| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
When using mpf_set_str, mpf_init_set_str, or mpf_inp_str
with a base > 36, the supplied base will actually be ignored,
and the exponent 0 will be supplanted. [2007-12-10]
All tests pass on NetBSD/amd64 4.99.58.
Bump revision.
|
|
- add PLIST.linux-x86_64
|
|
|
|
glibmm-2.16.1, gsl-1.11, ikiwiki-2.41, ltris-1.0.12, nss_ldap-260
[pkg/38346], p5-File-Flat-1.04, p5-Image-Info-1.28, phpmyadmin-2.11.5.1,
pixman-0.10.0, postgresql82-8.2.7, postgresql83-8.3.1,
vlgothic-ttf-20080327 [pkg/38342].
|
|
|
|
While here, fix a minor DESTDIR botch.
0.1.14 beta-17
- (security) Using File::Spec->canonpath for normalization (trailing slashes)
Check ownership of real directories to avoid race attacks
for symlinks. Thanks to Robert Buchholz.
0.1.14 beta-16 (not released)
- (security) The check for symlinked directories was half complete.
perl ignores -l if the argument has a trailung slash.
Thanks to Andrej Kacian.
0.1.14 beta-15
- (security) $LOCKPATH and its contents weren't checked for being
a symlink which. Thanks to Chris Howells and Andrej Kacian.
- (fix) "dedicated" added to the exclusion list for dialup
checks. A better approach would be to let the user
configure dialup and exclude patterns.
0.1.14 beta-14
- (change) rbls.org link changed to robtext.com
- (change) results with 'rc:' as action are not cached
- (fix) regexp check for dynamic helo/client did hit also some
clients with "static"
- (fix) helo numeric check was too fuzzy.
- (fix) master didn't read config after policyd-weight reload
- (fix) HELO_SEEMS_DIALUP may have scored even if the IP is listed
for the sender domain.
- (fix) An interrupt of policyd-weight -s may cause a SIGPIPE
which killed the cache
- (change) Implemented $NS list. Useful for users with split
horizon DNS
- (fix) don't cache rejections which were deferred (4xx and friends)
- (fix) helo_numeric_score didn't catch [n.n.n.n] helos
- (fix) Header was not included if $dnsbl_checks_only = 1; and
$ADD_X_HEADER = 1; - Thanks to J. Genannt
- (fix) Corrected handling of [n.n.n.n] HELOs and address-literals
as sender (long standing issue)
- (change) Introduced @dnsbl_checks_only_regexps in order to skip
DNS checks for certain client hostnames
- (change) Added -D (Don't detach) switch for daemon-tools/runit users
- (change) Added signals handlers for most of signals so that they are
at least logged, also, provide a perl backtrace.
- (change) prerequisite steps for providing coredumps (build coredump
directories, chdir) - coredumps are non-trivial:
we start as root, change uid. At this moment coredumps
are denied by kernel in order to protect root-data. The only
workaround would be, to start cache and master via system()
after changing uid
- (change) In daemon mode wrongly crafted policy requests don't lead
to a child-exit anymore, only the connection is closed
- (change) log-facilities other than 'info' are now mentioned in log-lines
- (change) SMTP information such as client, helo, sender and to are now
logged in each log-message. If $DEBUG is set this also logs
the instance variable.
- (fix) rbl_lookup used sometimes 65536 as packet id which appeared
to cause problems
- (fix) Check for syslog absence. If syslog is not available then
log temporarily to $LOCKPATH/polw-emergency.log
- (tmpfix) Introduced $TRY_BALANCE which closes connections to smtpds after
they got their response in order to avoid too many established
smtpd->policyd-weight (child) connections.
|
|
|
|
Reviewed by Joerg Sonnenberger and approved by Dieter Baron.
|
|
ignore linker warnings under Tiger and doesn't work at all under
Leopard with Xcode tools 3.0.
|
|
phase. Also set TZ to null to prevent timezone differences from
affecting the printing of the "date" field during the extraction of
the gemspec file.
|
|
|
|
+ Port patches to allow gems to be installed into an "installion root"
from 1.0.1nb2.
+ Rename the --build-root option to --install-root, which more accurately
reflects the purpose of the option.
+ Update rubygem.mk to work with rubygems-1.1.0.
+ Require 1.1.0 as the minimum rubygems version for the build.
+ Remove GEM_FORMAT and special code to extract the gemspec file
from a gem archive -- `gem spec' can now do it correctly by itself.
