| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
security update
Revisions pulled up:
- pkgsrc/www/apache22/Makefile by patch to 1.52
- pkgsrc/www/apache22/distinfo by patch to 1.27
- pkgsrc/www/apache22/patches/patch-ab by patch to 1.14
Files removed:
pkgsrc/www/apache22/patches/patch-av
pkgsrc/www/apache22/patches/patch-ba
pkgsrc/www/apache22/patches/patch-bb
The patches update the package to the state in HEAD.
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun Oct 4 12:21:35 UTC 2009
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
pkgsrc/www/apache22/patches: patch-ab
Log Message:
Add patch from the Apache SVN repository to the vulnerability reported
in CVE-2009-3095.
To generate a diff of this commit:
cvs rdiff -u -r1.51 -r1.52 pkgsrc/www/apache22/Makefile
cvs rdiff -u -r1.26 -r1.27 pkgsrc/www/apache22/distinfo
cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/apache22/patches/patch-ab
|
|
|
|
drupal6-translations: match update of "drupal6" package
Revisions pulled up:
- www/drupal6-translations/Makefile 1.12
- www/drupal6-translations/PLIST.hr 1.1
- www/drupal6-translations/PLIST.pt-pt 1.3
- www/drupal6-translations/PLIST.uk 1.2
- www/drupal6-translations/distinfo 1.12
- www/drupal6-translations/options.mk 1.9
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Sep 29 13:47:03 UTC 2009
Modified Files:
pkgsrc/www/drupal6-translations: Makefile PLIST.uk distinfo options.mk
Added Files:
pkgsrc/www/drupal6-translations: PLIST.hr PLIST.pt-pt
Log Message:
Update www/drupal6-translations package to 20090926.
* Add Croatian(hr)
* Update Catalan(ca), German(de), Greek(el), Hungarian(hu), Italian(it),
Japanese(ja), Dutch(nl), Portuguese(pt-pt), Swedish(sv), Ukrainian(uk)
and Chinese(zh-tw).
|
|
drupal6: security update
Revisions pulled up:
- www/drupal6/Makefile 1.17
- www/drupal6/distinfo 1.13
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Sep 29 13:41:00 UTC 2009
Modified Files:
pkgsrc/www/drupal6: Makefile distinfo
Log Message:
Update www/drupal6 package to fix security problem.
pkgsrc change: add LICENSE.
Drupal 6.14, 2009-09-16
----------------------
- Fixed security issues (OpenID association cross site request forgeries,
OpenID impersonation and File upload), see SA-CORE-2009-008.
- Changed the system modules page to not run all cache rebuilds; use the
button on the performance settings page to achieve the same effect.
- Added support for PHP 5.3.0 out of the box.
- Fixed a variety of small bugs.
|
|
drupal: security update
Revisions pulled up:
- www/drupal/Makefile 1.41
- www/drupal/distinfo 1.32
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Sep 29 13:39:58 UTC 2009
Modified Files:
pkgsrc/www/drupal: Makefile distinfo
Log Message:
Update www/drupal package to 5.20 to fix security problem.
pkgsrc change: add LICENSE.
Drupal 5.20, 2009-09-16
-----------------------
- Avoid security problems resulting from writing Drupal 6-style menu
declarations.
- Fixed security issues (session fixation), see SA-CORE-2009-008.
- Fixed a variety of small bugs.
|
|
|
|
php5: security update
Revisions pulled up:
- lang/php5/Makefile.common 1.37
- lang/php5/Makefile.php 1.36-1.37 via patch
- lang/php5/PLIST 1.24
- lang/php5/distinfo 1.66-1.67 via patch
- lang/php5/patches/patch-ad delete
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Sep 26 05:40:05 UTC 2009
Modified Files:
pkgsrc/lang/php5: Makefile.common Makefile.php PLIST distinfo
Removed Files:
pkgsrc/lang/php5/patches: patch-ax
Log Message:
Update lang/php5 to 5.2.11, fixing security problem of 5.2.10.
One pkglint warning was fixed, too.
PHP NEWS
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
17 Sep 2009, PHP 5.2.11
- Fixed certificate validation inside php_openssl_apply_verification_policy.
(Ryan Sleevi, Ilia)
10 Sep 2009, PHP 5.2.11RC3
- Updated timezone database to version 2009.13 (2009m) (Derick)
- Fixed bug #49470 (FILTER_SANITIZE_EMAIL allows disallowed characters). (Ilia)
- Fixed bug #49447 (php engine needs to correctly check for socket API return
status on windows). (Sriram Natarajan)
- Fixed bug #48060 (pdo_pgsql - large objects are returned as empty). (Matteo)
03 Sep 2009, PHP 5.2.11RC2
- Added missing sanity checks around exif processing. (Ilia)
- Fixed sanity check for the color index in imagecolortransparent. (Pierre)
- Fixed zlib.deflate compress filter to actually accept level parameter. (Jani)
- Fixed leak on error in popen/exec (and related functions) on Windows.
(Pierre)
- Fixed bug #49361 (wordwrap() wraps incorrectly on end of line boundaries).
(Ilia, code-it at mail dot ru)
- Fixed bug #49289 (bcmath module doesn't compile with phpize configure).
(Jani)
- Fixed bug #49286 (php://input (php_stream_input_read) is broken). (Jani)
- Fixed bug #49269 (Ternary operator fails on Iterator object when used inside
foreach declaration). (Etienne, Dmitry)
- Fixed bug #49236 (Missing PHP_SUBST(PDO_MYSQL_SHARED_LIBADD)). (Jani)
- Fixed bug #49144 (Import of schema from different host transmits original
authentication details). (Dmitry)
- Fixed bug #49000 (PHP CLI in Interactive mode (php -a) crashes when including
files from function). (Stas)
- Fixed bug #48696 (ldap_read() segfaults with invalid parameters). (Felipe)
- Fixed bug #47273 (Encoding bug in SoapServer->fault). (Dmitry)
- Fixed bug #28038 (Sent incorrect RCPT TO commands to SMTP server) (Garrett)
13 Aug 2009, PHP 5.2.11RC1
- Fixed regression in cURL extension that prevented flush of data to output
defined as a file handle. (Ilia)
- Fixed memory leak in stream_is_local(). (Felipe, Tony)
- Fixed bug #49372 (segfault in php_curl_option_curl). (Pierre)
- Fixed bug #49132 (posix_times returns false without error).
(phpbugs at gunnu dot us)
- Fixed bug #49125 (Error in dba_exists C code). (jdornan at stanford dot edu)
- Fixed bug #49095 (proc_get_status['exitcode'] fails on win32). (Felipe)
- Fixed bug #49074 (private class static fields can be modified by using
reflection). (Jani)
- Fixed bug #49072 (feof never returns true for damaged file in zip). (Pierre)
- Fixed bug #49052 (context option headers freed too early when using
--with-curlwrappers). (Jani)
- Fixed bug #49032 (SplFileObject::fscanf() variables passed by reference).
(Jani)
- Fixed bug #49026 (proc_open() can bypass safe_mode_protected_env_vars
restrictions). (Ilia)
- Fixed bug #48994 (zlib.output_compression does not output HTTP headers when
set to a string value). (Jani)
- Fixed bug #48980 (Crash when compiling with pdo_firebird). (Felipe)
- Fixed bug #48962 (cURL does not upload files with specified filename).
(Ilia)
- Fixed bug #48929 (Double \r\n after HTTP headers when "header" context
option is an array). (David Z762 (IPv6 address filter still rejects valid address). (Felipe)
- Fixed bug #48733 (CURLOPT_WRITEHEADER|CURLOPT_FILE|CURLOPT_STDERR warns on
files that have been opened with r+). (Ilia)
- Fixed bug #48732 (TTF Bounding box wrong for letters below baseline).
(Takeshi Abe)
- Fixed bug #48718 (FILTER_VALIDATE_EMAIL does not allow numbers in domain
components). (Ilia)
- Fixed bug #48709 (metaphone and 'wh'). (brettz9 at yahoo dot com, Felipe)
- Fixed bug #48697 (mb_internal_encoding() value gets reset by parse_str()).
(Moriyoshi)
- Fixed bug #48693 (Double declaration of __lambda_func when lambda wrongly
formatted). (peter at lvp-media dot com, Felipe)
- Fixed bug #48661 (phpize is broken with non-bash shells). (Jani)
- Fixed bug #48645 (mb_convert_encoding() doesn't understand hexadecimal
html-entities). (Moriyoshi)
- Fixed bug #48637 ("file" fopen wrapper is overwritten when using
--with-curlwrappers). (Jani)
- Fixed bug #48636 (Error compiling of ext/date on netware). (guenter at
php.net, Ilia)
- Fixed bug #48629 (get_defined_constants() ignores categorize parameter).
