| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
into the include path. Mark as only for Apache 2.2.
|
|
|
|
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4405
From release notes at:
http://trac.edgewall.org/browser/tags/trac-0.11.6/RELEASE
November 28, 2009
Trac 0.11.6 contains two security fixes and a number of bug fixes,
performance improvements and minor enhancements.
Changes in 0.11.6
* Fixed the policy checks in report results when using
alternate formats.
* Added a check for the "raw" role that is missing in docutils
< 0.6.
* Re-enabled connection pooling with SQLite (#3446).
* Added caching of configuration options (#8510).
* Fixed the "database is locked" issue with SQLite (#3446,
#8468).
* Deprecated SQLite 2.x support (#8625).
* Fixed hanlding of times in timezones with DST (#8240).
* Avoid corruption of trac.ini during write (#8623).
* Improved support for revision ranges in the revision log
view (#8349)
updating during freeze approved by wiz@
|
|
* pagestats: Add show parameter. Closes: #562129
* toc: Add startlevel parameter. (kerravonsen)
* comments: Add a checksum to the name of comment pages, to avoid
merge conflicts when comments are posted to two branches of a site.
* linkmap: Add option to omit disconnected pages from the map.
* inline: Fix bug that limited displayed pages when feedshow was
specified w/o show.
* Fix several places that did not properly handle capitalization of
the discussionpage setting. Specifically, fixes discussion actions
on discussion pages, and unbreaks the opendiscussion plugin.
Updating during the freeze for relevant bugfixes, particularly this last.
|
|
be fetched. Proposed on tech-pkg, OK wiz
|
|
Update Turkish translation files.
|
|
Update Turkish translation files.
|
|
|
|
It initially existed originally came from PR#27567 for www/apache2.
CVE-2007-3304 parts was added in rev 1.2, then whole patch file was removed in
rev 1.3 as update to apache-2.2.6, because the update contains fix for
CVE-2007-3304 and comments of patch-ab only mentioned about the CVE.
To prevent a recurrence of such a accident, added PR#27567 as comments
for patch-ab.
|
|
Changes to squid-3.0.STABLE21 (22 Dec 2009):
- Bug 2830: Clarify where NULL byte is in headers.
- Bug 2778: Linking issues using SunCC
- Bug 2395: FTP errors not displayed
- Bug 2155: Assertion failures on malformed Content-Range response headers
- Fix parsing and a few bugs in ACL time type
- Fix RFC keep-alive compliance on intercepted replies
- Improved security hardening on %nn parser
- Replace several GCC-specific code snippets.
|
|
Bump PKGREVISION
|
|
Major changes:
* Security fix for install tools
* Improved event lists
http://www.typolight.org/news/items/typolight-2_8_RC2.html
|
|
No functional change.
|
|
|
|
* Add complete Spanish basewiki translation done by Fernando Gonzalez de
Requena.
* Improve javascript onload handling.
* monotone: Deal with format change in version 0.45.
(Thanks, Richard Levitte)
* cvs: Add missing bit to Automator.
* attachment: Fix reversion in attachment sorting by age.
* Fix utf-8 problems in rename, remove, attachment, 404, sourcepage, and
goto.
Updating this leaf during the freeze for the bugfixes.
|
|
builds or the main www/php4 package. Patch the config.m4 source instead.
|
|
|
|
vulnerability.
Changes since version 3.3.3 are not found on the web site for some
reason (while changes before 3.3.3 are).
|
|
|
|
|
|
Approved by wiz@
Feng Office formerly known as OpenGoo is an easy to use Open
Source Web Office.
Manage tasks, documents, contacts, e-mail, calendar, and more...
Manage project progress, track time, and bill your customers.
Access all information from a single and elegant dashboard.
Communicate with co-workers, clients and vendors.
|
|
|
|
Only security updates: http://www.typolight.org/news/items/major-security-hole-in-the-typolight-install-tool.html.
|
|
http://www.typolight.org/news/items/major-security-hole-in-the-typolight-install-tool.html.
Bump PKGREVISION.
|
|
Drupal 6.15, 2009-12-16
----------------------
- Fixed security issues (Cross site scripting), see SA-CORE-2009-009.
- Fixed a variety of other bugs.
other pkgsrc changes:
* Add PKG_DESTDIR_SUPPORT spport.
* Use REPLACE_INTERPRETER.
