| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
Based on GIT commit
https://github.com/phpmyadmin/phpmyadmin/commit/968d5d5f486820bfa30af046f063b9f23304e14a
RT ticket 4333.
|
|
|
|
multimedia/adobe-flash-plugin11: security update
Revisions pulled up:
- multimedia/adobe-flash-plugin11/Makefile 1.25
- multimedia/adobe-flash-plugin11/distinfo 1.23
---
Module Name: pkgsrc
Committed By: obache
Date: Fri Feb 21 08:50:20 UTC 2014
Modified Files:
pkgsrc/multimedia/adobe-flash-plugin11: Makefile distinfo
Log Message:
Update adobe-flash-plugin11 to 11.2.202.341 for APSB14-07.
|
|
|
|
security/gnutls: security patch
Apply patch to fix security vulnerability reported in CVE-2014-1959.
|
|
print/mupdf: security patch
Revisions pulled up:
- print/mupdf/Makefile 1.21 via patch
- print/mupdf/distinfo 1.11 via patch
- print/mupdf/patches/patch-ba 1.1 via patch
- print/mupdf/patches/patch-bb 1.1 via patch
- print/mupdf/patches/patch-bc 1.1 via patch
- print/mupdf/patches/patch-bd 1.1 via patch
---
Module Name: pkgsrc
Committed By: drochner
Date: Fri Feb 14 17:49:41 UTC 2014
Modified Files:
pkgsrc/print/mupdf: Makefile distinfo
Added Files:
pkgsrc/print/mupdf/patches: patch-ba patch-bb patch-bc patch-bd
Log Message:
add patch from upstream to fix buffer overflow in xps_parse_color()
bump PKGREV
|
|
|
|
sysutils/xentools41: security patch
Revisions pulled up:
- sysutils/xentools41/Makefile 1.44
- sysutils/xentools41/distinfo 1.35
- sysutils/xentools41/patches/patch-CVE-2014-1950 1.1
---
Module Name: pkgsrc
Committed By: drochner
Date: Thu Feb 13 11:12:58 UTC 2014
Modified Files:
pkgsrc/sysutils/xentools41: Makefile distinfo
Added Files:
pkgsrc/sysutils/xentools41/patches: patch-CVE-2014-1950
Log Message:
add patch from upstream to fix use-after-free under memory pressure
(CVE-2014-1950)
bump PKGREV
|
|
|
|
graphics/glew: build fix
Revisions pulled up:
- graphics/glew/Makefile 1.17
---
Module Name: pkgsrc
Committed By: bouyer
Date: Sun Feb 16 22:45:54 UTC 2014
Modified Files:
pkgsrc/graphics/glew: Makefile
Log Message:
For some reason NetBSD is identified as 'netbsdelf' here.
Add a symlink from Makefile.netbsdelf to Makefile.netbsd to that
the package can build.
|
|
|
|
mail/thunderbird: security update
Revisions pulled up:
- mail/thunderbird/Makefile 1.132
- mail/thunderbird/distinfo 1.135
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu Feb 13 18:51:54 UTC 2014
Modified Files:
pkgsrc/mail/thunderbird: Makefile distinfo
Log Message:
Update "thunderbird" package to version 24.3.0. Changes since 24.2.0:
- MFSA 2014-13 Inconsistent JavaScript handling of access to Window objects
- MFSA 2014-12 NSS ticket handling issues
- MFSA 2014-09 Cross-origin information leak through web workers
- MFSA 2014-08 Use-after-free with imgRequestProxy and image proccessing
- MFSA 2014-04 Incorrect use of discarded images by RasterImage
- MFSA 2014-02 Clone protected content with XBL scopes
- MFSA 2014-01 Miscellaneous memory safety hazards (rv:27.0 / rv:24.3)
- Improved handling of reply-to (bug 933555)
To generate a diff of this commit:
cvs rdiff -u -r1.131 -r1.132 pkgsrc/mail/thunderbird/Makefile
cvs rdiff -u -r1.134 -r1.135 pkgsrc/mail/thunderbird/distinfo
|
|
|
|
lang/python26: security patch
Revisions pulled up:
- lang/python26/Makefile 1.57
- lang/python26/distinfo 1.53
- lang/python26/patches/patch-ap 1.4
---
Module Name: pkgsrc
Committed By: drochner
Date: Sun Feb 9 13:47:10 UTC 2014
Modified Files:
pkgsrc/lang/python26: Makefile distinfo
pkgsrc/lang/python26/patches: patch-ap
Log Message:
adopt the socket.recvfrom_into() security fix from Python-2.7
bump PKGREV
|
|
www/contao32: security update
Revisions pulled up:
- www/contao/Makefile.common 1.61
- www/contao32/distinfo 1.8
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 13 14:12:20 UTC 2014
Modified Files:
pkgsrc/www/contao: Makefile.common
pkgsrc/www/contao32: distinfo
Log Message:
Update contao32 to 3.2.7.