(Felipe)
- Fixed bug #48619 (imap_search ALL segfaults). (Pierre)
- Fixed bug #48608 (Invalid libreadline version not detected during configure).
(Jani)
- Fixed bug #48555 (ImageFTBBox() differs from previous versions for texts
with new lines) (Takeshi Abe)
- Fixed bug #48539 (pdo_dblib fails to connect, throws empty PDOException
"SQLSTATE[] (null)"). (Felipe)
- Fixed bug #48465 (sys_get_temp_dir() possibly inconsistent when using
TMPDIR). (Ilia)
- Fixed bug #48450 (Compile failure under IRIX 6.5.30 building gd.c). (Kalle)
- Fixed bug #48400 (imap crashes when closing stream opened with
OP_PROTOTYPE flag). (Jani)
- Fixed bug #48284 (hash "adler32" byte order is reversed). (Scott)
- Fixed bug #48276 (date("Y") on big endian machines produces the
wrong result). (Scott)
- Fixed bug #48247 (Infinite loop and possible crash during startup with
errors when errors are logged). (Jani)
- Fixed bug #48116 (Fixed build with Openssl 1ImageLine w/ antialias = 1px shorter). (wojjie at gmail dot
com, Kalle)
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Sep 26 07:35:31 UTC 2009
Modified Files:
pkgsrc/lang/php5: Makefile.php distinfo
Log Message:
Update suhosin patch to 5.2.11, too.
|
|
|
|
vlc: security update
Revisions pulled up:
- multimedia/vlc/Makefile 1.83
- multimedia/vlc/PLIST 1.32
- multimedia/vlc/distinfo 1.32
- multimedia/vlc/patches/patch-aa 1.10
- multimedia/vlc/patches/patch-configure 1.4
---
Module Name: pkgsrc
Committed By: ahoka
Date: Thu Sep 24 22:14:58 UTC 2009
Modified Files:
pkgsrc/multimedia/vlc: Makefile PLIST distinfo
pkgsrc/multimedia/vlc/patches: patch-aa patch-configure
Log Message:
Changes between 1.0.1 and 1.0.2:
--------------------------------
Decoders:
* Native support for WMA Professional, without the use of the Win32 dlls
* Fix issues in subtitles, especially SSA ones
* Various fixes on theora and ogg
Demuxers:
* Various fixes for EPG support in MPEG-TS demuxer
* Fixes for potential stack overflow in .avi, .mp4 and .asf demuxers
Access:
* Fixes for v4l2 devices
* Fixes for dvb-c channels-scanning
Qt Interface:
* Fix some playlist sorting issues
Mac OS X Interface:
* Fixed a crash when updating VLC
* Fixed a crash related to QTKit when opening video files (10.6 only)
* Added the ability to play 2nd media in sync to the primary item (input-slave)
* Added the "Quit after Playback" feature
Mac OS X Port:
* The "Delete Preferences" script is now delivered as a Universal Binary
with native code for PowerPC, Intel and Intel 64bit
* Full 64bit runtime compatibility on both Mac OS X 10.5 and 10.6
- no support for Goom and SDL
- limited text rendering support
- This port is still considered as EXPERIMENTAL despite its binary release.
Encoders:
* MPEG2 transrate stream output removed
* x264 default-values closer to x264.exe defaults.
* x264 rc-behaviour fixes:
- if user defines qp-value, CQP-mode is used
- otherwise if user defines vb=0, CRF-mode is used
- otherwise ABR-mode is used
* x264 set vbv-bufsize/vbv-maxsize better if user hasn't defined these:
- ABR mode set vbv-max-bitrate=bitrate
- vbv-bufsize is bitrate * seconds between keyframes (keyint/fps)
Playlist:
* Lua scripts for Mpora and Vimeo playback
Unix builds:
* Various fixes to enable 1.0 to build on Solaris and OpenBSD
|
|
|
|
security patch
Revisions pulled up:
- pkgsrc/multimedia/ffmpeg/Makefile by patch
- pkgsrc/multimedia/ffmpeg/distinfo by patch
- pkgsrc/multimedia/ffmpeg/options.mk by patch
- pkgsrc/multimedia/ffmpeg/patches/patch-bktr by patch
- pkgsrc/multimedia/ffmpeg/patches/patch-configure by patch
Files added:
pkgsrc/multimedia/ffmpeg/patches/patch-aa 1.9
pkgsrc/multimedia/ffmpeg/patches/patch-ab 1.6
pkgsrc/multimedia/ffmpeg/patches/patch-powerpc 1.6
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Fri Sep 25 11:10:21 UTC 2009
Modified Files:
pkgsrc/multimedia/ffmpeg: Makefile distinfo
Added Files:
pkgsrc/multimedia/ffmpeg/patches: patch-ab
Log Message:
Add patch from ffmpeg GIT repository to fix the vulnerability
reported in SA36760.
To generate a diff of this commit:
cvs rdiff -u -r1.53 -r1.54 pkgsrc/multimedia/ffmpeg/Makefile
cvs rdiff -u -r1.30 -r1.31 pkgsrc/multimedia/ffmpeg/distinfo
cvs rdiff -u -r0 -r1.6 pkgsrc/multimedia/ffmpeg/patches/patch-ab
|
|
|
|
build fix for mips
Revisions pulled up:
- pkgsrc/editors/emacs/distinfo by patch
- pkgsrc/editors/emacs/patches/patch-ab by patch
Files added:
pkgsrc/editors/emacs/patches/patch-aw by patch
pkgsrc/editors/emacs/patches/patch-ax by patch
package revision doesn't bump because the change only impacts mips
architecture, where it wouldn't properly build before.
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: jun
Date: Mon Sep 21 10:10:58 UTC 2009
Modified Files:
pkgsrc/editors/emacs22: distinfo
Added Files:
pkgsrc/editors/emacs22/patches: patch-ax
Log Message:
compile enable on mips ports.
adviced and patches from tsutsui-san on [netbsd,09810].
tested on hpcmips-current.
To generate a diff of this commit:
cvs rdiff -u -r1.3 -r1.4 pkgsrc/editors/emacs22/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/editors/emacs22/patches/patch-ax
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: jun
Date: Sun Sep 13 02:12:28 UTC 2009
Modified Files:
pkgsrc/editors/emacs22: Makefile distinfo
pkgsrc/editors/emacs22/patches: patch-ab
Log Message:
change patch-ab:
add mips config to configure
Bump PKGREVISION
To generate a diff of this commit:
cvs rdiff -u -r1.2 -r1.3 pkgsrc/editors/emacs22/Makefile \
pkgsrc/editors/emacs22/distinfo
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/editors/emacs22/patches/patch-ab
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: jun
Date: Sun Sep 13 01:26:34 UTC 2009
Modified Files:
pkgsrc/editors/emacs22/patches: patch-aw
Log Message:
Fit for mips, change fix from emacs23:
http://cvs.savannah.gnu.org/viewvc/emacs/configure.in?root=emacs&r1=1.602&r2=1.603
adviced by obata-san,[netbsd,09792]
To generate a diff of this commit:
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/editors/emacs22/patches/patch-aw
|
|
|
|
security update
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile by patch
- pkgsrc/net/wireshark/PLIST by patch
- pkgsrc/net/wireshark/distinfo by patch
Module Name: pkgsrc
Committed By: tron
Date: Sat Sep 19 06:36:19 UTC 2009
Modified Files:
pkgsrc/net/wireshark: Makefile PLIST distinfo
Log Message:
Update "wireshark" package to version 1.2.2. Changes since version 1.2.1:
- The following vulnerabilities have been fixed. See the security
advisory for details and a workaround.
- The GSM A RR dissector could crash.
Versions affected: 1.2.0 to 1.2.1
- The OpcUa dissector could use excessive CPU and memory.
Versions affected: 0.99.6 to 1.0.8, 1.2.0 to 1.2.1
- The TLS dissector could crash on some platforms.
