| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Changes from 1.4.30
- [ssl] fix segfault in counting renegotiations for openssl versions
without TLSEXT/SNI (thx carpii for reporting)
- Move fdevent subsystem includes to implementation files to reduce
conflicts (fixes #2373)
- [mod_compress] fix handling if etags are disabled but cache-dir
is set - may lead to double response
- disable mmap by default (fixes #2391)
- buffer_caseless_compare: always convert letters to lowercase to get
transitive results, fixing array lookups (fixes #2405)
- Fix handling of empty header list entries in http_request_split_value,
fixing invalid read in valgrind (fixes #2413)
- Fix access log escaping of " and \\ (fixes #1551)
- [mod_auth] Fix digest "md5-sess" implementation (Errata ID 1649,
RFC 2617) (fixes #2410)
- [auth] Add "AUTH_TYPE" environment (for * cgi), remove fastcgi specific
workaround, add fastcgi test case (fixes #889)
- [mod_*cgi,mod_accesslog] Fix splitting :port with ipv6 (fixes #2333,
thx simoncpu)
- Detect multiple -f options: show error message instead of assert
(fixes #2416)
- [mod_extforward] Support ipv6 addresses (fixes #1889)
- [mod_redirect] Support url.redirect-code option (fixes #2247)
- Fix --enable-mmap handling in configure.ac
Changes from 1.4.29
- Always use our 'own' md5 implementation, fixes linking issues on MacOS
(fixes #2331)
- Limit amount of bytes we send in one go; fixes stalling in one connection
and timeouts on slow systems.
- [ssl] fix build errors when Elliptic-Curve Diffie-Hellman is disabled
- Add static-file.disable-pathinfo option to prevent handling of urls like
.../secret.php/image.jpg as static file
- Don't overwrite 401 (auth required) with 501 (unknown method) (fixes #2341)
- Fix mod_status bug: always showed "0/0" in the "Read" column for uploads
(fixes #2351)
- [mod_auth] Fix signedness error in http_auth (fixes #2370, CVE-2011-4362)
- [ssl] count renegotiations to prevent client renegotiations
- [ssl] add option to honor server cipher order (fixes #2364, BEAST attack)
- [core] accept dots in ipv6 addresses in host header (fixes #2359)
- [ssl] fix ssl connection aborts if files are larger than
the MAX_WRITE_LIMIT (256kb)
- [libev/cgi] fix waitpid ECHILD errors in cgi with libev (fixes #2324)
|
|
|
|
Update Persian, Polish, Russian, Spanish and Swedish language files.
|
|
This is a meta-like package and no changes.
|
|
## Rails 3.2.7 (unreleased) ##
* Do not convert digest auth strings to symbols. CVE-2012-3424
* Bump Journey requirements to 1.0.4
* Add support for optional root segments containing slashes
* Fixed bug creating invalid HTML in select options
* Show in log correct wrapped keys
* Fix NumberHelper options wrapping to prevent verbatim blocks being rendered
instead of line continuations.
* ActionController::Metal doesn't have logger method, check it and then
delegate
* ActionController::Caching depends on RackDelegation and
AbstractController::Callbacks
|
|
## Rails 3.2.7 (unreleased)
* No changes.
|
|
This is a meta-like package and no changes.
|
|
## Rails 3.1.7 (Jul 26, 2012)
* Do not convert digest auth strings to symbols. CVE-2012-3424
|
|
## Rails 3.1.7 (Jul 26, 2012)
* No changes.
|
|
This is a meta-like package and no changes.
|
|
## Rails 3.0.16 (Jul 26, 2012)
* Do not convert digest auth strings to symbols. CVE-2012-3424
## Rails 3.0.14 (Jun 12, 2012)
* nil is removed from array parameter values
CVE-2012-2694
|
|
## Rails 3.0.16 (Jul 26, 2012)
* No changes.
