| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
security update for firefox
Revisions pulled up:
- pkgsrc/www/firefox/Makefile-firefox.common 1.41
- pkgsrc/www/firefox/PLIST 1.24
- pkgsrc/www/firefox/distinfo 1.62
- pkgsrc/www/firefox/patches/patch-ap 1.7
- pkgsrc/www/firefox/patches/patch-ax 1.5
- pkgsrc/www/firefox-gtk1/PLIST 1.11
- pkgsrc/www/firefox-bin/Makefile 1.26
- pkgsrc/www/firefox-bin/distinfo 1.23
- pkgsrc/www/firefox2/Makefile-firefox.common 1.5
- pkgsrc/www/firefox2/PLIST 1.4
- pkgsrc/www/firefox2/distinfo 1.8
- pkgsrc/www/firefox2-bin/Makefile 1.5
- pkgsrc/www/firefox2-bin/distinfo 1.3
- pkgsrc/www/firefox2-gtk1/PLIST 1.3
Module Name: pkgsrc
Committed By: ghen
Date: Sat Feb 24 17:26:43 UTC 2007
Modified Files:
pkgsrc/www/firefox2: Makefile-firefox.common PLIST distinfo
pkgsrc/www/firefox2-bin: Makefile distinfo
pkgsrc/www/firefox2-gtk1: PLIST
Log Message:
Update firefox2, firefox2-bin and firefox2-gtk1 to 2.0.0.2.
Fixed in this version:
MFSA 2007-07 Embedded nulls in location.hostname confuse same-domain checks
MFSA 2007-06 Mozilla Network Security Services (NSS) SSLv2 buffer overflow
MFSA 2007-05 XSS and local file access by opening blocked popups
MFSA 2007-04 Spoofing using custom cursor and CSS3 hotspot
MFSA 2007-03 Information disclosure through cache collisions
MFSA 2007-02 Improvements to help protect against Cross-Site Scripting attacks
MFSA 2007-01 Crashes with evidence of memory corruption (rv:1.8.0.10/1.8.1.2)
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.2/releasenotes/
---
Module Name: pkgsrc
Committed By: ghen
Date: Sun Feb 25 00:43:24 UTC 2007
Modified Files:
pkgsrc/www/firefox: Makefile Makefile-firefox.common PLIST distinfo
pkgsrc/www/firefox-bin: Makefile distinfo
pkgsrc/www/firefox-gtk1: PLIST
pkgsrc/www/firefox/patches: patch-ap patch-ax
Removed Files:
pkgsrc/www/firefox/patches: patch-ed
Log Message:
Update firefox, firefox-bin and firefox-gtk1 to 1.5.0.10.
Fixed in this version:
Fixed in Firefox 1.5.0.10
MFSA 2007-07 Embedded nulls in location.hostname confuse same-domain checks
MFSA 2007-06 Mozilla Network Security Services (NSS) SSLv2 buffer overflow
MFSA 2007-05 XSS and local file access by opening blocked popups
MFSA 2007-04 Spoofing using custom cursor and CSS3 hotspot
MFSA 2007-03 Information disclosure through cache collisions
MFSA 2007-02 Improvements to help protect against Cross-Site Scripting attacks
MFSA 2007-01 Crashes with evidence of memory corruption (rv:1.8.0.10/1.8.1.2)
For more info, see http://www.mozilla.com/en-US/firefox/releases/1.5.0.10.html
|
|
|
|
add back SSL extension for PHP5
Revisions pulled up:
- pkgsrc/lang/php5/Makefile 1.48
- pkgsrc/lang/php5/Makefile.php 1.24
- pkgsrc/www/ap-php/Makefile 1.13
Module Name: pkgsrc
Committed By: jdolecek
Date: Sun Feb 25 20:05:11 UTC 2007
Modified Files:
pkgsrc/lang/php5: Makefile Makefile.php
Log Message:
put back openssl extension, mistakely commented out in PHP 5.2.1 upgrade
noted by Manuel Bouyer
---
Module Name: pkgsrc
Committed By: jdolecek
Date: Sun Feb 25 20:06:09 UTC 2007
Modified Files:
pkgsrc/www/ap-php: Makefile
Log Message:
bump revision for openssl omission fix in lang/php5 for PHP 5.2.1
noted by Manuel Bouyer
|
|
security update for php5
- pkgsrc/graphics/php-gd/Makefile 1.15
- pkgsrc/lang/php5/Makefile.common 1.23
- pkgsrc/lang/php5/Makefile.php 1.22
- pkgsrc/lang/php5/PLIST 1.14
- pkgsrc/lang/php5/distinfo 1.36
- pkgsrc/lang/php5/patches/patch-ac removed
- pkgsrc/lang/php5/patches/patch-al 1.3
Module Name: pkgsrc
Committed By: jdolecek
Date: Tue Feb 20 20:46:20 UTC 2007
Modified Files:
pkgsrc/graphics/php-gd: Makefile
pkgsrc/lang/php5: Makefile.common Makefile.php PLIST distinfo
Added Files:
pkgsrc/lang/php5/patches: patch-al
Removed Files:
pkgsrc/lang/php5/patches: patch-ac
Log Message:
Update PHP5 to 5.2.1. Includes several important security fixes and
large number of other fixes. Update for all users is strongly advised.
