| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
security update for libextractor
Revisions pulled up:
- pkgsrc/devel/libextractor/Makefile 1.7
- pkgsrc/devel/libextractor/PLIST 1.2
- pkgsrc/devel/libextractor/distinfo 1.5
- pkgsrc/devel/libextractor/buildlink3.mk 1.2
- pkgsrc/devel/libextractor/patches/patch-ac removed
- pkgsrc/devel/libextractor/patches/patch-ad removed
Module Name: pkgsrc
Committed By: tv
Date: Fri Jun 10 17:03:35 UTC 2005
Modified Files:
pkgsrc/devel/libextractor: Makefile PLIST distinfo
Removed Files:
pkgsrc/devel/libextractor/patches: patch-ac patch-ad
Log Message:
Update libextractor to 0.4.2.
Fixes (second half of) Secunia SA: http://secunia.com/advisories/15651/
(first half was fixed in 0.3.11nb1)
ChangeLog excerpts:
Thu Feb 24 00:32:44 EST 2005
Added extractor that extracts binary (!) thumbnails from
images using ImageMagick. Decoder function for the binary
string is in the thumbnailextractor.c source.
Sun Feb 20 16:36:17 EST 2005
Fixed similar problem in REAL extractor. Added support
for new Helix/Real format to REAL extractor.
Sun Feb 20 12:48:15 EST 2005
Fixed (rare) integer overflow bug in PNG extractor.
Fri Jan 21 15:23:43 PST 2005
Fixed security problem in PDF extractor.
Fri Dec 24 13:28:59 CET 2004
Added support for Unicode to the pdf extractor.
Thu Dec 23 18:14:10 CET 2004
Avoided exporting symbol OPEN (conflicts on OSX
with same symbol from GNUnet). Added conversion
to utf8 to various plugqins (see todo) and
added conversion from utf8 to current locale to
print keywords.
----
Module Name: pkgsrc
Committed By: salo
Date: Fri Jun 10 22:59:22 UTC 2005
Modified Files:
pkgsrc/devel/libextractor: buildlink3.mk
Log Message:
Set BUILDLINK_RECOMMENDED after recent security fixes. (hi tv!)
|
|
security update for bugzilla
Revisions pulled up:
- pkgsrc/devel/bugzilla/DESCR 1.2
- pkgsrc/devel/bugzilla/MESSAGE 1.2
- pkgsrc/devel/bugzilla/Makefile 1.6
- pkgsrc/devel/bugzilla/PLIST 1.3
- pkgsrc/devel/bugzilla/distinfo 1.5
Module Name: pkgsrc
Committed By: adrianp
Date: Sun May 15 17:04:32 UTC 2005
Modified Files:
pkgsrc/devel/bugzilla: DESCR MESSAGE Makefile PLIST distinfo
Log Message:
- Update to 2.18.1
- Two "Information Disclosure" security bugs fixed
- From the ChangeLog:
> + You can now enter a negative time for "Hours Worked"
> in the time-tracking area. (Bug 271276)
>
> + The BugMail.pm customization required for Windows (as
> described in the Bugzilla Guide) now actually works. (Bug 280911)
>
> + Users who were using Bugzilla 2.8 can now successfully upgrade
> to 2.18.1 (they couldn't upgrade to 2.18). (Bug 283403)
>
> + Dependency mails are now properly sent during a mass-change of bugs.
