| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
add patch from upstream CVS to fix CVE-2009-3560
(possible DOS due to crash on bad input)
bump PKGREVISION
|
|
Bump PKGREVISION.
|
|
|
|
"A vulnerability was found in W3C Libwww, which potentially can be exploited
by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to a boundary error in the
"HTBoundary_put_block()" function when processing multipart MIME data. This
may be exploited to cause an illegal memory access past the end of the input
buffer via specially crafted multipart MIME data.
Successful exploitation can potentially cause an application that uses Libwww
to crash."
http://secunia.com/advisories/17119/
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=159597
Bump PKGREVISION.
Patch from RedHat.
|
|
|
|
if test -x /bin/true; then
else
so replace with:
if test -x /bin/true; then
:
else
From Roland Illig in a posting to "tech-pkg"
Also add missing openssl/buildlink2.mk to buildlink2.mk.
|
|
Suggested by wiz@.
|
|
Makefile accordingly. This makes libwww build again with
libtool-1.5.2. The problem was reported by reed@ in PR pkg/24391.
|
|
the darwin build. PR 20507.
|
|
|
|
|
|
please update for gmake can get into an endless loop
|
|
w3c.org. It features some bug fixes and new function calls that are used in
the new Amaya f.e.
Tested on Alpha
|
|
seems good enouth, and using libwww's one breaks other system lib (librt).
|
|
|
|
buildlink2.mk files back into the main trunk. This provides sufficient
buildlink2 infrastructure to start merging other packages from the
buildlink2 branch that have already been converted to use the buildlink2
framework.
|
|
partially revert Makefile, v1.32, so platforms without openssl-0.9.6e
in base will be able to find libssl.so.300 and libcrypto.so.300 for
binaries linked against libwwwwwl.so. Bump pkgrevision to reflect the
change in dependencies on platforms without openssl-0.9.6e in base.
|
|
|
|
|
|
|
|
on other libraries, on both ELF and (NetBSD/)a.out, to make
libwwwssl.so.?.? depend on the correct openssl shared libraries, as
determined by the setting of ${SSLBASE} in bsd.pkg.mk. This closes PR
pkg/12570, and has the additional advantage that programs that _do_ _not_
need to link in "-lwwwssl" won't get "-lssl" or "-lcrypto" at all.
Also, make"w3c" and "www" build again with USE_SOCKS=4.
|
|
grautiutiously reinstalled whenever "perl" is reinstalled. For the
NetBSD package, the dependence on autoconf and automake has already
been removed, so it remained only to patch the configure script.
|
|
"autoconf", too, while we're at it.
|
|
many bug fixes -- too many to list, full release history online at
<http://www.w3.org/Library/User/ReleaseNotes.html> -- and a few new features.
The most significant is integrated libwww-SSL. Also SOCKS "punching through
firewalls" support is present now (but untested by me). Not sure when that
appeared, exactly.
|
|
|
|
|
|
libraries.
|
|
|
|
assumes the user is defining his own HText stuff. If they aren't, as
often is the case with the shared lib use.. Then it breaks horribly.
Welcome to the wonderful world of "ld resolves all external references
at link time"
|
|
|
|
libtool pkg to create shared and static libraries automatically on all
platforms.
|
|
|
