Age | Commit message (Collapse) | Author | Files | Lines |
|
security fix for cscope
Revisions pulled up:
- pkgsrc/devel/cscope/Makefile 1.45
- pkgsrc/devel/cscope/distinfo 1.15
- pkgsrc/devel/cscope/patches/patch-aa 1.11
- pkgsrc/devel/cscope/patches/patch-ae 1.9
- pkgsrc/devel/cscope/patches/patch-af 1.8
- pkgsrc/devel/cscope/patches/patch-ag 1.5
- pkgsrc/devel/cscope/patches/patch-ah 1.5
- pkgsrc/devel/cscope/patches/patch-ai 1.5
- pkgsrc/devel/cscope/patches/patch-aj 1.3
- pkgsrc/devel/cscope/patches/patch-ap 1.
Module Name: pkgsrc
Committed By: salo
Date: Thu Aug 24 22:02:02 UTC 2006
Modified Files:
pkgsrc/devel/cscope: Makefile distinfo
pkgsrc/devel/cscope/patches: patch-aa patch-ae patch-af patch-ag
patch-ah patch-ai patch-aj
Added Files:
pkgsrc/devel/cscope/patches: patch-ap
Log Message:
Security fix for SA21601:
"Will Drewry has reported some vulnerabilities in Cscope, which
potentially can be exploited by malicious people to compromise
a vulnerable system.
1) Various boundary errors within the parsing of file lists or
the expansion of environment variables can be exploited to
cause stack-based buffer overflows when parsing specially
crafted "cscope.lists" files or directories.
2) A boundary error within the parsing of command line arguments
can be exploited to cause a stack-based buffer overflow when
supplying an overly long "reffile" argument.
Successful exploitation may allow execution of arbitrary code."
Patches adapted from cscope CVS. Bump PKGREVISION.
|
|
build fix for gcvs
Revisions pulled up:
- pkgsrc/devel/gcvs/distinfo 1.6
- pkgsrc/devel/gcvs/patches/patch-ar 1.1
Module Name: pkgsrc
Committed By: wiz
Date: Thu Aug 3 18:35:43 UTC 2006
Modified Files:
pkgsrc/devel/gcvs: distinfo
Added Files:
pkgsrc/devel/gcvs/patches: patch-ar
Log Message:
Fix build with gcc4. Patch from Kenneth Freidank in PR 34132.
|
|
PLIST fix for cppunit
Revisions pulled up:
- pkgsrc/devel/cppunit/Makefile 1.9
- pkgsrc/devel/cppunit/distinfo 1.5
Module Name: pkgsrc
Committed By: wiz
Date: Wed Jul 5 21:32:41 UTC 2006
Modified Files:
pkgsrc/devel/cppunit: Makefile PLIST
Log Message:
Depend on latest doxygen (1.4.7) and fix PLIST for it.
Bump PKGREVISION.
|
|
security update for apache2
Revisions pulled up:
- pkgsrc/devel/apr/distinfo 1.18
Updated via patch provided by the submitter.
Module Name: pkgsrc
Committed By: tron
Date: Fri Jul 28 10:38:36 UTC 2006
Modified Files:
pkgsrc/devel/apr: distinfo
pkgsrc/www/apache2: Makefile Makefile.common distinfo options.mk
Log Message:
Update "apr" package to version 0.9.12.2.0.59 and "apache2" package
to version 2.0.59. Changes since *2.0.58:
- SECURITY: CVE-2006-3747 (cve.mitre.org)
mod_rewrite: Fix an off-by-one security problem in the ldap scheme
handling. For some RewriteRules this could lead to a pointer being
written out of bounds. Reported by Mark Dowd of McAfee.
|
|
build fix for gettext-lib
Revisions pulled up:
- pkgsrc/devel/gettext-lib/distinfo 1.13
- pkgsrc/devel/gettext-lib/patches/patch-aa 1.5
Module Name: pkgsrc
Committed By: tonio
Date: Sun Jul 9 18:13:29 UTC 2006
Modified Files:
pkgsrc/devel/gettext-lib: distinfo
pkgsrc/devel/gettext-lib/patches: patch-aa
Log Message:
Use "defined": this fixes build problems under darwin.
|
|
build fix for gmake
Revisions pulled up:
- pkgsrc/devel/gmake/Makefile 1.68
Module Name: pkgsrc
Committed By: joerg
Date: Thu Jul 6 12:45:50 UTC 2006
Modified Files:
pkgsrc/devel/gmake: Makefile
Log Message:
Require msgfmt, when NLS is desired.
|
|
portability fixes for gettext-lib
Revisions pulled up:
- pkgsrc/devel/gettext-lib/Makefile 1.43, 1.44
- pkgsrc/devel/gettext-lib/distinfo 1.11, 1.12
- pkgsrc/devel/gettext-lib/patches/patch-aa 1.3, 1.4
Module Name: pkgsrc
Committed By: minskim
Date: Mon Jul 3 19:06:13 UTC 2006
Modified Files:
pkgsrc/devel/gettext-lib: Makefile distinfo
Added Files:
pkgsrc/devel/gettext-lib/patches: patch-aa
Log Message:
Make sure that locale_charset is defined only once. Otherwise, it may
cause a link error on Darwin. The patch was adapted from the one submitted
in PR pkg/32723. It also fixes PR pkg/32945.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: minskim
Date: Thu Jul 6 14:49:55 UTC 2006
Modified Files:
pkgsrc/devel/gettext-lib: Makefile distinfo
pkgsrc/devel/gettext-lib/patches: patch-aa
Log Message:
Define locale_charset only when GNU iconv is used. This fixes the package
on Solaris where native iconv doesn't have locale_charset. Noted by
Gilles Dauphin in PR pkg/32945.