Version 3.2.7 (2014-02-13)
--------------------------
### Fixed
Fix another weakness in the `Input` class and further harden the `deser=
ialize()`
function. Thanks to Martin Ausw=F6ger for his input.
|
|
www/contao211: security update
Revisions pulled up:
- www/contao/Makefile.common 1.60
- www/contao211/distinfo 1.21
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 13 14:09:47 UTC 2014
Modified Files:
pkgsrc/www/contao: Makefile.common
pkgsrc/www/contao211: distinfo
Log Message:
Update contao211 to 2.11.16.
Version 2.11.16 (2014-02-13)
----------------------------
### Fixed
Fix another weakness in the `Input` class and further harden the `deser=
ialize()`
function. Thanks to Martin Ausw=F6ger for his input.
|
|
www/contao32: security update
Revisions pulled up:
- www/contao/Makefile.common 1.59
- www/contao32/distinfo 1.7
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 13 00:38:14 UTC 2014
Modified Files:
pkgsrc/www/contao: Makefile.common
pkgsrc/www/contao32: distinfo
Log Message:
Update contao32 to 3.2.6.
Version 3.2.6 (2014-02-12)
--------------------------
### Fixed
Further harden the `deserialize()` function and the `Input` class (see #6724).
|
|
|
|
www/contao211: security update
Revisions pulled up:
- www/contao/Makefile.common 1.58
- www/contao211/distinfo 1.20
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 13 00:36:38 UTC 2014
Modified Files:
pkgsrc/www/contao211: distinfo
Log Message:
Update contao211 to 2.11.15.
Version 2.11.15 (2014-02-12)
----------------------------
### Fixed
Further harden the `deserialize()` function and the `Input` class (see #6724).
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 13 00:37:27 UTC 2014
Modified Files:
pkgsrc/www/contao: Makefile.common
Log Message:
Update contao211 to Contao 2.11.15.
Version 2.11.15 (2014-02-12)
----------------------------
### Fixed
Further harden the `deserialize()` function and the `Input` class (see #6724).
|
|
|
|
security/py-denyhosts: security patch
Revisions pulled up:
- security/py-denyhosts/Makefile 1.11
- security/py-denyhosts/distinfo 1.6
- security/py-denyhosts/patches/patch-af 1.3
---
Module Name: pkgsrc
Committed By: pettai
Date: Tue Feb 4 15:38:16 UTC 2014
Modified Files:
pkgsrc/security/py-denyhosts: Makefile distinfo
pkgsrc/security/py-denyhosts/patches: patch-af
Log Message:
Added DSA-2826-2 fix
|
|
lang/python33: security patch
Revisions pulled up:
- lang/python33/Makefile 1.14
- lang/python33/distinfo 1.8
- lang/python33/patches/patch-Modules_socketmodule.c 1.1
---
Module Name: pkgsrc
Committed By: obache
Date: Tue Feb 11 05:52:56 UTC 2014
Modified Files:
pkgsrc/lang/python33: Makefile distinfo
Added Files:
pkgsrc/lang/python33/patches: patch-Modules_socketmodule.c
Log Message:
Fixes SA56624, taken from upstream.
