| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Approved-by: jlam
|
|
|
|
CHANGES FOR PKGSRC:
==================
Makefile:
+ Modify section that manually handles the ELF symlinks for samba
shared libraries -- add additional libraries that are built (addns,
smbsharemodes) and reorganize so we don't need two loops where one
will do.
+ Pass --with-included-popt to the configure script to force using
the popt distribution included with samba to avoid any library
mismatch errors between samba and any installed popt. This fixes
PR pkg/34444 by Jason Lingohr.
+ Don't build the smbmount programs on Linux -- they're deprecated in
favor of the mount.cifs programs.
+ Remove some pkgviews-related settings -- I'm not supporting pkgviews
installation of samba.
Makefile.patches:
+ Empty out PATCHFILES because we are updating to the latest release
of samba, which has all previous patches for security advisories
already rolled into the main sources.
Makefile.mirrors:
+ Update SAMBA_MIRRORS in Makefile.mirrors to the latest list of FTP
mirrors.
options.mk:
+ Only show the ``acl'' option on platforms that actually support
POSIX ACLs.
+ Add a new ``fam'' option to enable building the notify_fam VFS
module.
patch-ab, patch-ax:
+ Remove patch-ab and update patch-ax -- there's nothing for the
scripts to back up so we don't need to patch the install* scripts
to avoid this.
patch-ae, patch-ah:
+ Update patch-ae and remove patch-ah -- we should definitely check
that PAM_AUTHTOK_RECOVERY_ERR is defined before using its value to
define PAM_AUTHTOK_RECOVER_ERR.
patch-at, patch-au:
+ Fix patch-at and patch-au -- in configure.in, we need to "escape"
left and right brackets or else m4 will strip them away in the
resulting configure script. This should fix the detection of FreeBSD
and NetBSD systems capable of using nss_winbind noted in PR pkg/38076
by Ingo Meyer.
patch-ay:
+ Remove some unnecessary changes -- we can safely just do "mkdir" in
some places because we know the parent and any intermediate directories
exist.
patch-be:
+ Fix a bug in locating WINS_LIST -- nmbd/nmbd_winsserver.c was
referring to WINS_LIST under the state directory in one place and
under the lock directory in another; change all references to be
under the state directory.
patch-db:
+ Add patch to fix the build of samba on older BSDs. Patch supplied
in PR pkg/37487 by John Frear.
All remaining changes to patches/patch-* are simply to remove fuzz.
MAJOR CHANGES FROM VERSION 3.0.26a:
* Fix failure to join Windows 2008 domains.
* Fix Windows Vista (including SP1 RC) inter-op issues.
* Add a new ``administrative share'' service parameter for defining
hidden shares that cannot be managed from Windows.
* Fix for CVS-2007-6015 (already fixed in 3.0.26anb4 in pkgsrc).
* Fix for CVS-2007-5398 (already fixed in 3.0.26anb4 in pkgsrc).
* Fix for CVS-2007-4572 (already fixed in 3.0.26anb4 in pkgsrc). Also
subsequent fix for regression experienced by smbfs clients caused by
the fix for CVS-2007-4572, noted in PR pkg/38300 by Dave Barnes.
* Many other bugs fixed and memory leaks plugged.
|
|
pkg_install can install using newer features without warnings.
|
|
phase pkg_install-depends before bootstrap-depends that just tries to
install a new pkg_install if the current version is too old. Still
keep it as bootstrap dependency for the bulk build code.
For NetBSD, PKG_TOOLS_BIN has to be computed in shell code due to a make
bug.
OK: jlam@
|
|
|
|
|
|
usage. Add DESTDIR support. Bump revision.
|
|
|
|
|
|
Set user with DANSGUARDIAN_USER and DANSGUARDIAN_GROUP and ensure log dirs
is created with correct permissions.
Use OWN_DIRS to create languages and phraselists directories instead of our
own pre-install target - this fixes binary packages.
Bump PKGREVISION to 2
|
|
|
|
(Approved by agc for update during the freeze)
Changes from Alpine 1.00 to 1.10
New in Alpine 1.10
Version 1.10 addresses bugs found in previous releases and has
a few additions as well.
Additions include:
* Add the possibility of setting a default role (see Roles
Screen) which may be convenient if your work flow involves
acting in one role for a while then switching to another role
and staying in the new role for another period of time
* When Saving and the IMAP server problem "Message to save
shrank!" is encountered, ask the user if he or she wants to
continue with the risky Save anyway instead of aborting. This
may be helpful if your IMAP server is broken in this way but
be aware that it is possible there was a real error instead of
just a broken server implementation.