Versions affected: 1.2.0 to 1.2.1
- The following bugs have been fixed:
- The "Capture->Interfaces" window can't be closed. (Bug 1740)
- tshark-1.0.2 (dumpcap) signal abort core saved. (Bug 2767)
- Memory leak fixes. (Bug 3330)
- Display filter autocompletion doesn't work for some RADIUS and
WiMAX ASNCP fields. (Bug 3538)
- Wireshark Portable includes wrong WinPcap installer. (Bug
3547)
- Crash when loading a profile. (Bug 3640)
- The proto,colinfo tap doesn't work if the INFO column isn't
being printed. (Bug 3675)
- Flow Graph adds too much unnecessary garbage. (Bug 3693)
- The EAP Diameter dictionary file was missing in the
distribution. (Bug 3761)
- Graph analysis window is behind other window. (Bug 3773)
- IKEv2 Cert Request payload dissection error. (Bug 3782)
- DNS NAPTR RR (RFC 3403) replacement MUST be a fully qualified
domain-name. (Bug 3792)
- Malformed RTCP Packet error while sending Payload specific
RTCP feedback packet( as per RFC 4585). (Bug 3800)
- 802.11n Block Ack packet Bitmap field missing. (Bug 3806)
- Wireshark doesn't decode WBXML/ActiveSync information
correctly. (Bug 3811)
- Malformed packet when IPv6 packet has Next Header =3D=3D 59. (Bug
3820)
- Wireshark could crash while reading an ERF file. (Bug 3849)
- Minor errors in gsm rr dissectors. (Bug 3889)
- WPA Decryption Issues. (Bug 3890)
- GSM A RR sys info dissection problem. (Bug 3901)
- GSM A RR inverts MEAS-VALID values. (Bug 3915)
- PDML output leaks ~300 bytes / packet. (Bug 3913)
- Incorrect station identifier parsing in Kingfisher dissector.
(Bug 3946)
- DHCPv6, Vendor-Specific Informantion, SubOption"Option
Request" parser incorrect. (Bug 3987)
- Wireshark could leak memory while analyzing SSL.
- Wireshark could crash while updating menu items after reading
a file in some cases.
- The Mac OS X ChmodBPF script now works correctly under Snow
Leopard.
- Updated Protocol Support
DCERPC, DHCPv6, DNS, E.212, GSM A RR, GTPv2, H.248, IEEE 802.11,
IPMI, ISAKMP/IKE, ISUP, Kingfisher, LDAP, OpcUA, RTCP, SCTP, SIP,
SSL, TCP, WBXML, ZRTP
- Updated Capture File Support
ERF
To generate a diff of this commit:
cvs rdiff -u -r1.36 -r1.37 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.14 -r1.15 pkgsrc/net/wireshark/PLIST
cvs rdiff -u -r1.23 -r1.24 pkgsrc/net/wireshark/distinfo
|
|
seamonkey-gtk1: package list fix
Revisions pulled up:
- www/seamonkey-gtk1/Makefile 1.22
- www/seamonkey-gtk1/PLIST 1.12
---
Module Name: pkgsrc
Committed By: ghen
Date: Wed Sep 16 16:44:44 UTC 2009
Modified Files:
pkgsrc/www/seamonkey-gtk1: Makefile PLIST
Log Message:
Get the PLIST completely straight (sorry, forgot about it when committing
www/seamonkey). Bump PKGREVISION.
|
|
|
|
seamonkey-bin: security update
seamonkey-gtk: security update
seamonkey: security update
Revisions pulled up:
- www/seamonkey-bin/Makefile 1.31
- www/seamonkey-bin/distinfo 1.27
- www/seamonkey-gtk1/Makefile 1.21
- www/seamonkey-gtk1/PLIST 1.11
- www/seamonkey/Makefile 1.28
- www/seamonkey/Makefile-seamonkey.common 1.27
- www/seamonkey/PLIST 1.18
- www/seamonkey/distinfo 1.42
- www/seamonkey/patches/patch-ba 1.3
- www/seamonkey/patches/patch-br 1.3
- www/seamonkey/patches/patch-dk 1.2
- www/seamonkey/patches/patch-dm delete
- www/seamonkey/patches/patch-dy delete
- www/seamonkey/patches/patch-dz delete
- www/seamonkey/patches/patch-ed 1.1
---
Module Name: pkgsrc
Committed By: ghen
Date: Tue Sep 15 09:26:07 UTC 2009
Modified Files:
pkgsrc/www/seamonkey: Makefile Makefile-seamonkey.common PLIST distinfo
pkgsrc/www/seamonkey-bin: Makefile distinfo
pkgsrc/www/seamonkey-gtk1: Makefile
pkgsrc/www/seamonkey/patches: patch-ba patch-br patch-dk
Added Files:
pkgsrc/www/seamonkey/patches: patch-ed
Removed Files:
pkgsrc/www/seamonkey/patches: patch-dm patch-dy patch-dz
Log Message:
Update seamonkey, seamonkey-bin and seamonkey-gtk1 to Seamonkey 1.1.18.
Security fixes in this version:
MFSA 2009-43 Heap overflow in certificate regexp parsing
MFSA 2009-42 Compromise of SSL-protected communication
For more info, see http://www.seamonkey-project.org/releases/seamonkey1.1.18/
---
Module Name: pkgsrc
Committed By: he
Date: Wed Sep 16 09:28:59 UTC 2009
Modified Files:
pkgsrc/www/seamonkey-gtk1: PLIST
Log Message:
Sync PLIST with what's actually being installed.
No version bump since this is merely a cleanup, and doesn't
actually change what's installed.
|
|
dovecot-sieve: security update
Revisions pulled up:
- mail/dovecot-sieve/Makefile 1.4
- mail/dovecot-sieve/distinfo 1.4
- mail/dovecot-sieve/patches/patch-aa 1.3
---
Module Name: pkgsrc
Committed By: ghen
Date: Mon Sep 14 06:10:48 UTC 2009
Modified Files:
pkgsrc/mail/dovecot-sieve: Makefile distinfo
pkgsrc/mail/dovecot-sieve/patches: patch-aa
Log Message:
Dovecot CMU Sieve plugin 1.1.7 fixes some buffer overflow vulnerabilities,
see: http://www.dovecot.org/list/dovecot-news/2009-September/000135.html
Other changes not listed.
|
|
dovecot: security update
Requested revisions:
- mail/dovecot/Makefile 1.136,1.138-1.139
- mail/dovecot/distinfo 1.101-1.103
- mail/dovecot/patches/patch-ai delete
---
odule Name: pkgsrc
Committed By: ghen
Date: Mon Jul 13 08:00:11 UTC 2009
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Removed Files:
pkgsrc/mail/dovecot/patches: patch-ai
Log Message:
Update to Dovecot 1.1.17. manu's patch-ai has been included upstream.
- IMAP: Don't crash if IDLE command is pipelined after a long-running
UID FETCH or UID SEARCH.
- IMAP: Some FETCH command parameters were broken with in some OSes.
- mbox: New mailboxes were created with UIDVALIDITY 1.
- mbox: Don't write garbage to mbox if message doesn't have a body.
- Maildir: Fixed using in-memory indexes when some required directory
was missing.
- auth: Don't assert-crash if trying to log in as master user but
with empty login username.
- Transaction log dotlocking ignored mail_nfs_index and
dotlock_use_excl settings.
- convert plugin / convert-tool: Fixed changing hierarchy separators
in mailbox names when alt_hierarchy_char isn't set.
- Several fixes to expire plugin / expire-tool
- zlib: Give better error messages on failures.
---
Module Name: pkgsrc
Committed By: ghen
Date: Tue Aug 11 11:33:58 UTC 2009
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
Update to Dovecot 1.1.18.
+ dovecot -n/-a now outputs also lda settings.
- Maildir++ quota: Quota was sometimes updated wrong when it was
being recalculated.
- Searching quoted-printable message body internally converted "_"
characters to spaces and didn't match search keys with "_".
- Messages in year's first/last day may have had broken timezones
with OSes not having struct tm->tm_gmtoff (e.g. Solaris).
---
Module Name: pkgsrc
Committed By: ghen
Date: Mon Sep 14 06:09:08 UTC 2009
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
Update to Dovecot 1.1.19.
- file_set_size() was broken with OSes that didn't support posix_fallocate()
(almost everyone except Linux), causing all kinds of index file errors.
- ldap: Fixed hang when >128 requests were sent at once.
- Fixed a crash in saving messages where message contained a CR character t=
hat
wasn't followed by LF (and the CR happened to be the last character in an
internal buffer).
- deliver: Don't send rejects to any messages that have Auto-Submitted head=
er.
This avoids emails loops.
