Age | Commit message (Collapse) | Author | Files | Lines |
|
multimedia/ffmpeg security update
Revisions pulled up:
- multimedia/ffmpeg/Makefile 1.73-1.74
- multimedia/ffmpeg/Makefile.common 1.13-1.14
- multimedia/ffmpeg/distinfo 1.45-1.46
- multimedia/ffmpeg/patches/patch-configure 1.14
---
Module Name: pkgsrc
Committed By: drochner
Date: Fri Oct 7 12:20:39 UTC 2011
Modified Files:
pkgsrc/multimedia/ffmpeg: Makefile Makefile.common distinfo
Log Message:
update to 0.7.6
changes:
-security fixes to many demuxers and decoders
-bugfixes
---
Module Name: pkgsrc
Committed By: drochner
Date: Mon Nov 7 10:43:35 UTC 2011
Modified Files:
pkgsrc/multimedia/ffmpeg: Makefile.common distinfo
pkgsrc/multimedia/ffmpeg/patches: patch-configure
Log Message:
update to 0.7.7
"fixes around 90 bugs, several of which are security relevant"
(sorry, no details in the release notes)
---
Module Name: pkgsrc
Committed By: drochner
Date: Mon Nov 7 10:45:36 UTC 2011
Modified Files:
pkgsrc/multimedia/ffmpeg: Makefile
Log Message:
update for new release date
|
|
multimedia/adobe-flash-plugin10.1 security update
Revisions pulled up:
- multimedia/adobe-flash-plugin10.1/Makefile 1.15
- multimedia/adobe-flash-plugin10.1/distinfo 1.7
---
Module Name: pkgsrc
Committed By: abs
Date: Sat Nov 12 22:02:24 UTC 2011
Modified Files:
pkgsrc/multimedia/adobe-flash-plugin10.1: Makefile distinfo
Log Message:
Updated multimedia/adobe-flash-plugin10.1 to 10.3.183.11
Changes from 10.3.183.7
Critical vulnerabilities have been identified in Adobe Flash Player
11.0.1.152 and earlier versions for Windows, Macintosh, Linux and
Solaris, and Adobe Flash Player 11.0.1.153 and earlier versions
for Android. These vulnerabilities could cause a crash and potentially
allow an attacker to take control of the affected system.
Adobe recommends users of Adobe Flash Player 11.0.1.152 and earlier
versions for Windows, Macintosh, Linux and Solaris update to Adobe
Flash Player 11.1.102.55. Users of Adobe Flash Player 11.0.1.153
and earlier versions for Android should update to Adobe Flash Player
11.1.102.59 for Android. Users of Adobe AIR 3.0 for Windows,
Macintosh, and Android should update to Adobe AIR 3.1.0.4880.
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2445).
This update resolves a heap corruption vulnerability that could lead
to code execution (CVE-2011-2450).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2451).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2452).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2453).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2454).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2455).
This update resolves a buffer overflow vulnerability that could lead
to code execution (CVE-2011-2456).
This update resolves a stack overflow vulnerability that could lead to
code execution (CVE-2011-2457).
This update resolves a vulnerability that could lead to a cross-domain
policy bypass (Internet Explorer-only) (CVE-2011-2458).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2459).
This update resolves a memory corruption vulnerability that could lead
to code execution (CVE-2011-2460).
... now after reading the above, just how happy are people running this code
from their browsers?
|
|
multimedia/vlc: security patch
Revisions pulled up:
- multimedia/vlc/Makefile 1.118
- multimedia/vlc/distinfo 1.50
- multimedia/vlc/patches/patch-au 1.9
---
Module Name: pkgsrc
Committed By: drochner
Date: Fri Oct 7 12:30:17 UTC 2011
Modified Files:
pkgsrc/multimedia/vlc: Makefile distinfo
Added Files:
pkgsrc/multimedia/vlc/patches: patch-au
Log Message:
Add patch from upstream to fix a NULL dereference vulnerability in the
HTTP and RTSP server component (possible DOS)
|
|
multimedia/gnash: build fix
Revisions pulled up:
- multimedia/gnash/Makefile 1.40
---
Module Name: pkgsrc
Committed By: obache
Date: Sat Oct 15 13:34:27 UTC 2011
Modified Files:
pkgsrc/multimedia/gnash: Makefile
Log Message:
tell boost-header and boost-lib location to configure.