* Some configure adjustments for Kerberos detection and for SCO
OpenServer 5 support
* Hide INBOX in a collection if it also appears as an Incoming
Folder
* Show asterisks for feedback when the user is typing a password
* Performance improvement for threading of large folders
* Previously, the search used to find Pattern matches containing
To patterns searched for both To and Resent-To headers. The
relatively complicated search this produces causes problems
when using some deficient IMAP servers. Now the default is to
look only for To headers and ignore the presence of
Resent-To. The previous behavior may be restored with the Use
Resent-To in Rules feature.
* Add an Unknown Character Set to help with reading malformed
unlabeled messages
* Suppress User Agent When Sending option added
* Map some Shift-LeftArrow escape sequences to LeftArrow
* Add feature Warn if Blank Fcc
Bugs that have been addressed in this release include:
* Crash when encountering certain errors from an SMTP server
* Crash in composer caused by overflow in replace_pat()
* Hang when authenticating to an SMTP server that fails with a
"connection disconnected" error
* Bug in handling of trailing tab character in flowed text
* Security enhancement for mailcap parameter substitution
* Strip From Sigdashes on Reply did not work if the message being
replied to was not flowed text and Do Not Send Flowed Text was
not turned on
* Don't allow printer to be changed through hidden config screen
if system administrator didn't want it to be allowed
* Attempts are sometimes made to set the Forwarded flag when
alpine should know that it won't work, causing error messages
to appear
* A Reply Indent String of double-quote double-quote didn't work
right
* Quoting wasn't being done to protect special characters from
the MacOS X shell when URL-Viewers was not defined
* On MacOS X message attachments should be shown internally
instead of being shown using the Mail application
* When replying to a message with a charset of X-UNKNOWN Alpine
would sometimes set the outgoing charset to X-UNKNOWN, making
the result unreadable
* When the sending of a message failed lines with leading spaces
had one additional space inserted in each of those lines when
the user was returned to the composer
* The WhereIs command missed some index lines that contained
non-ascii characters because it was truncating the line being
searched so that it was shorter than what was visible on the
screen
* When composing, an attachment with a long name that causes
wrapping in just the wrong place would generate an error and
cause the send of the attachment to fail
* After calling the file browser to attach a file in the
composer, a resize of the window when back in the composer
would redraw the last screen that had been shown in the
browser instead of the current composer screen
* Possible crash in index screen when encountering unparseable
addresses or when using one of the PRIORITY tokens or the
HEADER token in the Index Format
* Problems with Header Color editing if the configuration option
Viewer Header Colors was inadvertently changed to the Empty
Value in the hidden config screen
* When resuming the final postponed message from an Exchange
server the user could get a certificate validation failure
because alpine was trying to validate the canonical name of
the folder instead of the name the user used
* Windows line endings in a mimetypes file on a Unix system cause
a failure to find a match
* Make matching of extension names case independent in mimetypes
files
* Windows dialog boxes for entering text were not working correctly
* Replying to or Forwarding multipart/alternative messages which
had a single text/html part did not work well
* Printing the print confirmation page caused a crash
* A To line with a long, quoted personal name could display
incorrectly if it was close to the same width as the screen
* When Enable Incoming Folders Checking and Incoming Checking
Includes Total are turned on hide (0/0) when the folder is
empty
* Folder completion while Saving didn't work if the collection
being saved to was the local home directory
|
|
|
|
|
|
|
|
tolower needs unsigned char argument.
Fix a missing parameter type.
Bump revision.
|
|
|
|
- X11 forwarding information disclosure (CVE-2008-1483)
- ForceCommand bypass vulnerability
|
|
|
|
OKed by jlam.
Changes in 1.3.7
The new release includes three security fixes and several printing and
authentication fixes.
CVE-2008-0047: cgiCompileSearch buffer overflow
CVE-2008-1373: CUPS GIF image filter overflow
Updated the "make check" tests to do a more thorough automated test.
cups-driverd complained about missing directories
cupsaddsmb would leave the Samba username and password on disk if no
Windows drivers were installed
The Linux USB backend used 100% CPU when a printer was disconnected
The sample raster drivers did not properly handle SIGTERM
The scheduler sent notify_post() messages too often on Mac OS X.
Kerberos access to the web interface did not work
The scheduler did not support "AuthType Default" in IPP policies
The scheduler did not support the "HideImplicitMembers" directive as
documented
"make check" didn't return a non-zero exit code on error
The scheduler incorrectly logged AUTH_foo environment variables in
debug mode
The image filters inverted PBM files
cupsctl would crash if the scheduler was not running
The scheduler could crash when printing using a port monitor
The scheduler would crash if PAM was broken
The image filters did not work with some CMYK JPEG files produced by
Adobe applications
The Mac OS X USB backend did not work with printers that did not
report a make or model.
