| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
PowerDNS Authoritative Server 3.4.9
===================================
This is a minor bugfix and performance release. Two contributions
by Kees Monshouwer make 3.4.9 fully compatible with the new single
key ECDSA default that is coming in version 4.0.0.
Changes since 3.4.8:
- use OpenSSL for ECDSA signing where available (Kees Monshouwer)
- allow common signing key (Kees Monshouwer)
- Add a disable-syslog setting
- fix SOA caching with multiple backends (Kees Monshouwer)
- whitespace-related zone parsing fixes ticket #3568
- bindbackend: fix, set domain in list() (Kees Monshouwer)
PowerDNS Authoritative Server 3.4.8
===================================
This is a small bugfix release. Additionally, the deb/RPM packages
on downloads.powerdns.com (those with -static in the name) for
3.4.8 have been built against Botan 1.10.11 instead of Botan
1.10.3 like previous packages. Please see the Botan Security page
for more information on the fixes in Botan 1.10.11. As a PowerDNS
user, these issues only affect you if you ran our -static packages
and allowed your users to upload private keys to your
configuration.
Changes since 3.4.7:
- Use AC_SEARCH_LIBS (Ruben Kerkhof)
- Check for inet_aton in libresolv (Ruben Kerkhof)
- Remove hardcoded -lresolv, -lnsl and -lsocket (Ruben Kerkhof)
- pdnssec: don't check disabled records (Pieter Lexis)
- pdnssec: check all records (including disabled ones) only in
verbose mode (Kees Monshouwer)
- traling dot in DNAME content (Kees Monshouwer)
- Fix luabackend compilation on FreeBSD i386 (RvdE)
- silence g++ 6.0 warnings and error (Kees Monshouwer)
- add gcc 5.3 and 6.0 support to boost.m4 (Kees Monshouwer)
PowerDNS Authoritative Server 3.4.7
===================================
This is a security release fixing Security Advisory 2015-03
Bug fixes:
- Ignore invalid/empty TKEY and TSIG records (Christian
Hofstaedtler)
- Don't reply to truncated queries (Christian Hofstaedtler)
- don't log out-of-zone ents during AXFR in (Kees Monshouwer)
- Prevent XSS by escaping user input. Thanks to Pierre Jaury and
Damien Cauquil at Sysdream for pointing this out.
- Handle NULL and boolean properly in gPGSql (Aki Tuomi)
- Improve negative caching (Kees Monshouwer)
- Do not divide timeout twice (Aki Tuomi)
- Correctly sort records with a priority.
Improvements:
- Direct query answers and correct zone-rectification in the GeoIP
backend (Aki Tuomi)
- Use token names to identify PKCS#11 keys (Aki Tuomi)
- Fix typo in an error message (Arjen Zonneveld)
- limit NSEC3 iterations in bindbackend (Kees Monshouwer)
- Initialize minbody (Aki Tuomi)
New features:
- OPENPGPKEY record-type (James Cloos and Kees Monshouwer)
- add global soa-edit settings (Kees Monshouwer)
|
|
|
|
Changes in 0.8.0
- The main new feature in this release is the register subcommand
which can be used to register an account with the Let's Encrypt
CA. Additionally, you can run certbot register
--update-registration to change the e-mail address associated
with your registration.
Full commit log since 0.7.0:
https://github.com/certbot/certbot/compare/v0.7.0...v0.8.0
Changes in 0.7.0:
- --must-staple to request certificates from Let's Encrypt with the
OCSP must staple extension
- automatic configuration of OSCP stapling for Apache
- requesting certificates for domains found in the common name
of a custom CSR
- a number of bug fixes
Full commit log since 0.6.0
https://github.com/certbot/certbot/compare/v0.6.0...v0.7.0
|
|
|
|
(4.2.8p8) 2016/06/02 Released by Harlan Stenn <stenn@ntp.org>
* [Sec 3042] Broadcast Interleave. HStenn.
* [Sec 3043] Autokey association reset. perlinger@ntp.org, stenn@ntp.org
- validate origin timestamps on bad MACs, too. stenn@ntp.org
* [Sec 3044] Spoofed server packets are partially processed. HStenn.
* [Sec 3045] Bad authentication demobilizes ephemeral associations. JPerlinger.
* [Sec 3046] CRYPTO_NAK crash. stenn@ntp.org
* [Bug 3038] NTP fails to build in VS2015. perlinger@ntp.org
- provide build environment
- 'wint_t' and 'struct timespec' defined by VS2015
- fixed print()/scanf() format issues
* [Bug 3052] Add a .gitignore file. Edmund Wong.