* Change default.settings.php handling to fix PR pkg/42355.
|
|
Drupal 5.21, 2009-12-16
-----------------------
- Fixed a security issue (Cross site scripting), see SA-CORE-2009-009.
- Fixed a variety of small bugs.
|
|
|
|
|
|
|
|
so PKG_DESTDIR_SUPPORT not turned on
|
|
|
|
so PKG_DESTDIR_SUPPORT not turned on
|
|
itself so PKG_DESTDIR_SUPPORT not turned on
|
|
|
|
|
|
|
|
OpenGoo will be change its name to "Feng Office" and it is first step.
|
|
|
|
List of changes unknown.
|
|
changes:
-bugfixes
-translation updates
|
|
Contains fixes for the same advisories as firefox-3.5.6.
|
|
While here, switch NetBSD build from sunaudio to OSS emulation.
This greatly improves HTML5 video playback.
(Yes, we ought to fix the busted sunaudio support or PKG_OPTIONalize this.
Perhaps another day.)
Advisories relating to this release:
MFSA 2009-71 GeckoActiveXObject exception messages can be used to
enumerate installed COM objects
MFSA 2009-70 Privilege escalation via chrome window.opener
MFSA 2009-69 Location bar spoofing vulnerabilities
MFSA 2009-68 NTLM reflection vulnerability
MFSA 2009-67 Integer overflow, crash in libtheora video library
MFSA 2009-66 Memory safety fixes in liboggplay media library
MFSA 2009-65 Crashes with evidence of memory corruption (rv:1.9.1.6/ 1.9.0.16)
|
|
|
|
|
|
mserv-php is a web interface to the mserv jukebox system.
It was a real quick hack, so there may be some inconsistencies.
|
|
2009-11-21 Release 5.834
Gisle Aas (4):
Check for sane default_headers argument [RT#50393]
Add $ua->local_address attribute [RT#40912]
Test that generation of boundary works [RT#49396]
Page does not display the "standard" apache listing any more
Ville Skyttä (2):
Remove unneeded executable permissions.
Switch compression/decompression to use the IO::Compress/IO::Uncompress and
Compress::Raw::Zlib family of modules.
Slaven Rezic (1):
lwp-request should use stderr for auth [RT#21620]
|
|
2009-11-23 Gisle Aas <gisle@ActiveState.com>
Release 1.51
Fixup a test that was broken on Windows
2009-11-21 Gisle Aas <gisle@ActiveState.com>
Release 1.50
The main news in this release is the initial attempt at providing
support to IRIs. URI objects now support the 'as_iri' and 'ihost'
methods.
Gisle Aas (28):
Added more tests for setting IPv6 addresses using the host method
Document how the host methods deal with IPv6 addresses
A "test case" to start IDNA prototype from
Escape IDNA hostnames
Introduce the as_unicode method
Make as_unicode undo punycode for server URLs
An IRI class might be helpful (RFC 3987)
Must punycode each part of the domain name separately
Include initial private Punycode module
Get URI::_punycode working
punycode of plain ascii should not edit with "-"
Some more tests from RFC 3492
Add private URI::_idna module based on encodings/idna.py
Start using URI::_idna for encoding of URIs
Avoid various use of undef warnings
Fix test affected by IDNA
Keep reference to IDNA::Punycode in the URI::_punycode docs
Ensure upgraded strings as input
Update manifest with the new idna/punycode files
Rename as_unicde to as_iri
draft-duerst-iri-bis-07: The proposed RFC 3987 update
Load Encode when its used
Rename host_unicode as ihost
Add basic iri test
Hack to make as_iri turn A-labels into U-labels
Make as_iri leave escapes not forming valid UTF-8 sequences
Merge branch 'iri'
Don't include RFCs in the cpan tarball
Michael G. Schwern (3):
Fix != overloading to match ==
Note that mailto does not contain a host() and this is not a bug.
Strip brackets off IPv6 hosts [RT#34309]
|
|
even when python is enabled, comment out python dependency.
New in version 0.3.0
====================
* WARNING!!! Slight API change!!! see docs
for px_proxy_factory_get_proxies()
* Credentials support (see API change above)
* A complete rewrite of the module manager
* file:// as valid PAC URLs
* Sample Mono application
* Automake 1.11 shaved output
* gnome backend rewrite (now w/o thread issues)
* Test suite base functionality exists
* Many solaris build fixes
* Seamonkey support as JS pacrunner
* Bugfixes
* Compiles for MS Windows using Mingw
|
|
|
|
Support staged installation.
|