|
|
|
|
security update for php5
- pkgsrc/graphics/php-gd/Makefile 1.15
- pkgsrc/lang/php5/Makefile.common 1.23
- pkgsrc/lang/php5/Makefile.php 1.22
- pkgsrc/lang/php5/PLIST 1.14
- pkgsrc/lang/php5/distinfo 1.36
- pkgsrc/lang/php5/patches/patch-ac removed
- pkgsrc/lang/php5/patches/patch-al 1.3
Module Name: pkgsrc
Committed By: jdolecek
Date: Tue Feb 20 20:46:20 UTC 2007
Modified Files:
pkgsrc/graphics/php-gd: Makefile
pkgsrc/lang/php5: Makefile.common Makefile.php PLIST distinfo
Added Files:
pkgsrc/lang/php5/patches: patch-al
Removed Files:
pkgsrc/lang/php5/patches: patch-ac
Log Message:
Update PHP5 to 5.2.1. Includes several important security fixes and
large number of other fixes. Update for all users is strongly advised.
|
|
|
|
security update for spamassassin
- pkgsrc/mail/spamassassin/Makefile 1.78-1.79
- pkgsrc/mail/spamassassin/distinfo 1.43
Module Name: pkgsrc
Committed By: ghen
Date: Thu Feb 8 09:30:27 UTC 2007
Modified Files:
pkgsrc/mail/spamassassin: Makefile
Log Message:
Put rule file updates in ${VARBASE}/spamassassin instead of ${VARBASE}. Bump
PKGREVISION.
---
Module Name: pkgsrc
Committed By: heinz
Date: Thu Feb 15 21:43:43 UTC 2007
Modified Files:
pkgsrc/mail/spamassassin: Makefile distinfo
Log Message:
Updated to version 3.1.8.
Pkgsrc changes:
- some cleanup of the Makefile to shut up a few pkglint notes and warnings
(USE_TOOLS, SUBST_CLASSES).
Changes since version 3.1.7:
============================
3.1.8 is a major bug-fix release, including a potential DoS. The major
highlights are:
- bug 5318: fix for CVE-2007-0451: possible DoS due to incredibly
long URIs found in the message content.
- bug 5240: disable perl module usage in update channels unless
--allowplugins is specified
- bug 5288: files with names starting/ending in whitespace weren't usable
- bug 5056: remove Text::Wrap related code due to upstream issues
- bug 5145: update spamassassin and sa-learn to better deal with STDIN
- bug 5140 and 5179: improvements and bug fixes related to DomainKeys
and DKIM support
- several updates for Received header parsing
- several documentation updates and random taint-variable related issues
|
|
|
|
build fix for lopster
Revisions pulled up:
- pkgsrc/net/lopster/Makefile 1.21
- pkgsrc/net/lopster/distinfo 1.7
- pkgsrc/net/lopster/patches/patch-ad 1.4
Module Name: pkgsrc
Committed By: veego
Date: Sat Jan 6 18:20:28 UTC 2007
Modified Files:
pkgsrc/net/lopster: Makefile distinfo
Added Files:
pkgsrc/net/lopster/patches: patch-ad
Log Message:
Fix compile problem on current, based on an 2 year old patch from the
sourceforge cvs repository. Bump PKGREVISION.
|
|
|
|
build fix for rplay
Revisions pulled up:
- pkgsrc/audio/rplay/Makefile 1.56
- pkgsrc/audio/rplay/distinfo 1.11
- pkgsrc/audio/rplay/patches/patch-at 1.2
Module Name: pkgsrc
Committed By: veego
Date: Sat Jan 6 17:41:00 UTC 2007
Modified Files:
pkgsrc/audio/rplay: Makefile distinfo
pkgsrc/audio/rplay/patches: patch-at
Log Message:
Fix a compile problem on -current, maybe gcc4 related and bump the
PKGREVISION.
|
|
|
|
remove curl builtin.mk
Revisions pulled up:
- pkgsrc/www/curl/builtin.mk removed
Module Name: pkgsrc
Committed By: tron
Date: Tue Jan 30 13:53:16 UTC 2007
Removed Files:
pkgsrc/www/curl: builtin.mk
Log Message:
Remove "builtin.mk". It doesn't work on systems which provide a "libcurl"
but not "libidn".