* [Bug 3054] miscopt.html documents the allan intercept in seconds. SWhite.
* [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback,
JPerlinger, HStenn.
* Update the NEWS file for 4.2.8p8. HStenn.
* Fix typo in ntp-wait and plot_summary. HStenn.
* Make sure we have an "author" file for git imports. HStenn.
* Update the sntp problem tests for MacOS. HStenn.
|
|
|
|
|
|
+ minor cosmetic change to bn.h to also define BN_mod_sub, missed in
previous
|
|
being available on newer illumos, as it simplifies PLIST.glob.
|
|
|
|
|
|
gettext-0.19.7, lasso-2.5.1, mr-1.20150503, ntp4-4.2.8p6,
p5-Apache-LogFormat-Compiler-0.33, p5-IPC-Cmd-0.94,
p5-MIME-EncWords-1.014.3, p5-Net-Amazon-S3-0.80, p5-Time-Progress-2.11,
pcb-20140316 [pkg/49383], php-ja-wordpress-4.4.2, py-flask-0.11,
py-junos-eznc-1.2.2, py-netaddr-0.7.18, rabbitmq-3.6.1,
ruby-twitter-text-1.13.4, sys161-2.0.8.
|
|
elm-me-2.4.127, gdb-7.11.1, gst123-0.3.4, kdenlive-16.04.1,
scribus-1.5.2, scummvm-1.8.1, stella-4.7.2, strace-4.12,
wine-devel-1.9.11, xscreensaver-5.35.
|
|
page we explicitely remove, to avoid conflict.
Unfortunately, there is only one PATCHDIR... so keep around tkined.1
till after patching.
|
|
From John D. Baker, PR pkg/50287
|
|
|
|
Opus (RFC 6716) plugin for GStreamer.
|
|
|
|
Fixed bug in “evaluate” strategy of Query.update() and Query.delete() which would fail to accommodate a bound parameter with a “callable” value, as which occurs when filtering by a many-to-one equality expression along a relationship.
Fixed bug whereby the event listeners used for backrefs could be inadvertently applied multiple times, when using a deep class inheritance hierarchy in conjunction with mutiple mapper configuration steps.
Fixed bug whereby passing a text() construct to the Query.group_by() method would raise an error, instead of intepreting the object as a SQL fragment.
Anonymous labeling is applied to a func construct that is passed to column_property(), so that if the same attribute is referred to as a column expression twice the names are de-duped, thus avoiding “ambiguous column” errors. Previously, the .label(None) would need to be applied in order for the name to be de-anonymized.
Fixed regression appearing in the 1.0 series in ORM loading where the exception raised for an expected column missing would incorrectly be a NoneType error, rather than the expected NoSuchColumnError.
|
|
package by default. Expand existing patch to fix NetBSD 6 build.
Fixes PR pkg/51172.
Bump PKGREVISION for lang/nodejs and lang/nodejs4.
|
|
|
|
|
|
0.8.8h
-bug:0002659: wrong information about spine setup for icmps
-bug: Removed requirement for building man page, deferred to 1.0
0.8.8g
-bug:0002380: please build man page for spine
-bug:0002610: Spine is trying to use mysql results after data being freed
-bug:0002639: Spine does not respect snmp_retries from the database
-bug:0002640: Spine crashes randomly while polling using multiple threads on one device
-bug:0002549: Spine: hasCaps() always returns FALSE
-bug:0002638: Spine: ping_udp() uses uninitialised socket timeout
-bug:0002654: On RHEL 6.5, spine ./configure builds Makefile without crypto support
0.8.8f
-bug:0002604: cacti-spine, configure script ignores LDFLAGS in certain situations
0.8.8e
-bug#0002185: Multiple memory leaks found in spine
-bug#0002398: Buffer overflow
-bug#0002447: Building spine on Debian Jessie (testing) fails
-bug#0002536: Spine segfaults when 18k+ hosts are to be pulled
-bug#0002576: Call to a non-existent column of the database in poller.c
-bug#0002578: spine doesn't compile on ubuntu 12.04
-bug#0002585: Spine: buffer overflow in logging when RESULTS_BUFFER>LOGSIZE can SEGV
-bug#0002588: Spine "is_numeric" incorrectly returns TRUE for some hexadecimal values
0.8.8d
-feature: add snmp system information gathering
|
|
|
|
<http://www.cacti.net/changelog.php>.
