| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
Changes:
o Added Image#encipher, Image#decipher (available with ImageMagick 6.3.8-6)
o Added DTX1Compression, DTX1Compression, and DTX1Compression
CompressionType enums (available in ImageMagick 6.3.9-4)
o Added optional "use hex format" argument to Pixel#to_color
o Support :area resource type in Magick.limit_resource
o Pixel.from_HSL and Pixel#to_HSL are deprecated. Use Pixel.from_hsla
and Pixel#to_hsla instead. The new methods rely on the ImageMagick 6.3.5
and later API.
o The Image#alpha and alpha= attributes are deprecated. Use alpha() and
alpha? instead.
o The Image#mask= attribute is deprecated. Use mask() instead.
o The use of Ruby older than version 1.8.4 with RMagick is deprecated and
will not be supported in a future release.
o Fix bug #18271, rvg width and height attributes wrong after a call to
viewbox (reported by Greg Jarman)
|
|
|
|
Changes to squid-2.6.STABLE19 (19 Mar 2008)
- Fix tcp_outgoing_address example config to match its description
- Bug #2198: assertion failed sc != NULL when using peer monitor
function
- Fix missing default disk store type into QUICKSTART example.
- Bugzilla #761 : Handle recursive completion operations in diskd.
- documentation bugfix for tcp_outgoing_tos directive
- Sort cache list in wccpv2 to ensure a consistent hash allocation
across all services
- Updated Ukrainan error pages
- Compile error in squid_kerb_auth under Mac OS X 10.5.2
- squid_radius_auth failed ro process more than 256 requests
- Clarified description of 'cache_vary' directive
- Make range_offset_limit 0 disable local range processing as
documented, even if the first range starts at 0
|
|
doesn't clash if something else happens to pull in that include
file - as now happens with XI.h file in inputproto-1.4.3.
Should fix PR 38227.
|
|
upcoming gnome versions
|
|
|
|
This is a HIGHLY RECOMMENDED release. You SHOULD upgrade to it ASAP as it contains security fixes.
Major changes:
* dccallow: fix incorrect api usage
* mysql: fix race condition (crash) on unload
* core: LoopCall fix that fixes modules which call it in a command handler so that spanningtree doesnt break (useful for third party module authors only)
* snomasks: Accidentally hidden quits is fixed (it wasn't me, I swear --w00t)
* ssl: Reworded prompts in configure
* invisible: Fix multiple +Q and -Q notices (harmless)
* configreader: Better checking of newline values
* swhois: Don't desync when setting a title on an already-titled user.
* new module: m_ldapauth
|
|
|
|
|
|
+ Add a "chroot" option, stolen from pkg_comp(8) that starts a root
shell with a better environment setup.
|
|
|
|
|
|
The new version fixes a credentials disclosure on shared hosts via
session data reported in security announcement PMASA-2008-2.
|
|
|
|
|
|
(CVE-2006-4484).
Approved-by: joerg
|
|
|
|
|
|
|
|
This update includes security fix for CVE-2007-5794.
Changes from 240 is too much to list here. See ChangeLog, please.
|
|
|
|
|
|
When using mpf_set_str, mpf_init_set_str, or mpf_inp_str
with a base > 36, the supplied base will actually be ignored,
and the exponent 0 will be supplanted. [2007-12-10]
All tests pass on NetBSD/amd64 4.99.58.
Bump revision.
|
|
- add PLIST.linux-x86_64
|
|
|
|
glibmm-2.16.1, gsl-1.11, ikiwiki-2.41, ltris-1.0.12, nss_ldap-260
[pkg/38346], p5-File-Flat-1.04, p5-Image-Info-1.28, phpmyadmin-2.11.5.1,
pixman-0.10.0, postgresql82-8.2.7, postgresql83-8.3.1,
vlgothic-ttf-20080327 [pkg/38342].
|
|
|
|
While here, fix a minor DESTDIR botch.
0.1.14 beta-17
- (security) Using File::Spec->canonpath for normalization (trailing slashes)
Check ownership of real directories to avoid race attacks
for symlinks. Thanks to Robert Buchholz.
0.1.14 beta-16 (not released)
- (security) The check for symlinked directories was half complete.
perl ignores -l if the argument has a trailung slash.
Thanks to Andrej Kacian.
0.1.14 beta-15
- (security) $LOCKPATH and its contents weren't checked for being
a symlink which. Thanks to Chris Howells and Andrej Kacian.
- (fix) "dedicated" added to the exclusion list for dialup
checks. A better approach would be to let the user
configure dialup and exclude patterns.
0.1.14 beta-14
- (change) rbls.org link changed to robtext.com
- (change) results with 'rc:' as action are not cached
- (fix) regexp check for dynamic helo/client did hit also some
clients with "static"
- (fix) helo numeric check was too fuzzy.
- (fix) master didn't read config after policyd-weight reload
- (fix) HELO_SEEMS_DIALUP may have scored even if the IP is listed
for the sender domain.
