Age | Commit message (Collapse) | Author | Files | Lines |
|
security update for mysql5
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.13
- pkgsrc/databases/mysql5-client/distinfo 1.7
- pkgsrc/databases/mysql5-server/distinfo 1.8
Module Name: pkgsrc
Committed By: tron
Date: Sat Jun 3 15:29:13 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common distinfo
pkgsrc/databases/mysql5-server: distinfo
Log Message:
Update "mysql5-client" and "mysql5-server" packages to version 5.0.22.
This upgrade fixes the SQL injection vulnerability reported in SA20365.
|
|
security updates for postgresql
Revisions pulled up:
- pkgsrc/databases/postgresql73/Makefile.common 1.19
- pkgsrc/databases/postgresql73/distinfo 1.13
- pkgsrc/databases/postgresql73-docs/PLIST 1.7
- pkgsrc/databases/postgresql74/Makefile.common 1.36
- pkgsrc/databases/postgresql74/distinfo 1.21
- pkgsrc/databases/postgresql74-docs/PLIST 1.6
- pkgsrc/databases/postgresql80/Makefile.common 1.23
- pkgsrc/databases/postgresql80/distinfo 1.13
- pkgsrc/databases/postgresql80-client/PLIST 1.11
- pkgsrc/databases/postgresql81/Makefile.common 1.6
- pkgsrc/databases/postgresql81/distinfo 1.2
- pkgsrc/databases/postgresql81-client/PLIST 1.2
Module Name: pkgsrc
Committed By: joerg
Date: Fri May 26 17:47:58 UTC 2006
Modified Files:
pkgsrc/databases/postgresql73: Makefile.common distinfo
pkgsrc/databases/postgresql73-docs: PLIST
pkgsrc/databases/postgresql74: Makefile.common distinfo
pkgsrc/databases/postgresql74-docs: PLIST
pkgsrc/databases/postgresql80: Makefile.common distinfo
pkgsrc/databases/postgresql80-client: PLIST
pkgsrc/databases/postgresql81: Makefile.common distinfo
pkgsrc/databases/postgresql81-client: PLIST
Log Message:
Update PostgreSQL to 7.3.15, 7.4.13, 8.0.8 and 8.1.4 respectively.
Common to all versions:
* Change the server to reject invalidly-encoded multibyte characters
in all cases (Tatsuo, Tom) While PostgreSQL has been moving in this
direction for some time, the checks are now applied uniformly to
all encodings and all textual input, and are now always errors not
merely warnings. This change defends against SQL-injection attacks
of the type described in CVE-2006-2313.
* Reject unsafe uses of \' in string literals As a server-side
defense against SQL-injection attacks of the type described in
CVE-2006-2314, the server now only accepts '' and not \' as a
representation of ASCII single quote in SQL string literals. By
default, \' is rejected only when client_encoding is set to a
client-only encoding (SJIS, BIG5, GBK, GB18030, or UHC), which is
the scenario in which SQL injection is possible. A new
configuration parameter backslash_quote is available to adjust
this behavior when needed. Note that full security against
CVE-2006-2314 may require client-side changes; the purpose of
backslash_quote is in part to make it obvious that insecure clients
are insecure.
* Modify libpq's string-escaping routines to be aware of encoding
considerations This fixes libpq-using applications for the
security issues described in CVE-2006-2313 and CVE-2006-2314.
Applications that use multiple PostgreSQL connections concurrently
should migrate to PQescapeStringConn() and PQescapeByteaConn() to
ensure that escaping is done correctly for the settings in use in
each database connection. Applications that do string escaping
"by hand" should be modified to rely on library routines instead.
* Fix some incorrect encoding conversion functions win1251_to_iso,
alt_to_iso, euc_tw_to_big5, euc_tw_to_mic, mic_to_euc_tw were all
broken to varying extents.
* Clean up stray remaining uses of \' in strings (Bruce, Jan)
* Fix server to use custom DH SSL parameters correctly (Michael Fuhr)
* Fix various minor memory leaks
Additionally for 7.4.13 and later:
* Fix bug that sometimes caused OR'd index scans to miss rows they
should have returned
* Fix WAL replay for case where a btree index has been truncated
* Fix SIMILAR TO for patterns involving | (Tom)
* Fix for Bonjour on Intel Macs (Ashley Clark)
Additionally for 8.0.8 and 8.1.4:
* Fix SELECT INTO and CREATE TABLE AS to create tables in the
default tablespace, not the base directory (Kris Jurka)
* Fix problem with password prompting on some Win32 systems (Robert
Kinberg)
Additionally for 8.1.4:
* Fix weak key selection in pgcrypto (Marko Kreen)
Errors in fortuna PRNG reseeding logic could cause a predictable
session key to be selected by pgp_sym_encrypt() in some cases.
This only affects non-OpenSSL-using builds.
* Make autovacuum visible in pg_stat_activity (Alvaro)
* Disable full_page_writes (Tom)
In certain cases, having full_page_writes off would cause crash
recovery to fail. A proper fix will appear in 8.2; for now it's
just disabled.
* Various planner fixes, particularly for bitmap index scans and
MIN/MAX optimization (Tom)
* Fix incorrect optimization in merge join (Tom)
Outer joins could sometimes emit multiple copies of unmatched
rows.
* Fix crash from using and modifying a plpgsql function in the same
transaction
* Improve qsort performance (Dann Corbit)
Currently this code is only used on Solaris.