Bump PKGREVISION.
|
|
|
|
lang/python27: security fix
Revisions pulled up:
- lang/python27/Makefile 1.34
- lang/python27/distinfo 1.30
- lang/python27/patches/patch-Modules_socketmodule.c 1.1
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun Feb 9 09:02:50 UTC 2014
Modified Files:
pkgsrc/lang/python27: Makefile distinfo
Added Files:
pkgsrc/lang/python27/patches: patch-Modules_socketmodule.c
Log Message:
Add fix for security vulnerability reported in SA56624.
Patch taken from Python Mercurial repository.
To generate a diff of this commit:
cvs rdiff -u -r1.33 -r1.34 pkgsrc/lang/python27/Makefile
cvs rdiff -u -r1.29 -r1.30 pkgsrc/lang/python27/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/lang/python27/patches/patch-Modules_socketmodule.c
|
|
"squid3" package were really committed.
|
|
www/squid3: bug fix update
Revisions pulled up:
- www/squid3/Makefile 1.25-1.27
- www/squid3/PLIST 1.8
- www/squid3/distinfo 1.18-1.19
- www/squid3/patches/patch-compat_os_hpux.h deleted
- www/squid3/patches/patch-include_SquidNew.h deleted
- www/squid3/patches/patch-src_base_Vector.h deleted
---
Module Name: pkgsrc
Committed By: adam
Date: Tue Dec 31 11:54:32 UTC 2013
Modified Files:
pkgsrc/www/squid3: Makefile distinfo
Log Message:
Changes 3.4.2:
* Added missing header in client_side_reply.cc for clang
* Bug 3498: FTP PUT assertion Server.cc:246: 'r->body_pipe != NULL'
* Bug 3985: 60s limit introduced by balance_on_multiple_ip breaks bad IP recovery
* Fix \-unescaping in quoted strings from helpers
* WCCPv2: fix assertion 'Cannot convert non-IPv4 to IPv4' on FreeBSD
* Fix missing cast in rev.13162
* Bug 3980: FATAL ERROR due to max_user_ip -s option
* Fix linker errors "relocation R_X86_64_32 against .rodata"
* Regression in URL helper API
* Bug 3806: Caching responses with Vary header
* Set sslcrtvalidator_children concurrency option default value to 1
* Release notes: update HTML version
---
Module Name: pkgsrc
Committed By: adam
Date: Tue Feb 4 14:23:01 UTC 2014
Modified Files:
pkgsrc/www/squid3: Makefile distinfo
Removed Files:
pkgsrc/www/squid3/patches: patch-compat_os_hpux.h
patch-include_SquidNew.h patch-src_base_Vector.h
Log Message:
Changes 3.4.3:
* Update CONTRIBUTORS
* Fix peerSelectDnsResults() IP address cycling
* Comm job callbacks need job's cbdata pointer, not a job pointer.
* Bug 3975: atomic detection cross-compilation failure
* Bug 3954: compile failure in CpuAffinity.cc
* Bug 3971: "cannot aggregate mgr:client_list: cmd->profile != NULL" in SMP mode
* Initialize asyncLoopDepth_ in constructor
* Fix external_acl_type async loop failures
* Bug 4008: HttpHeader warnOnError should be an int not a bool
* Fix memory leak in peer cache Digest exchange
* Bug 3927: tests/testRock fatal.cc required
* Bug 4002: clang 3.4 unable to compile
* Document and enforce invariant on Format::Token.divisor
* Bug 4002: clang 3.4 unable to compile
* Bug 3996: Malformed DNS reply leads to crash
* Disable error page translation by default in builds
* Bug 3995: compile error on CentOS 5 with GCC 4.1.2
* Centrally destroy all ACLs to avoid destruction segfaults
---
Module Name: pkgsrc
Committed By: obache
Date: Fri Feb 7 05:28:19 UTC 2014
Modified Files:
pkgsrc/www/squid3: Makefile PLIST
Log Message:
Remove tons of unwanted dir in INSTALLATION_DIRS, and remove last backslash,
it will concat to next line "SPECIAL_PERMS", then it result in creating unwanted
directory and let "pinger" to install into wrong directry, and permission is not
set correctly.