> (Bug 178157)
|
|
security fix for nasm
Revisions pulled up:
- pkgsrc/devel/nasm/Makefile 1.21
- pkgsrc/devel/nasm/distinfo 1.8
- pkgsrc/devel/nasm/patches/patch-ac 1.3
Module Name: pkgsrc
Committed By: adrianp
Date: Thu May 5 20:12:46 UTC 2005
Modified Files:
pkgsrc/devel/nasm: Makefile distinfo
Added Files:
pkgsrc/devel/nasm/patches: patch-ac
Log Message:
- Bump to nb1 for recent security issue
- https://bugzilla.redhat.com/beta/show_bug.cgi?id=152962
- https://bugzilla.redhat.com/beta/show_bug.cgi?id=152963
- https://www.redhat.com/archives/fedora-cvs-commits/2005-April/msg00159.html
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1194
|
|
security update for cvs
Revisions pulled up:
- pkgsrc/devel/cvs/Makefile 1.84
- pkgsrc/devel/cvs/distinfo 1.26
- pkgsrc/devel/cvs/patches/patch-ab 1.15
- pkgsrc/devel/cvs/patches/patch-ae 1.10
- pkgsrc/devel/cvs/patches/patch-af 1.12
- pkgsrc/devel/cvs/patches/patch-ag 1.6
- pkgsrc/devel/cvs/patches/patch-ai 1.9
- pkgsrc/devel/cvs/patches/patch-al 1.11
- pkgsrc/devel/cvs/patches/patch-ar 1.16
- pkgsrc/devel/cvs/patches/patch-as 1.8
- pkgsrc/devel/cvs/patches/patch-az 1.9
Module Name: pkgsrc
Committed By: wiz
Date: Tue Apr 19 12:39:18 UTC 2005
Modified Files:
pkgsrc/devel/cvs: Makefile distinfo
pkgsrc/devel/cvs/patches: patch-ab patch-ae patch-af patch-ag
patch-ai patch-al patch-ar patch-as patch-az
Log Message:
Update to 1.11.20.
NOTE: currently without IPv6 support, until there is an updated KAME
patch for it.
Changes:
Changes since 1.11.19:
**********************
SERVER SECURITY FIXES
* Thanks to a report from Alen Zukich, several minor security issues
have been addressed. One was a buffer overflow that is potentially
serious but which may not be exploitable, assigned CAN-2005-0753 by
the Common Vulnerabilities and Exposures Project
<http://www.cve.mitre.org>. Other fixes resulting from Alen's report
include repair of an arbitrary free with no known exploit and several
plugged memory leaks and potentially freed NULL pointers which may
have been exploitable for a denial of service attack.
* Thanks to a report from Craig Monson, minor potential
vulnerabilities in the contributed Perl scripts have been fixed.
The confirmed vulnerability could allow the execution of arbitrary
code on the CVS server, but only if a user already had commit access
and if one of the contrib scripts was installed improperly,
a condition which should have been quickly visible to any
administrator. The complete description of the problem is here:
<https://ccvs.cvshome.org/issues/show_bug.cgi?id=224>. If you were
making use of any of the contributed trigger scripts on a CVS server,
you should probably still replace them with the new versions, to be
on the safe side.
Unfortunately, our fix is incomplete. Taint-checking has been
enabled in all the contributed Perl scripts intended to be run as
trigger scripts, but no attempt has been made to ensure that they
still run in taint mode. You will most likely have to tweak the
scripts in some way to make them run. Please send any patches you
find necessary back to <bug-cvs@gnu.org> so that we may again ship
fully enabled scripts in the future.
You should also make sure that any home-grown Perl scripts that you
might have installed as CVS triggers also have taint-checking enabled.
This can be done by adding `-T' on the scripts' #! lines. Please try
running `perldoc perlsec' if you would like more information on
general Perl security and taint-checking.
BUG FIXES
* Thanks to a report and a patch from Georg Scwharz
CVS now builds without error on IRIX 5.3
DEVELOPER ISSUES
* We've standardized on Automake 1.9.5 to get some at new features
that make our jobs easier. See the HACKING file for more on using
the autotools with CVS.
|
|
MASTER_SITES fix for libnet
Revisions pulled up:
- pkgsrc/devel/libnet/Makefile 1.23
Module Name: pkgsrc
Committed By: wiz
Date: Tue Apr 5 15:31:42 UTC 2005
Modified Files:
pkgsrc/devel/libnet: Makefile
Log Message:
Update MASTER_SITES path, from Geert Hendrickx in PR 29893.
|
|
portability fix for gdb
Revisions pulled up:
- pkgsrc/devel/gdb/Makefile 1.19
Module Name: pkgsrc
Committed By: dmcmahill
Date: Tue Mar 29 00:55:43 UTC 2005
Modified Files:
pkgsrc/devel/gdb: Makefile
Log Message:
make sure LDFLAGS gets followed when linking gdb. Fixes a problem
with libintl and libiconv not being found on solaris.
|
|
portability fix for generate
Revisions pulled up:
- pkgsrc/devel/generate/distinfo 1.8
- pkgsrc/devel/generate/patches/patch-ab 1.3
Module Name: pkgsrc
Committed By: minskim
Date: Wed Mar 23 15:11:32 UTC 2005
Modified Files:
pkgsrc/devel/generate: distinfo
Added Files:
pkgsrc/devel/generate/patches: patch-ab
Log Message:
Use NS_MAXDNAME if MAXDNAME is undefined, because some platforms don't
include old bind headers automatically (e.g. Darwin).
|
|
.mo files.
|
|
|
|
Version 1.43
- Added HASH reference check of parsed MML.
