Age | Commit message (Collapse) | Author | Files | Lines |
|
www/typo3_45 4.5.14
www/typo3_46 4.6.7
|
|
Fix security problem of https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-001/.
2012-03-28 a1b80e1 [RELEASE] Release of TYPO3 4.6.7 (TYPO3 v4 Release Team)
2012-03-28 892bbbc #22748 [SECURITY] Missing escaping for sys_notes (Georg Ringer)
2012-03-28 351084b #25246 [!!!][SECURITY] XSS in filelink element (Georg Ringer)
2012-03-28 5943c54 #29060 [SECURITY] Information disclosure showing DB name (Georg Ringer)
2012-03-28 42cb07b #29397 [SECURITY] XSS in show item (Christian Kuhn)
2012-03-28 8448714 #24474 [SECURITY] Missing escaping in scheduler (Georg Ringer)
2012-03-28 a5e14b2 #30940 [SECURITY] XSS in BE file list (Christian Kuhn)
2012-03-28 7451b95 #30188 [SECURITY] XSS possibility in RemoveXSS (Andreas Wolf)
2012-03-28 5491a24 #29536 [SECURITY] XSS in be_layouts (Georg Ringer)
2012-03-28 a6a9206 #30969 [SECURITY] XSS for extension meta data in About module (Oliver Klee)
2012-03-28 d6f9c2a [TASK] Raise submodule pointer (TYPO3 v4 Release Team)
2012-03-28 f4ae450 #35260 [BUGFIX] Missing column in t3lib_TCEmain::getPreviousLocalizedRecordUid (Francois Suter)
2012-03-25 ddad96b #34771 [TASK] Add missing sql_free_result in alt_doc.php (Wouter Wolters)
2012-03-24 cb92327 #35176 [BUGFIX] Tooltips for items in groupfields are not moved (Jigal van Hemert)
2012-03-23 fa992c7 #35160 [TASK] Code clean-up in t3lib_PageRenderer (Oliver Hader)
2012-03-23 2a968b2 #33791 [BUGFIX] Blank page after Save+Close in page settings (Stefan Galinski)
2012-03-18 b5d1b80 #32756 Revert "[BUGFIX] showAccessRestrictedPages doesn't replace links to restricted subpages" (Helmut Hummel)
2012-03-17 bc18ac6 #30847 [BUGFIX] Fix baseurl handling of IE with RTE htmlArea in FE and realurl (Stanislas Rolland)
2012-03-16 de9937b #34662 [BUGFIX] Fatal error 't3lib_lock' does not exist (Oliver Hader)
|
|
Fix security problem of https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-001/.
2012-03-28 c8acf67 [RELEASE] Release of TYPO3 4.5.14 (TYPO3 v4 Release Team)
2012-03-28 1d769c4 #22748 [SECURITY] Missing escaping for sys_notes (Georg Ringer)
2012-03-28 b128c41 #30969 [SECURITY] XSS for extension meta data in About module (Oliver Klee)
2012-03-28 4dc50cb #29397 [SECURITY] XSS in show item (Christian Kuhn)
2012-03-28 7b4e3cb #24474 [SECURITY] Missing escaping in scheduler (Georg Ringer)
2012-03-28 d9065bd #30940 [SECURITY] XSS in BE file list (Christian Kuhn)
2012-03-28 0b925b6 #30188 [SECURITY] XSS possibility in RemoveXSS (Andreas Wolf)
2012-03-28 e8ceb36 #25246 [!!!][SECURITY] XSS in filelink element (Georg Ringer)
2012-03-28 fa6a103 #29536 [SECURITY] XSS in be_layouts (Georg Ringer)
2012-03-28 784ffda #29060 [SECURITY] Information disclosure showing DB name (Georg Ringer)
2012-03-28 a4d4c22 [TASK] Raise submodule pointer (TYPO3 v4 Release Team)
2012-03-28 45472a9 #35260 [BUGFIX] Missing column in t3lib_TCEmain::getPreviousLocalizedRecordUid (Francois Suter)
2012-03-26 7689dca #35158 [TASK] Clean-up PHPdoc comments in t3lib_PageRenderer (Kai Vogel)
2012-03-26 afdbb20 #35159 [BUGFIX] Instance properties are defined statically (Kai Vogel)
2012-03-25 0c5402a #34771 [TASK] Add missing sql_free_result in alt_doc.php (Wouter Wolters)
2012-03-25 c828d02 #35176 [BUGFIX] Tooltips for items in groupfields are not moved (Jigal van Hemert)
2012-03-24 0b32e02 #33791 [BUGFIX] Blank page after Save+Close in page settings (Stefan Galinski)
2012-03-23 35153e9 #35160 [TASK] Code clean-up in t3lib_PageRenderer (Oliver Hader)
2012-03-22 c59bd15 #35148 [BUGFIX] Non-static methods in t3lib_cache are called statically (Steffen M«äller)
2012-03-22 7059684 #30050 [BUGFIX] t3lib_div should contain only static methods (Jigal van Hemert)
2012-03-18 8ae8604 #32756 Revert "[BUGFIX] showAccessRestrictedPages doesn't replace links to restricted subpages" (Helmut Hummel)
2012-03-17 f25023e #30847 [BUGFIX] Fix baseurl handling of IE with RTE htmlArea in FE and realurl (Stanislas Rolland)
2012-03-16 56ef45d #34662 [BUGFIX] Fatal error 't3lib_lock' does not exist (Oliver Hader)
|
|
|
|
|
|
- Bug Fixes
The following vulnerabilities have been fixed.