## Rails 3.0.14 (Jun 12, 2012)
* No changes.
|
|
Thu Jul 19 21:48:42 CEST 2012
Releasing libmicrohttpd 0.9.21. -CG
Thu Jul 19 11:34:50 CEST 2012
Consistently use 'panic' function instead of ever directly
calling 'abort ()'. Eliminating unused mutex in SSL mode.
Removing check in testcases that fails depending on which
version of gnuTLS is involved. -CG
Tue Jul 17 23:50:43 CEST 2012
Stylistic code clean up. Allowing lookup up of trailing values
without keys using "MHD_lookup_connection_value" with a key of NULL
(thus achieving consistency with the existing iterator API). -CG
Tue Jul 17 22:37:05 CEST 2012
Adding experimental (!) code for MHD operation without listen socket. -CG
Tue Jul 17 22:15:57 CEST 2012
Making sendfile test pass again on non-W32 systems. -CG
Mon Jul 9 13:43:35 CEST 2012
Misc changes to allow testcases to pass on W32. -LRN
Sun Jul 8 15:05:31 CEST 2012
Misc changes to fix build on W32. -LRN
Fri Jun 22 11:31:25 CEST 2012
Make sure sockets opened by MHD are non-inheritable by default (#2414). -CG
Tue Jun 19 19:44:53 CEST 2012
Change various uses of time(NULL) to new MHD_monotonic_time() function to
make timeouts immune to the system real time clock changing. -MC
Tue Jun 12 21:35:00 CEST 2012
Adding 451 status code. -CG
|
|
- Compatibility fix with new c-icap 0.2.1 release that prevent
squidclamav service to be initialized.
- Fix issue with new c-icap 0.2.1 release that generate an error
error each time squidclamav return CI_MOD_204 in end of data
handler function.
|
|
* Bug fixes
|
|
|
|
Approved by: obache@
Upstream changes:
Highlights
MDL-28557 Group event now appears to teachers, managers and administrators
MDL-33398 MDL-27368 Cron works when course completion is enabled
Functional changes
MDL-24401 Lesson string changes
MDL-33401 Managers can add blocks at the site level
Security issues
MSA-12-0042 File access issue in blocks
MSA-12-0043 Early information access issue in forum
MSA-12-0044 Capability check issue in forum subscriptions
MSA-12-0045 Injection potential in admin for repositories
MSA-12-0046 Insecure protocol redirection in LDAP authentication
MSA-12-0047 SQL injection potential in Feedback module
MSA-12-0048 Possible XSS in cohort administration
MSA-12-0049 Group restricted activity displayed to all users
MSA-12-0050 Potential DOS attack through database activity
Fixes and improvements
MDL-32866 Filemanager in private files now saves changes
MDL-33583 "Keep all" automated backups now works
MDL-33607 Add new wiki page no longer reports error writing to database
MDL-33603 Database activity entries are linked correctly
MDL-26892 Question images not lost during upgrade
MDL-29924 Glossary attachments appear in filter popups
|
|
Czech, Dutch, Italian, Japanese and Portuguese language files are updated
to catch up to Contao 2.11.5.
|
|
It also fixes a little security problem of permission check about undo
processing.
Quote from release announce: http://www.contao.org/en/news/contao-2_11_5.html
The bugfix release fixes a couple of issues, including the SOAP
compression problem in PHP 5.4, the IDNA URL converting issue and
the TinyMCE relative URLs problem.
|
|
Upstream CHANGES:
1.3097 08.07.2012
[ ENHANCEMENTS ]
* New keywords 'register_hook' and 'execute_hooks' exported by Dancer::Plugin
for providing a consistent way with Dancer 2 on how to declare and run hooks
from within a plugin (Alexis Sukrieh, idea from David Precious).
1.3096 06.07.2012
** Codename: Chop Hooey // Neil Hooey **
[ ENHANCEMENTS ]
* Finally released, thanks to Neil Hooey bugging my sorry ass.