- load_mml options are now passable as plain name=>value pairs
- A few test and POD changes
Version 1.42
- Little improvement of the capture function (syswrite support)
Version 1.41
- Fixed capture bug related to unimplemented tied methods
- Created the internal IO::Util::Handle class based on Tie::StdHandle
Version 1.4
- Added perl 5.6.1 version check in Makefile.PL
- Added SKIP block in unique id tests if Time::HiRes is not installed
- Added load_mml() function (loads MML data into perl structures)
- POD restyling and fixing
Version 1.3
- Added Tid(), Lid() and Uid() functions and tests
Closes PR 29051 by Hiramatsu Yoshifumi.
|
|
This won't hurt gcc-based builds, so it does not need to be compiler type
conditional.
|
|
|
|
PR 29193.
|
|
"GMP does not handle pure-endian FP on ARM"
Bump PKGREVISION.
|
|
have check-0.9.1.
|
|
|
|
versions instead of the minimum required ones).
|
|
|
|
|
|
and ${CFLAGS}. This fixes the build of net/djbdns, as well as any
other of these packages passing down PKG_SYSCONFDIR via CFLAGS, as
well as being more generally correct for arbitrary user-defined
CFLAGS. Suggested by jlam.
For consistency across djbware in pkgsrc:
* In math/djbfft's and sysutils/daemontools's do-configure targets,
remove leading @ from ${ECHO} lines; from the former, also remove
unneeded single quotes from one such line.
* Rename net/publicfile's pre-build and sysutils/service-config's
post-patch targets to do-configure.
* In sysutils/checkpassword's do-configure target, reorder creation
of conf-cc, conf-ld, and conf-home.
All of the affected packages have been verified to compile.
XXX These packages probably have enough build goo in common to
XXX warrant an mk/djbware.mk. I'll investigate this post-freeze.
|
|
build of some dependents on Interix (e.g., jed and xjed).
|
|
|
|
|
|
than "__progname" (just in case), and set it also in getopt_long(3).
|
|
- pull sources directly into pkgsrc
- do not depend on namespace.h, <sys/cdefs.h> (de-__P()ify), or <err.h>
- use libtool for better portability in shlib creation
The resultant library is still ABI compatible with prior versions and
should have the same shlib major version number.
Thanks to Roland Illig <roland.illig@gmx.de> for help in getting this
working properly on Solaris.
|
|
compiler flags, thanks wiz.
|
|
option), this should fix PR pkg/29533.
|
|
Adapt patch-aa to include (currently untested) powerpc support.
|
|
|
|
|
|
|
|
|
|
|
|
ruby-openssl with bump PKGREVISION.
|
|
Changes:
* mime-en.sgml, mime-ja.sgml (CVS based development): Remove the
description about developers' pserver access.
* sha1-dl.el: Don't provide the sha1-dl feature twice.
(sha1-region): Allow the optional argument `binary'.
(sha1): Ditto.
* smtp.el (smtp-parse-progress-message-format): Fix regexp usage.
* smtp.el (smtp-progress-message-format): New user option.
(smtp-primitive-data): Show progress message.
(smtp-parse-progress-message-format): New function.
(smtp-show-progress-message): New function.
(smtp-deduce-address-list): Use insert instead of insert-string.
* mel-g.el (gzip64-external-encoder): Change default value to
cause more recognizable error.
(gzip64-external-decoder): Ditto.
* std11.el (std11-parse-word-or-comment-or-period): Renamed from
`std11-parse-word-or-comment' and allow period.
(std11-parse-phrase): Allow parsing obs-phrase in rfc2822.