* Improve pg_dump's handling of default values for domains
* Fix pg_dumpall to handle identically-named users and groups
reasonably (only possible when dumping from a pre-8.1 server) (Tom)
The user and group will be merged into a single role with LOGIN
permission. Formerly the merged role wouldn't have LOGIN
permission, making it unusable as a user.
* Fix pg_restore -n to work as documented (Tom)
|
|
install fix for phpldapadmin
Revisions pulled up:
- pkgsrc/databases/phpldapadmin/Makefile 1.22
Module Name: pkgsrc
Committed By: adrianp
Date: Sun May 28 18:18:44 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: Makefile
Log Message:
Fix a bug in the Makefile which caused the files to be installed with
the wrong permissions.
Bump PKGREVISION
|
|
security update for phpldapadmin
Revisions pulled up:
- pkgsrc/databases/phpldapadmin/MESSAGE 1.5, 1.6
- pkgsrc/databases/phpldapadmin/Makefile 1.19, 1.20, 1.21
- pkgsrc/databases/phpldapadmin/PLIST 1.6, 1.7
- pkgsrc/databases/phpldapadmin/distinfo 1.8, 1.9
- pkgsrc/databases/phpldapadmin/patches/patch-aa removed
- pkgsrc/databases/phpldapadmin/patches/patch-ab removed
Module Name: pkgsrc
Committed By: adrianp
Date: Thu May 18 22:13:46 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: MESSAGE Makefile PLIST distinfo
Removed Files:
pkgsrc/databases/phpldapadmin/patches: patch-aa patch-ab
Log Message:
Updated phpldapadmin to 0.9.8.3
Thanks to Yoshito Komatsu for feedback and testing
A summary of changes include:
This release fixes some minor bugs and some security alerts.
Code syntax fixing tests
HTML Validation fixes
Added support for binary attrs in templates & HTML Validation fixes
Few minor bug fixes.
Changed default login attribute back to "dn".
---
Module Name: pkgsrc
Committed By: adrianp
Date: Thu May 18 22:22:37 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: Makefile
Log Message:
Add a missing DEPENDS from the package update
---
Module Name: pkgsrc
Committed By: adrianp
Date: Sun May 21 11:58:25 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: distinfo
Log Message:
Fix checksums
---
Module Name: pkgsrc
Committed By: adrianp
Date: Tue May 23 20:51:44 UTC 2006
Modified Files:
pkgsrc/databases/phpldapadmin: MESSAGE Makefile PLIST
Log Message:
Watch for non-empty config/ directory
Use CONF_FILES_PERMS to install the conf.php file
Don't use WWW_USER to set permissions as that assumes apache is always installed
Bump PKGREVISION
Fix binary packages (pointed out by salo@)
|
|
security update for openldap
Revisions pulled up:
- pkgsrc/databases/openldap/Makefile 1.111, 1.112, 1.113
- pkgsrc/databases/openldap/PLIST 1.26
- pkgsrc/databases/openldap/distinfo 1.45, 1.46, 1.47
- pkgsrc/databases/openldap/patches/patch-ac 1.11
- pkgsrc/databases/openldap/patches/patch-ad 1.7
- pkgsrc/databases/openldap/patches/patch-ah 1.5
- pkgsrc/databases/openldap/patches/patch-am 1.5
Module Name: pkgsrc
Committed By: grant
Date: Fri Apr 7 00:35:02 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile
Log Message:
fix avl_* function prototype conflicts on Solaris, so this now builds
on Solaris.
---
Module Name: pkgsrc
Committed By: ghen
Date: Mon May 15 19:01:23 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile PLIST distinfo
pkgsrc/databases/openldap/patches: patch-ac patch-ah patch-am
Log Message:
Update OpenLDAP from 2.3.11 to 2.3.21. Ok with joerg.
Here are all the changes:
OpenLDAP 2.3.21 Release
Fixed libldap referral chasing issue (ITS#4448)
Fixed libldap invalid free bug (ITS#4436)
Fixed libldap mutex leak (ITS#4441)
Fixed libldap_r thr_yield(2) return handling (ITS#4469)
Fixed slapd syncprov/glue interaction issue (ITS#4323, ITS#4417)
Fixed slapd operational attrs in presence of global overlays (ITS#4431)
Fixed slapd "threads" config value checking (ITS#4433)
Fixed slapd connection index bound check (ITS#4449)
Fixed slapd connection cleanup (ITS#4465)
Fixed slapd slap_realloc misuse (ITS#4477)
Fixed slapd size limit check when pagesize=3D1 (ITS#4479)
Fixed slapd-bdb/hdb cache issue (ITS#4439)
Fixed slapd-ldbm crash on modify bug (ITS#4464)
Fixed slapd-ldap potential bind deadlock (ITS#4409)
Fixed slapd-ldap/meta conn expiration concurrency (ITS#4429)
Fixed slapd-ldap failed bind connection trashing (ITS#4428)
Fixed slapd-ldap/meta chase-referrals disabling (ITS#4447)
Fixed slapd-ldap controls forwarding (ITS#4457)
Fixed slapd-ldap pretty DN in proxied requests (ITS#4456)
Fixed slapd-ldbm crash on modify bug (ITS#4464)
Fixed slapd-meta write error mapping (ITS#4419)