This fixes PR pkg/35358.
|
|
|
|
bugfix update for lighttpd
Revisions pulled up:
- pkgsrc/www/lighttpd/Makefile 1.13
- pkgsrc/www/lighttpd/PLIST 1.5
- pkgsrc/www/lighttpd/distinfo 1.8
- pkgsrc/www/lighttpd/patches/patch-ab 1.2
- pkgsrc/www/lighttpd/patches/patch-ac 1.1
- pkgsrc/www/lighttpd/patches/patch-ad 1.1
- pkgsrc/www/lighttpd/patches/patch-ae 1.1
- pkgsrc/www/lighttpd/patches/patch-af 1.1
- pkgsrc/www/lighttpd/patches/patch-ag 1.1
- pkgsrc/www/lighttpd/patches/patch-ah 1.1
Module Name: pkgsrc
Committed By: joerg
Date: Mon Feb 19 21:31:38 UTC 2007
Modified Files:
pkgsrc/www/lighttpd: Makefile PLIST distinfo
pkgsrc/www/lighttpd/patches: patch-ab
Added Files:
pkgsrc/www/lighttpd/patches: patch-ac patch-ad patch-ae
patch-af patch-ag patch-ah
Log Message:
Update to lighttpd-1.4.13.
Changes in 1.4.13:
* added initgroups in spawn-fcgi (#871)
* added apr1 support htpasswd in mod-auth (#870)
* added lighty.stat() to mod_magnet
* fixed segfault in splitted CRLF CRLF sequences
(introduced in 1.4.12) (#876)
* fixed compilation of LOCK support in mod-webdav
* fixed fragments in request-URLs (#869)
* fixed pkg-config check for lua5.1 on debian
* fixed Content-Length = 0 on HEAD requests without
a known Content-Length (#119)
* fixed mkdir() forcing 0700 (#884)
* fixed writev() on FreeBSD 4.x and older (#875)
* removed warning about a 404-error-handler
returned 404
* backported and fixed the buildsystem changes for
webdav locks
* fixed plugin loading so we can finally load lua
extensions in mod_magnet scripts
* fixed large uploads if xattr is enabled
Changes in 1.4.12:
* added experimental LOCK support for webdav
* added Content-Range support for PUT in webdav
* added support for += on empty arrays in config-files
* added ssl.cipher-list and ssl.use-sslv2
* added $HTTP["querystring"] conditional
* added mod_magnet as long-term replacement for mod_cml
* added work-around for a Opera Bug with SSL + Chunked-Encoding
* changed --print-config to print to stdout instead of stderr
* changed no longer use 0600 for new files with webdav. umask is
honored. Make sure you have set a proper umask.
* fixed upload hangs with SSL
* fixed connection drops with SSL (aka bad retry)
* fixed path traversal with \ on cygwin
* fixed mem-leak in mod_flv_streaming
* fixed required trailing newline in configfiles (#142)
* fixed quoting the autoconf files (#466)
* fixed empty Host: + $HTTP["host"] handling (#458)
* fixed handling of If-Modified-Since if ETag is not set
* fixed default-shell if SHELL is not set (#441)
* fixed appending and assigning of env.* vars
* fixed empty FCGI_STDERR packets
* fixed conditional server.allow-http-11
* fixed handling of follow-symlink + lstat()
* fixed SIGHUP handling if max-workers is used
* fixed "Software caused connection abort" messages on FreeBSD
In addition fix a nasty problem in LDAP auth when using with buggy
commercial servers. Some threat an empty password as anonymous bind
and would only fail on the first query, if that requires privileges.
Patch will be included with 1.4.14.
|
|
|
|
remove NO_BIN_ON_FTP restriction from p5-perl-headers
Revisions pulled up:
- pkgsrc/devel/p5-perl-headers/Makefile 1.31
Module Name: pkgsrc
Committed By: bouyer
Date: Mon Feb 19 19:44:42 UTC 2007
Modified Files:
pkgsrc/devel/p5-perl-headers: Makefile
Log Message:
Remove NO_BIN_ON_FTP. The reason why this was marked as such is not valid
any more, and a lot of packages depends on this (including KDE), making the
binary package repository less usefull.
|
|
|
|
build fix for samba
Revisions pulled up:
- pkgsrc/net/samba/options.mk 1.19, 1.20
Module Name: pkgsrc
Committed By: taca
Date: Sun Feb 18 04:27:02 UTC 2007
Modified Files:
pkgsrc/net/samba: options.mk
Log Message:
Fix installing pam_winbind.so module.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 19 05:53:38 UTC 2007
Modified Files:
pkgsrc/net/samba: options.mk
Log Message:
Fix PLIST problem with samba-3.0.24 with "pam" option.
- Explictly specify PAM_INSTMODULEDIR with --with-pammodulesdir.
(Now Samba itself install pam modules.)
- Don't install pam modules in post-install process.
|
|
|
|
security update for unrar
- pkgsrc/archivers/unrar/Makefile 1.51-1.52
- pkgsrc/archivers/unrar/distinfo 1.31-1.32
Module Name: pkgsrc
Committed By: wiz
Date: Mon Jan 15 22:36:41 UTC 2007
Modified Files:
pkgsrc/archivers/unrar: Makefile distinfo
Log Message:
Update to 3.7.2. Changes look like better character encoding support,
but no ChangeLog exists, so who knows...
---
Module Name: pkgsrc
Committed By: wiz
Date: Mon Feb 5 23:03:50 UTC 2007
Modified Files:
pkgsrc/archivers/unrar: Makefile distinfo
Log Message:
Update to 3.7.3.