Bump PKGREVISION.
|
|
|
|
textproc/libyaml: security update
Revisions pulled up:
- textproc/libyaml/Makefile 1.6
- textproc/libyaml/distinfo 1.4
---
Module Name: pkgsrc
Committed By: drochner
Date: Wed Feb 5 11:14:07 UTC 2014
Modified Files:
pkgsrc/textproc/libyaml: Makefile distinfo
Log Message:
update to 0.1.5
changes:
-fix buffer overflow (CVE-2013-6393)
-more hardening and minor fixes
pkgsrc change: added "test" target
|
|
|
|
multimedia/adobe-flash-plugin11: security update
Revisions pulled up:
- multimedia/adobe-flash-plugin11/Makefile 1.24
- multimedia/adobe-flash-plugin11/distinfo 1.22
---
Module Name: pkgsrc
Committed By: obache
Date: Thu Feb 6 08:32:01 UTC 2014
Modified Files:
pkgsrc/multimedia/adobe-flash-plugin11: Makefile distinfo
Log Message:
Update adobe-flash-plugin11 to 11.2.202.336 for APSB14-04.
|
|
|
|
|
|
emulators/dosbox: build fix
Revisions pulled up:
- emulators/dosbox/Makefile 1.38
---
Module Name: pkgsrc
Committed By: obache
Date: Wed Feb 5 08:40:11 UTC 2014
Modified Files:
pkgsrc/emulators/dosbox: Makefile
Log Message:
Restrict CPPFLAGS=-fPIC to clang only, as changed reason.
At least, It break build on NetBSD-i386 with buitin gcc, PR pkg/48538.
No build failure on NetBSD-amd64 with builtin gcc.
|
|
|
|
graphics/cogl: bug fix patch
Revisions pulled up:
- graphics/cogl/options.mk 1.3
---
Module Name: pkgsrc
Committed By: obache
Date: Sun Jan 26 08:43:29 UTC 2014
Modified Files:
pkgsrc/graphics/cogl: options.mk
Log Message:
specify gl-libname without extension and shlib major version.
default ligGL.so.1 match to pkgsrc one with ELF, but not for builtin one.
|
|
|
|
net/bind98: build fix
Revisions pulled up:
- net/bind98/distinfo 1.27
- net/bind98/options.mk 1.9
---
Module Name: pkgsrc
Committed By: pettai
Date: Mon Jan 27 21:25:21 UTC 2014
Modified Files:
pkgsrc/net/bind98: distinfo options.mk
Log Message:
Fetch the correct rl-9.8.6.patch file
Log Message:
Update distfile to reflect the new rrl patch
|
|
www/contao211: security update
www/contao32: security update
Revisions pulled up:
- www/contao/Makefile.common 1.54-1.57
- www/contao211/distinfo 1.19
- www/contao32/PLIST 1.4
- www/contao32/distinfo 1.5-1.6
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 21 16:20:09 UTC 2014
Modified Files:
pkgsrc/www/contao: Makefile.common
pkgsrc/www/contao32: PLIST distinfo
Log Message:
Update contao32 to 3.2.4.
Version 3.2.4 (2014-01-20)
--------------------------
### Fixed
Updated the Russian translation of the TinyMCE "typolinks" plugins (see #6224).
### Fixed
Do not create multiple stylect layers upon Ajax changes.
### Fixed
Some DCAs were missing the "rem" unit (see #6634).
### Fixed
Correctly trim the SQL statements in the `Database` class (see #6623).
### Fixed
Fix some broken back end icons (see #6214).
### Fixed
Show a hint in the news archive menu if there are no items (see #5888).
### Fixed
Prevent the back end tool tips from exceeding the screen width (see #6639).
### Fixed
Support the Google+ vanity name in addition to the numeric ID (see #6454).
### Fixed
Correctly detect Android tablets in the `Environment` class (see #5869).