- Message decoding fixes (mainly for IMAP SEARCH, Sieve).
|
|
rt3: security update
Revisions pulled up:
- devel/rt3/Makefile 1.38-1.39
- devel/rt3/Makefile.install 1.13
- devel/rt3/distinfo 1.13
---
Module Name: pkgsrc
Committed By: spz
Date: Wed Jul 29 05:25:34 UTC 2009
Modified Files:
pkgsrc/devel/rt3: Makefile Makefile.install
Log Message:
where env PATH is being set for security reasons, have it include $PREFIX/bin
pointed out by "Peter C. Lai" <peter%simons-rock.edu@localhost> fixes PR 41571
---
Module Name: pkgsrc
Committed By: spz
Date: Tue Sep 15 23:15:58 UTC 2009
Modified Files:
pkgsrc/devel/rt3: Makefile distinfo
Log Message:
security update (lesser impact) to version 3.8.5
|
|
|
|
security update
Revisions pulled up:
- pkgsrc/www/neon/Makefile by patch
- pkgsrc/www/neon/PLIST by patch
- pkgsrc/www/neon/distinfo by patch
Files added:
pkgsrc/www/neon/patches/patch-ab by patch
Module Name: pkgsrc
Committed By: tron
Date: Mon Sep 14 16:48:44 UTC 2009
Modified Files:
pkgsrc/www/neon: Makefile PLIST distinfo
pkgsrc/www/neon/patches: patch-ab
Removed Files:
pkgsrc/www/neon/patches: patch-aa
Log Message:
Update "neon" package to version 0.29. Changes since version 0.28.5:
* Interface changes:
o none, API and ABI backwards-compatible with 0.28.x and 0.27.x
* New interfaces and features:
o added NTLM auth support for Unix builds (Kai Sommerfeld,
Daniel Stenberg)
o ne_auth.h: added NE_AUTH_GSSAPI and NE_AUTH_NTLM auth protocol codes
o added ne_acl3744.h, updated WebDAV ACL support (Henrik Holst)
o added built-in SOCKS v4/v4a/v5 support: ne_socket.h:ne_sock_proxy(),
and ne_session.h:ne_session_socks_proxy()
o added support for system-default proxies: ne_session_system_proxy(),
implemented using libproxy where available
o ne_session.h: added NE_SESSFLAG_EXPECT100 session flag,
SSL verification failure bits extended by NE_SSL_BADCHAIN and
NE_SSL_REVOKED, better handling of failures within the cert chain
(thanks to Ludwig Nussel)
o ne_socket.h: ne_sock_writev() (Julien Reichel), ne_sock_set_error(),
ne_iaddr_raw(), ne_iaddr_parse()
o ne_string.h: ne_buffer_qappend(), ne_strnqdup()
* Deprecated interfaces:
o ne_acl.h is obsoleted by ne_acl3744.h (but is still present)
o obsolete feature "NE_FEATURE_SOCKS" now never marked present
* Other changes:
o fix handling of "stale" flag in RFC2069-style Digest auth challenge
o ne_free() implemented as a function on Win32 (thanks to Helge Hess)
o symbol versioning used for new symbols, where supported
o ensure SSL connections are closed cleanly with OpenSSL
o fix build with OpenSSL 1.0 beta
o updated Polish (pl) translation (Arfrever Frehtes Taifersar Arahesis)
* SECURITY (CVE-2009-2473): Fix "billion laughs" attack against expat;
could allow a Denial of Service attack by a malicious server.
* SECURITY (CVE-2009-2474): Fix handling of an embedded NUL byte in a
certificate subject name; could allow an undetected MITM attack against
an SSL server if a trusted CA issues such a cert.
Tested by Daniel Horecki with SVN client.
To generate a diff of this commit:
cvs rdiff -u -r1.48 -r1.49 pkgsrc/www/neon/Makefile
cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/neon/PLIST
cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/neon/distinfo
cvs rdiff -u -r1.1 -r0 pkgsrc/www/neon/patches/patch-aa
cvs rdiff -u -r1.1 -r1.2 pkgsrc/www/neon/patches/patch-ab
|
|
security fix
Revisions pulled up:
- pkgsrc/net/wget/Makefile 1.100
- pkgsrc/net/wget/distinfo 1.34
Files added:
pkgsrc/net/wget/patches/patch-aa 1.9
Module Name: pkgsrc
Committed By: tron
Date: Mon Sep 14 12:06:13 UTC 2009
Modified Files:
pkgsrc/net/wget: Makefile distinfo
Added Files:
pkgsrc/net/wget/patches: patch-aa
Log Message:
Add a fix for SA36540 (SSL certificate spoofing vulnerability) taken
from the source repository.
To generate a diff of this commit:
cvs rdiff -u -r1.99 -r1.100 pkgsrc/net/wget/Makefile
cvs rdiff -u -r1.33 -r1.34 pkgsrc/net/wget/distinfo
cvs rdiff -u -r0 -r1.9 pkgsrc/net/wget/patches/patch-aa
|
|
|
|
openoffice3: security update
Revisions pulled up:
- misc/openoffice3/Makefile 1.37 via patch
- misc/openoffice3/distinfo 1.21-1.22 via patch
- misc/openoffice3/patches/patch-ga 1.1
- misc/openoffice3/patches/patch-gb 1.1
- misc/openoffice3/patches/patch-gc 1.1
---
Module Name: pkgsrc
Committed By: wiz
Date: Thu Jul 16 10:47:11 UTC 2009
Modified Files:
pkgsrc/misc/openoffice3: distinfo
Added Files:
pkgsrc/misc/openoffice3/patches: patch-ga patch-gb patch-gc
Log Message:
Fix build with getline() in libc.
From http://bugs.gentoo.org/show_bug.cgi?id=3D270263
via roy
---
Module Name: pkgsrc
Committed By: hira
Date: Sat Aug 29 09:48:54 UTC 2009
Modified Files:
pkgsrc/misc/openoffice3: Makefile distinfo
Log Message:
Update to 3.1.1. This is bug fix release. Add LICENSE to Makefile.
Release notes: http://development.openoffice.org/releases/3.1.1.html
|
|
|
|
openoffice2: security update
Revisions pulled up:
- misc/openoffice2/Makefile 1.74 via patch
- misc/openoffice2/distinfo 1.55 via patch
- misc/openoffice2/patches/patch-ga 1.1
- misc/openoffice2/patches/patch-gb 1.1
- misc/openoffice2/patches/patch-gc 1.1
---
Module Name: pkgsrc
Committed By: hira
Date: Sun Sep 13 03:54:14 UTC 2009
Modified Files:
pkgsrc/misc/openoffice2: Makefile distinfo
Added Files:
pkgsrc/misc/openoffice2/patches: patch-ga patch-gb patch-gc
Log Message:
Update to 2.4.3. This is bug fix release. It fixes the following
security vulnerabilities.
* CVE-2009-0200/CVE-2009-0201: Manipulated Microsoft Word files can
lead to heap overflows and arbitrary code execution
* CVE-2009-2414/CVE-2009-2416: Manipulated XML documents can lead to
arbitrary code execution
Release notes: http://development.openoffice.org/releases/2.4.3.html
- Fix getline() problem (patches from misc/openoffice3/patches).
- Use internal neon (9 patches are required to use external neon).
- Use internal openssl for internal neon.
- Disable VBA extension (enabling this causes build error).
|
|
|
|
security fix
Revisions pulled up:
- pkgsrc/www/apache22/Makefile by patch
- pkgsrc/www/apache22/distinfo by patch
Files added:
pkgsrc/www/apache22/patches/patch-ab 1.12
Module Name: pkgsrc
Committed By: tron
Date: Sun Sep 13 13:32:50 UTC 2009
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
Added Files:
pkgsrc/www/apache22/patches: patch-ab
Log Message:
Add a fix for the remote Denial of Service vulnerability reported
in CVE-2009-3094.
