted
traffic between minion and master.
We recommend everyone upgrade to 2015.8.4 as soon as possible.
CORE CHANGES
PR #28994: timcharper Salt S3 module has learned how to assume IAM roles
Added option mock=3DTrue for state.sls and state.highstate. This allows the=
salt
state compiler to process sls data in a state run without actually calling =
the
state functions, thus providing feedback on the validity of the arguments u=
sed
for the functions beyond the preprocessing validation provided by state.sho=
w_sls
(issue 30118 and issue 30189).
salt '*' state.sls core,edit.vim mock=3DTrue
salt '*' state.highstate mock=3DTrue
salt '*' state.apply edit.vim mock=3DTrue
CHANGES FOR V2015.8.3..V2015.8.4
Extended changelog courtesy of Todd Stansell
(https://github.com/tjstansell/salt-changelogs):
Generated at: 2016-01-25T17:48:35Z
Total Merges: 320
Changes:
PR #30613: (basepi) Fix minion/syndic clearfuncs
PR #30609: (seanjnkns) Fix documentation for pillar_merge_lists which defau=
lt is
False, not =E2=80=A6
PR #30584: (julianbrost) file.line state: add missing colon in docstring
PR #30589: (terminalmage) Merge 2015.5 into 2015.8
PR #30599: (multani) Documentation formatting fixes
PR #30554: (rallytime) Make the salt-cloud actions output more verbose and
helpful
PR #30549: (techhat) Salt Virt cleanup
PR #30553: (techhat) AWS: Support 17-character IDs
PR #30532: (whiteinge) Add execution module for working in sls files
PR #30529: (terminalmage) Merge 2015.5 into 2015.8
PR #30526: (twangboy) Added FlushKey to make sure it's changes are saved to=
disk
PR #30521: (basepi) [2015.8] Merge forward from 2015.5 to 2015.8
PR #30485: (jtand) Updated pip_state to work with pip 8.0 on 2015.8
PR #30494: (isbm) Zypper: info_installed =E2=80=94 'errors' flag change to =
type
'boolean'
PR #30506: (jacksontj) Properly remove newlines after reading the file
PR #30508: (rallytime) Fix Linode driver cloning functionality
PR #30522: (terminalmage) Update git.list_worktree tests to reflect new ret=
urn
data
PR #30483: (borgstrom) Pyobjects recursive import support (for 2015.8)
PR #30491: (jacksontj) Add multi-IP support to network state
PR #30496: (anlutro) Fix KeyError when adding ignored pillars
PR #30359: (kingsquirrel152) Removes suspected copy/paste error for
zmq_filtering functionailty
PR #30448: (cournape) Fix osx scripts location
PR #30457: (rallytime) Remove fsutils references from modules list
PR #30453: (rallytime) Make sure private AND public IPs are listed for Lino=
de
driver
PR #30458: (rallytime) Back-port #30062 to 2015.8
PR #30468: (timcharper) make note of s3 role assumption in upcoming changel=
og
PR #30470: (whiteinge) Add example of the match_dict format to accept_dict =
wheel
function
PR #30450: (gtmanfred) fix extension loading in novaclient
PR #30212: (abednarik) Fix incorrect file permissions in file.line
PR #29947: (jfindlay) fileclient: decode file list from master
PR #30363: (terminalmage) Use native "list" subcommand to list git worktree=
s
PR #30445: (jtand) Boto uses False for is_default instead of None
PR #30406: (frioux) Add an example of how to use file.managed/check_cmd
PR #30424: (isbm) Check if byte strings are properly encoded in UTF-8
PR #30405: (jtand) Updated glusterfs.py for python2.6 compatibility.
PR #30396: (pass-by-value) Remove hardcoded val
PR #30391: (jtand) Added else statements
PR #30375: (rallytime) Wrap formatted log statements with six.u() in
cloud/__init__.py
PR #30384: (isbm) Bugfix: info_available does not work correctly on SLE 11
series
PR #30376: (pritambaral) Fix FLO_DIR path in 2015.8
PR #30389: (jtand) Older versions of ipset don't support comments
PR #30373: (basepi) [2015.8] Merge forward from 2015.5 to 2015.8
PR #30372: (jacobhammons) Updated man pages for 2015.8.4, updated copyright=
to
2016
PR #30370: (rallytime) Remove incomplete function
PR #30366: (rallytime) Back-port #28702 to 2015.8
PR #30361: (cro) Flip the sense of the test for proxymodule imports, add mo=
re
fns for esxi proxy
PR #30267: (isbm) Fix RPM issues with the date/time and add package attribu=
tes
filtering
PR #30360: (jfindlay) file.remove, file.absent: mention recursive dir remov=
al
PR #30221: (mbarrien) No rolcatupdate for user_exist in Postgres>=3D9.5 `#2=
6845`_
PR #30358: (terminalmage) Add libgit2 version to versions-report
PR #30346: (pass-by-value) Prevent orphaned volumes
PR #30349: (rallytime) Back-port #30347 to 2015.8
PR #30354: (anlutro) Make sure all ignore_missing SLSes are caught
PR #30356: (nmadhok) Adding code author
PR #30340: (jtand) Updated seed_test.py for changes made to seed module
PR #30339: (jfindlay) Backport #26511
PR #30343: (rallytime) Fix 2015.8 from incomplete back-port
PR #30342: (eliasp) Correct whitespace placement in error message
PR #30308: (rallytime) Back-port #30257 to 2015.8
PR #30187: (rallytime) Back-port #27606 to 2015.8
PR #30223: (serge-p) adding support for DragonFly BSD
PR #30238: (rallytime) Reinit crypto before calling RSA.generate when gener=
ating
keys.
PR #30246: (dmacvicar) Add missing return data to scheduled jobs (`#24237`_=
)
PR #30292: (thegoodduke) ipset: fix test=3Dtrue & add comment for every ent=
ry
PR #30275: (abednarik) Add permanent argument in firewalld.
