| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
security vulnerabilites reported in the "wnpa-sec-2008-03" advisory.
|
|
Part of patch-af has been fixed upstream.
Security fixes in this version:
MFSA 2008-33 Crash and remote code execution in block reflow
MFSA 2008-32 Remote site run as local file via Windows URL shortcut
MFSA 2008-31 Peer-trusted certs can use alt names to spoof
MFSA 2008-30 File location URL in directory listings not escaped properly
MFSA 2008-29 Faulty .properties file results in uninitialized memory being used
MFSA 2008-28 Arbitrary socket connections with Java LiveConnect on Mac OS X
MFSA 2008-27 Arbitrary file upload via originalTarget and DOM Range
MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript()
MFSA 2008-24 Chrome script loading from fastload file
MFSA 2008-23 Signed JAR tampering
MFSA 2008-22 XSS through JavaScript same-origin violation
MFSA 2008-21 Crashes with evidence of memory corruption (rv:1.8.1.15)
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.15/releasenotes/
|
|
|
|
|
|
While here, move the sharedstatedir to VARBASE where it belongs.
Bump PKGREVISION.
|
|
Patch provided by Hasso Tepper in PR 38878.
|
|
Patch provided by Hasso Tepper in PR 38877.
|
|
xemacs part of PR pkg/38633 from Hasso Tepper.
|
|
emacs20 part of PR pkg/38633 from Hasso Tepper.
|
|
|
|
security vulnerability reported in CVE-2008-2079.
|
|
build on Mac OS X Leper.
|
|
|
|
of mk/curses.b3.mk after devel/ncurses/b3.mk.
- Define DATADIR correctly so that it knows where to look for help files.
- Remove quotes around DOCS_PATH in snprintf() call so that smirk can
actually open the help files.
- Bump PKGREVISION.
|
|
|
|
660) The -i flag should imply resetting the environment, as it did in
sudo version prior to 1.6.9. Also, the -i and -E flags are
mutually exclusive.
661) Fixed the configure test for dirfd() under Linux.
662) Fixed test for whether -lintl is required to link.
663) Changed how sudo handles the child process when sending mail.
This fixes a problem on Linux with the mail_always option.
664) Fixed a problem with line continuation characters inside of
quoted strings.
|
|
|
|
(following some hints by joerg@).
Add missing files to PLIST.
Mark as user-destdir ready.
Bump PKGREVISION.
|
|
PLIST of ap22-py25-python and similar packages (removes additional
egg-info file) From tnn@. Passed via packages@ without objection
|
|
|
|
|
|
1.2.4 (June 29, 2008)
====================
Security Fixes:
* AVI reader: Re-worked to be more robust against crash or DOS.
* AVS reader: Re-worked to be more robust against crash or DOS.
* DCM reader: Re-worked to be more robust against crash or DOS.
* EPT reader: Re-worked to be more robust against crash or DOS.
* FITS reader: Re-worked to be more robust against crash or DOS.
* MTV reader: Re-worked to be more robust against crash or DOS.
* PALM reader: Re-worked to be more robust against crash or DOS.
* RLA reader: Re-worked to be more robust against crash or DOS.
* TGA reader: Re-worked to be more robust against crash or DOS.
* Avoid possible crash in GetImageCharacteristics() when substituting
text in comment read from file.
Bug fixes:
* Magick++ Image Quantize was not supporting error measurement properly
and was waisting time with redundant SyncImage().
* The --enable-magick-compat configure option was not being respected
by the Makefiles (SourceForge bug 2005883).
|
|
bitlbee-1.2.1, cdrtools-2.01.01.42, chicken-3.3.0, claws-mail-3.5.0,
clawsker-0.5.0, clive-0.4.17, drscheme-4.0.1, fltk-1.1.9,
fuse-ntfs-3g-1.2531, gcalctool-5.22.3, gnome-terminal-2.22.3,
goffice-0.7.0, graphviz-2.20.2, gucharmap-2.22.3, gvfs-0.2.5,
httping-1.2.8, ikiwiki-2.51, imapsync-1.255, meld-1.2, nagios-3.0.3,
nmap-4.68, osh-20080629, phpmyadmin-2.11.7, pixman-0.11.6,
prelude-manager-0.9.13, py-docutils-0.5, py-karaoke-0.6,
raptor-1.4.18, scribus-1.3.3.12, shared-mime-info-0.40, swfdec-0.7.2,
wget-1.11.4, wine-1.1.0, x264-devel-20080628, xf86-video-ati-6.9.0,
xwd-1.0.2, xwininfo-1.0.4, yabause-0.9.6.
|
|
|
|
* Security fixes
* Other bug fixes
See also:
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51a.html
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51b.html
|
|
|
|
|
|
Fri April 11 2008 -- Version 0.9.3
----------------------------------------
This is a bug fix release, containing the following changes:
* Fixed bounds checking of mode in speex header. relates to:
http://www.ocert.org/advisories/ocert-2008-2.html
* Fixed bug preventing device dialog being reopened when
closed via the window manager.
All users with speex handling enabled should upgrade.
|
|
|
|
|
|
|
|
on curl.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- Add patch from Fedora which makes the gtkspell option build again, with
the enchant-backed gtkspell.
- Add DESTDIR support, from mail/sylpheed-devel
Changes from 2.4.8
* New features
o The vertical 3-paned view mode was added.
o The feature to save SSL peer certificate was added.
o The option 'Treat HTML only message as attachment' was added.
o The feature to confirm missing attachments was added.
o The feature to confirm recipients before sending was added.
