| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
by pkgsrc-pmc.
If you are interested in one of these, please fix it before 2013Q4.
|
|
|
|
emulation (CVE-2013-4368)
bump PKGREV
|
|
pkgsrc changes:
---------------
FETCH_USING=curl, pypi serves files over https now.
upstream changes:
-----------------
1.8.0 2013-09-20
[Feature] #910: Added a keyword argument to rsync_project to configure the
default options. Thanks to @moorepants for the patch.
[Support] #984: Make this changelog easier to read! Now with per-release
sections, generated automatically from the old timeline source format.
[Feature] #931: Allow overriding of abort behavior via a custom
exception-returning callable set as env.abort_exception.
Thanks to Chris Rose for the patch.
|
|
0.8.8:
- security-minor: - Coverity scan.
0.8.7:
- bugfix-minor: - Compilation issues.
0.8.6:
- feature-minor: - Accept threshold as a parameter for image comparison.
|
|
|
|
This release fixes a copy+paste bug in the Linux support code for
fine-grained privileges. Libfind no longer leaks filedescriptors
with -empty. New OS version ID rules have been added for various
newer WIN-DOS versions.
|
|
|
|
|
|
- End directory names with "/" instead of ":" (which never made sense).
- Added option to suppress sorting by extension.
- Changed display of sort by extension in several ways:
Separator character now appears at the beginning of the extension.
'dot files' (with a leading separator character) are now shown as
having no extension.
Extensions are now enclosed in parens instead of curly braces for
better readability.
|
|
|
|
D-Bus 1.6.16 (2013-10-08)
==
The “Fortify Agility” release.
Fixes:
• Make dbus_connection_set_route_peer_messages(x, FALSE) behave as
documented. Previously, it assumed its second parameter was TRUE.
(fd.o #69165, Chengwei Yang)
• Fix a NULL pointer dereference on an unlikely error path
(fd.o #69327, Sviatoslav Chagaev)
• Unix-specific:
· If accept4() fails with EINVAL, as it can on older Linux kernels
with newer glibc, try accept() instead of going into a busy-loop.
(fd.o #69026, Chengwei Yang)
· If socket() or socketpair() fails with EINVAL or EPROTOTYPE,
for instance on Hurd or older Linux with a new glibc, try without
SOCK_CLOEXEC. (fd.o #69073; Pino Toscano, Chengwei Yang)
· Fix a file descriptor leak on an error code path.
(fd.o #69182, Sviatoslav Chagaev)
· Fix compilation if writev() is unavailable (fd.o #69409,
Vasiliy Balyasnyy)
|
|
2009-06-29 Gustavo Noronha Silva <kov@debian.org>
* Release 2.0.12
2009-06-29 Gustavo Noronha Silva <kov@debian.org>
* libgksu/gksu-run-helper.c:
- fix the fact that the main function ends without returning a
value, on success (doh)
2009-06-29 Gustavo Noronha Silva <kov@debian.org>
* gksu-properties/gksu-properties.c:
- fixed printf format for two error messages, introduced
by the last change
2009-06-29 Sebastien Bacher <seb128@ubuntu.com>
* gksu-properties/gksu-properties.c,
gksu-properties/Makefile.am,
configure.ac:
- use GtkBuilder instead of libglade
2009-06-29 Joshua Kwan <jkwan@vmware.com>
* libgksu/libgksu.c:
- Fix double-free introduced by recent changes.
2009-06-24 Gustavo Noronha Silva <kov@debian.org>
* Release 2.0.11
2009-06-24 Joshua Kwan <jkwan@vmware.com>
* libgksu/libgksu.c:
- Make su code work on Red Hat systems.
2009-06-17 Joshua Kwan <jkwan@vmware.com>
* libgksu/libgksu.c:
- Make sudo also use forkpty, to also work when /etc/sudoers is
configured to require a tty.
2009-06-17 Joshua Kwan <jkwan@vmware.com>
* libgksu/libgksu.c:
- Make su backend work with Fedora's su.
2009-05-09 Gustavo Noronha Silva <kov@debian.org>
* Release 2.0.10
2009-05-09 François Wendling <frwendling@free.fr>
Document gksu-properties, briefly.
* docs/gksu-properties.1, docs/Makefile.am:
2009-05-09 Robert Millan <rmh.debian.bts@aybabtu.com>
This fixes two bugs in read_line function. Both are exposed when
running gksudo --debug:
- First, when read() fails, the printed value will come from
uninitialised memory. This results in stuff like
"GNOME_SUDO_PASSSSSSSSSSSSSSSSS..." being printed.