To generate a diff of this commit:
cvs rdiff -u -r1.49 -r1.50 pkgsrc/www/apache22/Makefile
cvs rdiff -u -r1.24 -r1.25 pkgsrc/www/apache22/distinfo
cvs rdiff -u -r0 -r1.12 pkgsrc/www/apache22/patches/patch-ab
|
|
|
|
geeklog: security update
Revisions pulled up:
- www/geeklog/Makefile 1.23
- www/geeklog/PLIST 1.10
- www/geeklog/distinfo 1.10
- www/geeklog/patches/patch-aa 1.4
- www/geeklog/patches/patch-aj 1.2
- www/geeklog/patches/patch-ak 1.1
- www/geeklog/patches/patch-al 1.1
- www/geeklog/patches/patch-ba 1.1
- www/geeklog/patches/patch-bb 1.1
- www/geeklog/patches/patch-bc 1.1
- www/geeklog/patches/patch-bd 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Sep 13 01:15:11 UTC 2009
Modified Files:
pkgsrc/www/geeklog: Makefile PLIST distinfo
pkgsrc/www/geeklog/patches: patch-aa patch-aj
Added Files:
pkgsrc/www/geeklog/patches: patch-ak patch-al patch-ba patch-bb
patch-bc patch-bd
Log Message:
Update Geeklog 1.5.2sr5 by adding patches since 1.5.2sr5 isn't provided
as full release.
And add updated fckeditor for Geeklog.
These updates should fix known security problems, Secunia SA36372.
Jul 30, 2009 (1.5.2sr5)
------------
This release addresses the following security issues:
- Gerendi Sandor Attila reported an XSS in the forms to email a user and to
email a story to a friend.
- The "Mail Story to a Friend" function didn't check story permissions, so that
it was possible to email a story even if you didn't have the permissions to
view it on the site.
|
|
|
|
squid27: security patch
Revisions pulled up:
- www/squid27/Makefile 1.8
- www/squid27/distinfo 1.5
- www/squid27/patches/patch-am 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Sep 13 01:00:17 UTC 2009
Modified Files:
pkgsrc/www/squid27: Makefile distinfo
Added Files:
pkgsrc/www/squid27/patches: patch-am
Log Message:
Add CVE-2009-2855 DoS fix from squid's repositry.
Bump PKGREVISION.
|
|
dnsmasq: security update
Revisions pulled up:
- net/dnsmasq/Makefile 1.12
- net/dnsmasq/distinfo 1.11
---
Module Name: pkgsrc
Committed By: roy
Date: Sat Sep 5 21:16:08 UTC 2009
Modified Files:
pkgsrc/net/dnsmasq: Makefile distinfo
Log Message:
Bump to dnsmasq-2.50
Fixes CVE 2009-2957 and CVE 2009-2958
|
|
asterisk16: security update
---
Apply patch to update comms/asterisk16 to version 1.6.0.15:
- 1.6.0.11 was never released
- 1.6.0.12 fixes AST-2009-005 which is a remote DOS issue in SIP
- 1.6.0.13 fixes a bug in 1.6.0.12 security fix
- 1.6.0.14 has additional updates for AST-2009-001 and AST-2009-005 plus
SIP Changes
-----------
* Added a new 'ignoresdpversion' option to sip.conf. When this is enabled
(either globally or for a specific peer), chan_sip will treat any SDP data
it receives as new data and update the media stream accordingly. By
default, Asterisk will only modify the media stream if the SDP session
version received is different from the current SDP session version. This
option is required to interoperate with devices that have non-standard SDP
session version implementations (observed with Microsoft OCS). This option
is disabled by default. In addition, this behavior is automatic when the SDP
received
is in response to a T.38 re-INVITE that Asterisk initiated. In this situation
,
since the call will fail if Asterisk does not process the incoming SDP, Aster
isk
will accept the SDP even if the SDP version number is not properly incremente
d,
but will generate a warning in the log indicating that the SIP peer that sent
the SDP should have the 'ignoresdpversion' option set.
Closed Issues
This is a list of all issues from the issue tracker that were closed by
changes that went into this release.
Category: Addons/General
#15269: [patch] memory leak in asterisk some bug fixing and removing
Redundant condition
Category: Applications/General
#15022: [patch] Language handling for numbers, dates, etc is misbehaving
when utilizing sub-regional languages
Category: Applications/app_chanspy
#15660: ChanSpy "whisper" is broken in 1.4.26
Category: Applications/app_fax
#15355: app_fax does not compile with iaxmodem 1.2.0
#15480: [patch] Not all fixes from #14849 are committed
#15606: app_fax.c is not compiling under OpenBSD
#15610: T.38 re-INVITE received after T.38 already negotiated fails
Category: Applications/app_meetme
#15493: [patch] contrib/scripts/meetme.sql doesn't contain all fields
Category: Applications/app_milliwatt
#15386: [patch] Milliwatt() is off by -11dbm
Category: Applications/app_mixmonitor
#15259: MixMonitor is not releasing the file handle on the recorded file
#15699: [patch] using ast_free instead of mixmonitor_free
Category: Applications/app_queue
#14536: [patch] After a caller is processed by app_queue the queue_log
logs the hangup as TRANSFER
#14631: [patch] Ghost calls with queues and spa942 and 922
#15664: [patch] QUEUE_MEMBER_LIST() returns member names instead of
interfaces
Category: Applications/app_stack
#15557: [patch] Gosub() dequotes once more than Macro()
#15617: [patch] crash in LOCAL() if Gosub stack is allocated but empty
Category: Applications/app_voicemail
#14554: [patch] # for fastforward goes beyond end of message
#14932: [patch] asterisk-1.6.0.9-x86_64 segfaults when leaving a voicemail
internally to another extension
#15331: [patch] Log message does not match conditional check
#15333: [patch] add FILE_STORAGE to Voicemail Build Options
#15720: opendir() return code is not checked in last_message_index()
Category: Applications/app_voicemail/IMAP
#14496: [patch] IMAP crash multiple callers / callers hangup at beep
#14597: greetings can not be retrieved from IMAP
#14950: [patch] Greetings are stored as IMAP messages even when
imapgreetings=no
Category: CDR/General
#15751: [patch] Core dump in ast_bridge_call features.c line 2772
Category: Channels/General
#15330: [patch] Using CHANNEL function from ZOMBIE channel stops Asterisk
#15416: No voice on PRI calls with asterisk 1.4.25 & 26
Category: Channels/chan_dahdi
#13917: [patch] fxo modules incorrectly believes channel is answered, if
telco reverses line polarity at off hook.
#14383: priexclusive parameter ignored if pri = pri_cpe ?
#14434: [patch] Dahdi does not wait for wink on outbound calls before
dialing DTMF with Signalling type = em_w
#14434: [patch] Dahdi does not wait for wink on outbound calls before
dialing DTMF with Signalling type = em_w
#14477: pseudo channel disappears after dahdi restart
#14696: reload in console overwrites priindication=outofband setting
#14726: Conditional compilation of a diagnostic message needs an L
modifier to %d for a 64 bit integer
#15248: [patch] Multiple Groups Not working
#15389: [patch] no audio with SIP call to ISDN PRI, if neither Progress or
Proceeding are received.
#15655: [patch] Dialplan starts execution before call is accepted
Category: Channels/chan_iax2
#15361: [patch] AST-2009-001 breaks IAX2 RFC5456 compliance - Timestamps
in POKE/PONG zero in 2 of 4 Bytes
#15404: [patch] Unrequired Debug Message
Category: Channels/chan_misdn
#11974: external lines connected with message !! Got Busy in Connected
State !?!