Removed lint
Build Environment
Added slapo-auditlog build support (ITS#4372)
Fixed multi-precision sizeof detection (ITS#4416)
Fixed liblunicode build (ITS#4435)
Updated libtool to version 1.5.22 (ITS#4471)
Updated shtool to version 2.0.5
OpenLDAP 2.3.20 Release
Added libldap SASL workaround for broken LDAP servers (ITS#4391)
Fixed libldap/slapd valuesReturnFilter OID (ITS#4404)
Fixed slapd config_generic_wrapper missing parameter bug (ITS#4376)
Fixed slapd extensible filter value normalization bug (ITS#4380)
Fixed slapd context CSN not updating issue (ITS#4384)
Fixed slapd non-read/write epoll event handling (ITS#4395)
Fixed slapd syncrepl de-normalize UUID issue
Fixed slapd syncrepl dynamic reconfig issue (ITS#4401)
Added slapd syncrepl log messages (ITS#4369)
Added slapd permissive modify/increment support
Added slapd dynamically registered debug level support
Fixed slapd connectionless LDAP support
Fixed slapd cn=3Dconfig error on create failure issue (ITS#4407)
Fixed slapd-bdb/hdb wake listener on runqueue submit (ITS#4385)
Fixed slapd-ldap/meta resources leaks on multiple binds (ITS#4387)
Fixed slapd-ldap/meta assert on connection shutdown (ITS#4390)
Added slapd-meta subtree-exclude feature
Fixed slapo-syncprov update latency issue (ITS#4385)
Fixed slapo-auditlog crash (ITS#4394)
Fixed slapo-accesslog unbind crash (ITS#4386)
Fixed slurpd reject error formating (ITS#4382)
Fixed ldappasswd unbind issue (ITS#4403)
Fixed slapo-pcache assert on attrsonly search (ITS#4406)
Added slapo-pcache max_queries enhancement (ITS#4225)
Added slapo-pcache negative caching enhancement
Build Environment
Fixed liblunicode cross compiling problem (ITS#4363)
Updated <netinet/tcp.h> detection for AIX (ITS#4312)
Updated multi-precision library detection
Documentation
Updated misc. manual pages
OpenLDAP 2.3.19 Release
Fixed libldap disable DH key exchange with DH params (ITS#4354)
Fixed libldap_r thread pool destroy hang (ITS#4349,ITS#4368)
Fixed slapd slap_daemon destroy issue (ITS#4370)
Fixed slapd-hdb livelock issue (ITS#4360)
Fixed slapd-bdb/hdb auto-recovery issue (ITS#4361,ITS#4373)
Fixed slapd-bdb/hdb BDB 4.4 compatibility issues (ITS#4362)
Fixed slapo-ppolicy modify issue (ITS#4355)
Fixed slapo-syncprov/pcache filter dup issue (ITS#4364)
Fixed slapo-syncprov playlog nentries reset issue (ITS#4365)
Build environment
Fixed slaptools when --disable-debug (ITS#4351)
Fixed slapd(8) solaris select(2) issue (ITS#4357)
OpenLDAP 2.3.18 Release
Fixed slapd syncrepl variable used before set bug (ITS#4331)
Updated slapd-meta retry capabilities (ITS#4328)
Fixed slapd-bdb slapcat autorecover bug (ITS#4324)
Fixed slapo-chain search limits (ITS#4336)
Fixed slapo-pcache attrsets issues (ITS#4316)
Fixed slapo-translucent connection destroy (ITS#4334)
Fixed slapd-config handling of attribute options (ITS#4339)
Fixed slapd-ldap idassert resource leak (ITS#4326)
Fixed slapd-meta nretries issue (ITS#4059)
Fixed slapd wake_listener loses wakes (ITS#4343)
Fixed slapd connection manager issue (ITS#4338)
Fixed slapd handling of old style configuration directives (ITS#4341)
Removed slapd-bdb/hdb extraneous yields (ITS#3950)
Build Environment
Removed problematic Linux sched_yield(2) workarounds (ITS#3950)
Documentation
Updated release documents
Updated misc. manual pages
OpenLDAP 2.3.17 Release
Fixed slapd anonymous proxy authorization issue (ITS#4320)
Fixed slapd-ldap/meta session reuse issue (ITS#4315)
Fixed slapd-ldap idassert anon-to-anon issue (ITS#4321)
Fixed slapd-monitor thread issue (ITS#4318)
Build environment
Updated Linux sched_yield(2) workaround to use nanosleep(2) (ITS#3950)
Fixed configure report-to URL
OpenLDAP 2.3.16 Release
Fixed slapd-bdb reindexing via cn=3Dconfig not noticed issue (ITS#4260)
Fixed slapd-monitor connection search crash (ITS#4300)
Flapd slapd cn=3Dconfig bad ACL syntax modify crash (ITS#4306)
Fixed slapd ACL/suffix configuration issue (ITS#4307)
Fixed slapd-bdb/hdb cache issue (ITS#4308)
Fixed slapd-bdb/hdb/ldbm suffix add with default referral issue (ITS#4310)
Fixed slapd-ldbm compare cache release issue (ITS#4313)
Fixed slapd syncrepl time/size limit parsing
Fixed slapi slapi_op_bind_callback fix (ITS#4311)
Fixed slapi pluginlog fix (ITS#4291)
Fixed ldapsearch response control handling issue
Build environment
Replace sched_yield(2) on Linux with select(2) (ITS#3950)
Documentation
Added slapd-bdb(5) cachefree description
Updated misc. manual pages
OpenLDAP 2.3.15 Release