PR #30328: (cachedout) Fix file test
PR #30310: (pass-by-value) Empty bucket fix
PR #30211: (techhat) Execute choot on the correct path
PR #30309: (rallytime) Back-port #30304 to 2015.8
PR #30278: (nmadhok) If datacenter is specified in the config, then look fo=
r
managed objects under it
PR #30305: (jacobhammons) Changed examples to use the "example.com" domain
instead of "mycompan=E2=80=A6
PR #30249: (mpreziuso) Fixes performance and timeout issues on win_pkg.inst=
all
PR #30217: (pass-by-value) Make sure cloud actions can be called via salt r=
un
PR #30268: (terminalmage) Optimize file_tree ext_pillar and update file.man=
aged
to allow for binary contents
PR #30245: (rallytime) Boto secgroup/iam_role: Add note stating us-east-1 i=
s
default region
PR #30299: (rallytime) ESXi Proxy minions states are located at
salt.states.esxi, not vsphere.
PR #30202: (opdude) Fixed the periodic call to beacons
PR #30303: (jacobhammons) Changed notes to indicate that functions are matc=
hed
using regular ex=E2=80=A6
PR #30284: (terminalmage) salt.utils.gitfs: Fix Dulwich env detection and
submodule handling
PR #30280: (jfindlay) add state mocking to release notes
PR #30273: (rallytime) Back-port #30121 to 2015.8
PR #30301: (cachedout) Accept whatever comes into hightstate mock for state
tests
PR #30282: (cachedout) Fix file.append logic
PR #30289: (cro) Fix problems with targeting proxies by grains
PR #30293: (cro) Ensure we don't log stuff we shouldn't
PR #30279: (cachedout) Allow modules to be packed into boto utils
PR #30186: (rallytime) Update CLI Examples in boto_ec2 module to reflect co=
rrect
arg/kwarg positioning
PR #30156: (abednarik) Add option in file.append to ignore_whitespace.
PR #30189: (rallytime) Back-port #30185 to 2015.8
PR #30215: (jacobhammons) Assorted doc bug fixes
PR #30206: (cachedout) Revert "Fix incorrect file permissions in file.line"
PR #30190: (jacobhammons) Updated doc site banners
PR #30180: (jfindlay) modules.x509._dec2hex: add fmt index for 2.6 compat
PR #30179: (terminalmage) Backport #26962 to 2015.8 branch
PR #29693: (abednarik) Handle missing source file in ssh_auth.
PR #30155: (rallytime) Update boto_secgroup and boto_iam_role docs to only =
use
region OR profile
PR #30158: (rallytime) Move _option(value) calls to __salt__['config.option=
'] in
boto utils
PR #30160: (dmurphy18) Fix parsing disk usage for line with no number and A=
IX
values in Kilos
PR #30162: (rallytime) Update list_present and append grains state function=
docs
to be more clear.
PR #30163: (rallytime) Add warning about using "=3D" in file.line function
PR #30164: (basepi) [2015.8] Merge forward from 2015.5 to 2015.8
PR #30168: (abednarik) Fix incorrect file permissions in file.line
PR #30154: (Oro) Fix file serialize on windows
PR #30144: (rallytime) Added generic ESXCLI command ability to ESXi Proxy M=
inion
PR #30142: (terminalmage) Fix dockerng.push, and allow for multiple images
PR #30075: (joejulian) Convert glusterfs module to use xml
PR #30129: (optix2000) Clean up _uptodate() in git state
PR #30139: (rallytime) Back-port #29589 to 2015.8
PR #30124: (abednarik) Update regex to detect ip alias in OpenBSD.
PR #30133: (stanislavb) Fix typo in gpgkey URL
PR #30126: (stanislavb) Log S3 API error message
PR #30128: (oeuftete) Log retryable transport errors as warnings
PR #30096: (cachedout) Add rm_special to crontab module
PR #30106: (techhat) Ensure last dir
PR #30101: (gtmanfred) fix bug where nova driver exits with no adminPass
PR #30090: (techhat) Add argument to isdir()
PR #30094: (rallytime) Fix doc formatting for cloud.create example in modul=
e.py
state
PR #30095: (rallytime) Add the list_nodes_select function to linode driver
PR #30082: (abednarik) Fixed saltversioninfo grain return
PR #30084: (rallytime) Back-port #29987 to 2015.8
PR #30071: (rallytime) Merge branch '2015.5' into '2015.8'
PR #30067: (ryan-lane) Pass in kwargs to boto_secgroup.convert_to_group_ids
explicitly
PR #30069: (techhat) Ensure that pki_dir exists
PR #30064: (rallytime) Add Syndic documentation to miscellaneous Salt Cloud
config options
PR #30049: (rallytime) Add some more unit tests for the vsphere execution m=
odule
PR #30060: (rallytime) Back-port #27104 to 2015.8
PR #30048: (jacobhammons) Remove internal APIs from rest_cherrypy docs.
PR #30043: (rallytime) Be explicit about importing from salt.utils.jinja to
avoid circular imports
PR #30038: (rallytime) Back-port #30017 to 2015.8
PR #30036: (rallytime) Back-port #29995 to 2015.8
PR #30035: (rallytime) Back-port #29895 to 2015.8
PR #30034: (rallytime) Back-port #29893 to 2015.8
PR #30033: (rallytime) Back-port #29876 to 2015.8
PR #30029: (terminalmage) git.latest: Fix handling of nonexistent branches
PR #30016: (anlutro) Properly normalize locales in locale.gen_locale
PR #30015: (anlutro) locale module: don't escape the slash in \n
PR #30022: (gqgunhed) Two minor typos fixed
PR #30026: (anlutro) states.at: fix wrong variable being used
PR #29966: (multani) Fix bigip state/module documentation + serializers
documentation
PR #29904: (twangboy) Improvements to osx packaging scripts
PR #29950: (multani) boto_iam: fix deletion of IAM users when using
delete_keys=3Dtrue
PR #29937: (multani) Fix states.boto_iam group users
PR #29934: (multani) Fix state.boto_iam virtual name
PR #29943: (cachedout) Check args correctly in boto_rds
PR #29924: (gqgunhed) fixed: uptime now working on non-US Windows
PR #29883: (serge-p) fix for nfs mounts in _active_mounts_openbsd()
PR #29894: (techhat) Support Saltfile in SPM
PR #29856: (rallytime) Added some initial unit tests for the
salt.modules.vsphere.py file
PR #29855: (rallytime) Back-port #29740 to 2015.8
PR #29890: (multani) Various documentation fixes
PR #29850: (basepi) [2015.8] Merge forward from 2015.5 to 2015.8
PR #29811: (anlutro) influxdb: add retention policy module functions
PR #29814: (basepi) [2015.8][Windows] Fix multi-master on windows
PR #29819: (rallytime) Add esxi module and state to docs build
PR #29832: (jleimbach) Fixed typo in order to use the keyboard module for R=
HEL
without systemd
PR #29803: (rallytime) Add vSphere module to doc ref module tree
PR #29767: (abednarik) Hosts file update in mod_hostname.