* Feature improvements
o To: header is also searched by quick search in Sent/Draft/Queue folders.
o 'Edit/Quick search' menu was added.
o Spaces in address and server entries on account preferences dialog are now
automatically removed when applied.
o The compose window now remembers the maximized state.
o The focus will not move from the text view to the summary view with
'Next/Prev' keyboard operation now.
o The alert dialog is displayed now when PGP signing/encryption failed.
* Bugfixes
o The bug that caused busy loop when initial connection was immediately
refused was fixed.
o The bug that the quote description dialog never appeared again after closing it with the close button was fixed.
o The new/unread status display on quick search filtered mode was fixed.
o The windres command will not be enabled on non-win32 platforms now.
o The address completion was fixed.
o Win32: --attach option was fixed.
o The sylpheed.desktop file was fixed.
o A crash bug was fixed.
o Content-Transfer-Encoding header with comments was supported.
o UTF-8 locale strings with suffix '.utf8' were supported.
o The 8KB restriction of template body size was removed.
|
|
|
|
|
|
|
|
http://secunia.com/advisories/28794/
Includes many bug fixes, see share/doc/mailman/NEWS for details.
|
|
|
|
two security fixes:
- Bug #1993: Memory leak in http_reply_access deny processing
- Bug #2122: In some situations collapsed_forwarding could leak
private information
Changes to squid-2.6.STABLE21 (27 June 2008)
- Bug #2350: Bugs in Linux kernel capabilities code
- Bug #2241: weights not applied properly in round-robin peer
selection
- Off by one error in DNS label decompression could cause valid DNS
messages to be rejected
- logformat docs contain extra whitespace
- Reject ridiculously large ASN.1 lengths
- Fix SNMP reporting of counters with a value > 0xFF80000
- Correct spelling of WCCPv2 dst_port_hash to match the source
- Plug some "squid -k reconfigure" memory leaks. Mostly SSL related.
- Bug #1993: Memory leak in http_reply_access deny processing
- Bug #2122: In some situations collapsed_forwarding could leak
private information
- Bug #2376: Round-Robin becomes unbalanced when a peer dies and comes
back
- Bug #2387: The calculation of the number of hash buckets need to
account for the memory size, not only disk size
- Bug #2393: DNS requests retried indefinitely at full speed on failed
TCP connection
- Bug #2393: DNS retransmit queue could get hold up
- Correct socket syscalls statistics in commResetFD()
|
|
|
|
- Fix for CVE-2008-1105.
- Remove man pages for ldb tools not included in Samba 3.0.
- Fix build for pam_smbpass.
- Fix a crash in tdb_wrap_log().
- BUG 5267: Fix for nmbd termination problems when no interfaces
found.
- BUG 5326: OS/2 servers give strange "high word" replies for
print jobs.
- Remove MS-DFS check that required the target host be ourself.
- BUG 5372: Fix high CPU usage of cupsd on large print servers
by using more efficient CUPS queries in smbd.
- Rewrite integer wrap checks to deal with gcc 4.x optimizations.
- BUG 5095: Fix the enforcement of the "Manage Documents" access right.
- Don't free memory from getpass() in mount.cifs.
- BUG 5460: Fix MS-DFS referral problem in server code.
- Fix bug in Winbind that caused the parent to ignore dead children.
- Fix compile warnings.
- Fix build for pam_smbpass.
- Document build fixes.
- BUG 4235: Improve compliance to the Squid helper protocol.
- BUG 5107: Fix handling of large DNS replies on AIX and Solaris.
- Prevent cycle in Wibind's list of children when reaping dead processes.
- BUG 5419: Fix memory leak in ads_do_search_all_args() (merge from v3-2).
- Fix winbind NETLOGON credential chain on a samba dc for w2k8 trusts.
- Fix client connections and negotiation with Windows 2008 DCs
in member server code.
- Add NT_STATUS_DOWNGRADE_DETECTED error code (merge from v3-2).
- BUG 5430: Fix pam_winbind.so on Solaris (requires -lsocket).
- Re-add samr getdispinfoindex parsing which got lost in the glue commit.
- BUG 5461: Implement a very basic _samr_GetDisplayEnumerationIndex().
Corrects interop problem between Citrix PM and a Samba DC.
- BUG 3840: Fix smbclient connecting to NetApp filers when using
whitespace in the user's password.
- BUG 4901: Fix behavior of "ldap passwd sync = only".
- BUG 5317: Fix debug output from domain_client_validate().
- BUG 5338: Fix format string bug in rpcclient.
- Ensure that "wbinfo -a trusted\\user%password" works correctly
on a Samba DC with trusts.
- BUG 5336: Fix SetUsetrInfo(level 25) to update the pwdLastSet
attribute.
- BUG 5350: Fallback to anonymous sessions if not trust password
could be obtained on Samba DCs and member servers.
- BUG 5366: Fix password chat on Sun OpenSolaris (Nevada).
- Fix signing problem in the client with trans requests.
- Fix alignment bug hitting Solaris with "reset in zero vc" activated.
- Fix build with glibc 2.8.
- Enable winbind child processes to do something with signals, in
particular closing and reopening logs on SIGHUP.
- Documentation cleanup after r emerging docs from svn to git and
back-porting from the v3-2 branch.
- Add implementation of machine-authenticated connection to netlogon
pipe used when connecting to win2k and newer domain controllers.
- Fix trusted users on a DC that uses the old idmap syntax.
- Only have Winbind cache domain password policies that were
successfully retrieved.
- Fix alignment bug when marshalling printer data replies.
- Fix DeleteDriverDriverEx() checks to prevent removing in use files.
|
|
Closes PR pkg/39051.
|
|
Noted by Mihai Chelaru.
|
|
|