Fixed slapd strerror logging bug (ITS#4292)
Fixed slapd ACL add/delete fraction issue (ITS#4295)
Fixed slapd ACL users selfwrite issue (ITS#4299)
Fixed slapd attrs/objectclass replog issues (ITS#4298)
Fixed slapd-ldap password modify exop password return (ITS#4294)
Build environment
Disable test030-relay when threads are unavailable (ITS#4297)
OpenLDAP 2.3.14 Release
Fixed slapd assertion control restrictions
Fixed slapd sc_prev update after free bug (ITS#4237)
Fixed slapd pid file creation (ITS#4241,4251)
Fixed slapd DEBUG dependency (ITS#4245)
Added slapd warning for excessive threads number (ITS#4249)
Fixed slapd passwd incomplete mod structure issue (ITS#4278)
Fixed slapd ACL exact attrval clause normalization (ITS#4255)
Fixed slapd modify/delete by ordered index issue
Fixed slapd strerror NULL bug (ITS#4285)
Fixed slapd-glue issues (ITS#4084,4133)
Fixed slapd-hdb idl Delete bug (ITS#4250)
Fixed slapd-hdb cache deadlock (ITS#4254)
Fixed slapd-bdb/hdb alock_close bug (ITS#4259)
Fixed slapd-bdb dn2id IDL cache bug (ITS#4263)
Fixed slapd-bdb/hdb mode argument parsing (ITS#4257)
Fixed slapd-bdb/hdb cn=3Dconfig reindexing (ITS#4260)
Fixed slapd-bdb/hdb cn=3Dconfig olcDbIndex modify/replace (ITS#4262)
Fixed slapd-bdb/hdb lockup issue (ITS#4184)
Fixed slapd-ldap anonymous identity assertion (ITS#4272)
Added slapd-ldap/meta idle-timeout support (ITS#4115)
Fixed slapd-meta bind-timeout handling
Fixed slapd-sql plug leak
Fixed slapo-dynlist/dyngroup nonexistant object return code (ITS#4224)
Updated slapo-dynlist (ITS#3756,3781)
Fixed slapo-rwm static DN free bug (ITS#4248)
Fixed slapo-syncprov unpublished control (ITS#4238)
Fixed slapo-syncprov message id issue
Fixed slapo-unique extraneous searches (ITS#4267)
Build environment
Fixed thread dependency of test028 (ITS#4141)
Updated test026-dn
Updated test033-glue-syncrepl (ITS#4264)
Documentation
Updated slapd.conf(5) and Admin Guide (ITS#4146,4266)
Updated slapo-dynlist(5) (ITS#4197)
Updated slapo-pcache(5) (ITS#4232)
Updated slapindex(8) (ITS#4242)
OpenLDAP 2.3.13 Release
Fixed libldap/liblutil MSG_ACCRIGHTSLEN bug (ITS#4206)
Fixed libldap ldap_bv2escaped_filter_value issue (ITS#4212)
Fixed liblutil URL value-specs issue (ITS#4221)
Fixed slapd sizelimit disclose issue (ITS#4213)
Fixed slapd gentlehup write restrict issue (ITS#3717)
Fixed slapd gentlehup abnormal issue (ITS#4217)
Fixed slapd delta-sync subtree scope issue (ITS#4227)
Fixed slapd cn=3Dconfig OID/name pollution issue (ITS#4185)
Fixed slapd cn=3Dconfig rootdn issue (ITS#4192)
Fixed slapd cn=3Dconfig slaptest -F without -f issue (ITS#4194)
Fixed slapd cn=3Dconfig ACL issue (ITS#4218)
Fixed slapd-bdb negative results IDL cache issue (ITS#4223)
Fixed slapd-bdb cursor close issue (ITS#4226)
Fixed slapd-hdb slapadd -q issue (ITS#4210)
Fixed slapd-hdb missing results issue (ITS#4186)
Fixed slapd-ldap potential double free issue (ITS#4189)
Fixed slapd-meta matched DN issue (ITS#4195)
Fixed slapd-meta DN cache issue (ITS#4196)
Fixed slapd-monitor shadow issue (ITS#4214)
Fixed slapo-accesslog delta-syncrepl issue (ITS#4198)
Fixed slapo-accesslog cleanup issue (ITS#4209)
Fixed slapo-chain resource leak issue (ITS#4140)
Fixed slapo-chain identity assertion issue (ITS#4256)
Fixed slapo-pcache attrset check issue (ITS#4199)
Fixed slapd-bdb readonly dirty alock issue (ITS#4201)
Fixed slapd-pcache non-requested attributes issues (ITS#4203,4204)
Fixed slaptest -F -f success with unsupported issue (ITS#4220)
Build environment
Improved Berkeley DB detection (ITS#3809)
Updated DB_CONFIG example (ITS#4229)
Documentation
Updated ldif(5) to include change record description
OpenLDAP 2.3.12 Release
Fixed libldap ldapi:// authdn construction
Added libldap ldap_bv2escaped_filter_value (ITS#2535)
Added libldap/slapd TLS DSA certificate support (ITS#4017)
Fixed libldap SASL bind issue (ITS#4158)
Fixed ldapmodrdn empty line handling (ITS#4101)
Fixed client tools additional info printing (ITS#4147)
Updated slapd ldaps:// not configured fix (ITS#4082,4083)
Fixed slapd connection crashes (ITS#4108)
Fixed slapd illegal S option bug (ITS#4119)
Fixed slapd cn=3Dmonitor log level mod issue (ITS#4091)
Fixed slapd cn=3Dconfig bad access issue (ITS#4111)
Fixed slapd cn=3Dconfig access modify issue (ITS#4127)
Fixed slapd cn=3Dconfig init issue (ITS#4128)
Fixed slapd non-reentrant libwrap issue (ITS#4099)
Fixed slapd thread v. tools_threads settings
Fixed slapd spurious defer message (ITS#3850)
Fixed slapd attribute SYNTAX OIDM issue (ITS#4116)
