| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
firefox3: security update
Revisions pulled up:
- www/firefox3/Makefile 1.26
- www/firefox3/distinfo 1.18
---
Module Name: pkgsrc
Committed By: tnn
Date: Sat Mar 28 16:51:45 UTC 2009
Modified Files:
pkgsrc/www/firefox3: Makefile distinfo
Log Message:
Update to firefox3-3.0.8.
Security update for MFSA2009-12 and MFSA2009-13.
|
|
|
|
weechat: security update
Revisions pulled up:
- chat/weechat/Makefile 1.21
- chat/weechat/distinfo 1.14
---
Module Name: pkgsrc
Committed By: tonio
Date: Sun Mar 22 10:32:41 UTC 2009
Modified Files:
pkgsrc/chat/weechat: Makefile distinfo
Log Message:
Update chat/weechat to 0.2.6.1
This version fixes a major bug: crash with some special chars in IRC
messages.
|
|
|
|
ejabberd: security update
Revisions pulled up:
chat/ejabberd/Makefile 1.8-1.9
chat/ejabberd/PLIST 1.5
chat/ejabberd/distinfo 1.6-1.7
chat/ejabberd/patches/patch-aa 1.4
chat/ejabberd/patches/patch-ac 1.4
chat/ejabberd/patches/patch-ad 1.3
chat/ejabberd/patches/patch-ah 1.2
chat/ejabberd/patches/patch-ai 1.2
---
Module Name: pkgsrc
Committed By: joerg
Date: Mon Feb 9 23:05:02 UTC 2009
Modified Files:
pkgsrc/chat/ejabberd: Makefile distinfo
pkgsrc/chat/ejabberd/patches: patch-aa
Log Message:
Don't create /var/spool/... at install time, the scripts will take care
of it. Mark as user-destdir after that.
---
Module Name: pkgsrc
Committed By: martti
Date: Sun Mar 22 10:39:44 UTC 2009
Modified Files:
pkgsrc/chat/ejabberd: Makefile PLIST distinfo
pkgsrc/chat/ejabberd/patches: patch-ac patch-ad patch-ah patch-ai
Log Message:
Updated chat/ejabberd to 2.0.4
This version is a maintenance release containing 20 bugfixes and improvements.
http://secunia.com/advisories/34340/
|
|
cheese: bug fix
Revisions pulled up:
- graphics/cheese/Makefile 1.11 via patch
- graphics/cheese/distinfo 1.9
- graphics/cheese/patches/patch-ab 1.6
---
Module Name: pkgsrc
Committed By: jmorse
Date: Fri Feb 6 17:01:49 UTC 2009
Modified Files:
pkgsrc/doc: CHANGES-2009
pkgsrc/graphics/cheese: distinfo
pkgsrc/graphics/cheese/patches: patch-ab
Log Message:
Updated graphics/cheese to 2.24.3nb1, fixes detection of webcams through hal.
---
Module Name: pkgsrc
Committed By: jmorse
Date: Fri Feb 6 17:46:02 UTC 2009
Modified Files:
pkgsrc/graphics/cheese: Makefile
Log Message:
Bump cheese PKGREVISION
|
|
|
|
php5: security update
Revisions pulled up:
- lang/php5/MESSAGE.suhosin 1.1 via patch
- lang/php5/Makefile 1.71 via patch
- lang/php5/Makefile.common 1.35
- lang/php5/Makefile.php 1.33-1.34
- lang/php5/PLIST 1.21
- lang/php5/distinfo 1.61-1.62
- lang/php5/patches/patch-an patch
- lang/php5/patches/patch-ar patch
- lang/php5/patches/patch-as delete
---
Module Name: pkgsrc
Committed By: adrianp
Date: Mon Mar 2 22:52:17 UTC 2009
Modified Files:
pkgsrc/lang/php5: Makefile Makefile.common Makefile.php PLIST distinfo
Removed Files:
pkgsrc/lang/php5/patches: patch-as
Log Message:
The PHP development team would like to announce the immediate availability of PHP 5.2.9. This release focuses on improving the stability of the PHP 5.2.x branch with over 50 bug fixes, several of which are security related. All users of PHP are encouraged to upgrade to this release.