### Fixed
Correctly resolve the module dependencies (see #6606).
### Fixed
Correctly unset the PHP session cookie depending on its parameters.
### Fixed
Fixed the XHTML variant of the comments form (see #5675).
### Fixed
Correctly assign articles to columns (see #6595).
### Fixed
Correctly merge the CSS classes in the `Hybrid` class (see #6601).
---
Module Name: pkgsrc
Committed By: wiz
Date: Mon Jan 27 18:41:15 UTC 2014
Modified Files:
pkgsrc/audio/chromaprint: Makefile
pkgsrc/converters/py-simplejson: Makefile
pkgsrc/cross/nios2: Makefile.common
pkgsrc/databases/ocaml-sqlite3: Makefile
pkgsrc/devel/bzr: Makefile
pkgsrc/devel/delta: Makefile
pkgsrc/devel/gearmand: Makefile
pkgsrc/devel/gitolite: Makefile
pkgsrc/devel/javacc: Makefile
pkgsrc/devel/jq: Makefile
pkgsrc/devel/libdbusmenu-qt: Makefile
pkgsrc/devel/liblangtag: Makefile
pkgsrc/devel/lua-gi: Makefile
pkgsrc/devel/lua-lrexlib: Makefile.common
pkgsrc/devel/lua-posix: Makefile
pkgsrc/devel/magit: Makefile
pkgsrc/devel/opengrok: Makefile
pkgsrc/devel/py-greenlet: Makefile
pkgsrc/devel/py-pip: Makefile
pkgsrc/devel/py-virtualenv: Makefile
pkgsrc/devel/sparse: Makefile
pkgsrc/filesystems/cloudfuse: Makefile
pkgsrc/filesystems/fs-utils: Makefile
pkgsrc/filesystems/tahoe-lafs: Makefile
pkgsrc/fonts/kanjistrokeorders-ttf: Makefile
pkgsrc/fonts/liberation-ttf: Makefile
pkgsrc/fonts/ricty-ttf: Makefile
pkgsrc/games/wargames: Makefile
pkgsrc/graphics/camlimages: Makefile
pkgsrc/graphics/openimageio: Makefile
pkgsrc/graphics/py-matplotlib-tk: Makefile
pkgsrc/mail/imapfilter: Makefile
pkgsrc/mail/imapsync: Makefile
pkgsrc/math/cgal: Makefile
pkgsrc/math/eigen2: Makefile
pkgsrc/math/eigen3: Makefile
pkgsrc/math/fityk: Makefile
pkgsrc/misc/libcarddav: Makefile
pkgsrc/misc/libreoffice: Makefile
pkgsrc/multimedia/transcode: Makefile
pkgsrc/net/dnscheck: Makefile
pkgsrc/net/fpdns: Makefile
pkgsrc/net/get-flash-videos: Makefile
pkgsrc/net/knot: Makefile
pkgsrc/net/lua-socket: Makefile
pkgsrc/net/netcat-openbsd: Makefile
pkgsrc/net/py-amqp: Makefile
pkgsrc/net/rabbitmq-c: Makefile
pkgsrc/net/ruby-stompserver: Makefile
pkgsrc/net/tor: Makefile
pkgsrc/pkgtools/pkgin: Makefile
pkgsrc/print/qpdfview: Makefile
pkgsrc/security/libssh: Makefile
pkgsrc/security/lua-sec: Makefile
pkgsrc/security/pkcs11-helper: Makefile
pkgsrc/security/py-ecdsa: Makefile
pkgsrc/security/py-paramiko: Makefile
pkgsrc/sysutils/dc-tools: Makefile
pkgsrc/sysutils/fabric: Makefile
pkgsrc/sysutils/k4dirstat: Makefile
pkgsrc/sysutils/logrotate: Makefile
pkgsrc/sysutils/salt: Makefile
pkgsrc/textproc/xmlto: Makefile
pkgsrc/time/ical: Makefile
pkgsrc/wm/pekwm: Makefile
pkgsrc/www/contao: Makefile.common
pkgsrc/www/contao211-translations: Makefile
pkgsrc/www/php-tt-rss: Makefile
pkgsrc/www/py-flask-bootstrap: Makefile
pkgsrc/www/py-flask-wtf: Makefile
pkgsrc/www/py-http-parser: Makefile
pkgsrc/x11/appmenu-qt: Makefile
pkgsrc/x11/elementary-icon-theme: Makefile
pkgsrc/x11/razor-qt: Makefile
Log Message:
Do not set FETCH_USING, should not be set in a package Makefile.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 3 15:20:39 UTC 2014
Modified Files:
pkgsrc/www/contao: Makefile.common
pkgsrc/www/contao211: distinfo
Log Message:
Update contao211 package to 2.11.14, fix for CVE-2014-1860.