PR #29772: (terminalmage) pygit2: skip submodules when traversing tree
PR #29765: (gtmanfred) allow nova driver to be boot from volume
PR #29773: (l2ol33rt) Append missing wget in debian installation guide
PR #29800: (rallytime) Back-port #29769 to 2015.8
PR #29775: (paulnivin) Change listen requisite resolution from name to ID
declaration
PR #29754: (rallytime) Back-port #29719 to 2015.8
PR #29713: (The-Loeki) Pillar-based cloud providers still forcing use of
deprecated 'provider'
PR #29729: (rallytime) Further clarifications on "unless" and "onlyif"
requisites.
PR #29737: (akissa) fix pillar sqlite3 documentation examples
PR #29743: (akissa) fix pillar sqlite not honouring config options
PR #29723: (rallytime) Clarify db_user and db_password kwargs for
postgres_user.present state function
PR #29722: (rallytime) Link "stateful" kwargs to definition of what "statef=
ul"
means for cmd state.
PR #29724: (rallytime) Add examples of using multiple matching levels to Pi=
llar
docs
PR #29726: (cachedout) Disable some boto tests per resolution of moto issue
PR #29708: (lagesag) Fix test=3DTrue for file.directory with recurse
ignore_files/ignore_dirs.
PR #29642: (cachedout) Correctly restart deamonized minions on failure
PR #29599: (cachedout) Clean up minion shutdown
PR #29675: (clinta) allow returning all refs
PR #29683: (rallytime) Catch more specific error to pass the error message
through elegantly.
PR #29687: (basepi) [2015.8] Merge forward from 2015.5 to 2015.8
PR #29681: (clinta) fix bare/mirror in git.latest
PR #29644: (rallytime) Fixed a couple more ESXi proxy minion bugs
PR #29645: (rallytime) Back-port #29558 to 2015.8
PR #29632: (jfindlay) reduce severity of tls module __virtual__ logging
PR #29606: (abednarik) Fixed duplicate mtu entry in RedHat 7 network
configuration.
PR #29613: (rallytime) Various ESXi Proxy Minion Bug Fixes
PR #29628: (DmitryKuzmenko) Don't create io_loop before fork
PR #29609: (basepi) [2015.8][salt-ssh] Add ability to set salt-ssh command =
umask
in roster
PR #29603: (basepi) Fix orchestration failure-checking
PR #29597: (terminalmage) dockerng: Prevent exception when API response con=
tains
empty dictionary
PR #29596: (rallytime) Back-port #29587 to 2015.8
PR #29588: (rallytime) Added ESXi Proxy Minion Tutorial
PR #29572: (gtmanfred) [nova] use old discover_extensions if available
PR #29545: (terminalmage) git.latest: init submodules if not yet initialize=
d
PR #29548: (rallytime) Back-port #29449 to 2015.8
PR #29547: (rallytime) Refactored ESXCLI-based functions to accept a list o=
f
esxi_hosts
PR #29563: (anlutro) Fix a call to deprecated method in python-influxdb
PR #29565: (bdrung) Fix typos and missing release note
PR #29540: (basepi) [2015.8] Merge forward from 2015.5 to 2015.8
PR #29499: (rallytime) Initial commit of ESXi Proxy Minion
PR #29526: (jfindlay) 2015.8.2 notes: add note about not being released
PR #29531: (jfindlay) grains.core: handle undefined variable
PR #29538: (basepi) [2015.8] [salt-ssh] Remove umask around actual executio=
n for
salt-ssh
PR #29505: (rallytime) Update boto_rds state docs to include funky yaml syn=
tax
for "tags" option.
PR #29513: (bdrung) Drop obsolete syslog.target from systemd services
PR #29500: (rallytime) Back-port #29467 to 2015.8
PR #29463: (abednarik) Add **kwargs to debconf.set.