Security Enhancements and Fixes in PHP 5.2.9:
* Fixed security issue in imagerotate(), background colour isn't validated correctly with a non truecolour image. Reported by Hamid Ebadi, APA Laboratory (Fixes CVE-2008-5498). (Scott)
* Fixed a crash on extract in zip when files or directories entry names contain a relative path. (Pierre)
* Fixed explode() behavior with empty string to respect negative limit. (Shire)
* Fixed a segfault when malformed string is passed to json_decode(). (Scott)
Key enhancements in PHP 5.2.9 include:
* Added optional sorting type flag parameter to array_unique(). Default is SORT_REGULAR. (Andrei)
* Fixed bug #45996 (libxml2 2.7 causes breakage with character data in xml_parse()). (Rob)
* A number of fixes in the mbstring extension (Moriyoshi)
* Fixed bug #44336 (Improve pcre UTF-8 string matching performance). (frode at coretrek dot com, Nuno)
* Fixed bug #46699 (xml_parse crash when parser is namespace aware). (Rob)
* Fixed bug #46748 (Segfault when an SSL error has more than one error). (Scott)
* Fixed bug #46889 (Memory leak in strtotime()). (Derick)
* Fixed bug #47049 (SoapClient::__soapCall causes a segmentation fault). (Dmitry)
* Fixed bug #47165 (Possible memory corruption when passing return value by reference). (Dmitry)
* Fixed bug #47282 (FILTER_VALIDATE_EMAIL is marking valid email addresses as invalid). (Ilia)
* Fixed bug #47422 (modulus operator returns incorrect results on 64 bit linux). (Matt)
* Over 50 bug fixes.
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu Mar 5 23:22:24 UTC 2009
Modified Files:
pkgsrc/lang/php5: Makefile.php distinfo
Log Message:
Add back suhosin patch as a new one for 5.2.9 is out
|
|
|
|
curl: build fix
Revisions pulled up:
- www/curl/Makefile patch
- www/curl/distinfo patch
- www/curl/patches/patch-ab patch
- www/curl/patches/patch-ac patch
- www/curl/patches/patch-ad patch
- www/curl/patches/patch-ae patch
- www/curl/patches/patch-af patch
---
The security patch for CVE-2009-0037 has changed on the master site which
changed the checksum and size of "curl-7.18.1-CVE-2009-0037.patch".
Update to the latest version and integrate it directly to avoid further
build breaks.
|
|
|
|
firefox3: update package
revisions pulled up:
pkgsrc/www/firefox3/Makefile 1.24
pkgsrc/www/firefox3/distinfo 1.17
Module Name: pkgsrc
Committed By: tron
Date: Thu Mar 5 15:44:02 UTC 2009
Modified Files:
pkgsrc/www/firefox3: Makefile distinfo
Log Message:
Update "firefox" package to version 3.0.7. Changes since version 3.0.6:
- Fixed several security issues.
- Fixed several stability issues.
- Official releases for the Estonian, Kannada and Telugu languages are
now available.
- Items in the "File" menu show as inactive after using the "Print" item
from that menu - switching to a new tab restores them (bug 425844).
This issue has been fixed.
- For some users, cookies would appear to go ???missing??? after a few days
(bug 444600).
- Mac users of the Flashblock add-on, experienced an issue where sound
from the Flash plug-in would continue to play for a short time after
closing a tab or window (bug 474022).
- Fixed several issues related to accessibility features.
|
|
|
|
curl: fix for security vulnerability
revisions pulled up:
pkgsrc/www/curl/Makefile patch provided
pkgsrc/www/curl/distinfo patch provided
http://curl.haxx.se/docs/adv_20090303.html
|
|
|
|
ns-flash: security update
Revisions pulled up:
- multimedia/ns-flash/Makefile 1.32
- multimedia/ns-flash/distinfo 1.18
---
Module Name: pkgsrc
Committed By: tnn
Date: Fri Mar 6 19:10:52 UTC 2009
Modified Files:
pkgsrc/multimedia/ns-flash: Makefile distinfo
Log Message:
distfile changed on master site, so welcome to ns-flash-9.0.159.