#12113: [patch] asterisk crash at reload chan_misdn.so
#14355: [patch] Segfault if you transfer a call into a meetme room
#14692: [patch] ISDN-Transfer causes backcall attempt of attendent phone
Category: Channels/chan_sip/General
#11231: [patch] Many retransmits when chan_sip generates multiple
outstanding requests
#12434: Handle wrong at offer/answer in sdp in media description(m=)
#12869: [patch] 'context' doesn't change when 'sip reload' issued when
driven from realtime
#13432: [patch] outboundproxy=proxy.mmmydomain.net where domain can not be
resolved silently removes the sip section
#13623: Asterisk segfaults when using SIP session timers
#14239: [patch] 491-request pending is sent out of dialog
#14464: [patch] lock during simple call processing
#14575: BYE to 408 Request Timeout
#14659: [patch] MWI NOTIFY contains a wrong URI if Asterisk listens to
non-standard port (5060)
#15213: [patch] asterisk lock in sipsock_read for several seconds and drop
sip packets
#15283: [patch] CLI NOTIFY always tries to use UDP, even if the peer is
connected via TCP
#15345: [patch] SIP deadlock in 1.4 revision 199472
#15349: Deadlock in do_monitor() of chan_sip
#15362: [patch] log message output is truncated
#15376: SIP option (SIP_OPT_ flag) is not handled correctly
#15403: [patch] Session timer is not activated
Category: Channels/chan_sip/Interoperability
#13958: SDP replies incorrect - 'a=inactive' - replied to with
'a=sendrecv'
#14465: [patch] Incorrect From: header information when
CALLERPRES=PRES_PROHIB
#14584: [patch] Asterisk does not stop retransmission
#14725: Asterisk doesn't add Route headers in NOTIFY when the SUBSCRIBE
came from a proxy
#15158: [patch] Message: "Unable to handle indication 3"
Revision: 200362
#15442: [patch] Asterisk cannot handle SIP 183 "Session Progress" if no
SDP is contained in it
Category: Channels/chan_sip/Registration
#14344: [patch] Outbound proxy not used for registrations
#14366: [patch] Registration expiry not compatible with some ITSP
#15102: [patch] Registration Deadlock between Asterisk and Polycom
Soundpoint IP 450
#15539: [patch] Register request line contains wrong address when domain
and registrar host differ
Category: Channels/chan_sip/T.38
#14849: [patch] SendFax function not working as expected on > 1.6.0.7
#15182: [patch] T.38 invite does not always comply with RFC 2327
Category: Channels/chan_sip/TCP-TLS
#13865: [patch] SIP/TLS enabled - just one call possible - 481
Call/Transaction Does Not Exist
#14452: in "_sip_tcp_helper_thread" Buffer is filled with dirty bytes
Category: Channels/chan_sip/Video
#15121: [patch] Video support in SIP channel driver appears to be totally
broken
Category: Core/BuildSystem
#15697: most cleaner alaw don't compile
#15698: [patch] If enable DEBUG_FD_LEAKS - h323 can't start.
#15714: [patch] Asterisk won't build with curl unless curl_config is
present
Category: Core/Channels
#14723: ERROR[5003]: channel.c:2043 __ast_read: ast_read() called with no
recorded file descriptor.
Category: Core/Configuration
#14509: [patch] users.conf (and other .conf files) have incorrect
whitespacing
Category: Core/General
#14730: [patch] Fix runlevels in Debian rc files
#15273: [patch] german time (20:01:00 oh clock) is announced wrong
#15649: T38 Faxing failing on 1.6.1 svn
#15667: LOGGER WARNING : error executing after rotate
Category: Core/Internationalization
#15346: [patch] TW is not an ISO Language Code
Category: Core/ManagerInterface
#15397: [patch] segfault in action_coreshowchannels() at manager.c
Category: Core/PBX
#15057: [patch] hints with 2+ devices that include ONHOLD are often set
wrong
#15242: [patch] log does not indicate which function is missing closing
parenthesis
#15303: new_find_extension arguments in wrong order
Category: Documentation
#15518: iax.conf, IP-based access control
#15755: Description in queues.conf on call recording is slightly
misleading
Category: Functions/func_callerid
#15476: callerid(num) is wrong when username is missing
Category: Functions/func_devstate
#15413: [patch] Mapping of extension state to device state is incorrect
Category: Functions/func_iconv
#15169: When building with uClibc, configure script mistakenly assumes
iconv is always available
Category: Functions/func_realtime
#15517: [patch] memory leak in func_realtime
Category: Functions/func_uri
#15439: [patch] URIENCODE() throws a warning when passed an empty string
Category: General
#15420: [patch] No audio on calls from asterisk sip phones to nortel set
until dtmf from sip phone
#15571: [patch] 'received' typos in trunk, in 6 files
#15595: [patch] fix spelling for typos, mainly in comments.
#15595: [patch] fix spelling for typos, mainly in comments.
Category: PBX/pbx_dundi
#15322: [patch] DUNDILOOKUP() does not accept comma as argument separator
Category: Resources/res_config_ldap
#13725: [patch] ERROR[7387]: res_config_ldap.c:1292 update_ldap: Couldn't
modify dn:cn=1001,dc=xxx,dc=xxx because Invalid syntax
#15710: Typo in LDAP schema files on line 598
Category: Resources/res_features
#13794: [patch] CDR for picked up parked call gives answer time < start
time and no record for parking
Category: Resources/res_musiconhold
#15051: [patch] Moh class set in the dialplan is ignored with realtime moh
----------------------------------------------------------------------
Commits Not Associated with an Issue
This is a list of all changes that went into this release that did not
directly close an issue from the issue tracker. The commits may have been
marked as being related to an issue. If that is the case, the issue
numbers are listed here, as well.
+------------------------------------------------------------------------+
| Revision | Author | Summary | Issues |
| | | | Referenced |
|----------+------------+-----------------------------------+------------|
| 199142 | dvossel | Additional updates to | |
| | | AST-2009-001 | |
|----------+------------+-----------------------------------+------------|
| | | __WORDSIZE is not available on | |
| 199858 | seanbright | all platforms, so use sizeof(void | |
| | | *) instead. | |
|----------+------------+-----------------------------------+------------|
| | | The 1.6.0 branch was missing all | |
| 199975 | mmichelson | invite_branch logic. It has now | |
| | | been added. | |
|----------+------------+-----------------------------------+------------|
| 200040 | lmadsen | Fix path for .flavor and .version | #14737 |
|----------+------------+-----------------------------------+------------|
| 200149 | mmichelson | Fix a crash due to a potentially | |
| | | NULL p->options. | |
|----------+------------+-----------------------------------+------------|
| | | Fix all of the parallel build | |
| 200228 | seanbright | warnings issued when running make | |
| | | -j#. | |
|----------+------------+-----------------------------------+------------|
| | | Add INFO to our allowed methods | |
| 200515 | mmichelson | so that endpoints know they may | |
| | | send it to us. | |
|----------+------------+-----------------------------------+------------|
| 200729 | kpfleming | Document the new automatic | |
| | | 'ignoresdpversion' behavior. | |
|----------+------------+-----------------------------------+------------|
| | | Ensure that configure-script | |
| 200767 | kpfleming | testing for compiler attributes | |
| | | actually works. | |
|----------+------------+-----------------------------------+------------|
| | | Fix problems with new compiler | |
| 200986 | kpfleming | attribute checking in configure | |
| | | script. | |
|----------+------------+-----------------------------------+------------|
| | | Improve support for media paths | |
| 201093 | kpfleming | that can generate multiple frames | |
| | | at once. | |
|----------+------------+-----------------------------------+------------|
| | | fix issue with build_contact | |
| 201226 | dvossel | introduced by the "SIP trasnport | |
| | | type issues" commit | |
|----------+------------+-----------------------------------+------------|
| | | Correct AST_LIST_APPEND_LIST | |
| 201263 | kpfleming | behavior when list to be appended | |
| | | is empty. | |
|----------+------------+-----------------------------------+------------|
| | | Change the datastore traversal in | |
| 201459 | mmichelson | ast_do_masquerade to use a safe | |
| | | list traversal. | |
|----------+------------+-----------------------------------+------------|
| 201463 | mmichelson | Fix problem with no audio due to | |
| | | ignoring the SDP. | |
|----------+------------+-----------------------------------+------------|
| | | Fix memory corruption and leakage | #15109, |
| 201612 | russell | related reloads of non files mode | #15123, |
| | | MoH classes. | #15195 |
|----------+------------+-----------------------------------+------------|
| | | One of the changes in 1.6.1 was | |
| 201786 | tilghman | to allow app_directory to use | |
| | | functionality | |
|----------+------------+-----------------------------------+------------|
| 201830 | tilghman | If the "h" extension fails, give | |
| | | it another chance in main/pbx.c. | |
|----------+------------+-----------------------------------+------------|
| | | Added deadlock protection to | |
| 202006 | mnicholson | try_suggested_sip_codec in | |
| | | chan_sip.c. | |
|----------+------------+-----------------------------------+------------|
| | | Standardize return values of | |
| 202259 | russell | load_config() so reload() doesn't | |
| | | report an error on success. | |
|----------+------------+-----------------------------------+------------|
| | | Fix possibility of crashiness | |
| 202263 | russell | during reload in custom fields | |
| | | handling. | |
|----------+------------+-----------------------------------+------------|
| 202416 | russell | Make Polycom subscription type | |
| | | override check more explicit. | |
|----------+------------+-----------------------------------+------------|
| | | Fix lock usage in | |
| 202471 | seanbright | cdr_sqlite3_custom to avoid | |
| | | potential crashes during reload. | |
|----------+------------+-----------------------------------+------------|
| 202498 | russell | Report CallerID change during a | |
| | | masquerade. | |
|----------+------------+-----------------------------------+------------|
| | | I could have sworn I committed | |
| 202763 | mattf | this patch ages ago, but... bug | |
| | | fix with setting NAI properly on | |
| | | linksets in certain situations. | |
|----------+------------+-----------------------------------+------------|
| | | Ensure the default settings are | |
| 202926 | file | applied for T.38 when we set it | |
| | | up for a peer. | |
|----------+------------+-----------------------------------+------------|
| | | Use the handy UNLINK macro | |
| 202968 | mmichelson | instead of hand-coding the same | |