- Second, the null terminator is off-by-one, resulting in
garbage being printed at the end of each line. This may
also lead to memory corruption (for n >= 256)!
* libgksu/libgksu.c:
2009-03-04 Gustavo Noronha Silva <kov@debian.org>
* Release 2.0.9
* libgksu/libgksu.c: fix how the GdkDisplay* is obtained at
gksu_context_launch_initiate
* libgksu/gksu-run-helper.c: - cleanup the environment from
ORBIT_SOCKETDIR and DBUS_SESSION_BUS_ADDRESS to acommodate recent
changes in gconf
2009-02-22 Gustavo Noronha Silva <kov@alface>
* Release 2.0.8
2009-02-22 Gustavo Noronha Silva <kov@debian.org>
* libgksu/libgksu.c: - added threads protection for the gdk
fadeout/fadein animation, so that callers will not have X errors
when trying to use gdk functions in parallel with us
See http://bugzilla.gnome.org/show_bug.cgi?id=549760.
2009-02-22 Gustavo Noronha Silva <kov@debian.org>
* configure.ac, libgksu/libgksu.{c,h}, libgksu/gksu-run-helper.c:
- accepted patch by Joshua Kwan <jkwan@vmware.com> to
return the same status code as the child
2009-02-03 Gustavo Noronha Silva <kov@debian.org>
* configure.ac:
- added th to ALL_LINGUAS
2008-08-29 Gustavo Noronha Silva <kov@debian.org>
* libgksu/libgksu.c: patch by Daniel Richard G. <skunk@iSKUNK.ORG>
to allow changing the location of the lockfile, so that libgksu
will work on AFS/NFS mounted home directories
2008-06-20 Gustavo Noronha Silva <kov@debian.org>
* libgksu/gksu-run-helper.c: accepted patch by Michael Vogt, from
Ubuntu, to fix very long commands not fitting in the helper's
statically-sized buffer (Debian bug #486087, launchpad #173757)
* libgksu/libgksu.c (sudo_full): accepted patch by Michael Vogt,
from Ubuntu, to fix sudo having problems resolving network
addresses breaking gksu (Debian bug #486083, launchpad #237325)
|
|
|
|
|
|
Also fixed build issues on NetBSD 6.x.
|
|
|
|
util is a module providing an interface for retrieving information,
on all running processes and system utilization (CPU, memory, disks,
network, users) in a portable way by using Python, implementing
many functionalities offered by command line tools such as ps, top,
df, netstat, who, kill, uptime, free, lsof, ifconfig, nice, ionice,
iostat, iotop, pidof, tty, taskset, or pmap.
Ported to NetBSD by tron & myself, but more work to do.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Bump PKGREVISION.
|
|
-Information leak on AVX and/or LWP capable CPUs (CVE-2013-1442 / XSA-62)
-Information leaks through I/O instruction emulation
(CVE-2013-4355 / XSA-63)
-Information leak through fbld instruction emulation
(CVE-2013-4361 / XSA-66)
bump PKGREV
|
|
|
|
xattr is a Python wrapper for extended filesystem attributes.
Extended attributes extend the basic attributes of files and
directories in the file system. They are stored as name:data pairs
associated with file system objects (files, directories, symlinks,
etc).
|
|
|
|
|
|
|
|
Exact changes aren't available. Please refer change log in github.
|
|
Major Enhancements
- tests!
- major refactor
Minor Enhancement
- events generated from full scans may be sorted by mtime or size
- stat information is propagated into the event
|
|
## 2.15.5 / July 4 2013
* Fix multistage argument parsing when using the `-s` option. (@jmazzi)
* Tweaks to the asset recipes. (@curtislinden)
* Use quotes around SCM usernames and passwords (@carloslopes)
* Avoid git warning when cloning Git repository using sha1 (@bpaquet)
## 2.15.4 / April 29 2013
* Fix parallel command logging (@gnufied)
* Fix a double-asset manifest problem on Rails upgrades. (@jimryan)
## 2.15.3 / April 25 2012
* For deploy:cleanup, use try_sudo with rm command. (@joshstaiger)
* Restore maintenance.rhtml (@chulkilee)
* Fixes GH-434, If branches is an array of array, iterate them separately. (@gnufied)
A big "thank you" to the people who've pushed really amazing patches to the
2.15.x branch so soon after it's release. 2.15.0 was just too huge to go out
bug free.