Version 2.11.14 (2014-02-03)
----------------------------
### Fixed
Do not pass POST data to the `deserialize()` function, so it is not vulnerable
to PHP object injection. Thanks to Pedro Ribeiro for his input (see #6695).
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 3 15:23:22 UTC 2014
Modified Files:
pkgsrc/www/contao: Makefile.common
pkgsrc/www/contao32: distinfo
Log Message:
Update contao32 to 3.2.5, including fix for CVE-2014-1860.
* pkgsrc change: remove obsolete lines for contao31.
Version 3.2.5 (2014-02-03)
--------------------------
### Fixed
Correctly load the parent pages in the navigation modules (see #6696).
### Fixed
Correctly encode URLs with GET parameters in the syndication links (see #6683).
### Fixed
Do not pass POST data to the `deserialize()` function, so it is not vulnerable
to PHP object injection. Thanks to Pedro Ribeiro for his input (see #6695).
### Fixed
Allow any character in passwords, especially the less-than symbol (see #6447).
### Fixed
Purge the image cache if a file is being renamed (see #6641).
### Fixed
Preserve tags in custom CSS definitions (see #6667).
### Fixed
Make the swipe CSS selectors more specific (see #6666).
### Fixed
Correctly optimize floating-point numbers in style sheets (see #6674).
|
|
www/drupal7: security update
Revisions pulled up:
- www/drupal7/Makefile 1.23-1.24
- www/drupal7/PLIST 1.8
- www/drupal7/distinfo 1.16-1.17
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 11 17:06:37 UTC 2014
Modified Files:
pkgsrc/www/drupal7: Makefile PLIST distinfo
Log Message:
Update drupal7 to 7.25.
Drupal 7.25, 2014-01-02
-----------------------
- Fixed a bug in node_save() which prevented the saved node from being updated
in hook_node_insert() and other similar hooks.
- Added a meta tag to install.php to prevent it from being indexed by search
engines even when Drupal is installed in a subfolder (minor markup change).
- Fixed a bug in the database API that caused frequent deadlock errors when
running merge queries on some servers.
- Performance improvement: Prevented block rehashing from writing blocks to the
database on every cache clear and cron run when the blocks have not changed.
This fix results in an extra 'saved' key which is added and set to TRUE for
each block returned by _block_rehash() that actually is saved to the database
(data structure change).
- Added an optional 'skip on cron' parameter to hook_cron_queue_info() to allow
queues to avoid being automatically processed on cron runs (API addition).
- Fixed a bug which caused hook_block_view_MODULE_DELTA_alter() to never be
invoked if the block delta had a hyphen in it. To implement the hook when the
block delta has a hyphen, modules should now replace hyphens with underscores
when constructing the function name for the hook implementation.
- Fixed a bug which caused cached pages to sometimes be sent to the browser
with incorrect compression. The fix adds a new 'page_compressed' key to the
$cache->data array returned by drupal_page_get_cache() (minor data structure
change).
- Fixed broken tests on PHP 5.5.
- Made the File and Image modules more robust when saving entities that have
deleted files attached. The code in file_field_presave() will now remove the
record of the deleted file from the entity before saving (minor data
structure change).
- Standardized menu callback functions throughout Drupal core to return
MENU_NOT_FOUND and MENU_ACCESS_DENIED rather than printing their own "page
not found" or "access denied" pages (minor API change in the return value of
these functions under some circumstances).