+ Rename various *buildroot* targets to *install-root* to match the
name of the `gem' option.
* RubyGems now uses persistent connections on index updates and only
updates from a latest index by default, cutting candidate gems for
updates to roughly 1/4 (at present). Index updates are much faster
now.
* `gem list -r` may only show the latest version of a gem, add --all to
see all gems.
* `gem spec` now extracts specifications from .gem files.
* `gem query --installed` to aid automation of checking for gems.
This update has been tested with the 3 packages in pkgsrc that install
using the ``gem'' command:
devel/rubyforge
misc/ruby-gem_plugin
www/mongrel
This update has also been tested with the 129 packages in my local
tree that install using the ``gem'' command.
|
|
|
|
If rubygems is not found, then just continue. Bump the PKGREVISION
to 3.
|
|
|
|
|
|
- security fixes for X.509sat, Roofnet, LDAP and SCCP dissectors
- several SNMP-related bugs have been fixed.
- several memory-related bugs have been fixed.
- Wireshark now supports custom columns.
- New Protocol Support:
IEEE 802.15.4, Infiniband, Parallel Redundancy Protocol,
RedBack Lawful Intercept, Xcsl
- Updated Protocol Support:
- AFS, ALCAP, ATM, BACapp, CIGI, DCC (renamed from DCCP), DCCP (renamed
from DCP), DCERPC SPOOLSS, DCERPC NT, DHCP, DirectPlay, EtherCAT, FIX,
GIOP, GTP, H.248, HTTP, ICMPv6, ICQ, IPv6, ISIS, JXTA, NCP, P_Mul, PCAP,
PKIX1Explicit, PTP, RADIUS, Roofnet, RTCP, RTMPT, RTP, RX, SABP,
SCSI OSD, sFlow, SMPP, SNMP, SSCOP, TAPA, TIPC, TPNCP, UNISTIM, X.25,
X.509sat, XML
- New and Updated Capture File Support:
Hilscher Analyzer
|
|
skipped with -r. DISTNAME++. Fixes PR pkg/38283.
Reviewed and tested by tnn@.
|
|
|
|
socket(), and bump PKGREVISION.
|
|
|
|
(CVE-2007-4131, pkgsrc-sec ticket #15481)
Approved-by: joerg
|
|
|
|
|
|
Security fixes in this version:
MFSA 2008-19 XUL popup spoofing variant (cross-tab popups)
MFSA 2008-18 Java socket connection to any local port via LiveConnect
MFSA 2008-17 Privacy issue with SSL Client Authentication
MFSA 2008-16 HTTP Referrer spoofing with malformed URLs
MFSA 2008-15 Crashes with evidence of memory corruption (rv:1.8.1.13)
MFSA 2008-14 JavaScript privilege escalation and arbitrary code execution
For more info, see http://www.seamonkey-project.org/releases/seamonkey1.1.9/
|
|
|
|
|
|
|
|
Security fixes in this version:
MFSA 2008-19 XUL popup spoofing variant (cross-tab popups)
MFSA 2008-18 Java socket connection to any local port via LiveConnect
MFSA 2008-17 Privacy issue with SSL Client Authentication
MFSA 2008-16 HTTP Referrer spoofing with malformed URLs
MFSA 2008-15 Crashes with evidence of memory corruption (rv:1.8.1.13)
MFSA 2008-14 JavaScript privilege escalation and arbitrary code execution
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.13/releasenotes/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
plptools-1.0.2, stunnel-4.22, swfdec-0.6.2, sympa-5.4.
Remove suggestion for new ttf-freefont package, it already exists as
freefont-ttf.
|
|
|
|
a dependency).
Bump PKGREVISION.
|
|
inside the distribution.
OK xtraeme.
|
|
|
|
|
|
- Improve hardlink handling of hardlinks in bsdcpio
- Extend linkify to handle all sane hardlink strategies
- Improve mtree support
- Make bsdtar and bsdcpio more like the NetBSD counterparts
- Drop uudecode dependency.
|
|
|
|
sudo is now 1.6.9p15.
|
|
|
|
653) Fixed installation of sudo_noexec.so on AIX.
654) Updated libtool to version 1.5.26.
655) Fixed printing of default SELinux role and type in -V mode.
656) The HOME environment variable is once again preserved by default,
as per the documentation.
|
|
|
|
|