| | | thing in-line. | |
|----------+------------+-----------------------------------+------------|
| 203044 | rmudgett | Improved chan_dahdi.conf pritimer | |
| | | error checking. | |
|----------+------------+-----------------------------------+------------|
| 203117 | russell | Resolve a crash related to a T.38 | |
| | | reinvite race condition. | |
|----------+------------+-----------------------------------+------------|
| 203387 | twilson | I didn't see that Mark already | |
| | | fixed the underlying issue! | |
|----------+------------+-----------------------------------+------------|
| 203447 | dvossel | fixes a few redundant conditions | #15269 |
|----------+------------+-----------------------------------+------------|
| | | Improve T.38 negotiation by | |
| 203701 | file | exchanging session parameters | |
| | | between application and channel. | |
|----------+------------+-----------------------------------+------------|
| 203711 | jpeeler | whitespace fix | |
|----------+------------+-----------------------------------+------------|
| | | reverse whitespace change 203711 | |
| | | that was based on looking at | |
| 203717 | jpeeler | sig_analog (which has about a | |
| | | 1000 line indentation change that | |
| | | is not worth doing here) | |
|----------+------------+-----------------------------------+------------|
| | | Fix ast_say_counted_noun to | |
| 204476 | qwell | correctly handle Polish. Fix a | |
| | | comment typo in passing. | |
|----------+------------+-----------------------------------+------------|
| 204652 | dvossel | removes fake dialog_unref and | |
| | | dialog_ref function calls. | |
|----------+------------+-----------------------------------+------------|
| | | Improve handling of | |
| 204949 | kpfleming | AST_CONTROL_T38 and | |
| | | AST_CONTROL_T38_PARAMETERS for | |
| | | non-T.38-capable channels. | |
|----------+------------+-----------------------------------+------------|
| 204980 | tilghman | Restore Hungarian (mistakenly | |
| | | removed during merge) | |
|----------+------------+-----------------------------------+------------|
| | | Move OpenSSL initialization to a | |
| 205139 | russell | single place, make library usage | |
| | | thread-safe. | |
|----------+------------+-----------------------------------+------------|
| 205152 | russell | Use tabs instead of spaces for | |
| | | indentation. | |
|----------+------------+-----------------------------------+------------|
| | | Add redirection warnings for the | |
| 205200 | tilghman | invalid language codes previously | |
| | | removed. | |
|----------+------------+-----------------------------------+------------|
| 205220 | dvossel | ast_samp2tv needs floating point | |
| | | for 16khz audio | |
|----------+------------+-----------------------------------+------------|
| 205224 | tilghman | oops, fixing build | |
|----------+------------+-----------------------------------+------------|
| | | Update config.guess and | |
| 205296 | qwell | config.sub from the | |
| | | savannah.gnu.org git repo. | |
|----------+------------+-----------------------------------+------------|
| 205415 | dvossel | moving ast_devstate_to_extenstate | |
| | | to pbx.c from devicestate.c | |
|----------+------------+-----------------------------------+------------|
| | | pthread_self returns a pthread_t | |
| 205533 | mvanbaak | which is not an unsigned int on | |
| | | all | |
|----------+------------+-----------------------------------+------------|
| 205597 | dvossel | Fixes 8khz assumptions | |
|----------+------------+-----------------------------------+------------|
| 205608 | dvossel | Changing ast_samp2tv to not use | |
| | | floating point. | |
|----------+------------+-----------------------------------+------------|
| 205880 | mmichelson | Fix build. | |
|----------+------------+-----------------------------------+------------|
| 205940 | kpfleming | Update comments about the level | |
| | | of T.38 support in Asterisk. | |
|----------+------------+-----------------------------------+------------|
| 206369 | rmudgett | Fix some memory leaks in | |
| | | chan_misdn. | |
|----------+------------+-----------------------------------+------------|
| 206387 | russell | Ensure apathetic replies are sent | |
| | | out on the proper socket. | |
|----------+------------+-----------------------------------+------------|
| | | Only print debug info in | |
| 206637 | seanbright | codec_dahdi if we are asking for | |
| | | it. | |
|----------+------------+-----------------------------------+------------|
| 206762 | rmudgett | Merged revision 206700 from | |
|----------+------------+-----------------------------------+------------|
| 206871 | dvossel | avoid segfault caused by user | |
| | | error | |
|----------+------------+-----------------------------------+------------|
| 207097 | jpeeler | Update some missing allowed | |
| | | options for overlapdial | |
|----------+------------+-----------------------------------+------------|
| 207286 | rmudgett | | |
|----------+------------+-----------------------------------+------------|
| 207683 | kpfleming | Ensure that user-provided CFLAGS | |
| | | and LDFLAGS are honored. | |
|----------+------------+-----------------------------------+------------|
| 207725 | mmichelson | Document default timeout for AMI | |
| | | originations. | |
|----------+------------+-----------------------------------+------------|
| | | Revert r207636, this approach | |
| 207783 | jpeeler | could potentially block for an | |
| | | unacceptable | |
|----------+------------+-----------------------------------+------------|
| 208316 | mmichelson | Remove inaccurate XXX comment. | |
|----------+------------+-----------------------------------+------------|
| | | Rework of T.38 negotiation and | |
| 208468 | kpfleming | UDPTL API to address | |
| | | interoperability problems | |
|----------+------------+-----------------------------------+------------|
| 208502 | kpfleming | Use correct formatting for T.38 | |
| | | change note in UPGRADE.txt | |
|----------+------------+-----------------------------------+------------|
| | | Resolve a T.38 negotiation issue | |
| 208549 | kpfleming | left over from the udptl-updates | |
| | | merge. | |
|----------+------------+-----------------------------------+------------|
| 208594 | russell | Do not log an ERROR if | |
| | | autoservice_stop() returns -1. | |
|----------+------------+-----------------------------------+------------|
| 208752 | jpeeler | Fix compiling under dev-mode with | |
| | | gcc 4.4.0. | |
|----------+------------+-----------------------------------+------------|
| 208925 | jpeeler | Fix logic errors from 208746 | |
|----------+------------+-----------------------------------+------------|
| | | Restore explicit export of | |
| 209057 | kpfleming | ASTCFLAGS/ASTLDFLAGS and | |
| | | underscore-variants to sub-makes. | |
|----------+------------+-----------------------------------+------------|
| 209061 | dbrooks | Just replacing typos "recieved" | #15360 |
| | | with "received". | |
|----------+------------+-----------------------------------+------------|
| 209259 | kpfleming | Make T.38 switchover in | |
| | | ReceiveFAX synchronous. | |
|----------+------------+-----------------------------------+------------|
| 209280 | kpfleming | Cleanup T.38 negotiation changes. | |
|----------+------------+-----------------------------------+------------|
| 209325 | tilghman | Publish French extra sounds | |
|----------+------------+-----------------------------------+------------|
| 209394 | kpfleming | Correct error in backport of | |
| | | latest app_fax fixes. | |
|----------+------------+-----------------------------------+------------|
| | | Fix some places where | |
| 209712 | russell | ast_event_type was used instead | |
| | | of ast_event_ie_type. | |
|----------+------------+-----------------------------------+------------|
| 209762 | kpfleming | Minor changes inspired by testing | |
| | | with latest GCC. | |
|----------+------------+-----------------------------------+------------|
| 209896 | russell | Resolve a valgrind warning about | #15396 |
| | | a read from uninitialized memory. | |
|----------+------------+-----------------------------------+------------|
| 211114 | russell | Resolve a deadlock involving | |
| | | app_chanspy and masquerades. | |
|----------+------------+-----------------------------------+------------|
| 211276 | tilghman | Small oops. Clear the flags which | |
| | | have been checked. | |
|----------+------------+-----------------------------------+------------|
| 211551 | tilghman | AST-2009-005 | |
|----------+------------+-----------------------------------+------------|
| 211587 | tilghman | Conversion specifiers, not format | |
| | | specifiers | |
|----------+------------+-----------------------------------+------------|
| | | Check an actual populated | |
| 212068 | file | variable when seeing if we need | |
| | | to do video or not. | |
|----------+------------+-----------------------------------+------------|
| | | Ensure that T38FaxVersion is put | |
| 212114 | kpfleming | into outgoing SDP in the proper | |
| | | case. | |
|----------+------------+-----------------------------------+------------|
| 212432 | rmudgett | Fix uninitialized variable. | |
|----------+------------+-----------------------------------+------------|
| 212765 | rmudgett | Removed some deadwood and added | |
| | | some doxygen comments. | |
|----------+------------+-----------------------------------+------------|
| 212926 | kpfleming | Convert this branch to Opsound | |
| | | music-on-hold. | |
|----------+------------+-----------------------------------+------------|
| | | Remove some | |
| 212941 | kpfleming | accidentally-committed | |
| | | properties. | |
|----------+------------+-----------------------------------+------------|
| | | Make autoheader descriptions | |
| 214361 | tilghman | render correctly in our | #14906 |
| | | autoconfig.h file. | |
|----------+------------+-----------------------------------+------------|
| | | One more build system change, to | |
| 214474 | tilghman | make the descriptions look | |
| | | better, if we have better | |
| | | information. | |
+------------------------------------------------------------------------+
- 1.6.0.15 fixes AST-2009-006 which is a remote DOS issue in IAX2
|
|
|
|
security fix
Revisions pulled up:
- pkgsrc/mail/libspf2/Makefile 1.7
- pkgsrc/mail/libspf2/distinfo 1.4
Files added:
pkgsrc/mail/libspf2/patches/patch-aa 1.1
Module Name: pkgsrc
Committed By: tron
Date: Tue Sep 8 10:36:27 UTC 2009
Modified Files:
pkgsrc/mail/libspf2: Makefile distinfo
Added Files:
pkgsrc/mail/libspf2/patches: patch-aa
Log Message:
Fix an abort() caused by miscalculating the size of an internal buffer.