Changes unknown but this is probably an update for CVE-2009-0520.
|
|
|
|
hal: bug fixes
Revisions pulled up:
- sysutils/hal/Makefile 1.31-1.38
- sysutils/hal/PLIST 1.4
- sysutils/hal/distinfo 1.12
- sysutils/hal/files/hald-netbsd/devinfo_optical.c 1.4
- sysutils/hal/files/hald-netbsd/envsys.c 1.5
- sysutils/hal/patches/patch-aq 1.1
---
Module Name: pkgsrc
Committed By: jmcneill
Date: Sun Jan 18 13:53:33 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile
pkgsrc/sysutils/hal/files/hald-netbsd: devinfo_optical.c
Log Message:
Optical media handling needs block.storage_device too; add this to
improve KDE4 compatibility. Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: sketch
Date: Fri Jan 23 11:13:38 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile distinfo
Added Files:
pkgsrc/sysutils/hal/patches: patch-aq
Log Message:
Couple of hacks to get Sun Studio compile working.
---
Module Name: pkgsrc
Committed By: tron
Date: Sun Jan 25 16:20:37 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile PLIST
Log Message:
Fix (de-)installation if "PKG_SYSCONFBASE" is set. Bump package revision
because of this package list change.
Reviewed by Jared McNeill.
---
Module Name: pkgsrc
Committed By: ahoka
Date: Sat Feb 28 14:00:23 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile
Added Files:
pkgsrc/sysutils/hal: INSTALL
Log Message:
Create /media automatically, so hald mount actually works
without manual labour. Bump revision.
---
Module Name: pkgsrc
Committed By: ahoka
Date: Sat Feb 28 14:54:23 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile
Removed Files:
pkgsrc/sysutils/hal: INSTALL
Log Message:
Use MAKE_DIRS and OWN_DIRS instead of INSTALL as suggested by Joerg.
---
Module Name: pkgsrc
Committed By: ahoka
Date: Sat Feb 28 15:54:29 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile
Log Message:
The OWN_DIRS shouldnt be there.
Thanks goes again to Joerg.
---
Module Name: pkgsrc
Committed By: jmcneill
Date: Sun Mar 1 18:22:31 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile
pkgsrc/sysutils/hal/files/hald-netbsd: envsys.c
Log Message:
Plug a memory leak in envsys_timeout; the caller of prop_dictionary_all_keys
is responsible for freeing allocated memory. Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: tron
Date: Mon Mar 2 11:36:33 UTC 2009
Modified Files:
pkgsrc/sysutils/hal: Makefile
Log Message:
Actually substitute "PKG_SYSCONFBASE" in the package list. Bump package
revisions as this affects the binary package.
|
|
|
|
libsndfile: security patch
Add patch to fix the vulnerability reported in CVE-2009-0186.
|
|
samba: bug fix
Revisions pulled up:
- net/samba/Makefile 1.188
- net/samba/distinfo 1.66
- net/samba/patches/patch-at 1.11
- net/samba/patches/patch-au 1.10
---
Module Name: pkgsrc
Committed By: sborrill
Date: Tue Mar 3 17:50:49 UTC 2009
Modified Files:
pkgsrc/net/samba: Makefile distinfo
pkgsrc/net/samba/patches: patch-at patch-au
Log Message:
Rework detection of getifaddrs() code so that it precedes the AIX method as
AIX method was being chosen in preference (on NetBSD 5.0 at least). This
broke net and rpcclient, etc. as they failed to enumerate interfaces
correctly.