The job-sheets option was not encoded properly
The scheduler incorrectly complained about missing LSB PPD directories.
Changes in 1.3.6
The new release fixes some platform-specific build problems, web
interface issues, PDF and PostScript filter option handling, and a
number of minor bugs discovered during routine code audits.
|
|
|
|
|
|
before commit. This will unbrick archive/gtar-base.
Approved-by: tnn
|
|
misc/esniper to 2.18.0
|
|
This update includes changes to adapt to eBay's new bid history page
(now encoded in UTF-8).
Pkgsrc changes:
- none
Changes since version 2.17.1:
=============================
2008-04-02
* Fixed bug 1932025: Can't convert price.
* Fixed bug 1930772: Can't convert price.
2008-03-16
* Fixed bug 1915400: sign in request during pre-bid.
2008-01-17
* Fixed bug 1869454: Fails with Time ramining: -- (0 seconds).
* Fixed bug 1823864: Captcha on bid history.
* Fixed bug 1861822: crash parsing watch list.
* Fixed bug 1849113: Failed to make bid when using bid assistant
2007-11-22
* Fixed bug 1835531, segfault on bid history.
2007-10-23
* Fixed bug 1818692, get srcId ViewItem when bidding on closed auction.
|
|
|
|
- remove most of the debug junk
- fix a buffer overflow in the config parser
- replace stdio usage with a simple abstract IO framework. currently
without explicit buffering, but that might be added later
|
|
and ${REAL_ROOT_GROUP} instead. The pkginstall framework checks for
the name of the user and group, not the uid and gid, when comparing
permissions. This fixes the following spurious warning from appearing:
The following files are used by sudo-1.6.9p15 and have
the wrong ownership and/or permissions:
/usr/pkg/etc/sudoers (m=0440, o=0, g=0)
|
|
thanks)
|
|
|
|
|
|
|
|
Changes:
o Added Image#encipher, Image#decipher (available with ImageMagick 6.3.8-6)
o Added DTX1Compression, DTX1Compression, and DTX1Compression
CompressionType enums (available in ImageMagick 6.3.9-4)
o Added optional "use hex format" argument to Pixel#to_color
o Support :area resource type in Magick.limit_resource
o Pixel.from_HSL and Pixel#to_HSL are deprecated. Use Pixel.from_hsla
and Pixel#to_hsla instead. The new methods rely on the ImageMagick 6.3.5
and later API.
o The Image#alpha and alpha= attributes are deprecated. Use alpha() and
alpha? instead.
o The Image#mask= attribute is deprecated. Use mask() instead.
o The use of Ruby older than version 1.8.4 with RMagick is deprecated and
will not be supported in a future release.
o Fix bug #18271, rvg width and height attributes wrong after a call to
viewbox (reported by Greg Jarman)
|
|
|
|
Changes to squid-2.6.STABLE19 (19 Mar 2008)
- Fix tcp_outgoing_address example config to match its description
- Bug #2198: assertion failed sc != NULL when using peer monitor
function
- Fix missing default disk store type into QUICKSTART example.
- Bugzilla #761 : Handle recursive completion operations in diskd.
- documentation bugfix for tcp_outgoing_tos directive
- Sort cache list in wccpv2 to ensure a consistent hash allocation
across all services
- Updated Ukrainan error pages
- Compile error in squid_kerb_auth under Mac OS X 10.5.2
- squid_radius_auth failed ro process more than 256 requests
- Clarified description of 'cache_vary' directive
- Make range_offset_limit 0 disable local range processing as
documented, even if the first range starts at 0
|
|
doesn't clash if something else happens to pull in that include
file - as now happens with XI.h file in inputproto-1.4.3.
Should fix PR 38227.
|
|
upcoming gnome versions
|
|
|
|
This is a HIGHLY RECOMMENDED release. You SHOULD upgrade to it ASAP as it contains security fixes.
Major changes:
* dccallow: fix incorrect api usage
* mysql: fix race condition (crash) on unload
* core: LoopCall fix that fixes modules which call it in a command handler so that spanningtree doesnt break (useful for third party module authors only)
* snomasks: Accidentally hidden quits is fixed (it wasn't me, I swear --w00t)
* ssl: Reworded prompts in configure
* invisible: Fix multiple +Q and -Q notices (harmless)
* configreader: Better checking of newline values
* swhois: Don't desync when setting a title on an already-titled user.
* new module: m_ldapauth
|
|
|
|
|
|
+ Add a "chroot" option, stolen from pkg_comp(8) that starts a root
shell with a better environment setup.
|
|
|
|
|
|
The new version fixes a credentials disclosure on shared hosts via
session data reported in security announcement PMASA-2008-2.
|
|
|
|
|
|
(CVE-2006-4484).
Approved-by: joerg
|
|
|