Fixed slapd modify empty sequence bug (ITS#4183)
Fixed slapd-bdb uninitialized condition in tool mode (ITS#4143)
Fixed slapd-bdb empty suffix and syncprov issue (ITS#4171)
Fixed slapd-hdb syncrepl deadlock issue (ITS#4088)
Added slapd-ldap write op timeout support (ITS#4157)
Fixed slapd-ldap/slapo-chain matched dn handling (ITS#4176)
Fixed slapd-meta invalid DN attrs normalize/pretty issue (ITS#4107)
Fixed slapd-meta rootdn erroneous success issue (ITS#4122)
Fixed slapd-meta proxying bind result issue (ITS#4129)
Fixed slapd-meta/slapo-rwm rwm-mapping issue (ITS#4086)
Fixed slapd-meta per-target retry (ITS#4150)
Fixed slapd-meta size/time limit handling (ITS#4145)
Fixed slapd-sql size limit count (ITS#4181)
Fixed slapo-ppolicy pwdFailureTime after bind success issue (ITS#4134)
Fixed slapo-ppolicy add passord_hash quality config dependency
Fixed slapo-syncprov LDAP response types (ITS#4183)
Added slapd delta syncrepl support
Added slapadd thread support
Updated slapcat subordinate database handling (ITS#4089)
Added slapd/slaptest pid/arg file consistency check (ITS#4074)
Updated slaptools default debug level to "none" (ITS#4044)
Fixed slurpd backwards compat issue (ITS#4151)
Added slurpd pid/arg file consistency check (ITS#4152)
Updated contrib smbk5pwd module
Removed lint
Build environment
Fixed libldap HSTRERROR issue (ITS#4124)
Fixed slapd AIX IFMT issue (ITS#4123)
Added slapd-bind test program
Added inet_ntoa_b support for VxWorks (ITS#3440)
Updated test036 (ITS#4095)
Fixed test036 cmp issue (ITS#4142)
Dropped SSLeay support
Documentation
slapd.conf(5) defaultSearchBase issue (ITS#4162)
slap tool man pages wll typo (ITS#4169)
---
Module Name: pkgsrc
Committed By: taca
Date: Thu May 18 05:14:11 UTC 2006
Modified Files:
pkgsrc/databases/openldap: distinfo
pkgsrc/databases/openldap/patches: patch-ad
Log Message:
Fix build problem of libraries/liblutil/sha1.c; function proto type
mis-match.
---
Module Name: pkgsrc
Committed By: joerg
Date: Fri May 19 14:46:10 UTC 2006
Modified Files:
pkgsrc/databases/openldap: Makefile distinfo
Log Message:
Update to OpenLDAP 2.3.23.
OpenLDAP 2.3.23 Release
Fixed slapd-ldap improper free bug (ITS#4550)
OpenLDAP 2.3.22 Release
Fixed libldap referral input destroy issue (ITS#4533)
Fixed libldap ldap_sort_entries tail bug (ITS#4536)
Fixed libldap default connection concurrency issue (ITS#4541)
Fixed libldap_r thread debug missing break
Fixed libldap_r tpool cleanup
Fixed liblutil strtoul(3) usage (ITS#4503)
Fixed liblutil time resolution issue (ITS#4514)
Updated ldapdelete(1) to stdout bug (ITS#4453)
Updated ldapsearch(1) BASE output (ITS#4504)
Fixed slapd backglue issue (ITS#4529)
Fixed slapd cn=3Dconfig (ITS#4512)
Fixed slapd cn=3Dconfig ACL application fix
Fixed slapd cn=3Dconfig olcLimits (ITS#4515)
Fixed slapd dynacl tgrant/tdeny initialization
Fixed slapd runqueue use of freed memory (ITS#4517)
Fixed slapd slap_send_ldap_result bug (ITS#4499)
Fixed slapd thread pool init issue (ITS#4513)
Added slapd syncrepl mandatory searchbase check
Fixed slapd-bdb/hdb pre/post-read freeing (ITS#4532)
Fixed slapd-bdb/hdb pre/post-read unavailable issue (ITS#4538)
Fixed slapd-bdb/hdb referral issue (ITS#4548)
Fixed slapd-hdb IDL sort issue (ITS#4531)
Fixed slapd-ldap proxyAuthz of bound identity/override (ITS#4497)
Fixed slapd-ldap/meta protocol version propagation (ITS#4488)
Fixed slapd-ldap fd cleanup (ITS#4474)
Fixed slapd-ldif deadlock (ITS#4500)
Fixed slapd-shell lutil_atoi issue (ITS#4495)
Fixed slapadd cn=3Dconfig issue (ITS#4194)
Fixed slapo-accesslog log purging issue (ITS#4505)
Added slapo-accesslog reqOld feature
Fixed slapo-auditlog missing return codes
Fixed slapo-ppolicy BER tags issue (ITS#4528)
Fixed slapo-ppolicy rebind bug (ITS#4516)
Fixed slapo-refint delete prohibit issue (ITS#4442)
Fixed slapo-syncprov MODs cause DELs (ITS#4423)
Fixed slapo-syncprov/syncrepl sessionlog issue (ITS#4534)
Added slapo-syncprov extra logging
Fixed slapo-translucent modifications (ITS#4527)
Fixed slurpd potential overflow issue
Build Environment
Fixed OSF1 compilation problem (ITS#4537)
Fixed test020-proxycache disabled debug issue (ITS#4491)
Fixed test033-glue-syncrepl overlay detection (ITS#4544)
Documentation
Fixed slapd(8) logging header reference (ITS#4509)
Clarified slapd.conf(5) "disable bind_anon" feature
|
|
security update for mysql5
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.11, 1.12
- pkgsrc/databases/mysql5-client/distinfo 1.6
- pkgsrc/databases/mysql5-client/patches/patch-ae 1.5