Bump PKGREVISION.
|
|
|
|
native Solaris diff which is not good enough for use in rcs.
Since configure picks up DIFF from the environment, patch-aa and patch-ab
became unnecessary.
Thanks to a patch by Stefan Pfetzing (slightly modified by me) this fixes
his PR pkg/33558.
|
|
breaks the build.
OK'ed by wiz@.
|
|
Instead, try to dlopen the libraries straight from the directories they
are in.
Bump PKGREVISION to 2.
Requested and reviewed by wiz@.
|
|
directly. This didn't work because dlopen uses the rpath of the foremost
binary (not libSDL's one); therefore, some libraries could not be found.
For example, qemu was not working at all because it only has PREFIX in
its rpath, not X11PREFIX, and so libSDL could not load libX11 resulting
in a very strange error message.
There seem to be other problems such as the aalib video output crashing
or the wscons output not working, but these aren't very important (maybe
the problems have already gone away with this fix, I don't know). Anyway,
I think the former is fixed in 1.2.11.
Bump PKGREVISION to 1.
|
|
|
|
of them was a real bug (missing initialization of a structure; luckily
not introduced by me), the other was a false positive.
|
|
Bump revisions.
|
|
|
|
|
|
|
|
fixed the pkglint warning regarding INFO_FILES. Bumped PKGREVISION.
|
|
|
|
|
|
sys_errlist.h.
|
|
|
|
Clean up a pkglint warning while here.
|
|
|
|
|
|
|
|
path to the configure script.
|
|
Changes:
- Security fix for extract_chmLib. Pathnames containing a ".." element
will not be extracted. There doesn't seem to be a legitimate reason
to use ".." as a path element in a chm file.
http://secunia.com/advisories/20734/
- Fix for reading some chm files. Running over a large directory of chm
files, about 1% of them turned out to be unreadable. This resulted
from an incomplete understanding of one of the header fields
(index_root). Apparently, this can take negative values other than -1.
|
|
post-install. Thanks to joerg, who noticed the bug.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
match 7447A as 7450 - from Radek Kujawa
|
|
|
|
|
|
|
|
0.27 release. Minor bug fixes and enhancements, plus ssh
support.
Major new features:
- Monotone can now push/pull/synchronize over arbitrary
bidirectional streams, not just raw TCP.
- File-to-file synchronization is enabled out of the box,
e.g.:
$ mtn -d db1.mtn sync file:/path/to/db2.mtn
- SSH synchronization is enabled out of the box, e.g.:
$ mtn -d local.mtn sync ssh://njs@venge.net/home/njs/remote.mtn
Note that this requires mtn be installed on the remote
computer, and locks the remote database while running; it
is not ideal for groups accessing a shared database.
- New protocols can be defined with Lua hooks -- for
example, someone could in principle make "$ mtn sync
xmpp://njs@jabber.org" do something interesting.
- See section "Other Transports" under "Advanced Uses" in the
for more details.
Minor new features:
- Selectors now support escaping, e.g., b:foo\/bar can be used
to refer to a branch with name "foo/bar" (normally / is a
metacharacter that separates multiple selectors).
- Visual C++ can now build monotone on Windows. (Mostly
important because it allows better Windows debugging.)
- --quiet now turns tickers off, and does not turn warnings
off. New option --reallyquiet disables warnings as well.
- New command 'automate common_ancestors'.
- 'ls branches' now takes a pattern, e.g.:
$ mtn ls branches "*contrib*"
Speed improvements:
- Bug in select() loop fixed, server should no longer pause in
processing other clients while busy with one, but multiplex
fairly.
- The database has a new write buffer which gives significant
speed improvements in initial pulls by cancelling redundant
database writes.
- There's been a fair bit of performance tuning all around.
Bug fixes:
- Merge tools that exit in failure are now detected.
- Better reporting of operating system errors on Win32.
- Passphrases stored in ~/.monotonerc are no longer written to
the log file. (Passphrases entered at the terminal were
never written to the log file.)
- Fix sql injection bugs in selectors, making it safe to
expose slectors in web interfaces etc.
- Files marked with the mtn:execute attr now respect umask.
- 'automate' commands on Win32 now disable newline translation
on their output; this is especially important for 'automate
stdio'.
- 'db check' now calls the sqlite "PRAGMA integrity_check", to
validate the integrity of things like sqlite indices.
- 'mtn annotate nonexistent-file' now gives a proper error
message, instead of an assertion error.
- 'mtn revert --missing' now works correctly when run in a
subdirectory.
- 'automate inventory' no longer fails when _MTN/work contains
patch stanzas.
Other:
- Many, many internal code cleanups
- Including changes to somewhat reduce the size of the
binary
- New tutorial on using packets added to the manual
- Updated translations, improved error messages, etc.
Reliability considerations:
- In the two months since 0.26 was released, zero serious bugs
have been reported in the new code.
|
|
|
|
builds. Bumped PKGREVISION. Since this package is a dependency of only
two packages, this is just under the limit for pkgsrc freeze.
|
|
is necessary to avoid a run-time dependency on Perl.
|
|
|
|
|
|
I couldn't find any useful ChangeLog file, but bin/awiki has been removed.
|
|
|
|
|