1.3095_02 03.07.2012
[ BUG FIXES ]
* fix exception tests in some cases (GH #734) (Damien Krotkine & katkad )
[ ENHANCEMENTS ]
* If YAML does not load, Dancer::Config now reports why (Ovid)
[ DOCUMENTATION ]
* Clarify serialization in introduction POD (Mark A. Stratman)
* Typo fix (Sam Kington)
1.3095_01 22.06.2012
[ BUG FIXES ]
* Don't assume returned references are blessed when considering
continuations (Neil Hooey, GH-778)
* Malformed/missing cookies caused warnings
(James Aitken/LoonyPandora, GH-782 and GH-783)
* Avoid potential crash in t/14_serializer/06_api.t if tmp dir is replaced
when %ENV gets cleared (Adam Kennedy)
* Properly initialize %callbacks to default empty hashref in _send_file if
not provided (Greg Mullen)
[ ENHANCEMENTS ]
* Add UTC timestamp options for logger_format (Alex C - perlpong).
* Tests can now run in parallel (Richard Sim.es).
* dancer_version keyword added (Damien "dams" Krotkine).
* New session_domain paramter allows you to set the domain of the default
session cookie (William Wolf)
[ DOCUMENTATION ]
* Update Ubic service example (Vyacheslav Matyukhin)
* Silly typo fixing (Paul Fenwick)
* Typo in Dancer::Test file upload example (Jonathan "Duke" Leto)
* UTF-8 fixes in POD (ambs)
1.3095 01.04.2012
[ BUG FIXES ]
* Small fix to skip tests when YAML is not available.
(Sawyer X)
[ ENHANCEMENTS ]
* Added 'info' log level for messages that should always go to the logs
but aren't really debug, warning or error messages (Ovid)
1.3094 31.03.2012
[ BUG FIXES ]
* GH #763: Fix exceptions in ajax routes clobbering layout (ilmari)
* GH #748 & GH 647: Don't force override environment from PLACK_ENV (jwittkoski)
* GH #762: fix param parsing lacking limit on split (leejo)
* GH #758: Fix Dancer::Test: make sure the request is properly converted to
a response. (Ovid)
* GH #729: Fix dancer exception composition, and message pattern application
(Damien Krotkine)
* GH #752: Exceptions raised in hooks were not propagated back to the route
code, but instead canceleld and replaced by a Dancer halt exception. That
was wrong. Now it is fixed, exceptions raised in hooks can be properly
caught in route code.
(Damien Krotkine)
* Be more flexible in single vs. mutliple values in key hiding.
(Sam Kington)
* Use isa() for checking relationships instead of ref() in Dancer::Test.
(Ovid)
[ ENHANCEMENTS ]
* Added 'strict_config' option to have the config return an object instead
of a hashref. (Ovid)
* GH #708: Added support for query strings in dancer_request (Jacob Rideout)
* It's possible for the user to set the environments directory using a new
environment variable (DANCER_ENVDIR) or using `set envdir => $path`
* Sort hash keys when serializing references in log messages (Ovid).
[ DOCUMENTATION ]
* Explain in POD that if there are multiple fields with the same name,
params('fieldname') returns an arrayref of them (alexrj).
* GH #750: Fix in Dancer::Deployment: appdir needs to be set before calling
load_app (Paul Johnson)
* Update 'before' hook document (David Cantrell).
1.3093 29.02.2012
[ BUG FIXES ]
* GH #738: Define exception type ::Core::Request, to avoid things blowing
up when Dancer::Request raises exceptions of that type
(David Precious, thanks to damog for reporting)
* GH #671: Fix Dancer::Plugin::Ajax with Plack::Builders.
(Activeg, Sawyer X)
* Auto-page feature cleanup and fixup. (David Precious)
* Remove uninitialized warnings. (Sawyer X, David Precious)
[ ENHANCEMENTS ]
* Winning release race to Catalyst (nice try rafl++!)