PR #29399: (jfindlay) modules.status: add human_readable option to uptime
PR #29433: (cro) Files for building .pkg files for MacOS X
PR #29455: (jfindlay) modules.nova.__init__: do not return None
PR #29454: (jfindlay) rh_service module __virtual__ return error messages
PR #29476: (tbaker57) Doc fix - route_table_present needs subnet_names (not
subnets) as a key
PR #29487: (rallytime) Back-port #29450 to 2015.8
PR #29441: (rallytime) Make sure docs line up with blade_idrac function spe=
cs
PR #29440: (rallytime) Back-port #28925 to 2015.8
PR #29435: (galet) Grains return wrong OS version and other OS related valu=
es
for Oracle Linux
PR #29430: (rall0r) Fix host.present state limitation
PR #29417: (jacobhammons) Repo install updates
PR #29402: (techhat) Add rate limiting to linode
PR #29400: (twangboy) Fix #19332
PR #29398: (cachedout) Lint 29288
PR #29331: (DmitryKuzmenko) Bugfix - #29116 raet dns error
PR #29390: (jacobhammons) updated version numbers in documentation
PR #29381: (nmadhok) No need to deepcopy since six.iterkeys() creates a cop=
y
PR #29349: (cro) Fix mis-setting chassis names
PR #29334: (rallytime) Back-port #29237 to 2015.8
PR #29300: (ticosax) [dockerng] Add support for volume management in docker=
ng
PR #29218: (clan) check service enable state in test mode
PR #29315: (jfindlay) dev tutorial doc: fix markup errors
PR #29317: (basepi) [2015.8] Merge forward from 2015.5 to 2015.8
PR #29240: (clan) handle acl_type [[d]efault:][user|group|mask|other]
PR #29305: (lorengordon) Add 'file' as a source_hash proto
PR #29272: (jfindlay) win_status module: handle 12 hour time in uptime
PR #29289: (terminalmage) file.managed: Allow local file sources to use
source_hash
PR #29264: (anlutro) Prevent ssh_auth.absent from running when test=3DTrue
PR #29277: (terminalmage) Update git_pillar runner to support new git ext_p=
illar
config schema
PR #29283: (cachedout) Single-quotes and use format
PR #29139: (thomaso-mirodin) [salt-ssh] Add a range roster and range target=
ing
options for the flat roster
PR #29282: (cachedout) dev docs: add development tutorial
PR #28994: (timcharper) add support to s3 for aws role assumption
PR #29278: (techhat) Add verify_log to SPM
PR #29067: (jacksontj) Fix infinite recursion in state compiler for prereq =
of
SLSs
PR #29207: (jfindlay) do not shadow ret function argument
PR #29215: (rallytime) Back-port #29192 to 2015.8
PR #29217: (clan) show duration only if state_output_profile is False
PR #29221: (ticosax) [dokcerng] Docu network mode
PR #29269: (jfindlay) win_status module: fix function names in docs
PR #29213: (rallytime) Move _wait_for_task func from vmware cloud to vmware
utils
PR #29271: (techhat) Pass full path for digest (SPM)
PR #29244: (isbm) List products consistently across all SLES systems
PR #29255: (garethgreenaway) fixes to consul module
PR #29208: (whytewolf) Glance more profile errors
PR #29200: (jfindlay) mount state: unmount by device is optional
PR #29205: (trevor-h) Fixes #29187 - using winrm on EC2
PR #29170: (cachedout) Migrate pydsl tests to integration test suite
PR #29198: (jfindlay) rh_ip module: only set the mtu once
PR #29135: (jfindlay) ssh_known_hosts.present state: catch not found exc
PR #29196: (s0undt3ch) We need novaclient imported to compare versions
PR #29059: (terminalmage) Work around upstream pygit2 bug
PR #29112: (eliasp) Prevent backtrace (KeyError) in ssh_known_hosts.present
state
To generate a diff of this commit:
cvs rdiff -u -r1.34 -r1.35 pkgsrc/sysutils/salt/Makefile
cvs rdiff -u -r1.14 -r1.15 pkgsrc/sysutils/salt/PLIST
cvs rdiff -u -r1.17 -r1.18 pkgsrc/sysutils/salt/distinfo
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: wiz
Date: Tue Feb 9 14:23:04 UTC 2016
Modified Files:
pkgsrc/sysutils/salt: Makefile distinfo
Added Files:
pkgsrc/sysutils/salt/patches: patch-salt_modules_cron.py
Log Message:
Add upstream patch fixing problem with cron on Solaris.
>From Travis Paul in PR 50567.
Bump PKGREVISION.
To generate a diff of this commit:
cvs rdiff -u -r1.35 -r1.36 pkgsrc/sysutils/salt/Makefile
cvs rdiff -u -r1.18 -r1.19 pkgsrc/sysutils/salt/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/sysutils/salt/patches/patch-salt_modules_cron.py
|
|
www/squid3: security fix
Revisions pulled up:
- www/squid3/Makefile 1.58-1.59
- www/squid3/distinfo 1.45-1.46
---
Module Name: pkgsrc
Committed By: adam
Date: Mon Jan 11 09:24:32 UTC 2016
Modified Files:
pkgsrc/www/squid3: Makefile distinfo
Log Message:
Changes 3.5.13:
* Ssl::CertValidationHelper::sslSubmit: Assure that the callback->getDialer()
* Fix build error with ICC
* Fix GnuTLS detection via pkg-config
* Reflect the [ugly] reality in external_acl_type cache=n documentation.
* Avoid memory leaks when a certificate validator is used with SslBump
* Support Ephemeral Elliptic Curve Diffie-Hellman (EECDH) key exchange
* Fix clang build error after rev.13961
* Bug 4397: DragonFly BSD, POSIX shared memory is implemented as filepath
* Fix startup crash with a misconfigured (too-small) shared memory cache
* Fix connection retry and fallback after failed server TLS connections
* Complete certificate chains using external intermediate certificates
* Bug 4387: Kerberos build errors on Solaris
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 16 06:50:06 UTC 2016
Modified Files:
pkgsrc/www/squid3: Makefile distinfo
Log Message:
Update squid3 to 3.5.14 (Squid 3.5.14), security release.