|
|
|
|
optipng: security patch
Revisions pulled up:
- graphics/optipng/Makefile 1.17
- graphics/optipng/distinfo 1.13
- graphics/optipng/patches/patch-ab 1.5
- graphics/optipng/patches/patch-ad 1.3
- graphics/optipng/patches/patch-ae 1.1
---
Module Name: pkgsrc
Committed By: kefren
Date: Mon Mar 2 06:20:34 UTC 2009
Modified Files:
pkgsrc/graphics/optipng: Makefile distinfo
Added Files:
pkgsrc/graphics/optipng/patches: patch-ab patch-ad patch-ae
Log Message:
Add patches from upstream in order to update to 0.6.2.1
Changes:
* Fix SA34035: Use after free error that can be used to execute arbitrary
code via a specially crafted GIF image
|
|
|
|
gnome-power-manager: bug fix update
Revisions pulled up;
- sysutils/gnome-power-manager/Makefile 1.3-1.5
- sysutils/gnome-power-manager/distinfo 1.2-1.3
---
Module Name: pkgsrc
Committed By: drochner
Date: Tue Jan 6 18:44:03 UTC 2009
Modified Files:
pkgsrc/sysutils/gnome-power-manager: Makefile
Log Message:
avoid pichink up docbook2man on build
---
Module Name: pkgsrc
Committed By: wiz
Date: Sat Jan 17 12:53:26 UTC 2009
Modified Files:
pkgsrc/sysutils/gnome-power-manager: Makefile distinfo
Log Message:
Update to 2.24.3:
==============
Version 2.24.3
==============
- Fixed #562836, GPM OSD does not popup on machines that support keys in HW but not in xrandr (Mario Limonciello)
- Fixed #562900, gnome power manager keeps using xrandr backend after failed calls (Mario Limonciello)
- Reset the event time after we resume so the duplicate key detection code works correctly (Adel Gadllah)
Translations:
- Updated et: Ivar Smolin
---
Module Name: pkgsrc
Committed By: wiz
Date: Tue Feb 24 15:14:01 UTC 2009
Modified Files:
pkgsrc/sysutils/gnome-power-manager: Makefile distinfo
Log Message:
Update to 2.24.4, convert to user-destdir.
==============
Version 2.24.4
==============
- Fixed #562576, Battery profile is not saved correctly (Stephen Gildea and Joe)
- Fixed #566115, Fails to build on sparc (Josselin Mouette)
- Fixed #569100, When brightness is to 0, pressing one more brightness causes hang (Fortunato Ventre)
- Fixed #566095, Don't step through each brightness state when we fade modes (Richard Hughes)
|
|
|
|
privoxy: update for security fix
revisions pulled up:
pkgsrc/www/privoxy/Makefile 1.35,1.36
pkgsrc/www/privoxy/files/privoxy.sh 1.4,1.5
pkgsrc/www/privoxy/distinfo 1.9
pkgsrc/www/privoxy/patches/patch-af 1.1
Module Name: pkgsrc
Committed By: jnemeth
Date: Mon Feb 2 20:00:41 UTC 2009
Modified Files:
pkgsrc/www/privoxy: Makefile
pkgsrc/www/privoxy/files: privoxy.sh
Log Message:
PR/40532 - Cem Kayali -- group permissions too broad
Just fixing security issue, will leave pkg update for MAINTAINER for now.