* Add exception type ::Core::Request. (David Precious)
* JSON decode from UTF8. (Sam Kington)
* Provide the method when a route crashes to help debug. (Sam Kington)
* More helpful log messages. (David Precious)
[ DOCUMENTATION ]
* Fix examples for multi-app deployment under Plack::Builder in deployment.
* Deployment docs. (c0bra)
* Update tutorial. (David Precious)
* Clean up EXPORTS. (David Precious)
* Keyword documentation fixups. (Kirk Kimmel)
* Clarify forward docs with better examples. (David Precious)
1.3092 27.01.2012
[ BUG FIXES ]
* Don't call isa() on unblessed refs in Dancer::Exception. (Sam Kington)
* Assume UTF-8 by default when serialising JSON. (Sam Kington)
* GH #725: If a cookie is set multiple times, last value wins.
(David Precious)
* More intuitive, backwards compatible appending of default template
extension. (GH #716, David Precious)
* Prevent recursion in censoring. (Yanick Champoux, Damien dams Krotkine)
* GH #734: More tests flexibility (Sawyer X, reported by @birdy-)
[ ENHANCEMENTS ]
* Return the current set prefix using prefix(). (Michal Wojciechowski)
* More intuitive appending of default template extension. Makes for cleaner
more DWIM code. (David Precious, reported by Nick Knutov)
* Allow any options to JSON serializer. (Lee Johnson)
* Support complex views with multiple document roots. (Pedro Melo)
[ DOCUMENTATION ]
* Document how to work with Dotcloud. (Oliver Gorwits)
* Clean ups and fix ups. (David Precious, Sawyer X, Michal Wojciechowski)
|
|
Upstream ChangLog:
2.4 2012-07-20
- Fixed RT #13791, which meant you couldn't request http://foobar.com --
had to have to trailing slash on the URL.
- Don't add request header if value passed is undef (RT #4546).
- Fixed bug where writing the request can get stuck in a loop.
Bug reported by Florian Kirchmeir. Fix based on Florian's patch.
- RT #35360 fixed (fix included in report).
- Documentation tidy-up
- Neil Bowers (NEILB) granted co-maint by Adam (thanks)
|
|
|
|
from CPAN into www/p5-WWW-Mechanize-Timed.
This module is a subclass of WWW::Mechanize that times each stage of the
HTTP request.
|
|
|
|
into www/p5-LWPx-TimedHTTP.
This module performs an HTTP request exactly the same as LWP does normally
except for the fact that it times each stage of the request and then inserts
the results as header.
|
|
Use LIBTOOL_OVERRIDE to workaround a DTrace build problem.
Bump PKGREVISION.
|
|
|
|
www/p5-WWW-Mechanize from 1.72 to 1.72nb1
pkgsrc changes:
- adjust dependencies from previous updates ...
|
|
www/p5-WWW-Mechanize from 1.71 to 1.72.
pkgsrc changes:
- adjust dependencies
- update some required modules first (and hopefully don't introduced
circular dependencies)
Upstream changes:
1.72 Thu Feb 2 18:37:28 EST 2012
========================================
[DEPENDENCIES]
Bumped the HTML::Form dependency to fix failures on CentOS 5
|
|
www/p5-HTML-Tree from 4.2 to 5.02.
pkgsrc changes:
- adjust dependencies
- adjust Perl 5 build type
upstream changes:
5.02 2012-06-27
Release by Christopher J. Madsen
[TESTS]
* Do not attempt to check result of $! in construct_tree.t
(The fix in 5.01 was not successful.)
5.01 2012-06-20
Release by Christopher J. Madsen
[TESTS]
* Force C locale in construct_tree.t (in non-English locales,
$! will produce messages in a different language) (RT #77823)
* Add test for preserving whitespace while parsing.
5.00 2012-06-12
Release by Christopher J. Madsen
There are only some minor documentation changes since 4.903.
This is a summary of the most significant changes since 4.2.
[THINGS THAT MAY BREAK YOUR CODE OR TESTS]
* Use weak references to avoid memory leaks
See "Weak References" in HTML::Element for details.