- Fixed a bug in which caches were not properly cleared when a node was deleted
via the administrative interface.
- Changed the Bartik theme to render content contained in <pre>, <code> and
similar tags in a larger font size, so it is easier to read.
- Fixed a bug in the Search module that caused exceptions to be thrown during
searches if the server was not configured to represent decimal points as a
period.
- Fixed a regression in the Image module that made image_style_url() not work
when a relative path (rather than a complete file URI) was passed to it.
- Added an optional feature to the Statistics module to allow node views to be
tracked by Ajax requests rather than during the server-side generation of the
page. This allows the node counter to work on sites that use external page
caches (string change and new administrative option:
https://drupal.org/node/2164069).
- Added a link to the drupal.org documentation page for cron to the Cron
settings page (string change).
- Added a 'drupal_anonymous_user_object' variable to allow the anonymous user
object returned by drupal_anonymous_user() to be overridden with a classed
object (API addition).
- Changed the database API to allow inserts based on a SELECT * query to work
correctly.
- Changed the database schema of the {file_managed} table to allow Drupal to
manage files larger than 4 GB.
- Changed the File module's hook_field_load() implementation to prevent file
entity properties which have the same name as file or image field properties
from overwriting the field properties (minor API change).
- Numerous small bug fixes.
- Numerous API documentation improvements.
- Additional automated test coverage.
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Jan 16 15:55:14 UTC 2014
Modified Files:
pkgsrc/www/drupal7: Makefile distinfo
Log Message:
Update drupal7 to 7.26.
Drupal 7.26, 2014-01-15
----------------------
- Fixed security issues (multiple vulnerabilities). See SA-CORE-2014-001.
Drupal 7.25, 2014-01-02
-----------------------
- Fixed a bug in node_save() which prevented the saved node from being updated
in hook_node_insert() and other similar hooks.
- Added a meta tag to install.php to prevent it from being indexed by search
engines even when Drupal is installed in a subfolder (minor markup change).
- Fixed a bug in the database API that caused frequent deadlock errors when
running merge queries on some servers.
- Performance improvement: Prevented block rehashing from writing blocks to the
database on every cache clear and cron run when the blocks have not changed.
This fix results in an extra 'saved' key which is added and set to TRUE for
each block returned by _block_rehash() that actually is saved to the database
(data structure change).
- Added an optional 'skip on cron' parameter to hook_cron_queue_info() to allow
queues to avoid being automatically processed on cron runs (API addition).
- Fixed a bug which caused hook_block_view_MODULE_DELTA_alter() to never be
invoked if the block delta had a hyphen in it. To implement the hook when the
block delta has a hyphen, modules should now replace hyphens with underscores
when constructing the function name for the hook implementation.
- Fixed a bug which caused cached pages to sometimes be sent to the browser
with incorrect compression. The fix adds a new 'page_compressed' key to the
$cache->data array returned by drupal_page_get_cache() (minor data structure
change).
- Fixed broken tests on PHP 5.5.
- Made the File and Image modules more robust when saving entities that have
deleted files attached. The code in file_field_presave() will now remove the
record of the deleted file from the entity before saving (minor data
structure change).
- Standardized menu callback functions throughout Drupal core to return
MENU_NOT_FOUND and MENU_ACCESS_DENIED rather than printing their own "page
not found" or "access denied" pages (minor API change in the return value of
these functions under some circumstances).
- Fixed a bug in which caches were not properly cleared when a node was deleted
via the administrative interface.
- Changed the Bartik theme to render content contained in <pre>, <code> and
similar tags in a larger font size, so it is easier to read.
- Fixed a bug in the Search module that caused exceptions to be thrown during
searches if the server was not configured to represent decimal points as a
period.
- Fixed a regression in the Image module that made image_style_url() not work
when a relative path (rather than a complete file URI) was passed to it.
- Added an optional feature to the Statistics module to allow node views to be
tracked by Ajax requests rather than during the server-side generation of the
page. This allows the node counter to work on sites that use external page
caches (string change and new administrative option:
https://drupal.org/node/2164069).