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: drochner
Date: Wed Feb 4 21:20:39 UTC 2009
Modified Files:
pkgsrc/www/privoxy: Makefile distinfo
pkgsrc/www/privoxy/files: privoxy.sh
Added Files:
pkgsrc/www/privoxy/patches: patch-af
Log Message:
give up supplementary group memberships on uid/gid switch, fixes
unexpected privileges reported in PR pkg/40532 by Cem Kayali,
the issue is being discussed with upstream,
thanks to Cem for detailed reports,
also back out explicit passing of PRIVOXY_GROUP to the program --
while it does not hurt it is redundant because PRIVOXY_GROUP is already
the primary group of PRIVOXY_USER
|
|
|
|
pan: update package for fixes
revisions pulled up:
pkgsrc/news/pan/Makefile 1.54
pkgsrc/news/pan/PLIST 1.10
pkgsrc/news/pan/distinfo 1.18
pkgsrc/news/pan/patches/patch-aa r0
Module Name: pkgsrc
Committed By: wiz
Date: Tue Feb 24 12:24:48 UTC 2009
Modified Files:
pkgsrc/news/pan: Makefile PLIST distinfo
Removed Files:
pkgsrc/news/pan/patches: patch-aa
Log Message:
Update to 0.133:
0.133 "House of Butterflies"
535413 fix heap overflow in pan when parsing .nzb files (Pavel Polischouk)
467446 image viewer truncates image (Aaron Von Gauss)
540798 handle NNTP server '203 Streaming OK' responses (Mark Beach)
524620 compile fails on glib 2.16: g_assert moved to gtestutils.h (Duncan)
527852 use po/LINGUAS (Gilles Dartiguelongue)
482140 get last N days' headers fails when no headers in N days (Anonymous)
514167 'post' window doesn't fit on 800x480 display (Alexey Zakhlestin)
541704 pan uses deprecated `hash_set' class (Charles)
527853 unit test 'scorefile-test' fails on sparc (Ferris McCormick)
|
|
|
|
mldonkey: security update
mldonkey-gui: security update
Revisions pulled up:
- net/mldonkey/Makefile 1.46-1.48
- net/mldonkey/Makefile.common 1.34-1.36
- net/mldonkey/distinfo 1.46-1.48
- net/mldonkey-gui/Makefile 1.27
---
Module Name: pkgsrc
Committed By: wiz
Date: Sat Jan 24 12:59:28 UTC 2009
Modified Files:
pkgsrc/net/mldonkey: Makefile.common distinfo
Log Message:
Update to 2.9.7:
2009/01/20: version 2.9.7 = tag release-2-9-7
6727: Web_infos: Replace old GeoIP URL with new one
- old code added the new URL, even if GeoIP was not present in web_infos
2009/01/04
6714: BT: Fix bug when computing limits for max_bt_uploaders
6713: GeoIP: New web_infos URL for country list (thx to Choby)
- old URLs are updated to:
http://www.maxmind.com/download/geoip/database/GeoLiteCountry/GeoIP.dat.gz
2008/12/13
6689: Allow compilation with Ocaml 3.11.0
2008/09/01
6629: Mail: Move hostname from subject to body (eydaimon)
Updated Mozilla protocol handler to version 2.5
- original source from http://www.informatik.uni-oldenburg.de/~dyna/mldonkey
6628: IP discover: Use http://whatismyip.org, old URL is not working anymore
---
Module Name: pkgsrc
Committed By: wiz
Date: Mon Feb 16 13:11:41 UTC 2009
Modified Files:
pkgsrc/net/mldonkey: Makefile Makefile.common
pkgsrc/net/mldonkey-gui: Makefile
Log Message:
Convert to user-destdir.