Changes to squid-3.5.14 (16 Feb 2016):
- Bug 4437: Fix Segfault on Certain SSL Handshake Errors
- Bug 4431: C code is not compiled with CFLAGS
- Bug 4418: FlexibleArray compile error with GCC 6
- Bug 4378: assertion failed: DestinationIp.cc:60:
'checklist->conn() && checklist->conn()->clientConnection != NULL'
- Fix invalid FTP connection handling on blocked content
- Fix handling of shared memory left over by Squid crashes or bugs
- Fix mgr:config report 'qos_flows mark' output
- Fix compile error in CPU affinity
- Fix %un logging external ACL username
- Avoid more certificate validation memory leaks
- ... and some documentation updates
|
|
|
|
www/curl: security update
Revisions pulled up:
- www/curl/Makefile 1.157-1.160
- www/curl/distinfo 1.112,1.115
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: mef
Date: Thu Jan 28 11:46:02 UTC 2016
Modified Files:
pkgsrc/www/curl: Makefile distinfo
Log Message:
Update 7.46.0 to 7.47.0
-----------------------
Curl and libcurl 7.47.0
Public curl releases: 151
Command line options: 179
curl_easy_setopt() options: 221
Public functions in libcurl: 61
Contributors: 1340
This release includes the following changes:
o version: Add flag CURL_VERSION_PSL for libpsl
o http: added CURL_HTTP_VERSION_2TLS to do HTTP/2 for HTTPS only [8]
o curl: use 2TLS by default
o curl --expect100-timeout: added [10]
o Add .dir-locals and set c-basic-offset to 2 (for emacs) [16]
This release includes the following bugfixes:
o curl: avoid local drive traversal when saving file on Windows [33]
o NTLM: do not resuse proxy connections without diff proxy credentials [34]
o tests: Disable the OAUTHBEARER tests when using a non-default port number [1]
o curl: remove keepalive #ifdef checks done on libcurl's behalf
o formdata: Check if length is too large for memory [2]
o lwip: Fix compatibility issues with later versions [3]
o openssl: BoringSSL doesn't have CONF_modules_free
o config-win32: Fix warning HAVE_WINSOCK2_H undefined
o build: fix compilation error with CURL_DISABLE_VERBOSE_STRINGS [4]
o http2: Fix hanging paused stream [5]
o scripts/Makefile: fix GNUism and survive no perl [6]
o openssl: adapt to 1.1.0+ name changes
o openssl: adapt to openssl >= 1.1.0 X509 opaque structs [7]
o HTTP2.md: spell fix and remove TODO now implemented
o setstropt: const-correctness [9]
o cyassl: fix compiler warning on type conversion
o gskit: Fix host subject altname verification [11]
o http2: Support trailer fields [12]
o wolfssl: handle builds without SSLv3 support
o cyassl: deal with lack of *get_peer_certificate [13]
o sockfilt: do not wait on unreliable file or pipe handle
o make: build zsh script even in an out-of-tree build
o test 1326: fix getting stuck on Windows
o test 87: fix file check on Windows
o configure: allow static builds on mingw [14]
o configure: detect IPv6 support on Windows [15]
o ConnectionExists: with *PIPEWAIT, wait for connections [17]
o Makefile.inc: s/curl_SOURCES/CURL_FILES [18]
o test 16: fixed for Windows
o test 252-255: use datacheck mode text for ASCII-mode LISTings
o tftpd server: add Windows support by writing files in binary mode
o ftplistparser: fix handling of file LISTings using Windows EOL
o tests first.c: fix calculation of sleep timeout on Windows
o tests (several): use datacheck mode text for ASCII-mode LISTings
o CURLOPT_RANGE.3: for HTTP servers, range support is optional
o test 1515: add MSYS support by passing a relative path
o curl_global_init.3: Add Windows-specific info for init via DLL [19]
o http2: Fix client write for trailers on stream close [20]
o mbedtls: Fix ALPN support
o connection reuse: IDN host names fixed [21]
o http2: Fix PUSH_PROMISE headers being treated as trailers [22]
o http2: handle the received SETTINGS frame [23]
o http2: Ensure that http2_handle_stream_close is called [24]
o mbedtls: implement CURLOPT_PINNEDPUBLICKEY
o runtests: Add mbedTLS to the SSL backends
o IDN host names: Remove the port number before converting to ACE [25]
o zsh.pl: fail if no curl is found
o scripts: fix zsh completion generation
o scripts: don't generate and install zsh completion when cross-compiling [26]
o lib: Prefix URLs with lower-case protocol names/schemes [27]
o ConnectionExists: only do pipelining/multiplexing when asked [28]
o configure: assume IPv6 works when cross-compiled [29]
o openssl: for 1.1.0+ they now provide a SSLeay() macro of their own
o openssl: improved error detection/reporting
o ssh: CURLOPT_SSH_PUBLIC_KEYFILE now treats "" as NULL again [30]
o mbedtls: Fix pinned key return value on fail [31]
o maketgz: generate date stamp with LC_TIME=C [32]
This release includes the following known bugs:
o see docs/KNOWN_BUGS (http://curl.haxx.se/docs/knownbugs.html)
This release would not have looked like this without help, code, reports and
advice from friends like these:
Alessandro Ghedini, Anders Bakken, Christian Stewart, Dan Fandrich,
Daniel Schauenberg, Daniel Stenberg, Francisco Moraes, Gisle Vanem,
Isaac Boukris, Johannes Schindelin, John Kohl, Kamil Dudka, Marc Hoersken,
Michael Kaufmann, Mohammad AlSaleh, Patrick Monnerat, Ray Satiro, Steve Holme,
Tatsuhiro Tsujikawa, Thomas Glanzmann, Thomas Klausner,
(21 contributors)
Thanks! (and sorry if I forgot to mention someone)
To generate a diff of this commit:
cvs rdiff -u -r1.156 -r1.157 pkgsrc/www/curl/Makefile
cvs rdiff -u -r1.111 -r1.112 pkgsrc/www/curl/distinfo
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: wiz
Date: Thu Jan 28 12:04:45 UTC 2016
Modified Files:
pkgsrc/www/curl: Makefile
Log Message:
Remove gmake dependency, bug was fixed upstream before 7.47.0.