Changes: secret, as always.
From the diffs it looks like some big-endian fixes and other small changes.
|
|
security update for gd
- pkgsrc/graphics/gd/Makefile 1.71-1.72
- pkgsrc/graphics/gd/distinfo 1.24-1.25
- pkgsrc/graphics/gd/patches/patch-ac 1.4-1.5
Module Name: pkgsrc
Committed By: wiz
Date: Wed Feb 7 20:28:49 UTC 2007
Modified Files:
pkgsrc/graphics/gd: Makefile
Log Message:
Update HOMEPAGE.
---
Module Name: pkgsrc
Committed By: adam
Date: Fri Feb 16 20:37:52 UTC 2007
Modified Files:
pkgsrc/graphics/gd: Makefile distinfo
pkgsrc/graphics/gd/patches: patch-ac
Log Message:
Changes 2.0.34:
* 32-bit multiplication overflow vulnerabilities along with a number of similar
issues
* Memory allocation errors that were not checked
* Multiple issues in the GIF loader. Corrupt gif images would cause a segfault
or infinite loop
* Malformed or empty PNG image also may have caused segfaults
* gdImageFillToBorder segfaulted when the color was not opaque (alpha > 0)
* Antialiased lines drawn on an images edge caused a segfault
* gdImageFill segfaulted when used with patterns or invalid arguments
* gdImageFilledEllipse did not respect transparency
---
Module Name: pkgsrc
Committed By: adam
Date: Sat Feb 17 07:04:45 UTC 2007
Modified Files:
pkgsrc/graphics/gd: distinfo
pkgsrc/graphics/gd/patches: patch-ac
Log Message:
Patch patch-ac
|
|
security fix for mit-krb5
- pkgsrc/security/mit-krb5/Makefile 1.39-1.40
- pkgsrc/security/mit-krb5/distinfo 1.16
- pkgsrc/security/mit-krb5/patches/patch-at 1.1
Module Name: pkgsrc
Committed By: salo
Date: Wed Jan 17 23:43:47 UTC 2007
Modified Files:
pkgsrc/security/mit-krb5: Makefile distinfo
Added Files:
pkgsrc/security/mit-krb5/patches: patch-at
Log Message:
Security fix for CVE-2006-6143:
"An unauthenticated user may cause execution of arbitrary code in
kadmind, which can compromise the Kerberos key database and host
security. (kadmind usually runs as root.) Unsuccessful exploitation,
or even accidental replication of the required conditions by
non-malicious users, can result in kadmind crashing."
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2006-002-rpc.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6143
Patch from MIT.
---
Module Name: pkgsrc
Committed By: salo
Date: Thu Jan 18 17:28:24 UTC 2007
Modified Files:
pkgsrc/security/mit-krb5: Makefile
Log Message:
Fix building with Autoconf 2.60 and newer.
Addresses PR pkg/34252 by Matthias Petermann.
Also delint a bit.
|
|
|
|
security update for libsoup-devel
Revisions pulled up:
- pkgsrc/net/libsoup-devel/Makefile 1.25
- pkgsrc/net/libsoup-devel/distinfo 1.20
Module Name: pkgsrc
Committed By: wiz
Date: Sun Jan 14 16:15:48 UTC 2007
Modified Files:
pkgsrc/net/libsoup-devel: Makefile distinfo
Log Message:
Update to 2.2.99:
Changes in libsoup from 2.2.98 to 2.2.99:
* Fixed header parsing, including a crash in SoupServer with
certain malformed requests [391970].
* Fixed redirection to other hosts with SoupSessionAsync.
[382251]
* Fixed a small memory leak pointed out by Chris Austin.
|
|
|
|
security update for clamav
Revisions pulled up:
- pkgsrc/mail/clamav/Makefile 1.67
- pkgsrc/mail/clamav/PLIST 1.18
- pkgsrc/mail/clamav/distinfo 1.41
- pkgsrc/mail/clamav/patches/patch-aa removed
- pkgsrc/mail/clamav/patches/patch-ab removed
- pkgsrc/mail/clamav/patches/patch-ad 1.11
- pkgsrc/mail/clamav/patches/patch-af 1.3
- pkgsrc/mail/clamav/patches/patch-ah 1.8
Module Name: pkgsrc
Committed By: xtraeme
Date: Fri Feb 16 14:40:41 UTC 2007
Modified Files:
pkgsrc/mail/clamav: Makefile PLIST distinfo
pkgsrc/mail/clamav/patches: patch-ad patch-af patch-ah
Removed Files:
pkgsrc/mail/clamav/patches: patch-aa patch-ab
Log Message:
Update to 0.90:
The 0.9x series introduces lots of improvements in terms of detection
rate and performance, like support for many new packers and decryptors,
RAR3 and SIS archives, and a new phishing signatures format that proves
to be very effective.