- pkgsrc/databases/mysql5-client/patches/patch-af 1.4
- pkgsrc/databases/mysql5-client/patches/patch-ag 1.2
- pkgsrc/databases/mysql5-server/Makefile 1.13
- pkgsrc/databases/mysql5-server/PLIST 1.6
- pkgsrc/databases/mysql5-server/distinfo 1.7
- pkgsrc/databases/mysql5-server/patches/patch-ac 1.2
- pkgsrc/databases/mysql5-server/patches/patch-ag 1.4
- pkgsrc/databases/mysql5-server/patches/patch-al 1.2
Module Name: pkgsrc
Committed By: cube
Date: Thu May 18 16:11:15 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common distinfo
pkgsrc/databases/mysql5-client/patches: patch-ae patch-af patch-ag
pkgsrc/databases/mysql5-server: Makefile PLIST distinfo
pkgsrc/databases/mysql5-server/patches: patch-ac patch-ag patch-al
Log Message:
Update to version 5.0.21.
Full listing of changes:
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html
Notable changes include:
- Security enhancement: Added the global max_prepared_stmt_count system
variable to limit the total number of prepared statements in the
server.
- The default for the innodb_thread_concurrency system variable was
changed to 8.
- Fixes for CVE-2006-1516, CVE-2006-1517 and CVE-2006-1518.
And a lot of bug fixes.
---
Module Name: pkgsrc
Committed By: tron
Date: Fri May 19 23:01:02 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common
Log Message:
Fix build problem under Mac OS X by repairing broken OpenSSL (shared)
library detection.
|
|
security update for phpmyadmin
Revisions pulled up:
- pkgsrc/databases/phpmyadmin/Makefile 1.49
- pkgsrc/databases/phpmyadmin/distinfo 1.21
Module Name: pkgsrc
Committed By: tron
Date: Sat May 13 09:56:36 UTC 2006
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log Message:
Update "phpmyadmin" package to version 2.8.0.4. This version fixes the
security vulnerability reported in PMASA-2006-2 and CVE-2006-2031.
|
|
security update for mysql5
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile 1.7
- pkgsrc/databases/mysql5-client/Makefile.common 1.10
- pkgsrc/databases/mysql5-client/PLIST 1.4
- pkgsrc/databases/mysql5-client/distinfo 1.5
- pkgsrc/databases/mysql5-client/patches/patch-ae 1.4
- pkgsrc/databases/mysql5-server/PLIST 1.5
- pkgsrc/databases/mysql5-server/distinfo 1.5, 1.6
- pkgsrc/databases/mysql5-server/patches/patch-ao 1.1
Module Name: pkgsrc
Committed By: xtraeme
Date: Thu Apr 13 11:19:25 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-client: Makefile Makefile.common PLIST
distinfo
pkgsrc/databases/mysql5-client/patches: patch-ae
pkgsrc/databases/mysql5-server: PLIST distinfo
Log Message:
Update mysql5-* to 5.0.20.
To see new changes and bugs fixed, see:
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-x.html.
---
Module Name: pkgsrc
Committed By: tron
Date: Mon Apr 17 11:21:41 UTC 2006
Modified Files:
pkgsrc/databases/mysql5-server: distinfo
Added Files:
pkgsrc/databases/mysql5-server/patches: patch-ao
Log Message:
Add fix for CAN-2006-0903 taken from MySQL bug #17667. Bump package
revision because of this security fix.
|
|
security update for phpmyadmin
Revisions pulled up:
- pkgsrc/databases/phpmyadmin/Makefile 1.48
- pkgsrc/databases/phpmyadmin/distinfo 1.20
Module Name: pkgsrc
Committed By: tron
Date: Fri Apr 7 12:01:15 UTC 2006
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log Message:
Update "phpmyadmin" package to version 2.8.0.3.
Changes since version 2.8.0.2:
- XSS vulnerability (set_theme)
- mysqli problems with zend.ze1_compatibility_mode enabled
- setup script did not save the mysql/mysqli extension
- XSS vulnerability (calling directly css files under themes)
|
|
don't get installed. This fixes a package list problem reported by
Lubomir Sedlacik in private e-mail. Bump package revision.
|
|
There are far too many changes to list here.
|
|
the other postgresql packages do. Fixes build of PL packages.
|
|
|
|
Changes since version 2.8.0.1:
- XSS vulnerability (set_theme)
- mysqli problems with zend.ze1_compatibility_mode enabled
- setup script did not save the mysql/mysqli extension
Package source related changes:
- incooperate fix for phpMyAdmin bug #1436279 to make the package usable
with Safari under Mac OS X again
|
|
|
|
scripts prior to revision 1.43 of bsd.pkginstall.mk.
|
|
|
|
|
|
postgresql81-plpython, postgresql81-pltcl, and postgresql81-server.
|
|
This is an overview of new features in 8.1.0 against 8.0.x. 8.1.3 includes
many bug fixes since 8.1.0. Please read documentation of the detailed changes
and procedure of data migration.