To generate a diff of this commit:
cvs rdiff -u -r1.157 -r1.158 pkgsrc/www/curl/Makefile
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: adam
Date: Mon Feb 8 17:35:32 UTC 2016
Modified Files:
pkgsrc/www/curl: Makefile distinfo
Removed Files:
pkgsrc/www/curl/patches: patch-doc_examples_getredirect_c
Log Message:
Changes 7.47.1:
Bugfixes:
* getredirect.c: fix variable name
* tool_doswin: silence unused function warning
* cmake: fixed when OpenSSL enabled on Windows and schannel detected
* curl.1: Explain remote-name behavior if file already exists
* tool_operate: Don't sanitize --output path (Windows)
* URLs: change all http:// URLs to https:// in documentation & comments
* sasl_sspi: Fix memory leak in domain populate
* COPYING: clarify that Daniel is not the sole author
* examples/htmltitle: Use _stricmp on Windows
* examples/asiohiper: Avoid function name collision on Windows
* idn_win32: Better error checking
* openssl: Fix signed/unsigned mismatch warning in X509V3_ext
* curl save files: check for backslashes on cygwin
To generate a diff of this commit:
cvs rdiff -u -r1.158 -r1.159 pkgsrc/www/curl/Makefile
cvs rdiff -u -r1.114 -r1.115 pkgsrc/www/curl/distinfo
cvs rdiff -u -r1.2 -r0 \
pkgsrc/www/curl/patches/patch-doc_examples_getredirect_c
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Wed Feb 10 07:38:47 UTC 2016
Modified Files:
pkgsrc/www/curl: Makefile
Log Message:
The Curl website now enforces the use of HTTPS. Update the home page and
master site URL accordingly.
To generate a diff of this commit:
cvs rdiff -u -r1.159 -r1.160 pkgsrc/www/curl/Makefile
|
|
|
|
pkgtools/pkglint: bugfix
Revisions pulled up:
- pkgtools/pkglint/select.mk 1.2-1.3
---
Module Name: pkgsrc
Committed By: rillig
Date: Mon Feb 1 21:40:39 UTC 2016
Modified Files:
pkgsrc/pkgtools/pkglint: select.mk
Log Message:
Fixed boolean expression for selecting the proper pkglint version
It had been wrong for SunOS-*-i386, which is not supported by the Go
programming language, but was forced to use the Go version nevertheless.
---
Module Name: pkgsrc
Committed By: rillig
Date: Tue Feb 2 08:00:10 UTC 2016
Modified Files:
pkgsrc/pkgtools/pkglint: select.mk
Log Message:
Fixed dependency pattern for pkglint4
|
|
net/nagios-base: bugfix
net/nagios-plugins: fix packaging issue
Revisions pulled up:
- net/nagios-base/Makefile 1.63
- net/nagios-base/distinfo 1.30
- net/nagios-base/patches/patch-base_checks.c 1.2
- net/nagios-base/patches/patch-base_events.c 1.2
- net/nagios-base/patches/patch-base_logging.c 1.3
- net/nagios-base/patches/patch-base_nerd.c 1.2
- net/nagios-base/patches/patch-cgi_avail.c 1.4
- net/nagios-base/patches/patch-cgi_histogram.c 1.4
- net/nagios-base/patches/patch-cgi_trends.c 1.4
- net/nagios-base/patches/patch-common_downtime.c 1.2
- net/nagios-base/patches/patch-html_Makefile.in 1.4
- net/nagios-base/patches/patch-lib_test-squeue.c 1.2
- net/nagios-base/patches/patch-lib_worker.c 1.2
- net/nagios-plugins/Makefile 1.41
- net/nagios-plugins/distinfo 1.19
- net/nagios-plugins/patches/patch-plugins-root_Makefile.in 1.1
---
Module Name: pkgsrc
Committed By: bouyer
Date: Tue Feb 9 10:12:53 UTC 2016
Modified Files:
pkgsrc/net/nagios-base: Makefile distinfo
pkgsrc/net/nagios-base/patches: patch-base_checks.c patch-base_events.c
patch-base_logging.c patch-base_nerd.c patch-cgi_avail.c
patch-cgi_histogram.c patch-cgi_trends.c patch-common_downtime.c
patch-html_Makefile.in patch-lib_test-squeue.c patch-lib_worker.c
Log Message:
Bug fix for workers busy-waiting for child completion: when read()ing a
non-bloking descriptor after a poll(), don't loop forever on EAGAIN
as poll() may return POLLIN for a descriptor which doesn't have data
to be read. Bump PKGREVISION.
While there add user-destdir support.
---
Module Name: pkgsrc
Committed By: bouyer
Date: Tue Feb 9 10:13:17 UTC 2016
Modified Files:
pkgsrc/net/nagios-plugins: Makefile distinfo
Added Files:
pkgsrc/net/nagios-plugins/patches: patch-plugins-root_Makefile.in
Log Message:
Add user-destdir support
|
|
|
|
lang/php70: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.125
- lang/php70/distinfo 1.4-1.5
- lang/php70/patches/patch-ext_pcre_pcrelib_config.h 1.1-1.2
---
Module Name: pkgsrc
Committed By: jklos
Date: Thu Jan 21 21:47:24 UTC 2016
Modified Files:
pkgsrc/lang/php70: distinfo
Added Files:
pkgsrc/lang/php70/patches: patch-ext_pcre_pcrelib_config.h
Log Message:
Selectively enable just-in-time support in PCRE for supported architectures.
Same issue as seen in older php:
https://mail-index.netbsd.org/pkgsrc-bugs/2015/09/13/msg057792.html
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Feb 6 07:14:44 UTC 2016
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php70: distinfo
pkgsrc/lang/php70/patches: patch-ext_pcre_pcrelib_config.h
Log Message:
Update php70 to 7.0.3 (PHP 7.0.3).
04 Feb 2016 PHP 7.0.3
- Core:
. Added support for new HTTP 451 code. (Julien)
. Fixed bug #71039 (exec functions ignore length but look for NULL termination).
(Anatol)
. Fixed bug #71089 (No check to duplicate zend_extension). (Remi)
. Fixed bug #71201 (round() segfault on 64-bit builds). (Anatol)
. Fixed bug #71221 (Null pointer deref (segfault) in get_defined_vars via
ob_start). (hugh at allthethings dot co dot nz)
. Fixed bug #71248 (Wrong interface is enforced). (Dmitry)
. Fixed bug #71273 (A wrong ext directory setup in php.ini leads to crash).
(Anatol)
. Fixed Bug #71275 (Bad method called on cloning an object having a trait).