The log and rrd database directories have been moved under VARBASE.
|
|
|
|
pkgsrc changes:
* Add options.mk to support ALSA.
* Pull in fix contributed by Keith M Wesolowski in joyent/pkgsrc#29
to fix core dump on exit.
* Add patch comments and use standard naming scheme.
Upstream changes (taken from Debian changelog):
mpg321 (0.3.2-1) unstable; urgency=low
* Fixed bugs to stdout-output (remove garbage in buffer from wrong
stdout fprintf's, it should have been stderr instead)
* Fixed bug when closing the stream of AO device that caused wrong
header to the output buffer for the normal operation. Buffered output
has no problem with that.
mpg321 (0.3.1-1) unstable; urgency=low
* Fixed typo ("lighweight") in the man page.
mpg321 (0.3.0-1) unstable; urgency=low
* Fixed trailing "/" when printint directory.
Bug reported from Erik (Gentoo).
* Fixed mistake for '--cdr' option. It should be 'cdr file'
than 'wave file' in output.
* mpg321 now supports multiprocessing buffering.Check '-b' option.
(Closes: Bug#113405).
* Added '-3' or '--restart' option in man file.
* Added ALSA volume control when using output buffer.
* Added Mute/unmute into Basic Keys functionality.
|
|
some changes by myself.
|
|
|
|
Jorge Schrauwen in joyent/pkgsrc#354.
Bump PKGREVISION.
|
|
|
|
reported upstream: https://bugs.freedesktop.org/show_bug.cgi?id=72744
fixes poppler-qt5 build on SunOS
|
|
|
|
Enable compressed-mbox patch, using 1.6.0 patch, as suggested by Andreas
Kusalananda Kahari
|
|
Make sure docbook-xsl is present to build documentation
Patch kindly suggested by Andreas Kusalananda Kahari
|
|
|
|
Bump PKGREVISION
|
|
www/py-flask to 0.11, and www/py-flask-uploads to 0.2.0nb1.
|
|
Bump PKGREVISION.
|
|
Version 0.11
------------
Released on May 29th 2016, codename Absinthe.
- Added support to serializing top-level arrays to :func:`flask.jsonify`. This
introduces a security risk in ancient browsers. See
:ref:`json-security` for details.
- Added before_render_template signal.
- Added `**kwargs` to :meth:`flask.Test.test_client` to support passing
additional keyword arguments to the constructor of
:attr:`flask.Flask.test_client_class`.
- Added ``SESSION_REFRESH_EACH_REQUEST`` config key that controls the
set-cookie behavior. If set to ``True`` a permanent session will be
refreshed each request and get their lifetime extended, if set to
``False`` it will only be modified if the session actually modifies.
Non permanent sessions are not affected by this and will always
expire if the browser window closes.
- Made Flask support custom JSON mimetypes for incoming data.
- Added support for returning tuples in the form ``(response, headers)``
from a view function.
- Added :meth:`flask.Config.from_json`.
- Added :attr:`flask.Flask.config_class`.
- Added :meth:`flask.config.Config.get_namespace`.
- Templates are no longer automatically reloaded outside of debug mode. This
can be configured with the new ``TEMPLATES_AUTO_RELOAD`` config key.
- Added a workaround for a limitation in Python 3.3's namespace loader.
- Added support for explicit root paths when using Python 3.3's namespace
packages.
- Added :command:`flask` and the ``flask.cli`` module to start the local
debug server through the click CLI system. This is recommended over the old
``flask.run()`` method as it works faster and more reliable due to a
different design and also replaces ``Flask-Script``.
- Error handlers that match specific classes are now checked first,
thereby allowing catching exceptions that are subclasses of HTTP
exceptions (in ``werkzeug.exceptions``). This makes it possible
for an extension author to create exceptions that will by default
result in the HTTP error of their choosing, but may be caught with
a custom error handler if desired.
- Added :meth:`flask.Config.from_mapping`.
- Flask will now log by default even if debug is disabled. The log format is
now hardcoded but the default log handling can be disabled through the
``LOGGER_HANDLER_POLICY`` configuration key.
- Removed deprecated module functionality.
- Added the ``EXPLAIN_TEMPLATE_LOADING`` config flag which when enabled will
instruct Flask to explain how it locates templates. This should help
users debug when the wrong templates are loaded.