## 2.15.2 / April 24 2013
* Fixed a bug with asset_paths (String vs. Array). (@joeycarmello)
## 2.15.1 / April 23 2013
* Support for Rails 4 (and other) randomised asset manifest names. (@jimryan)
## 2.15.0 / April 23 2013
* New varaible :shared_assets_prefix to allow people to host somewhere other
than `/assets/`. Default is `assets`.
* Bring back web:enable and web:disable tasks. Sincerely apologies to all affected
removing these was one of the most glaring mistakes we've made on this project
and I feel personally responsible.
* Makes :git_shallow_clone work with branches (@cannikin)
* Avoid removing required assets (@bosko)
* Fix escaping of asset_paths when calling `deploy:finalize_update` (@mcary)
* Improve parallel command logging (@mpapis)
* Allow updating variables in the cap shell `cap> set :some_setting new_value`
(@jpfuentes2)
* Add the option to configure `Capistrano::Logger.default_formatters=` this
relates to the previous merging of the capistrano-colors gem. (@kellyredding)
* Don't attempt to connect to a nil `:gateway` (@mattheath)
* Simplify our .gemspec dependency list (@timoschilling)
* Make the existece of `config/deploy/{stage}.rb` optional, it'll be loaded if
it exists, otherwise we continue without it (@ymainier)
* Misc spelling/typo fixes. (@mv)
* Update mtime and atime with touch when fixing asset timestamps (@wildoats)
* Change call of `rake {env} precompile:all` to drop the errornous `{env}` (@zxiest)
* Evaluate assets_role at runtime using a lambda (@nlenepveu)
* Handle when hosts (for example by joining/leaving the no_release meta group)
have different old releases for `deploy:cleanup` (@oggy)
* Check for nil when tearing down connections (@yyuu)
* Go back to using SCP for uploads as against SFTP (@pjungwir)
* Added an option to dereference symlinks when using the :copy strategy
(`set :copy_dereference_symlink, true`) useful when your working directory
contains files symlinked in from outside your project root (@mehmetc)
* Small typo fix in README (@yule)
* Add Ruby 2.0.0-p0 to the TravisCI build (@jarrettmeyer)
* Add the option to set the shared asset prefix for Rails,
(`set :shared_assets_prefix, "my_shared_assets"`) corresponds with it's
namesake in Rails. By default is set to `assets`. (@spectator)
* Improved error messages for `cap {stage} deploy:check` (@petems)
* Make `run_locally` work with the `--dry-run` flag. (@flagthisiskun)
* Fix a link in the README to writing a good commit message. (@mhutchin)
* Code style fixes (@mv)
* Report differently if the command was killed by a signal (for example the
oom killer on Ubuntu/Debian). (@tanob)
|
|
|
|
Unix::Statgrab is a wrapper for libstatgrab as available from
http://www.i-scream.org/libstatgrab/. It is a reasonably portable attempt
to query interesting stats about your computer. It covers information on
the operating system, CPU, memory usage, network interfaces, hard-disks etc.
|
|
* bump revision to force rebuild after libstatgrab update
* add patch for new libstatgrab API
|
|
|
|
Manifold helps you quickly and easily create Solaris SMF manifest
XML files for your services by answering a few questions about how
it needs to be configured.
|
|
- Add warning if /kern/xen/privcmd is not readable
Fixes the following critical vulnerabilities:
* CVE-2013-1918 / XSA-45:
Several long latency operations are not preemptible
* CVE-2013-1952 / XSA-49:
VT-d interrupt remapping source validation flaw for bridges
* CVE-2013-2076 / XSA-52:
Information leak on XSAVE/XRSTOR capable AMD CPUs
* CVE-2013-2077 / XSA-53:
Hypervisor crash due to missing exception recovery on XRSTOR
* CVE-2013-2078 / XSA-54:
Hypervisor crash due to missing exception recovery on XSETBV
* CVE-2013-2194, CVE-2013-2195, CVE-2013-2196 / XSA-55:
Multiple vulnerabilities in libelf PV kernel handling
* CVE-2013-2072 / XSA-56:
Buffer overflow in xencontrol Python bindings affecting xend
* CVE-2013-2211 / XSA-57:
libxl allows guest write access to sensitive console related xenstore keys
* CVE-2013-1432 / XSA-58:
Page reference counting error due to XSA-45/CVE-2013-1918 fixes
* XSA-61:
libxl partially sets up HVM passthrough even with disabled iommu
The following minor vulnerability is also being addressed:
* CVE-2013-2007 / XSA-51
qemu guest agent (qga) insecure file permissions
Among many bug fixes and improvements:
* addressing a regression from the fix for XSA-46
* bug fixes to low level system state handling, including certain
hardware errata workarounds
|
|
D-Bus 1.6.14 (2013-09-05)
==
The “Restore Fatigue” release.