|
|
release notes.
|
|
|
|
|
|
and FreeBSD with the "lwres" library. This allows us to remove the
problematic dependence on the "bind97" package. Fix suggested by
OBATA Akio on the "tech-pkg" mailing list.
Approved by Thomas Klausner.
|
|
graphics/ruby-clutter/Makefile.common, making it really work.
A short discussion with joerg@. Thanks Joerg.
|
|
differences as ICE and depend on the corresponding xine version.
Patch from Bernhard Moellemann.
|
|
|
|
picked up.
Fixes PR pkg/45380.
|
|
PR pkg/45376.
|
|
|
|
The fixes intended for SunPRO compilers apply to SunOS in general.
|
|
|
|
|
|
|
|
|
|
While at it, don't build the html documentation that isn't installed
anyway.
|
|
adobe-flash-plugin rather than ns-flash. ++PKGREVISION
|
|
|
|
changes:
-security fixes in real and avi demuxers (were patched in pkgsrc)
-minor bugfixes
|
|
changes:
-Timestamp tracking fixes
-New codecs
-Multi-threaded decoding
|
|
changes:
-fix integer inderflow in rtp code which could allow remote code execution
-misc fixes and improvements
|
|
|
|
Changes between 0.2.0 and 0.2.1:
--------------------------------
* ignore initial discontinuity
* Build fixes for BSD builds
* Build fixes for MSYS builds
Changes between 0.1.7 and 0.2.0:
--------------------------------
* Relicense libdvbpsi from GPLv2 to LGPLv2.1
* bump version number to 0.2.0 (skipping 0.1.8 and 0.1.9) to indicate
GPL -> LGPL license change
* new CUE Identifier descriptor support (0x8a)
* new Splice Information Section table support (0xFC) (SCTE 35 2004)
* new BAT table (decoder and generator)
* new descriptor 0x44
* depreceated all API's in preparation for 1.0.0 release with revamped API
packagers and application developers should anticipate:
- structure renames dvbpsi_handle to dvbpsi_t
- prototype changes
- removal of printf for message printing
- message callback function
For more information see changes in libdvbpsi-ng branch.
|
|
|
|
that and use the same emms constraint as found in other places.
|
|
|
|
|
|
|
|
From Olaf 'Rhialto' Seibert on pkgsrc-users.
|
|
Migrate comment there.
|
|
|
|
|
|
|
|
|
|
(enabling the option causes build failures.)
|
|
New Features:
* New complete translation: German (de); thanks to Chris Leick
Bug fixes:
* Fix offset bug (which results in wrong .vob files)
* Fix typos and improve wording
Changes 0.4:
New Features:
* Added new translations from Launchpad: French (fr), Galician (gl),
Italian (it), Norwegian BokmƄl (nb), Russian (ru) and Spanish (es)
Changes:
* Use C99 standard and compile with -pedantic flag.
* Code cleanup
Bug fixes:
* Fixed typos
* Fixed compiler warnings
* Added missing header file
|
|
|
|
|
|
Changelog:
* Feature enhancement and bug fix
* backward compatibility with 0.9.5 and 0.9.6
|
|
Changelog:
Overview of changes in gst123-0.2.1:
* Fixed minor memory leak.
* Fix warnings due to wrong glib option parsing. [Nicholas Miell]
* Use wikihtml2man for documentation (replaces old doxer based manpage).
|
|
|
|
update to latest (available) version of this source, plus binaries built on
appropriate Linux box
|
|
Bump PKGREVISION.
|
|
|
|
Martin Brandenburg per PR pkg/45189
|
|
|