|
|
remove obsolete samba package option
Revisions pulled up:
- pkgsrc/net/samba/options.mk 1.18
Module Name: pkgsrc
Committed By: tron
Date: Fri Feb 16 16:30:28 UTC 2007
Modified Files:
pkgsrc/net/samba: options.mk
Log Message:
Remove "ldap-compat" option because it is now longer supported by
the latest version of Samba.
|
|
remove obsolete samba package options
Revisions pulled up:
- pkgsrc/net/samba/options.mk 1.17
Module Name: pkgsrc
Committed By: ghen
Date: Fri Feb 16 16:23:13 UTC 2007
Modified Files:
pkgsrc/net/samba: options.mk
Log Message:
Remove the "mysql", "pgsql" and "xml" options, as they were removed from
the Samba distribution since version 3.0.23. "mysql" and "pgsql" passdb
backends are now maintained via http://pdbsql.sourceforge.net/ and will
have to be packaged separately.
|
|
|
|
security update for samba
Revisions pulled up:
- pkgsrc/net/samba/Makefile 1.169
- pkgsrc/net/samba/PLIST 1.35
- pkgsrc/net/samba/distinfo 1.52
- pkgsrc/net/samba/patches/patch-ab 1.26
- pkgsrc/net/samba/patches/patch-ad removed
- pkgsrc/net/samba/patches/patch-af 1.8
- pkgsrc/net/samba/patches/patch-ag 1.6
- pkgsrc/net/samba/patches/patch-ai 1.4
- pkgsrc/net/samba/patches/patch-al 1.5
- pkgsrc/net/samba/patches/patch-at 1.6
- pkgsrc/net/samba/patches/patch-au 1.6
- pkgsrc/net/samba/patches/patch-aw 1.2
- pkgsrc/net/samba/patches/patch-ay 1.2
- pkgsrc/net/samba/patches/patch-ba 1.4
- pkgsrc/net/samba/patches/patch-bb 1.2
- pkgsrc/net/samba/patches/patch-bg 1.2
- pkgsrc/net/samba/patches/patch-bi 1.4
- pkgsrc/net/samba/patches/patch-bl removed
- pkgsrc/net/samba/patches/patch-bm 1.2
- pkgsrc/net/samba/patches/patch-bn 1.2
- pkgsrc/net/samba/patches/patch-bu 1.4
- pkgsrc/net/samba/patches/patch-bv 1.2
- pkgsrc/net/samba/patches/patch-cd removed
Module Name: pkgsrc
Committed By: tron
Date: Sun Feb 11 18:39:04 UTC 2007
Modified Files:
pkgsrc/net/samba: Makefile PLIST distinfo
pkgsrc/net/samba/patches: patch-ab patch-af patch-ag patch-ai patch-al
patch-at patch-au patch-aw patch-ay patch-ba patch-bb patch-bg
patch-bi patch-bm patch-bn patch-bu patch-bv
Removed Files:
pkgsrc/net/samba/patches: patch-ad patch-bl patch-cd
Log Message:
Update "samba" package to version 3.0.24.
Major changes since version 3.0.22:
- CVE-2007-0452 (Potential Denial of Service bug in smbd)
- CVE-2007-0453 (Buffer overrun in NSS host lookup Winbind
NSS library on Solaris)
- CVE-2007-0454 (Format string bug in afsacl.so VFS plugin)
- Stability fixes for winbindd
- Portability fixes on FreeBSD and Solaris operating systems.
- Authentication failures in pam_winbind when the AD domain
policy is set to not expire passwords.
- Authorization failures when using smb.conf options such
as "valid users" with the smbpasswd passdb backend.
- Ambiguity with unqualified names in smb.conf parameters
such as "force user" and "valid users".
- Errors in 'net ads join' caused by bad IP address in the list
of domain controllers.
- SMB signing errors in the client and server code.
- Domain join failures when using smbpasswd on a Samba PDC.
- Failure to strip the domain name from groups when 'winbind
use default domain =3D yes'
- Failure in pam_winbind to correctly parse arguments.
- Bad token creation of local users on member servers not
running winbindd.
- Failure to add users or groups to ACLs using the Windows
object picker.
- Failure in file serving code when 'kernel oplocks =3D yes'.
- New "createupn" option to "net ads join"
- Rewritten Kerberos keytab generation when 'use kerberos
keytab =3D yes'
- Improved 'make test'
- New offline mode in winbindd.
- New Kerberos support for pam_winbind.so.
- New handling of unmapped users and groups.
- New non-root share management tools.
- Improved support for local and BUILTIN groups.
- Winbind IDMAP integration with RFC2307 schema objects supported
by Windows 2003 R2.
- Rewritten 'net ads join' to mimic Windows XP without requiring
administrative rights to join a domain.
|
|
|
|
build fix for octave-forge
Revisions pulled up:
- pkgsrc/math/octave-forge/Makefile 1.24
- pkgsrc/math/octave-forge/distinfo 1.13
- pkgsrc/math/octave-forge/patches/patch-ag 1.6
Module Name: pkgsrc
Committed By: obache
Date: Tue Jan 30 02:45:33 UTC 2007
Modified Files:
pkgsrc/math/octave-forge: Makefile distinfo
pkgsrc/math/octave-forge/patches: patch-ag
Log Message:
Disable auto detecting of ImageMagick.