---
Module Name: pkgsrc
Committed By: wiz
Date: Tue Feb 24 22:50:45 UTC 2009
Modified Files:
pkgsrc/net/mldonkey: Makefile distinfo
Added Files:
pkgsrc/net/mldonkey/patches: patch-aa
Log Message:
Add patch fixing security problem from upstream.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: wiz
Date: Wed Feb 25 23:39:37 UTC 2009
Modified Files:
pkgsrc/net/mldonkey: Makefile Makefile.common distinfo
Removed Files:
pkgsrc/net/mldonkey/patches: patch-aa
Log Message:
Update to 3.0.0:
2009/02/24: version 3.0.0 = tag release-3-0-0
6754: Fix local file access bug in internal http server
- this is an urgent security related bug-fix and effects
all MLDonkey versions >= 2.8.4
6752: Optimized implementation of the ip_set module (cbah)
6736: Add/fix some copyright texts
|
|
php-imap: bug fix
Revisions pulled up:
- lang/php5/distinfo 1.60 (via patch)
- lang/php5/patches/patch-as 1.4
- mail/php-imap/Makefile 1.18
---
Module Name: pkgsrc
Committed By: sborrill
Date: Wed Feb 25 08:59:47 UTC 2009
Modified Files:
pkgsrc/lang/php5: distinfo
pkgsrc/mail/php-imap: Makefile
Added Files:
pkgsrc/lang/php5/patches: patch-as
Log Message:
Fix memory leak and pullup bug fix for http://bugs.php.net/bug.php?id=46918
Remove this patch when PHP >= 5.2.9 is released as it will contain these
changes
Bump PKGREVISION of php-imap
|
|
php-imap: bug fix
Revisions pulled up:
- lang/php5/distinfo 1.60 (via patch)
- lang/php5/patches/patch-as 1.4
- mail/php-imap/Makefile 1.18
---
Module Name: pkgsrc
Committed By: sborrill
Date: Wed Feb 25 08:59:47 UTC 2009
Modified Files:
pkgsrc/lang/php5: distinfo
pkgsrc/mail/php-imap: Makefile
Added Files:
pkgsrc/lang/php5/patches: patch-as
Log Message:
Fix memory leak and pullup bug fix for http://bugs.php.net/bug.php?id=46918
Remove this patch when PHP >= 5.2.9 is released as it will contain these
changes
Bump PKGREVISION of php-imap
|
|
php-imap: bug fix
Revisions pulled up:
- lang/php5/distinfo 1.60 (via patch)
- lang/php5/patches/patch-as 1.4
- mail/php-imap/Makefile 1.18
---
Module Name: pkgsrc
Committed By: sborrill
Date: Wed Feb 25 08:59:47 UTC 2009
Modified Files:
pkgsrc/lang/php5: distinfo
pkgsrc/mail/php-imap: Makefile
Added Files:
pkgsrc/lang/php5/patches: patch-as
Log Message:
Fix memory leak and pullup bug fix for http://bugs.php.net/bug.php?id=46918
Remove this patch when PHP >= 5.2.9 is released as it will contain these
changes
Bump PKGREVISION of php-imap
|
|
|
|
mediawiki: bug fix update
Revisions pulled up:
- www/mediawiki/Makefile 1.5
- www/mediawiki/distinfo 1.4
---
Module Name: pkgsrc
Committed By: martti
Date: Sun Feb 22 11:58:57 UTC 2009
Modified Files:
pkgsrc/www/mediawiki: Makefile distinfo
Log Message:
Updated www/mediawiki to 1.13.5
This is a maintenance release which corrects some bugs in the installer,
introduced during the hasty security release of 1.13.4. It is not
necessary to upgrade if you do not intend on using the installer.
|
|
pdksh: bug fix
Revisions pulled up:
- shells/pdksh/Makefile 1.18
- shells/pdksh/files/c_ulimit.c 1.4
- shells/pdksh/files/lex.c 1.4
---
Module Name: pkgsrc
Committed By: tnn
Date: Sat Feb 21 20:06:30 UTC 2009
Modified Files:
pkgsrc/shells/pdksh: Makefile
pkgsrc/shells/pdksh/files: c_ulimit.c lex.c
Log Message:
Merge the following revisions from NetBSD src:
c_ulimit.c 1.9: avoid sign extension problem
lex.c 1.13: bugfix related to nested quotes
Bump PKGREVISION.
|
|
|
|
dovecot: bug fix update
Revisions pulled up:
- mail/dovecot/Makefile 1.128
- mail/dovecot/distinfo 1.93
---
Module Name: pkgsrc
Committed By: ghen
Date: Wed Feb 4 18:36:54 UTC 2009
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
Update to Dovecot 1.1.11.
- IMAP: PERMANENTFLAGS list didn't contain \*, causing some clients
not to save keywords.
- dbox: INTERNALDATE and save date was returned wrong for converted
maildir files.
- auth: Using "username" or "domain" passdb fields caused problems
with cache and blocking passdbs in v1.1.8 .. v1.1.10.
- userdb prefetch + blocking passdbs was broken with non-plaintext
auth in v1.1.8 .. v1.1.10.