o wnpa-sec-2012-04
The ANSI A dissector could dereference a NULL pointer and
crash. (Bug 6823)
Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.
o wnpa-sec-2012-05
The IEEE 802.11 dissector could go into an infinite loop. (Bug
6809)
Versions affected: 1.6.0 to 1.6.5.
o wnpa-sec-2012-06
The pcap and pcap-ng file parsers could crash trying to read
ERF data. (Bug 6804)
Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.
o wnpa-sec-2012-07
The MP2T dissector could try to allocate too much memory and
crash. (Bug 6804)
Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.
o The Windows installers now include GnuTLS 1.12.18, which fixes
several vulnerabilities.
The following bugs have been fixed:
o ISO SSAP: ActivityStart: Invalid decoding the activity
parameter as a BER Integer. (Bug 2873)
o Forward slashes in URI need to be converted to backslashes if
WIN32. (Bug 5237)
o Character echo pauses in Capture Filter field in Capture
Options. (Bug 5356)
o Some PGM options are not parsed correctly. (Bug 5687)
o dumpcap crashes when capturing from pipe to a pcap-ng file
(e.g., when passing data from CACE Pilot to Wireshark). (Bug
5939)
o Unable to rearrange columns in preferences on Windows. (Bug
6077) (Note: this bug still affects the 64-bit package)
o No error for UDP/IPv6 packet with zero checksum. (Bug 6232)
o Wireshark installer doesn't add access_bpf in 10.5.8. (Bug
6526)
o Corrupted Diameter dictionary file that crashes Wireshark.
(Bug 6664)
o packetBB dissector bug: More than 1000000 items in the tree --
possible infinite loop. (Bug 6687)
o ZEP dissector: Timestamp not always displayed correctly.
Fractional seconds never displayed. (Bug 6703)
o GOOSE Messages don't use the length field to perform the
dissection. (Bug 6734)
o Ethernet traces in K12 text format sometimes give bogus
"malformed frame" errors and other problems. (Bug 6735)
o max_ul_ext isn't printed/decoded to the packet details log in
GTP protocol packet. (Bug 6761)
o non-IPP packets to or from port 631 are dissected as IPP. (Bug
6765)
o lua proto registration fails for uppercase proto /
g_ascii_strdown problem. (Bug 6766)
o no menu item Fle->Export->SSL Session Keys in GTK. (Bug 6813)
o IAX2 dissector reads past end of packet for unknown IEs. (Bug
6815)
o TShark 1.6.5 immediately crashes on SSL decryption (every
time). (Bug 6817)
o USB: unknown GET DESCRIPTOR response triggers assert failure.
(Bug 6826)
o IEEE1588 PTPv2 over IPv6. (Bug 6836)
o Patch to fix DTLS decryption. (Bug 6847)
o Expression... dialog crash. (Bug 6891)
o display filter "gtp.msisdn" not working. (Bug 6947)
o Multiprotocol Label Switching Echo - Return Code: Reserved
(5). (Bug 6951)
o ISAKMP : VendorID CheckPoint : Malformed Packet. (Bug 6972)
o Adding a Custom HTTP Header Field with a trailing colon causes
wireshark to immediately crash (and crash upon restart). (Bug
6982)
o Radiotap dissector lists a bogus "DBM TX Attenuation" bit.
(Bug 7000)
o MySQL dissector assertion. (Ask 8649)
o Radiotap header format data rate alignment issues. (Ask 8649)
- Updated Protocol Support
ANSI A, BSSGP, DIAMETER, DTLS, GOOSE, GSM Management, GTP, HTTP,
IAX2, IEEE 802.11, IPP, ISAKMP, ISO SSAP, MP2T, MPLS, MySQL, NTP,
PacketBB, PGM, Radiotap, SSL, TCP, UDP, USB, WSP
- New and Updated Capture File Support
Endace ERF, Pcap-NG, Tektronix K12
|
|
(The configure script became semi-clever, tries to use the OS name
to decide what to build.)
|
|
|
|
Release notes
Release date: 2012-03-27
Opera 11.62 is a recommended upgrade offering security and stability enhancements.