Pointed out in PR 35492.
|
|
|
|
security update for bugzilla
Revisions pulled up:
- pkgsrc/devel/bugzilla/Makefile 1.23 (via patch)
- pkgsrc/devel/bugzilla/PLIST 1.12
- pkgsrc/devel/bugzilla/distinfo 1.13
Module Name: pkgsrc
Committed By: adrianp
Date: Sat Feb 3 17:21:02 UTC 2007
Modified Files:
pkgsrc/devel/bugzilla: Makefile PLIST distinfo
Log Message:
Update to 2.22.2
+ Make Bugzilla compatible with Template Toolkit 2.15 (bug 357374)
+ Make Bugzilla compatible with versions of MySQL higher than 5.0.25
(bug 321645)
+ Sanity Check can now only be run by people with the "admin" privilege.
(bug 91761)
+ Security [XSS] fix
https://bugzilla.mozilla.org/show_bug.cgi?id=367674
|
|
|
|
security update for wireshark
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile 1.6
- pkgsrc/net/wireshark/PLIST 1.5
- pkgsrc/net/wireshark/distinfo 1.5, 1.6
- pkgsrc/net/wireshark/files/capture_airpcap_16.xpm removed
- pkgsrc/net/wireshark/files/capture_capture_16.xpm removed
- pkgsrc/net/wireshark/files/capture_details_16.xpm removed
- pkgsrc/net/wireshark/files/capture_ethernet_16.xpm removed
- pkgsrc/net/wireshark/files/capture_prepare_16.xpm removed
- pkgsrc/net/wireshark/patches/patch-aa 1.6
Module Name: pkgsrc
Committed By: tron
Date: Sat Feb 3 18:06:37 UTC 2007
Modified Files:
pkgsrc/net/wireshark: Makefile PLIST distinfo
Removed Files:
pkgsrc/net/wireshark/files: capture_airpcap_16.xpm
capture_capture_16.xpm capture_details_16.xpm
capture_ethernet_16.xpm capture_prepare_16.xpm
pkgsrc/net/wireshark/patches: patch-aa
Log Message:
Update "wireshark" package to version 0.99.5.
Changes since version 0.99.4:
- Bug Fixes
o The TCP dissector could hang or crash while reassembling HTTP
packets.
Versions affected: 0.99.2 to 0.99.4
CVE-2007-0459
o The HTTP dissector could crash.
Versions affected: 0.99.3 to 0.99.4
CVE-2007-0458
o On some systems, the IEEE 802.11 dissector could crash.
Versions affected: 0.10.14 to 0.99.4
CVE-2007-0457
o On some systems, the LLT dissector could crash.
Versions affected: 0.99.3 to 0.99.4
CVE-2007-0456
The following bugs have been fixed:
o The end of HTTP chunked encoding wasn't being displayed.
o The Follow TCP Stream window could omit characters.
o Opening a flow graph could crash Wireshark.
o Follow TCP Stream would sometimes get the direction wrong.
o The foreground text in the coloring rules editor was always
black.
o The CSV export format was incorrect.
o On some Windows systems Wireshark could take a long time to
start up.
o Malformed UDLD packets could cause an exception.
o The ISUP statistics report could overflow a buffer and crash
when displaying IPv6 addresses.
- New and Updated Features
o Decryption support for WPA/WPA2 and SNMPv3 has been added. The
TDS / MS SQL dissector now de-obfuscates passwords.
o 64-bit file handling has been improved.
o The Find function now selects the corresponding packet detail
item. Find functionality has been added to the TCP and SSL
stream dialogs.
o Main window keyboard navigation has been improved.
o ASN.1 BER-encoded files can now be dissected according to a
user-specified syntax.
- New Protocol Support
DMP, Homeplug (INT51X1), NBD, OMAPI, PKCS#12, RGMP, Roofnet, STUN
v2
- Updated Protocol Support
2dparityfec, ACN, AIM, AMR, ANSI 637, ANSI A, ANSI MAP, ARP, ASN.1
BER, ASN.1 PER, BACapp, BPDU, CAMEL, DCERPC (DCERPC, EFS,
EVENTLOG, NSPI, PN-IO, WINREG), DCOM CBA, DCP, DHCP, DHCPv6, DMP,
DNS, E.164, EAP, EPL, ETSI DCP, FCP, GIOP, GSM A, H.245, H.248,
HPSW, HTTP, ICMP, ICMPv6, IEEE 802.11, IMAP, INAP, IPMI, IPsec,
IRC, ISAKMP, iSCSI, ISIS LSP, IuUP, K12, Kerberos, LDAP, LLDP,
MEGACO, MGCP, MIME Multipart, MMS, MMSE, MSRP, MySQL, NetFlow,
NFS, NTLMSSP, NTP, OSPF, PN-PTCP, PPPoE, Q.931, Radiotap, RADIUS,
RPC, RSVP, RTCP, S4406, SCCP, SCSI, SDP, SES, sFlow, SIGCOMP, SIP,
SIR, Skinny, SMB (SMB, NETLOGON), SMTP, SNMP, SPNEGO, SSL, T.38,
TCP, TDS, text/media, TIPC, UDLD, UDP Lite, UDP, UMA, UMTS FP,
USB, VNC, WBXML, WLCCP, WSP, X.411, X.420, XML, XOT, YMSG
- New and Updated Capture File Support
Catapult DCT2000, Netttl, Windows Sniffer / NetXray
---
Module Name: pkgsrc
Committed By: tron
Date: Wed Feb 7 15:18:23 UTC 2007
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Added Files:
pkgsrc/net/wireshark/patches: patch-aa
Log Message:
Stop the bundled LALR(1) parser generator "lemon" for writing bogus
line numbers into generated ".c" files. The GCC 3.3.3 distributed with
NetBSD-i386 3.3.1 can now build this package without problems.