- If mail_chroot is set, don't fail at startup in dump-capability.
|
|
|
|
emacs: build fix
Revisions pulled up:
- editors/emacs/hacks.mk 1.3
---
Module Name: pkgsrc
Committed By: markd
Date: Wed Jan 28 11:36:34 UTC 2009
Modified Files:
pkgsrc/editors/emacs: hacks.mk
Log Message:
Seems the hack is needed for 4.0/x86_64 as well. See Manuel Bouyer's
bulk builds.
|
|
|
|
liboil: build fix
Revisions pulled up:
- devel/liboil/Makefile 1.20
- devel/liboil/distinfo 1.16
- devel/liboil/patches/patch-ad 1.4
---
Module Name: pkgsrc
Committed By: he
Date: Sat Feb 21 14:39:03 UTC 2009
Modified Files:
pkgsrc/devel/liboil: Makefile distinfo
Added Files:
pkgsrc/devel/liboil/patches: patch-ad
Log Message:
Upgrade from version 0.3.15 to 0.3.15nb1.
Pkgsrc changes:
o Provide proper detection of altivec on NetBSD powerpc ports.
As an added bonus, this now builds on NetBSD/macppc 3.1 where
it didn't earlier.
|
|
|
|
png: security update
Revisions pulled up:
- graphics/png/Makefile 1.111-1.112
- graphics/png/distinfo 1.55-1.56
---
Module Name: pkgsrc
Committed By: wiz
Date: Mon Jan 5 20:22:26 UTC 2009
Modified Files:
pkgsrc/graphics/png: Makefile distinfo
Log Message:
Update to 1.2.34:
version 1.2.34beta01 [November 27, 2008]
Revised png_warning() to write its message on standard output by default
when warning_fn is NULL. This was the behavior prior to libpng-1.2.9beta9.
Fixed string vs pointer-to-string error in png_check_keyword().
Added png_check_cHRM_fixed() in png.c and moved checking from pngget.c,
pngrutil.c, and pngwrite.c, and eliminated floating point cHRM checking.
Added check for zero-area RGB cHRM triangle in png_check_cHRM_fixed().
In png_check_cHRM_fixed(), ensure white_y is > 0, and removed redundant
check for all-zero coordinates that is detected by the triangle check.
Revised png_warning() to write its message on standard output by default
when warning_fn is NULL.
version 1.2.34beta02 [November 28, 2008]
Corrected off-by-one error in bKGD validity check in png_write_bKGD()
and in png_handle_bKGD().
version 1.2.34beta03 [December 1, 2008]
Revised bKGD validity check to use >= x instead of > x + 1
Merged with png_debug from libpng-1.4.0 to remove newlines.
version 1.2.34beta04 [December 2, 2008]
More merging with png_debug from libpng-1.4.0 to remove newlines.
version 1.2.34beta05 [December 5, 2008]
Removed redundant check for key==NULL before calling png_check_keyword()
to ensure that new_key gets initialized and removed extra warning
(Arvan Pritchard).
version 1.2.34beta06 [December 9, 2008]
In png_write_png(), respect the placement of the filler bytes in an earlier
call to png_set_filler() (Jim Barry).
version 1.2.34beta07 [December 9, 2008]
Undid previous change and added PNG_TRANSFORM_STRIP_FILLER_BEFORE and
PNG_TRANSFORM_STRIP_FILLER_AFTER conditionals and deprecated
PNG_TRANSFORM_STRIP_FILLER (Jim Barry).
version 1.0.42rc01, 1.2.34rc01 [December 11, 2008]
No changes.
version 1.0.42, 1.2.34 [December 18, 2008]
No changes.