- Added a link to the drupal.org documentation page for cron to the Cron
settings page (string change).
- Added a 'drupal_anonymous_user_object' variable to allow the anonymous user
object returned by drupal_anonymous_user() to be overridden with a classed
object (API addition).
- Changed the database API to allow inserts based on a SELECT * query to work
correctly.
- Changed the database schema of the {file_managed} table to allow Drupal to
manage files larger than 4 GB.
- Changed the File module's hook_field_load() implementation to prevent file
entity properties which have the same name as file or image field properties
from overwriting the field properties (minor API change).
- Numerous small bug fixes.
- Numerous API documentation improvements.
- Additional automated test coverage.
|
|
www/drupal6: security update
Revisions pulled up:
- www/drupal6/Makefile 1.45
- www/drupal6/distinfo 1.29
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Jan 16 15:54:32 UTC 2014
Modified Files:
pkgsrc/www/drupal6: Makefile distinfo
Log Message:
Update drupal6 to 6.30.
Drupal 6.30, 2014-01-15
----------------------
- Fixed security issues (multiple vulnerabilities), see SA-CORE-2014-001.
|
|
|
|
emulators/suse131_qt4: security update
Revisions pulled up:
- emulators/suse131_qt4/Makefile 1.2
- emulators/suse131_qt4/distinfo 1.2
---
Module Name: pkgsrc
Committed By: obache
Date: Sat Jan 25 05:06:38 UTC 2014
Modified Files:
pkgsrc/emulators/suse131_qt4: Makefile distinfo
Log Message:
Update libqt4 RPMs to 4.8.5-5.9.2 for CVE-2013-4549.
Bump PKGREVISION.
|
|
|
|
print/hplip: security update
Revisions pulled up:
- print/hplip/Makefile 1.30
- print/hplip/PLIST.base 1.12
- print/hplip/distinfo 1.12
---
Module Name: pkgsrc
Committed By: schnoebe
Date: Thu Jan 23 14:58:28 UTC 2014
Modified Files:
pkgsrc/print/hplip: Makefile PLIST.base distinfo
Log Message:
Update to 3.14.1
Significant Changes:
Added digital signature validation in HPLIP upgrade feature
Issues fixed:
CVE-2013-6427: hplip: insecure auto update feature
CVE-2013-6402: hplip: insecure temporary file handling in pkit.py
|
|
|
|
Build fix for "ngrep" for GNU make 4.0.
Revisions pulled up:
- net/ngrep/distinfo 1.15
- net/ngrep/patches/patch-ab 1.7
---
Module Name: pkgsrc
Committed By: tron
Date: Tue Jan 14 22:43:20 UTC 2014
Modified Files:
pkgsrc/net/ngrep: distinfo
pkgsrc/net/ngrep/patches: patch-ab
Log Message:
Fix build with GNU Make 4.0 and newer.
|
|
|
|
emulators/suse131_libpng: security update
Revisions pulled up:
- emulators/suse131_libpng/Makefile 1.2
- emulators/suse131_libpng/distinfo 1.2
---
Module Name: pkgsrc
Committed By: obache
Date: Mon Jan 20 12:21:31 UTC 2014
Modified Files:
pkgsrc/emulators/suse131_libpng: Makefile distinfo
Log Message:
Update rpm to libpng16-16-1.6.6-8.1 for CVE-2013-6954.
Bump PKGREVISION.
|
|
emulators/suse131_openssl: security update
Revisions pulled up:
- emulators/suse131_openssl/Makefile 1.3
- emulators/suse131_openssl/distinfo 1.3
---
Module Name: pkgsrc
Committed By: obache
Date: Mon Jan 20 12:18:12 UTC 2014
Modified Files:
pkgsrc/emulators/suse131_openssl: Makefile distinfo
Log Message:
Update rpm to libopenssl1_0_0-1.0.1e-11.14.1 for CVE-2013-4353.
Bump PKGREVISION.
|