- Enforce blueprint handling in the order they were registered for template
loading.
- Ported test suite to py.test.
- Deprecated ``request.json`` in favour of ``request.get_json()``.
- Add "pretty" and "compressed" separators definitions in jsonify() method.
Reduces JSON response size when JSONIFY_PRETTYPRINT_REGULAR=False by removing
unnecessary white space included by default after separators.
- JSON responses are now terminated with a newline character, because it is a
convention that UNIX text files end with a newline and some clients don't
deal well when this newline is missing. See
https://github.com/pallets/flask/pull/1262 -- this came up originally as a
part of https://github.com/kennethreitz/httpbin/issues/168
- The automatically provided ``OPTIONS`` method is now correctly disabled if
the user registered an overriding rule with the lowercase-version
``options`` (issue ``#1288``).
- ``flask.json.jsonify`` now supports the ``datetime.date`` type (pull request
``#1326``).
- Don't leak exception info of already catched exceptions to context teardown
handlers (pull request ``#1393``).
- Allow custom Jinja environment subclasses (pull request ``#1422``).
- ``flask.g`` now has ``pop()`` and ``setdefault`` methods.
- Turn on autoescape for ``flask.templating.render_template_string`` by default
(pull request ``#1515``).
- ``flask.ext`` is now deprecated (pull request ``#1484``).
- ``send_from_directory`` now raises BadRequest if the filename is invalid on
the server OS (pull request ``#1763``).
- Added the ``JSONIFY_MIMETYPE`` configuration variable (pull request ``#1728``).
- Exceptions during teardown handling will no longer leave bad application
contexts lingering around.
|
|
Version 0.11.10
---------------
Released on May 24th 2016.
- Fixed a bug that occurs when running on Python 2.6 and using a broken locale.
See pull request #912.
- Fixed a crash when running the debugger on Google App Engine. See issue #925.
- Fixed an issue with multipart parsing that could cause memory exhaustion.
Version 0.11.9
--------------
Released on April 24th 2016.
- Corrected an issue that caused the debugger not to use the
machine GUID on POSIX systems.
- Corrected an Unicode error on Python 3 for the debugger's
PIN usage.
- Corrected the timestamp verification in the pin debug code.
Without this fix the pin was remebered until too long.
Version 0.11.8
--------------
Released on April 15th 2016.
- fixed a problem with the machine GUID detection code on OS X
on Python 3.
|
|
On NetBSD 6, the system pax fails to extract the tarball. Until this
is understood, just use gtar.
|
|
|
|
Tested with syncthing-android 0.7.18 (syncthing 0.13.0).
Packaging changes: increase GOPATH hackery.
Upstream changes: bug and security fixes, plus a major version upgrade
with an incompatible protocol.
Syncthing v0.13.0 "Copper Cockroach"
Upgrade Notes
v0.13 is not protocol compatible with v0.12.
The database format has changed. It will be migrated without rescan
on first startup, but the first startup may take longer than usual.
Major Changes Since v0.12
Devices now announce files that are in progress of being downloaded,
in addition to those that are already complete. This means a device
can serve parts of a file to other devices before it has completed
the download itself.
Folder labels are now distinct from the folder ID. The intention is
for the label to be human readable and for the ID to be machine
readable and unique. When upgrading, folder IDs are not
changed. However when creating new folders Syncthing will suggest a
random, unique folder ID.
When receiving a connection attempt from an unknown device Syncthing
will now show the name of that device, not only it's ID.
Syncthing will now manage port mappings on NAT-PMP compliant routers,
in addition to the existing UPnP support. Minor Changes and
Improvements
Ignored files can now be tagged with the prefix (?d) to indicate that
Syncthing may delete these files if they remain when deleting a
directory. Ignore patterns use less memory by default.
The address for sync connections, both the listening side and for
remote devices, can now be made IPv4- or IPv6-only. Use the tcp4:// or
tcp6:// schemes to specify one or the other. The default tcp:// is
still dual stack. Additionally, relays are now treated as listen
addresses and set in the same configuration setting.
The folder settings dialog has been cleaned up.
The environment variable ALL_PROXY_NO_FALLBACK can be set to disable
falling back to direct connections in the absence of a working proxy.
Many, many bug fixes.
Known Issues
The "Syncing" complete percentage for remote devices may erroneously
display more than 100% (i.e. 156% or 297%) while a remote device is
still synchronizing.
|
|
|
|
|
|
|
|
|
|
|
|
|