- (fix) An interrupt of policyd-weight -s may cause a SIGPIPE
which killed the cache
- (change) Implemented $NS list. Useful for users with split
horizon DNS
- (fix) don't cache rejections which were deferred (4xx and friends)
- (fix) helo_numeric_score didn't catch [n.n.n.n] helos
- (fix) Header was not included if $dnsbl_checks_only = 1; and
$ADD_X_HEADER = 1; - Thanks to J. Genannt
- (fix) Corrected handling of [n.n.n.n] HELOs and address-literals
as sender (long standing issue)
- (change) Introduced @dnsbl_checks_only_regexps in order to skip
DNS checks for certain client hostnames
- (change) Added -D (Don't detach) switch for daemon-tools/runit users
- (change) Added signals handlers for most of signals so that they are
at least logged, also, provide a perl backtrace.
- (change) prerequisite steps for providing coredumps (build coredump
directories, chdir) - coredumps are non-trivial:
we start as root, change uid. At this moment coredumps
are denied by kernel in order to protect root-data. The only
workaround would be, to start cache and master via system()
after changing uid
- (change) In daemon mode wrongly crafted policy requests don't lead
to a child-exit anymore, only the connection is closed
- (change) log-facilities other than 'info' are now mentioned in log-lines
- (change) SMTP information such as client, helo, sender and to are now
logged in each log-message. If $DEBUG is set this also logs
the instance variable.
- (fix) rbl_lookup used sometimes 65536 as packet id which appeared
to cause problems
- (fix) Check for syslog absence. If syslog is not available then
log temporarily to $LOCKPATH/polw-emergency.log
- (tmpfix) Introduced $TRY_BALANCE which closes connections to smtpds after
they got their response in order to avoid too many established
smtpd->policyd-weight (child) connections.
|
|
|
|
Reviewed by Joerg Sonnenberger and approved by Dieter Baron.
|
|
ignore linker warnings under Tiger and doesn't work at all under
Leopard with Xcode tools 3.0.
|
|
phase. Also set TZ to null to prevent timezone differences from
affecting the printing of the "date" field during the extraction of
the gemspec file.
|
|
|
|
+ Port patches to allow gems to be installed into an "installion root"
from 1.0.1nb2.
+ Rename the --build-root option to --install-root, which more accurately
reflects the purpose of the option.
+ Update rubygem.mk to work with rubygems-1.1.0.
+ Require 1.1.0 as the minimum rubygems version for the build.
+ Remove GEM_FORMAT and special code to extract the gemspec file
from a gem archive -- `gem spec' can now do it correctly by itself.
+ Rename various *buildroot* targets to *install-root* to match the
name of the `gem' option.
* RubyGems now uses persistent connections on index updates and only
updates from a latest index by default, cutting candidate gems for
updates to roughly 1/4 (at present). Index updates are much faster
now.
* `gem list -r` may only show the latest version of a gem, add --all to
see all gems.
* `gem spec` now extracts specifications from .gem files.
* `gem query --installed` to aid automation of checking for gems.
This update has been tested with the 3 packages in pkgsrc that install
using the ``gem'' command:
devel/rubyforge
misc/ruby-gem_plugin
www/mongrel
This update has also been tested with the 129 packages in my local
tree that install using the ``gem'' command.
|
|
|
|
If rubygems is not found, then just continue. Bump the PKGREVISION
to 3.
|
|
|
|
|
|
- security fixes for X.509sat, Roofnet, LDAP and SCCP dissectors
- several SNMP-related bugs have been fixed.
- several memory-related bugs have been fixed.
- Wireshark now supports custom columns.
- New Protocol Support:
IEEE 802.15.4, Infiniband, Parallel Redundancy Protocol,
RedBack Lawful Intercept, Xcsl
- Updated Protocol Support:
- AFS, ALCAP, ATM, BACapp, CIGI, DCC (renamed from DCCP), DCCP (renamed
from DCP), DCERPC SPOOLSS, DCERPC NT, DHCP, DirectPlay, EtherCAT, FIX,
GIOP, GTP, H.248, HTTP, ICMPv6, ICQ, IPv6, ISIS, JXTA, NCP, P_Mul, PCAP,
PKIX1Explicit, PTP, RADIUS, Roofnet, RTCP, RTMPT, RTP, RX, SABP,
SCSI OSD, sFlow, SMPP, SNMP, SSCOP, TAPA, TIPC, TPNCP, UNISTIM, X.25,
X.509sat, XML
- New and Updated Capture File Support:
Hilscher Analyzer
|
|
skipped with -r. DISTNAME++. Fixes PR pkg/38283.
Reviewed and tested by tnn@.
|
|
|
|
socket(), and bump PKGREVISION.
|
|
|
|
(CVE-2007-4131, pkgsrc-sec ticket #15481)
Approved-by: joerg
|
|
|
|
|
|
Security fixes in this version:
MFSA 2008-19 XUL popup spoofing variant (cross-tab popups)
MFSA 2008-18 Java socket connection to any local port via LiveConnect
MFSA 2008-17 Privacy issue with SSL Client Authentication
MFSA 2008-16 HTTP Referrer spoofing with malformed URLs
MFSA 2008-15 Crashes with evidence of memory corruption (rv:1.8.1.13)
MFSA 2008-14 JavaScript privilege escalation and arbitrary code execution
For more info, see http://www.seamonkey-project.org/releases/seamonkey1.1.9/
|