|
|
|
|
security fix for rubygems
Revisions pulled up:
- pkgsrc/misc/rubygems/Makefile 1.6
- pkgsrc/misc/rubygems/distinfo 1.6, 1.7
- pkgsrc/misc/rubygems/patches/patch-ab 1.1, 1.2
Module Name: pkgsrc
Committed By: taca
Date: Sun Jan 28 16:08:55 UTC 2007
Modified Files:
pkgsrc/misc/rubygems: Makefile distinfo
Added Files:
pkgsrc/misc/rubygems/patches: patch-ab
Log Message:
Add a patch to fix security problem of RubyGems 0.9.0 and prior.
(http://www.frsirt.com/english/advisories/2007/0295)
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: salo
Date: Sat Feb 3 20:42:33 UTC 2007
Modified Files:
pkgsrc/misc/rubygems: distinfo
pkgsrc/misc/rubygems/patches: patch-ab
Log Message:
Add missing rcsid.
|
|
|
|
bugfix for ruby-tk
Revisions pulled up:
- pkgsrc/x11/ruby-tk/Makefile 1.27
- pkgsrc/x11/ruby-tk/PLIST 1.8
Module Name: pkgsrc
Committed By: taca
Date: Sun Jan 28 05:17:34 UTC 2007
Modified Files:
pkgsrc/x11/ruby-tk: Makefile PLIST
Log Message:
Make sure to build and install tkutil extention library.
PR pkg/35470 should be fixed.
Bump PKGREVISION.
|
|
|
|
security update for drupal
Revisions pulled up:
- pkgsrc/www/drupal/Makefile 1.18
- pkgsrc/www/drupal/distinfo 1.14
Module Name: pkgsrc
Committed By: adrianp
Date: Wed Jan 31 21:54:19 UTC 2007
Modified Files:
pkgsrc/www/drupal: Makefile distinfo
Log Message:
Drupal 4.7.6, 2007-01-29
------------------------
- fixed security issue (code execution), see SA-2007-005
|
|
|
|
security update for bind9
- pkgsrc/net/bind9/Makefile 1.85-1.86
- pkgsrc/net/bind9/distinfo 1.30
- pkgsrc/net/bind9/patches/patch-ao 1.2
- pkgsrc/net/bind9/patches/patch-ap removed
- pkgsrc/net/bind9/patches/patch-aq removed
Module Name: pkgsrc
Committed By: adrianp
Date: Sun Jan 28 01:31:52 UTC 2007
Modified Files:
pkgsrc/net/bind9: Makefile distinfo
pkgsrc/net/bind9/patches: patch-ao
Removed Files:
pkgsrc/net/bind9/patches: patch-ap patch-aq
Log Message:
Update to 9.3.4
Lots of changes, see http://www.isc.org/sw/bind/view/?release=9.3.4#RELEASE
for all the details:
In brief:
2126. [security] Serialise validation of type ANY responses.
2124. [security] It was possible to dereference a freed fetch
context.
2089. [security] Raise the minimum safe OpenSSL versions to
OpenSSL 0.9.7l and OpenSSL 0.9.8d. Versions
prior to these have known security flaws which
are (potentially) exploitable in named.
2088. [security] Change the default RSA exponent from 3 to 65537.
2066. [security] Handle SIG queries gracefully.
1941. [bug] ncache_adderesult() should set eresult even if no
rdataset is passed to it.
---
Module Name: pkgsrc
Committed By: tron
Date: Tue Jan 30 15:04:34 UTC 2007
Modified Files:
pkgsrc/net/bind9: Makefile
Log Message:
Fix permission problems:
- "share/doc/bind9" shouldn't be group-writable.
- "share/doc/bind9/arm/Bv9ARM.pdf" shouldn't be executable.
Bump package revision because of these fixes.
|
|
|
|
security update for squid
- pkgsrc/www/squid/Makefile 1.187-1.88
- pkgsrc/www/squid/distinfo 1.125-1.126
- pkgsrc/www/squid/patches/patch-bd removed
Module Name: pkgsrc
Committed By: taca
Date: Sun Jan 14 04:12:12 UTC 2007
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Removed Files:
pkgsrc/www/squid/patches: patch-bd
Log Message:
Update squid package to 2.6.7 (2.6.STABLE7).
o arp-acl is now supported on NetBSD contributed by Jaromir Dolecek <jdolecek@>.