* mime-conf.el (mime-format-mailcap-command): Quote a file name
which may contain spaces using `shell-quote-argument' in order to
pass it to the shell safely.
* eword-encode.el (mime-encode-header-in-buffer): Don't ignore a
space char at the beginning of a field body in order to honor the
76-column rule which is described in RFC 2047 section 2.
* eword-decode.el (eword-decode-encoded-text): Fix bug when
`must-unfold' is specified; eliminate CR too when `must-unfold' is
specified.
* mel-u.el (mime-write-decoded-region): Use make-temp-file.
(uuencode-external-decode-region): Ditto.
* mel-u.el (mime-write-decoded-region): Use temporary filename.
* sha1-el.el (sha1-maximum-internal-length): Doc fix.
* lunit.el (lunit-make-test-suite-from-class): Fix regexp.
Use "^test" instead of "^test-".
* lunit.el (lunit-assert): Avoid double-eval `condtion-expr'.
Use ,(not (not condition)) instead of ,condition.
* lunit.el (lunit-make-test-suite-from-class): Restrict test
method name to test-*.
* smtp.el (smtp-starttls-program): New user option.
(smtp-starttls-extra-args): New user option.
(smtp-send-buffer): Bind starttls-program and starttls-extra-args.
* mel-q.el (quoted-printable-external-decoder-option-to-specify-file):
Accept nil.
(mime-write-decoded-region): If the value of the variable
`quoted-printable-external-decoder-option-to-specify-file' is nil,
write stdout to the output file.
* mel-b-el.el (base64-external-decoder-option-to-specify-file):
Accept nil.
(base64-write-decoded-region): If the value of the variable
`base64-external-decoder-option-to-specify-file' is nil, write
stdout to the output file.
* sasl.texi: Texinfo markup fixes. From Jesper Harder
<harder@ifa.au.dk>.
* sha1-el.el (sha1-string-external): Use with-temp-buffer.
* sha1-el.el (sha1-string-external): Make it can return a string
in binary form.
(sha1-region-external): Ditto.
(sha1-string-internal): Ditto.
(sha1-region-internal): Ditto.
(sha1-region): Ditto.
(sha1-string): Ditto.
(sha1): Ditto.
* sha1-el.el (autoload): Don't use ignore-errors.
(sha1-use-external): Use condition-case. Suggested by Katsumi
Yamaoka <yamaoka@jpl.org>.
* sha1-el.el (autoload): Ignore errors for
executable-find. (XEmacs ecrypto does not require sh-script where
executable.el is located.)
(sha1-use-external): Likewise.
* sha1-el.el (sha1): Add defgroup.
(sha1-maximum-internal-length, sha1-program, sha1-use-external)
(sha1-program): Use 'sha1sum' from GNU CoreUtils instead of OpenSSL.
(sha1): Autoload.
* sha1-el.el (sha1-use-external): New variable.
(sha1-region): Use it.
(sha1-string): Ditto.
* ntlm.el (ntlm-string-as-unibyte): New macro.
(ntlm-build-auth-response): Use it.
* ntlm.el: Fix namespace. Change smb-passwd-hash into
ntlm-smb-passwd-hash, smb-owf-encrypt into ntlm-smb-owf-encrypt,
smb-passwd-hash into ntlm-smb-passwd-hash, smbdes-e-p16 into
ntlm-smb-des-e-p16, smbdes-e-p24 into ntlm-smb-des-e-p24, smbhash
into ntlm-smb-hash, smb-sp8 into ntlm-smb-sp8, smb-str-to-key into
ntlm-smb-str-to-key, smb-dohash into ntlm-smb-dohash, smb-perm1
into ntlm-smb-perm1, smb-perm2 into ntlm-smb-perm2, smb-perm3 into
ntlm-smb-perm3, smb-perm4 into ntlm-smb-perm4, smb-perm5 into
ntlm-smb-perm5, smb-perm6 into ntlm-smb-perm6, smb-sc into
ntlm-smb-sc, smb-sbox into ntlm-smb-sbox, string-permute into
ntlm-string-permute, string-lshift into ntlm-string-lshift,
string-xor into ntlm-string-xor. Suggested by
Jesper Harder <harder@myrealbox.com>.
* ntlm.el: Don't include poem.