(Bob)
. Fixed bug #71297 (Memory leak with consecutive yield from). (Bob)
. Fixed bug #71300 (Segfault in zend_fetch_string_offset). (Laruence)
. Fixed bug #71314 (var_export(INF) prints INF.0). (Andrea)
. Fixed bug #71323 (Output of stream_get_meta_data can be falsified by its
input). (Leo Gaspard)
. Fixed bug #71336 (Wrong is_ref on properties as exposed via
get_object_vars()). (Laruence)
. Fixed bug #71459 (Integer overflow in iptcembed()). (Stas)
- Apache2handler:
. Fix >2G Content-Length headers in apache2handler. (Adam Harvey)
- CURL:
. Fixed bug #71227 (Can't compile php_curl statically). (Anatol)
. Fixed bug #71225 (curl_setopt() fails to set CURLOPT_POSTFIELDS with
reference to CURLFile). (Laruence)
- Interbase:
. Fixed Bug #71305 (Crash when optional resource is omitted).
(Laruence, Anatol)
- LDAP:
. Fixed bug #71249 (ldap_mod_replace/ldap_mod_add store value as string
"Array"). (Laruence)
- mbstring:
. Fixed bug #71397 (mb_send_mail segmentation fault). (Andrea, Yasuo)
- OpenSSL:
. Fixed bug #71475 (openssl_seal() uninitialized memory usage). (Stas)
- Phar:
. Fixed bug #71354 (Heap corruption in tar/zip/phar parser). (Stas)
. Fixed bug #71391 (NULL Pointer Dereference in phar_tar_setupmetadata()).
(Stas)
. Fixed bug #71488 (Stack overflow when decompressing tar archives). (Stas)
- SOAP:
. Fixed bug #70979 (crash with bad soap request). (Anatol)
- SPL:
. Fixed bug #71204 (segfault if clean spl_autoload_funcs while autoloading).
(Laruence)
. Fixed bug #71202 (Autoload function registered by another not activated
immediately). (Laruence)
. Fixed bug #71311 (Use-after-free vulnerability in SPL(ArrayObject,
unserialize)). (Sean Heelan)
. Fixed bug #71313 (Use-after-free vulnerability in SPL(SplObjectStorage,
unserialize)). (Sean Heelan)
- Standard:
. Fixed bug #71287 (Error message contains hexadecimal instead of decimal
number). (Laruence)
. Fixed bug #71264 (file_put_contents() returns unexpected value when
filesystem runs full). (Laruence)
. Fixed bug #71245 (file_get_contents() ignores "header" context option if
it's a reference). (Laruence)
. Fixed bug #71220 (Null pointer deref (segfault) in compact via ob_start).
(hugh at allthethings dot co dot nz)
. Fixed bug #71190 (substr_replace converts integers in original $search
array to strings). (Laruence)
. Fixed bug #71188 (str_replace converts integers in original $search array
to strings). (Laruence)
. Fixed bug #71132, #71197 (range() segfaults). (Thomas Punt)
- WDDX:
. Fixed bug #71335 (Type Confusion in WDDX Packet Deserialization). (Stas)
|
|
lang/php56: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.124
- lang/php56/distinfo 1.22
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Feb 6 07:13:02 UTC 2016
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php56: distinfo
Log Message:
Update php56 to 5.6.18 (PHP 5.6.18).
04 Feb 2016, PHP 5.6.18
- Core:
. Fixed bug #71039 (exec functions ignore length but look for NULL termination).
(Anatol)
. Fixed bug #71089 (No check to duplicate zend_extension). (Remi)
. Fixed bug #71201 (round() segfault on 64-bit builds). (Anatol)
. Added support for new HTTP 451 code. (Julien)
. Fixed bug #71273 (A wrong ext directory setup in php.ini leads to crash).
(Anatol)
. Fixed bug #71323 (Output of stream_get_meta_data can be falsified by its
input). (Leo Gaspard)
. Fixed bug #71459 (Integer overflow in iptcembed()). (Stas)
- Apache2handler:
. Fix >2G Content-Length headers in apache2handler. (Adam Harvey)
- FTP:
. Implemented FR #55651 (Option to ignore the returned FTP PASV address).
(abrender at elitehosts dot com)
- Opcache:
. Fixed bug #71127 (Define in auto_prepend_file is overwrite). (Laruence)
. Fixed bug #71024 (Unable to use PHP 7.0 x64 side-by-side with PHP 5.6 x32
on the same server). (Anatol)
- Phar:
. Fixed bug #71354 (Heap corruption in tar/zip/phar parser). (Stas)
. Fixed bug #71391 (NULL Pointer Dereference in phar_tar_setupmetadata()).
(Stas)
. Fixed bug #71488 (Stack overflow when decompressing tar archives). (Stas)
- Session:
. Fixed bug #69111 (Crash in SessionHandler::read()). (Anatol)
- SOAP:
. Fixed bug #70979 (crash with bad soap request). (Anatol)
- SPL:
. Fixed bug #71204 (segfault if clean spl_autoload_funcs while autoloading).
(Laruence)
- WDDX:
. Fixed bug #71335 (Type Confusion in WDDX Packet Deserialization). (Stas)
|
|
lang/php55: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.123
- lang/php55/distinfo 1.49
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Feb 6 07:11:06 UTC 2016
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php55: distinfo
Log Message:
Update php55 to 5.5.32 (PHP 5.5.32).
04 Feb 2016, PHP 5.5.32
- Core:
. Fixed bug #71039 (exec functions ignore length but look for NULL termination).
(Anatol)
. Fixed bug #71323 (Output of stream_get_meta_data can be falsified by its
input). (Leo Gaspard)
. Fixed bug #71459 (Integer overflow in iptcembed()). (Stas)
- GD:
. Improved the fix for bug #70976. (Remi)
- PCRE:
. Upgraded pcrelib to 8.38.
- Phar:
. Fixed bug #71354 (Heap corruption in tar/zip/phar parser). (Stas)
. Fixed bug #71391 (NULL Pointer Dereference in phar_tar_setupmetadata()).