Fixes:
• Avoid an infinite busy-loop if a signal interrupts waitpid()
(fd.o #68945, Simon McVittie)
• Escape addresses containing non-ASCII characters correctly
(fd.o #53499, Chengwei Yang)
• If malloc() returns NULL in _dbus_string_init() or similar, don't free
an invalid pointer if the string is later freed (fd.o #65959, Chengwei Yang)
• If malloc() returns NULL in dbus_set_error(), don't va_end() a va_list
that was never va_start()ed (fd.o #66300, Chengwei Yang)
• Fix a regression test on platforms with strict alignment (fd.o #67279,
Colin Walters)
• Avoid calling function parameters "interface" since certain Windows headers
have a namespace-polluting macro of that name (fd.o #66493, Ivan Romanov)
• Make "make -j check" work (fd.o #68852, Simon McVittie)
|
|
This release fixes the following critical vulnerabilities:
CVE-2013-1918 / XSA-45: Several long latency operations are not
preemptible
CVE-2013-1952 / XSA-49: VT-d interrupt remapping source validation flaw
for bridges
CVE-2013-2076 / XSA-52: Information leak on XSAVE/XRSTOR capable AMD CPUs
CVE-2013-2077 / XSA-53: Hypervisor crash due to missing exception
recovery on XRSTOR
CVE-2013-2078 / XSA-54: Hypervisor crash due to missing exception
recovery on XSETBV
CVE-2013-2194, CVE-2013-2195, CVE-2013-2196 / XSA-55: Multiple
vulnerabilities in libelf PV kernel handling
CVE-2013-2072 / XSA-56: Buffer overflow in xencontrol Python bindings
affecting xend
CVE-2013-2211 / XSA-57: libxl allows guest write access to sensitive
console related xenstore keys
CVE-2013-1432 / XSA-58: Page reference counting error due to
XSA-45/CVE-2013-1918 fixes
XSA-61: libxl partially sets up HVM passthrough even with disabled iommu
This release contains many bug fixes and improvements. The highlights are:
addressing a regression from the fix for XSA-21
addressing a regression from the fix for XSA-46
bug fixes to low level system state handling, including certain
hardware errata workarounds
(CVE-2013-1918 and CVE-2013-1952 were patched in pkgsrc before)
|
|
|
|
|
|
|
|
|
|
of segfaulting. Bump revision.
|
|
|
|
|
|
from Leonardo Taccari per PR pkg/48189
Changes:
General Improvements
====================
* The log file generated by the Windows version (cygwin) reports bad
sectors in a more readable fashion, example
ReadFile Data error (cyclic redundancy check).
* As openssl isn't used, don't link with this cryptographic library
(Debian tries to avoid mixing GPL code and openssl)
TestDisk
========
Improvements
------------
* testdisk /list now displays the disk model, serial number, firmware
version and hpa or dco presence if detected
* Recover WBFS (Wii Backup File System) partition
* Make FAT RebuildBS works when there is a single FAT table
* Interface: Display the partition table type if autodetected
* Interface: modified warning about mismatching geometry between FAT
or NTFS boot sector and HD geometry information (Debian #651756)
* Interface: Remove "Allow partial last cylinder" option
Bug fixes
---------
* Fix crc in EFI backup GPT
* Rewrote how TestDisk aligns partition on cylinder or 1MB boundary.
It avoids to create partition entry where the partition ends after
the end of the disk.
PhotoRec
========
Improvements
------------
* Improve Olympus .orf recovery
* Improve WP Mac/WP5/WP6 Corel Documents .wpd files recovery
* Fix thumbs.db recovery, avoid some false positive with .doc
* Interface: if less than 10 file families are enabled, display the
results even if zero has been found yet
New file formats:
* .aep After Effects
* .axx AxCrypt
* .dp Designer, a Photobook Designer Software
* .lzh archive
* .mmap MindManager
* .plt Gerber Graphix Advantage
* .prproj Adobe Premiere project
* .psb Adobe Photoshop Image
* .pts PTGui, panoramic stitching software
* .qcp The QCP File Format and Media Types for Speech Data (RFC3625)
* .shn Shorten audio file
* .snt Windows Sticky Notes
* .ttd TinyTag Data
* .wallet Armory bitcoin wallet
* .wim Windows imaging (WIM) image
Bug fixes
---------
* Fix an endless loop during .caf file recovery
* Fix tiff recovery including some raw file formats, 64-bit version
wasn't affected
|