* md4.el (print-int32, print-string-hexa): Remove. Suggested by
Jesper Harder <harder@myrealbox.com>.
|
|
|
|
Bump PKGREVISION.
|
|
emacs versions.
|
|
|
|
EMACS_FLAVOR is xemacs.
|
|
Changes since 4.0b2:
- Made sure all the prefs are saved (Bug# 878340)
- Put all the Aqua stuff in one place
- Fix detection of a ,v file in the current directory for RCS
|
|
|
|
pOverview of changes between 1.8.0 and 1.8.1
===========================================
* Fix several problems with conjuct formation in Sinhala [Harshula]
* Fix problems that were causing fonts to be missized and
not print in GtkHTML [Ross Burton]
* Fix compilation with old fontconfig [Vincent Noel] and
old FreeType [Andrew P. Lentvorski, Jr]
* Work around problem with glyphs in monospace fonts being truncated
by Xft [Billy Biggs]
* Misc bug fixes [Damon Chaplin, Matthias Clasen, Kees Cook, Nick Lamb,
Adam Sampson,Manish Singh, Morten Welinder]
* Misc build fixes [Sebastien Bacher, Matthias Clasen, Tor Lillquist]
* Doc improvements [Torsten Schoenfeld, Billy Biggs, Morten Welinder]
|
|
|
|
|
|
|
|
|
|
Class::MethodMaker. Included is a Class::MethodMaker v1 emulator that
provides better compatibility than the one in Class::MethodMaker v2.
From DESCR:
By passing arguments to "use Class::MakeMethods ..." statements, you can
select from a library of hundreds of common types of methods, which are
dynamically installed as subroutines in your module, simplifying the
code for your class.
|
|
|
|
New in 1.08 (November 2004)
- perl.syms more verbose so you can diagnose failures.
- You can use environment variables instead of modifying Makefile.PL
to set your -I, -L, etc. options for the Curses libraries.
- c-linux.ncurses.h hints file includes ncurses.h, not curses.h.
- New c-darwin-thread-multi-2level.h hints file.
New in 1.07 (September 2004)
- Call to Perl_isa_sv() changed to isa_sv() because the former doesn't
work on some systems (causes a build failure).
New in 1.06 (July 2001)
o Now requires perl5.005 or better to run. (You can probably run it
in perl5.002-perl5.004 by grabbing newCONSTSUB out of the IO
distribution on CPAN and editing all uses of "foreach my $var" in
my perl scripts.)
o Did lots of fiddling with the file generation in an effort to make
it more comprehensible. In doing so, I moved around the way some
things were done and probably broke it on some systems with weird
compilers. Please let me know.
o changed the "Curses->new()" function to be a bit less clever.
o Support for libmenu! Many thanks to Yury Pshenichny <yura at zp.ua>
who did most of the actual work.
Update: Well, sort of support. For some reason beyond my ken, it
doesn't work with Solaris (2.6) libmenu. (The items won't attach to
the menu.) ncurses menu, both 1.9.9 and 5.2, seem to work fine.
o libform support added, too. Ho hum. ;) This one does appear to
work with Solaris libform.
o Added the following ncurses extension functions:
use_default_colors()
assume_default_colors()
define_key()
keybound()
keyok()
resizeterm()
(Thanks to neild at misago.org, hans at kolej.mff.cuni.cz)
o Re-enabled the functions:
attr_get()
attr_off()
attr_on()
attr_set()
o Between the functions supported and the functions listed in the
pod as not supported, those are all the ones I know about.
Got any more? Let me know.
o Fixed 64 bit issue with getch() and possibly others, truncating
returns of `chtype' to 32 bits. Note that this could possibly
break some OSes. Please let me know.
(Thanks to Randall.G.Steiner at bankofamerica.com)
o Fixed bug where @ARGV was always being cleared, and so no arguments
ever got to MakeMaker.
(Thanks to bdlow at nortelnetworks.com)
o Added hints for Darwin/Mac OS X system.
(Thanks to sdietrich at emlab.com)
o Added note to NETBSD users at the bottom of this README.
o Added a security notice to the README and pod.
(Thanks to connor at ing.umu.se)
o Has anyone successfully used the mouse event stuff?
pkgsrc:
MENUS and FORMS support not enabled because of compilation problems.
|