Overview
Major changes in this release:
Improve concurrent access to the shared buffer cache (Tom)
Access to the shared buffer cache was identified as a
significant scalability problem, particularly on multi-CPU
systems. In this release, the way that locking is done in the
buffer manager has been overhauled to reduce lock contention and
improve scalability. The buffer manager has also been changed to
use a "clock sweep" replacement policy.
Allow index scans to use an intermediate in-memory bitmap (Tom)
In previous releases, only a single index could be used to do
lookups on a table. With this feature, if a query has "WHERE
tab.col1 = 4 and tab.col2 = 9", and there is no multicolumn
index on col1 and col2, but there is an index on col1 and
another on col2, it is possible to search both indexes and
combine the results in memory, then do heap fetches for only the
rows matching both the col1 and col2 restrictions. This is very
useful in environments that have a lot of unstructured queries
where it is impossible to create indexes that match all possible
access conditions. Bitmap scans are useful even with a single
index, as they reduce the amount of random access needed; a
bitmap index scan is efficient for retrieving fairly large
fractions of the complete table, whereas plain index scans are
not.
Add two-phase commit (Heikki Linnakangas, Alvaro, Tom)
Two-phase commit allows transactions to be "prepared" on several
computers, and once all computers have successfully prepared
their transactions (none failed), all transactions can be
committed. Even if a machine crashes after a prepare, the
prepared transaction can be committed after the machine is
restarted. New syntax includes "PREPARE TRANSACTION" and
"COMMIT/ROLLBACK PREPARED". A new system view pg_prepared_xacts
has also been added.
Create a new role system that replaces users and groups (Stephen Frost)
Roles are a combination of users and groups. Like users, they
can have login capability, and like groups, a role can have
other roles as members. Roles basically remove the distinction
between users and groups. For example, a role can:
+ Have login capability (optionally)
+ Own objects
+ Hold access permissions for database objects
+ Inherit permissions from other roles it is a member of
Once a user logs into a role, she obtains capabilities of the
login role plus any inherited roles, and can use "SET ROLE" to
switch to other roles she is a member of. This feature is a
generalization of the SQL standard's concept of roles. This
change also replaces pg_shadow and pg_group by new role-capable
catalogs pg_authid and pg_auth_members. The old tables are
redefined as read-only views on the new role tables.
Automatically use indexes for MIN() and MAX() (Tom)
In previous releases, the only way to use an index for MIN() or
MAX() was to rewrite the query as "SELECT col FROM tab ORDER BY
col LIMIT 1". Index usage now happens automatically.
Move /contrib/pg_autovacuum into the main server (Alvaro)
Integrating autovacuum into the server allows it to be
automatically started and stopped in sync with the database
server, and allows autovacuum to be configured from
"postgresql.conf".
Add shared row level locks using SELECT ... FOR SHARE (Alvaro)
While PostgreSQL's MVCC locking allows "SELECT" to never be
blocked by writers and therefore does not need shared row locks
for typical operations, shared locks are useful for applications
that require shared row locking. In particular this reduces the
locking requirements imposed by referential integrity checks.
Add dependencies on shared objects, specifically roles (Alvaro)
This extension of the dependency mechanism prevents roles from
being dropped while there are still database objects they own.
Formerly it was possible to accidentally "orphan" objects by
deleting their owner. While this could be recovered from, it was
messy and unpleasant.
Improve performance for partitioned tables (Simon)
The new constraint_exclusion configuration parameter avoids
lookups on child tables where constraints indicate that no
matching rows exist in the child table.
This allows for a basic type of table partitioning. If child
tables store separate key ranges and this is enforced using
appropriate "CHECK" constraints, the optimizer will skip child
table accesses when the constraint guarantees no matching rows
exist in the child table.
|
|
information fron different sources correctly,
also sort out duplicate group IDs as the libc backends do
fixes PR pkg/32988 by Stephan Thesing
bump PKGREVISION
|
|
|
|
|
|
changes:
* Date handler for Lithuanian language (Arturas Sleinius).
* New Calendar graphical report (Doug Blank).
* Multiple tool fixes.
* GEDCOM import and export improvements.
* Proper rebuilding of secondary indices.
* Open Document Format support in reports (Serge Noiraud, Brian Matherly).
* Multiple report fixes.
* Fix for low-level duplicate records.
* User Manual updates.
* An insane number of bug fixes.
|
|
|
|
|
|
INSTALL/DEINSTALL script creation within pkgsrc.
If an INSTALL or DEINSTALL script is found in the package directory,
it is automatically used as a template for the pkginstall-generated
scripts. If instead, they should be used simply as the full scripts,
then the package Makefile should set INSTALL_SRC or DEINSTALL_SRC
explicitly, e.g.:
INSTALL_SRC= ${PKGDIR}/INSTALL
DEINSTALL_SRC= # emtpy
As part of the restructuring of the pkginstall framework internals,
we now *always* generate temporary INSTALL or DEINSTALL scripts. By
comparing these temporary scripts with minimal INSTALL/DEINSTALL
scripts formed from only the base templates, we determine whether or
not the INSTALL/DEINSTALL scripts are actually needed by the package
(see the generate-install-scripts target in bsd.pkginstall.mk).