Changes to squid-2.6.STABLE7 (Jan 13 2007)
- Windows port: Fix intermittent build error using Visual Studio
- Add missing tproxy info from the dump of http port configuration
- Bug #1853: Support for ARP ACL on NetBSD
- clientNatLookup(): fix wrong function name in debug messages
- Convert ncsa_auth man page from DOS to Unix text format.
- Bug #1858: digest_ldap_auth had some remains of old hash format
- Correct the select_loops counter when using select(). Was counted twice
- Clarify the http_port vhost option a bit
- Fix cache-control: max-stale without value or bad value
- Bug #1857: Segmentation fault on certain types of ftp:// requests
- Bug #1848: external_acl crashes with an infinite loop under high load
- Bug #1792: max_user_ip not working with NTLM authentication
- Bug #1865: deny_info redirection with authentication related acls
- Small example on how to use the squid_session helper
- Bug #1863: cache_peer monitorurl, monitorsize and monitorinterval not working properly
- Clarify the transparent http_port option a bit more
- Bug #1828: squid.conf docutemtation error for proxy_auth digest
- Bug #1867: squid.pid isn't removed on shutdown
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jan 28 05:39:24 UTC 2007
Modified Files:
pkgsrc/www/squid: Makefile distinfo
Log Message:
Update squid to 2.6.9 (2.6.STABLE9). I deleted DIST_SUBDIR for now.
Changes to squid-2.6.STABLE9 (Jan 24 2007)
- Bug #1878: If-Modified-Since broken in 2.6.STABLE8
- Bug #1877 diskd bug in storeDiskdIOCallback()
Changes to squid-2.6.STABLE8 (Jan 21 2007)
- Bug #1873: authenticateNTLMFixErrorHeader: state 4.
- Document the https_port vhost option, useful in combination with
a wildcard certificate
- Document the existence of connection pinning / forwarding of NTLM
auth and a few other features overlooked in the release notes.
- Spelling correction of the ssl cache_peer option
- Add back the optional "accel" http_port option. Makes accelerator
mode configurations easier to read.
- Bug #1872: Date parsing error causing objects to get unexpectedly
cached.
- Cleanup to have the access.log tags autogenerated from enums.h
- Bug #1783: STALE: Entry's timestamp greater than check time. Clock
going backwards?
- Don't update object timestamps on a failed revalidation.
- Fix how ftp://user@host URLs is rendered when Squid is built with
leak checking enabled
|
|
security fix for mplayer, gmplayer, mencoder
(I forgot to commit multimedia/mplayer-share/patches/patch-* the first time)
- pkgsrc/multimedia/gmplayer/Makefile 1.58
- pkgsrc/multimedia/gmplayer/distinfo 1.44
- pkgsrc/multimedia/mencoder/Makefile 1.31
- pkgsrc/multimedia/mplayer/Makefile 1.38
- pkgsrc/multimedia/mplayer-share/distinfo 1.36
- pkgsrc/multimedia/mplayer-share/patches/patch-ba 1.5
- pkgsrc/multimedia/mplayer-share/patches/patch-bb 1.5
- pkgsrc/multimedia/mplayer-share/patches/patch-bc 1.3
Module Name: pkgsrc
Committed By: drochner
Date: Tue Jan 9 14:49:34 UTC 2007
Modified Files:
pkgsrc/multimedia/gmplayer: Makefile distinfo
pkgsrc/multimedia/mencoder: Makefile
pkgsrc/multimedia/mplayer: Makefile
pkgsrc/multimedia/mplayer-share: distinfo
Added Files:
pkgsrc/multimedia/mplayer-share/patches: patch-ba patch-bb patch-bc
Log Message:
add limit check to real parser (identical to CVE-2006-6172)
from mplayer svn
bump PKGREVISIONs
|
|
security fix for koffice (I forgot to "cvs add" patch-ac the first time)
- pkgsrc/misc/koffice/Makefile 1.88-1.89
- pkgsrc/misc/koffice/distinfo 1.37-1.38
- pkgsrc/misc/koffice/patches/patch-ac 1.10
Module Name: pkgsrc
Committed By: markd
Date: Sun Jan 14 11:31:44 UTC 2007
Modified Files:
pkgsrc/misc/koffice: Makefile distinfo
Added Files:
pkgsrc/misc/koffice/patches: patch-ac
Log Message:
Fix path in a #include in kdchart_export.h so that it works when installed.
From Gary Duzan in private email. Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: markd
Date: Wed Jan 17 10:35:40 UTC 2007
Modified Files:
pkgsrc/misc/koffice: Makefile distinfo
Log Message:
Fix for kword/xpdf denial of service vulnerability from
http://www.kde.org/info/security/advisory-20070115-1.txt.
Bump PKGREVISION.
|