Changes since Opera 11.61
User interface
Fixed
* Find in page (Ctrl + F) uses last used Find inline type
* Address field focus lost on restart when installing extensions with a
toolbar button
* Submit data-security-warning locks page with two warning dialogs where
only one can be closed
* No window control buttons on the menu bar when disabling the close button
on tabs
* Inefficient loading order of resources
* PDF and SVG options offered in GTK print dialog but not supported
* Opera clipboard incompatible with Synergy/VNC/rdesktop/VMware/VirtualBOX
* Sluggish file dialog in GTK
* No GTK toolkit support under FreeBSD 9
Improved
* Updated tr/hu/cs language strings
Display and scripting
Fixed
* Some progressive JPEGs aren't decoded properly
* Crash when inspecting a UserJSEvent object in Dragonfly
* Facebook chat scrolling problems
* Text cursor position lost when clicking to focus on a search match inside
a textarea
* Error message when sending mail at centrum.cz
* IDNs starting with number are shown with punycode in address bar
* Crash when posting message to extension background process
Mail, news, chat
Fixed
* Selected message not consistent on layout switching
* Last selected message is forgotten through a restart
* Scrolling or switching view is slow when there are messages with many
addressees
* Occasional crash when navigating message list
Network
Fixed
* Support Ctrl+F5 and Shift+F5 for unconditional reload of web page (bypass
cache)
* URL Turbo mode header reduction generates invalid HTTP messages
Presto 2.10 rendering engine
Encoding improvements
* Changed multi-byte encodings to be non-greedy when encountering invalid
byte sequences, which is more compatible with other implementations
Security
Fixed
* Fixed an issue where small windows could be used to trick users into
executing downloads, as reported by Jordi Chancel; see our advisory:
http://www.opera.com/support/kb/view/1010/
* Fixed an issue where overlapping content could trick users into executing
downloads, as reported by Jordi Chancel; see our advisory:
http://www.opera.com/support/kb/view/1011/
* Fixed a printing issue which could allow data leaks to other system users,
or allow them to corrupt data, as reported by Christof Meerwald; see our
advisory:
http://www.opera.com/support/kb/view/1015/
* Fixed an issue where history.state could leak the state data from cross
domain pages; see our advisory:
http://www.opera.com/support/kb/view/1012/
* Fixed an issue which could allow web page dialogs to display the wrong
address in the address field; see our advisory:
http://www.opera.com/support/kb/view/1013/
* Fixed an issue where carefully timed reloads and redirects could spoof the
address field, as reported by Jordi Chancel; see our advisory:
http://www.opera.com/support/kb/view/1014/
|
|
real PYTHON_VERSIONS_ACCEPTED value of "27 26 25".
Because it depends on a pile of gnome stuff that depends on at least
one single-Python-version package, it will never, or never except with
a lot of probably pointless work, build except with the same Python
version gnome is using. (Plus, even if it built, it quite likely
wouldn't run.)
|
|
expressions, and the latest gawk doesn't like invalid interval
expressions much.
|
|
|
|
|
|
|
|
Represents a DHCP packet as specified in RFC 1533, RFC 2132.
|
|
|
|
|
|
http://pcc.ludd.ltu.se/fisheye/changelog/~date=2012-03-27T06%3A30%3A00/pcc
but the significant change was, that a bug was fixed which caused
syntax errors with a construct present in NetBSD headers, meaning
that any compilation in the NetBSD-current and NetBSD-6 environment
was failing.
|
|
|
|
bulk build
|
|
|
|
Bump PKGREVISION.
|
|
O_DSYNC and fdatasync don't exist on DragonFly, so define these as
O_SYNC and fsync as recommended in the libmdb/mdb.c comments for
DragonFly only.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
While here, set LICENSE same as perl5.
What's new in version 0.98:
- No changes. Production release after CPAN testers cleared.
What's new in version 0.97_01:
All changes in this release are from perl 5 porters:
- Update address for FSF in POD
- z/OS: CPAN-ized ext/ and lib/
- Missing ; in Tie::File
- Typos in comments
- BeOS specific Updates
- turn the alarm off in the tests (was Re: maint @ 20617 (on VMS))
- fix for VMS - last if $last_read_was_short
|
|
|
|
|
|
|
|
|
|
* yylineno is present in all scanners by flex>=2.5.20.
fixes PR 46194.
|
|
this build with the present dependencies
|
|
|
|
KGpg is a simple interface for GnuPG, a powerful encryption utility. It
can help you set up and manage your keys, import and export keys, view key
signatures, trust status and expiry dates.
|
|
generated file did not happen to include <KSharedConfig> prior to
its need here.
|
|
since it gets into deep recursion of more than 15000 to 20000 function calls.
It does end and compile though.
|
|
|
|
normal operation.
|
|
|
|
|
|
shipping symlinks into /usr/share/automake-1.11 instead of copies of
various semi-standard gnuish files, including some scripts needed by
the build.
Remove the patch that causes the build to try to run things direct
from ${PREFIX}/share/automake-1.11, as that's not the way things are
supposed to be done in a buildlink universe. However, adding a bl3.mk
to automake to allow using this stuff is itself wrong.
So instead, work around this mess by adding a post-extract hack that
deletes the symlinks and replaces them with the actual files from
automake.
Also, add a build dependence on automake so the files are actually
there when we try to reference them. (hi reinoud!)
No revbump needed as the package didn't build.
Grumble.
|
|
|