In addition, more variables in the framework have been made private.
The *_EXTRA_TMPL variables have been renamed to *_TEMPLATE, which are
more sensible names given the very few exported variables in this
framework. The only public variables relating to the templates are:
INSTALL_SRC INSTALL_TEMPLATE
DEINSTALL_SRC DEINSTALL_TEMPLATE
HEADER_TEMPLATE
The packages in pkgsrc have been modified to reflect the changes in
the pkginstall framework.
|
|
Changes:
New features:
- implemented set_query_timeout() and set_login_timeout()
- implemented min_error_severity property: all errors that
has severity less than min_error_severity doesn't raise
exception, but are still available in errmsg()
- stdmsg() is now deprecated; all errors can be retrieved
using errmsg(); stdmsg() will disappear some time in the
future
- readded ntwdblib.dll; I misunderstood its licence-it's
redistributable; this library is at the newest available
version so connections to SQL 2005 are possible
- new unit test provided by Jakub Labath
- the web page has now more useful info
Bugfixes:
- sometimes exceptions were raised but error message was
lost
- the coltype wasn't set to NUMBER for float types (thanks
Jakub Labath)
Patch provided by bartosz\@atom.eu.org in PR 33070.
|
|
> 4.80 8 Mar 2006
>
> Added activerecord support.
>
> Added mysql $conn->compat323 = true if you want MySQL 3.23 compat enabled. Fixes GetOne() Select-Limit problems.
>
> Added adodb-xmlschema03.inc.php to support XML Schema version 3 and updated adodb-datadict.htm docs.
>
> 4.72 21 Feb 2006
>
> Added 'new' DSN parameter for NConnect().
>
> Pager now sanitizes $PHP_SELF to protect against XSS. Thx to James Bercegay and others.
>
> ADOConnection::MetaType changed to setup $rs->connection correctly.
>
> New native DB2 driver contributed by Larry Menard, Dan Scott, Andy Staudacher, Bharat Mediratta.
>
> The mssql CreateSequence() did not BEGIN TRANSACTION correctly. Fixed. Thx Sean Lee.
>
> The _adodb_countrecs() function in adodb-lib.inc.php has been revised to handle more ORDER BY variations.
|
|
2006-02-20 Mikio Hirabayashi
- The utility API was enhanced.
- Release: 1.8.46
2006-01-28 Mikio Hirabayashi
- Alignment algorithm was improved.
- A bug of mmap emulation on Windows was fixed.
- Release: 1.8.45
2006-01-24 Mikio Hirabayashi
- A bug of handling meta data on big endian platforms was fixed.
- The advanced API was enhanced.
- Release: 1.8.44
2006-01-24 Mikio Hirabayashi
- A bug of mmap emulation on Windows was fixed.
- Release: 1.8.43
2006-01-22 Mikio Hirabayashi
- mmap emulation on Windows was enhanced.
- Release: 1.8.42
2006-01-13 Mikio Hirabayashi
- Compression of pages of B+ tree with LZO and BZIP was added.
- Release: 1.8.41
|
|
|
|
|
|
|
|
- PHP 5.1.2 compatibility
- Possibility to hide databases
- Configurable memory limit for import/export
- Better support for CGI
- Web-based setup
|
|
Depends on ocaml >= 3.09.0
use _loc instead of loc in camlp4 files
bump PKGREVISION
|
|
libintl, so pass it via LIBS to configure.
fixes build on Solaris.
|
|
libtasn1 had a shlib major bump.
Also update dependencies in bl3.mk files.
Addresses PR 32998 by Robert Elz.
|
|
makeinfo if no native makeinfo executable exists. Honor TEXINFO_REQD
when determining whether the native makeinfo can be used.
* Remove USE_MAKEINFO and replace it with USE_TOOLS+=makeinfo.
* Get rid of all the "split" argument deduction for makeinfo since
the PLIST module already handles varying numbers of split info files
correctly.
NOTE: Platforms that have "makeinfo" in the base system should check
that the makeinfo entries of pkgsrc/mk/tools.${OPSYS}.mk are
correct.
|
|
developer is officially maintaining the package.
The rationale for changing this from "tech-pkg" to "pkgsrc-users" is
that it implies that any user can try to maintain the package (by
submitting patches to the mailing list). Since the folks most likely
to care about the package are the folks that want to use it or are
already using it, this would leverage the energy of users who aren't
developers.
|
|
|
|
only with GNU as(1).
XXX this condition should probably be reversed to the positive case,
XXX not the negative case so that it works on more platforms.
|
|
changes:
* Backported generic text importer from 0.9
* Backported generic html importer from 0.9
* Merged latest translations from rosetta
-bugfixes
-Make gourmet work properly with python2.3
|
|
changes: fixes and optimizations
(they removed libtool support, so I had to patch this in again)
|
|
the @exec_prefix@ is resolved to the literal ${prefix}, unexpanded.
Bumped PKGREVISION.
|
|
Updated jdbc-postgresql80 to 315
Updated jdbc-postgresql81 to 405
No change logs found.
Removed jdbc-postgresql (has been re-imported as jdbc-postgresql73)
|
|
|
|
|
|
arguments. Version number borrowed from Ruby adapter.
|
|
1.39 Thu Feb 16 16:27:42 PST 2006
* Allow ORs on left joins
|
|
|