---
Module Name: pkgsrc
Committed By: drochner
Date: Thu Feb 19 13:13:53 UTC 2009
Modified Files:
pkgsrc/graphics/png: Makefile distinfo
Log Message:
update to 1.2.35
change: fix pointer initialization (SA33970)
|
|
|
|
net-snmp: security fix
revisions pulled up:
pkgsrc/net/net-snmp/Makefile 1.76
pkgsrc/net/net-snmp/distinfo 1.52
pkgsrc/net/net-snmp/patches/patch-ad 1.7
Module Name: pkgsrc
Committed By: tron
Date: Sun Feb 15 11:31:51 UTC 2009
Modified Files:
pkgsrc/net/net-snmp: Makefile distinfo
Added Files:
pkgsrc/net/net-snmp/patches: patch-ad
Log Message:
Add a patch from the "net-snmp" repository to close the vulnerability
reported in SA33884/CVE-2008-6123.
|
|
wireshark: update package for security fix
revisions pulled up:
pkgsrc/net/wireshark/Makefile 1.29
pkgsrc/net/wireshark/PLIST 1.12
pkgsrc/net/wireshark/distinfo 1.19
pkgsrc/net/wireshark/patches/patch-ad r0
Module Name: pkgsrc
Committed By: tron
Date: Fri Feb 13 09:41:11 UTC 2009
Modified Files:
pkgsrc/net/wireshark: Makefile PLIST distinfo
Removed Files:
pkgsrc/net/wireshark/patches: patch-ad
Log Message:
Update "wireshark" package to version 1.0.6.
Changes between 1.0.5 and 1.0.6.:
- The following vulnerabilities have been fixed:
* On non-Windows systems, Wireshark could crash if the HOME environment
variable contained sprintf-style string formatting characters.
* Wireshark could crash while reading a malformed NetScreen snoop file.
* Wireshark could crash while reading a Tektronix K12 text capture file.
- The following bugs have been fixed:
* Crash when loading capture file and Preferences: NO Info column
* Some Lua scripts may lead to corruption via out of bounds stack
* Build with GLib 1.2 fails with error: 'G_MININT32' undeclared
* Wrong decoding IMSI with GSM MAP protocol
* Segmentation fault for "Follow TCP stream" (Bug 3119)
* SMPP optional parameter 'network_error_code' incorrectly decoded
* DHCPv6 dissector doesn't handle malformed FQDN
* WCCP overrides CFLOW as decoded protocol (Bug 3175)
* Improper decoding of MPLS echo reply IPv4 Interface and Label Stack Object
* ANSI MAP fix for TRN digits/SMS and OTA subdissection (Bug 3214)
- Updated Protocol Support
* AFS, ATM, DHCPv6, DIS, E.212, RTP, UDP, USB, WCCP, WPS
- New and Updated Capture File Support
* NetScreen snoop
Changes between version 1.0.4 and 1.0.5:
- The following vulnerabilities have been fixed. See the security advisory
for details and a workaround.
* The SMTP dissector could consume excessive amounts of CPU and memory.
* The WLCCP dissector could go into an infinte loop.
- The following bugs have been fixed:
* Missing CRLF during HTTP POST in the "packet details" window
* Memory assertion in time_secs_to_str_buf() when compiled with GCC 4.2.3
* Diameter dissector fails RFC 4005 compliance
* LDP vendor private TLV type is not correctly shown
* Wireshark on MacOS does not run when there are spaces in its path
* Compilation broke when compiling without zlib
* Memory leak: saved_repoid
* Memory leak: follow_info
* Memory leak: follow_info
* Memory leak: tacplus_data
* Memory leak: col_arrows
* Memory leak: col_arrows
* Incorrect address structure assigned for find_conversation() in WSP
* Memory leak with unistim in voip_calls
* Error parsing the BSSGP protocol
* Assertion thrown in fvalue_get_uinteger when decoding TIPC
* LUA script : Wireshark crashes after closing and opening again a window
used by a listener.draw() function.
- Updated Protocol Support
* ANSI MAP, BSSGP, CIP, Diameter, ENIP, GIOP, H.263, H.264, HTTP, MPEG PES
* PostgreSQL, PPI, PTP, Rsync, RTP, SMTP, SNMP, STANAG 5066, TACACS, TIPC
* WLCCP, WSP
The package update was provided by Matthias Drochner in private e-mail.
|
|
|