(Stas)
. Fixed bug #71488 (Stack overflow when decompressing tar archives). (Stas)
- WDDX:
. Fixed bug #71335 (Type Confusion in WDDX Packet Deserialization). (Stas)
|
|
devel/ruby-activemodel32: security fix
devel/ruby-activesupport32: security fix
devel/ruby-railties32: security fix
mail/ruby-actionmailer32: security fix
www/ruby-actionpack32: security fix
www/ruby-activeresource32: security fix
www/ruby-rails32: security fix
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.22
- devel/ruby-activemodel32/distinfo 1.22
- devel/ruby-activesupport32/PLIST 1.2
- devel/ruby-activesupport32/distinfo 1.22
- devel/ruby-railties32/Makefile 1.11
- devel/ruby-railties32/distinfo 1.22
- lang/ruby/rails.mk 1.53
- mail/ruby-actionmailer32/distinfo 1.22
- www/ruby-actionpack32/distinfo 1.22
- www/ruby-activeresource32/distinfo 1.22
- www/ruby-rails32/distinfo 1.22
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:42:36 UTC 2016
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails to 3.2.22.1.
Also tweak _RAILS_{MAJOR,MINOR,TEENY} variable definition.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:43:56 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activesupport32: PLIST distinfo
Log Message:
Update ruby-activesupport32 to 3.2.22.1.
* Add ActiveSupport::SecurityUtils module which is required for
security fix of actionpack.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:45:10 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:46:12 UTC 2016
Modified Files:
pkgsrc/databases/ruby-activerecord32: Makefile distinfo
Log Message:
Update ruby-activerecord32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:47:02 UTC 2016
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:48:02 UTC 2016
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Note update of ruby-actionpack32 to 3.2.22.1.
* Use secure string comparisons for basic auth username / password.
(CVE-2015-7576)
* Stop caching mime types globally. (CVE-2016-0751)
* Don't short-circuit reject_if proc. (CVE-2015-7577)
* Allow :file to be outside rails root, but anything else must be inside
the rails view directory. (CVE-2016-0752)
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:48:55 UTC 2016
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:49:57 UTC 2016
Modified Files:
pkgsrc/devel/ruby-railties32: Makefile distinfo
Log Message:
Update ruby-railties32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:50:48 UTC 2016
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:46:12 UTC 2016
Modified Files:
pkgsrc/databases/ruby-activerecord32: Makefile distinfo
Log Message:
Update ruby-activerecord32 to 3.2.22.1.
* No change except version.
|
|
|
|
textproc/mdocml: fix packaging issue
Revisions pulled up:
- textproc/mdocml/Makefile 1.53
- textproc/mdocml/distinfo 1.44
---
Module Name: pkgsrc
Committed By: richard
Date: Sat Jan 9 05:01:43 UTC 2016
Modified Files:
pkgsrc/textproc/mdocml: distinfo
Log Message:
regen patch checksums for mdocml
---
Module Name: pkgsrc
Committed By: richard
Date: Sat Jan 9 05:05:34 UTC 2016
Modified Files:
pkgsrc/textproc/mdocml: Makefile
Log Message:
bump PKGREVISION for mdocml
|
|
net/nagios-base: build fix
Revisions pulled up:
- net/nagios-base/Makefile 1.62
- net/nagios-base/distinfo 1.28-1.29
- net/nagios-base/patches/patch-base_checks.c 1.1
- net/nagios-base/patches/patch-base_events.c 1.1
- net/nagios-base/patches/patch-base_logging.c 1.1-1.2
- net/nagios-base/patches/patch-base_nerd.c 1.1
- net/nagios-base/patches/patch-cgi_avail.c 1.3
- net/nagios-base/patches/patch-cgi_cmd.c 1.5
- net/nagios-base/patches/patch-cgi_histogram.c 1.3
- net/nagios-base/patches/patch-cgi_trends.c 1.3
- net/nagios-base/patches/patch-common_downtime.c 1.1
- net/nagios-base/patches/patch-lib_test-squeue.c 1.1
- net/nagios-base/patches/patch-lib_worker.c 1.1
- net/nagios-base/patches/patch-xdata_xrddefault.c 1.2
- net/nagios-base/patches/patch-xdata_xsddefault.c 1.2
---
Module Name: pkgsrc
Committed By: bouyer
Date: Sun Feb 7 12:41:11 UTC 2016
Modified Files:
pkgsrc/net/nagios-base: Makefile distinfo
Added Files:
pkgsrc/net/nagios-base/patches: patch-base_logging.c
Log Message:
Workaround for 64bit time_t bug on i386, causing logs to be filled with
"(null)" instead of the message.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: bouyer
Date: Sun Feb 7 21:52:06 UTC 2016
Modified Files:
pkgsrc/net/nagios-base: distinfo
pkgsrc/net/nagios-base/patches: patch-base_logging.c patch-cgi_cmd.c
patch-xdata_xrddefault.c patch-xdata_xsddefault.c
Added Files:
pkgsrc/net/nagios-base/patches: patch-base_checks.c patch-base_events.c
patch-base_nerd.c patch-cgi_avail.c patch-cgi_histogram.c
patch-cgi_trends.c patch-common_downtime.c patch-lib_test-squeue.c
patch-lib_worker.c
Log Message:
more 64bit time_t fixes. Now compiles without -Wformat warnings.
Ride previous PKGREVISION bump
|
|
|
|
lang/go: bugfix
Revisions pulled up:
- lang/go/Makefile 1.38
- lang/go/distinfo 1.32
- lang/go/patches/patch-src_crypto_x509_root__bsd.go 1.1
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: bsiegert
Date: Sun Jan 31 10:17:27 UTC 2016
Modified Files:
pkgsrc/lang/go: Makefile distinfo
Added Files:
pkgsrc/lang/go/patches: patch-src_crypto_x509_root__bsd.go
Log Message:
Add the correct path for SSL certificates that mozilla-rootcerts uses.
PR pkg/50690.
To generate a diff of this commit:
cvs rdiff -u -r1.37 -r1.38 pkgsrc/lang/go/Makefile
cvs rdiff -u -r1.31 -r1.32 pkgsrc/lang/go/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/lang/go/patches/patch-src_crypto_x509_root__bsd.go
|