This can crash applications using "libspf2" (e.g. "milter-greylist")
in an e-mail gets delivered via SMTP over IPv6 depending on the
remote machine's IPv6 address.
To generate a diff of this commit:
cvs rdiff -u -r1.6 -r1.7 pkgsrc/mail/libspf2/Makefile
cvs rdiff -u -r1.3 -r1.4 pkgsrc/mail/libspf2/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/mail/libspf2/patches/patch-aa
|
|
security fix
Revisions pulled up:
- pkgsrc/textproc/expat/Makefile 1.24
- pkgsrc/textproc/expat/distinfo 1.17
Files added:
pkgsrc/textproc/expat/patches/patch-aa 1.7
Module Name: pkgsrc
Committed By: drochner
Date: Thu Sep 10 09:59:21 UTC 2009
Modified Files:
pkgsrc/textproc/expat: Makefile distinfo
Added Files:
pkgsrc/textproc/expat/patches: patch-aa
Log Message:
fix SA36425: possible DoS due to an error when parsing certain
UTF-8 sequences
(patch from Python CVS)
bump PKGREVISION
To generate a diff of this commit:
cvs rdiff -u -r1.23 -r1.24 pkgsrc/textproc/expat/Makefile
cvs rdiff -u -r1.16 -r1.17 pkgsrc/textproc/expat/distinfo
cvs rdiff -u -r0 -r1.7 pkgsrc/textproc/expat/patches/patch-aa
|
|
|
|
firefox3: security update
Revisions pulled up:
- www/firefox3/Makefile 1.37
- www/firefox3/distinfo 1.28
---
Module Name: pkgsrc
Committed By: tnn
Date: Thu Sep 10 00:05:21 UTC 2009
Modified Files:
pkgsrc/www/firefox3: Makefile distinfo
Log Message:
Update to firefox3-3.0.14. Bugfix and security release.
MFSA 2009-51 Chrome privilege escalation with FeedWriter
MFSA 2009-50 Location bar spoofing via tall line-height Unicode
characters MFSA 2009-49 TreeColumns dangling pointer vulnerability
MFSA 2009-48 Insufficient warning for PKCS11 module installation and
removal MFSA 2009-47 Crashes with evidence of memory corruption
(rv:1.9.1.3/1.9.0.14)
|
|
|
|
asterisk: security update
Revisions pulled up:
- comms/asterisk/Makefile 1.68
- comms/asterisk/PLIST.common 1.17
- comms/asterisk/distinfo 1.44
---
Module Name: pkgsrc
Committed By: jnemeth
Date: Sat Sep 5 01:44:19 UTC 2009
Modified Files:
pkgsrc/comms/asterisk: Makefile PLIST.common distinfo
Log Message:
update to asterisk 1.2.35 which fixes AST-2009-006 -- IAX2 DOS vulnerability
|
|
pbulk-base: bug fix update
pbulk: bug fix update
Revisions pulled up:
- pkgtools/pbulk-base/Makefile 1.2
- pkgtools/pbulk/Makefile 1.55
- pkgtools/pbulk/files/pbulk/lib/event.c 1.6
- pkgtools/pbulk/files/pbulk/scripts/pkg-build 1.18
--
Module Name: pkgsrc
Committed By: joerg
Date: Sun Aug 23 18:02:04 UTC 2009
Modified Files:
pkgsrc/pkgtools/pbulk-base: Makefile
pkgsrc/pkgtools/pbulk/files/pbulk/lib: event.c
Log Message:
pbulk-base-0.39:
Fix ordering of event handler vs queue modification. This can result in
queue corruption or use after free when the master can't handle a
request before the next arrives. From Matt Dillon.
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri Sep 4 22:06:18 UTC 2009
Modified Files:
pkgsrc/pkgtools/pbulk: Makefile
pkgsrc/pkgtools/pbulk/files/pbulk/scripts: pkg-build
Log Message:
pbulk-0.41:
Create & chown work.log for destdir builds too, as the normal build is
run unprivileged.
|
|
|
|
|
|
htmldoc: security patch
Revisions pulled up:
- www/htmldoc/Makefile 1.27 via patch
- www/htmldoc/distinfo 1.9
- www/htmldoc/patches/patch-ab 1.3
- www/htmldoc/patches/patch-ac 1.1
- www/htmldoc/patches/patch-ad 1.1
---
Module Name: pkgsrc
Committed By: tez
Date: Thu Aug 27 21:51:37 UTC 2009
Modified Files:
pkgsrc/www/htmldoc: Makefile distinfo
Added Files:
pkgsrc/www/htmldoc/patches: patch-ab patch-ac patch-ad
Log Message:
Fix for Secunia Advisory: SA35780
from http://bugs.gentoo.org/attachment.cgi?id=199846
|
|
postfix: bug fix update
Revisions pulled up:
- mail/postfix/Makefile 1.229-1.230
- mail/postfix/distinfo 1.128
---
Module Name: pkgsrc
Committed By: heinz
Date: Sun Aug 9 21:15:31 UTC 2009
Modified Files:
pkgsrc/mail/postfix: Makefile
Log Message:
Enabled installation to DESTDIR. (OK by martti@).
---
Module Name: pkgsrc
Committed By: martti
Date: Mon Aug 31 09:37:35 UTC 2009
Modified Files:
pkgsrc/mail/postfix: Makefile distinfo
Log Message:
Updated mail/postfix to 2.6.5
The stable release Postfix 2.6.5 addresses the defects described
below (some already addressed with the not-announced Postfix 2.6.3
release). These defects are also addressed in the legacy releases
that are still maintained: Postfix 2.5.9, 2.4.13 and 2.3.19.
Do not use Postfix 2.6.4, 2.5.8, 2.4.12, 2.3.18, 2.7-20090807, and
2.7-20090807-nonprod. These contain a DNS workaround that causes
more trouble than it prevents. It is removed until further notice.
Defects fixed with Postfix 2.6.3, 2.5.9, 2.4.13 and 2.3.19:
- The Postfix Milter client got out of step with a Milter application
after the application sent a "quarantine" request at end-of-message
time. The Milter application would still be in the end-of-message
state, while Postfix would already be working on the next SMTP
event, typically, QUIT or MAIL FROM. In the latter case, Milter
responses for the previously-received email message would be
applied towards the next MAIL FROM transaction. This problem was
diagnosed with help from Alban Deniz.
Defects fixed with Postfix 2.6.5, 2.5.9, 2.4.13 and 2.3.19:
- The Postfix SMTP server would abort with an "unexpected lookup
table" error when an SMTPD policy server was mis-configured in a
particular way.
|
|
|