* new_from_file now dies if the file cannot be opened. $! records
the specific problem. (Previously, you got a tree with a few
implicit elements.)
* Some methods normally returning a scalar could return the empty
list in certain circumstances. This has been corrected. The
affected methods are: address, deobjectify_text, detach, is_inside,
& pindex.
* deprecate the Version sub/method. Use the VERSION method instead.
[ENHANCEMENTS]
* add new_from_url (Using LWP) (David Pottage) (RT #68097)
[DOCUMENTATION]
* Explain that parse_file (and new_from_file) opens files in binary mode
BUT THIS IS PLANNED TO CHANGE.
4.903 2012-06-08
Trial Release by Christopher J. Madsen
[DOCUMENTATION]
* Explain that parse_file (and new_from_file) opens files in binary mode
BUT THIS IS PLANNED TO CHANGE.
[TESTS]
* test error handling for new_from_file & new_from_url
* remove use_ok from most tests
(if the module won't load, the tests can't pass anyway)
4.902 2012-06-06
Trial Release by Christopher J. Madsen
[THINGS THAT MAY BREAK YOUR CODE OR TESTS]
* new_from_url now dies if the request fails or the response is not HTML
4.901 2012-06-06
Trial Release by Christopher J. Madsen
[THINGS THAT MAY BREAK YOUR CODE OR TESTS]
* new_from_file now dies if the file cannot be opened. $! records
the specific problem. (Previously, you got a tree with a few
implicit elements.)
* Some methods normally returning a scalar could return the empty
list in certain circumstances. This has been corrected. The
affected methods are: address, deobjectify_text, detach, is_inside,
& pindex.
[FIXES]
* new_from_url did not call eof after parsing
[DOCUMENTATION]
* Improve SEE ALSO for HTML::TreeBuilder
* General documentation cleanup
4.900 2012-06-01
Trial Release by Christopher J. Madsen
[THINGS THAT MAY BREAK YOUR CODE OR TESTS]
* Use weak references to avoid memory leaks
See "Weak References" in HTML::Element for details.
* deprecate the Version sub/method. Use the VERSION method instead.
[ENHANCEMENTS]
* add new_from_url (Using LWP) (David Pottage) (RT #68097)
|
|
www/p5-HTML-Form from 6.00nb2 to 6.03.
Upstream changes:
2012-03-30 HTML-Form 6.03
Support the new HTML5 input types without warning
_______________________________________________________________________________
2012-02-20 HTML-Form 6.02
Fix test failure when HTTP-Message 6.03 (or better) was installed [RT#75155]
_______________________________________________________________________________
2012-02-18 HTML-Form 6.01
Don't pick up label text from textarea [RT#72925]
Restore perl-5.8.1 compatibility.
|
|
- In cli mode with stat=0 and canonicalize=1 make sure cwd is searched
- Fixed bug #62302 apc.include_once_override=1 made everything crash
- Fixed bug #59829 APC should not try to canonicalize file URLs
- Fixed bug #62398 stat=0 replaces an include/require filename with empty string
- Fixed bug #61799 Typo in 'SEARCH' regex of apc.php
- Fixed bugs #61824,61912,61956,62190,62230 ext/DOM memory corruption (cschneid)
|
|
* Sync with www/firefox10
|
|
* --tracejit option is virtually obsolete, remove jit PLIST.
Changelog: from http://www.mozilla.org/en-US/firefox/10.0.6/releasenotes/
FIXED
Security fixes can be found https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
FIXED
Multiple stability bugs
FIXED
Text editing inconsistencies
|
|
URL should be as HOMEPAGE in the Makefile.
|
|
New features/improvements:
- Update translations.
- Add example of nginx setup.
- Add some patches from debian package.
- Rename domain name into documentation to awstats.org
- Can allow urls with awredir without using md5 key parameter.
- Usage of databasebreak option possible with awstats_buildstaticpages.
- Add rel=nofollow on links.
- Add option AddLinkToExternalCGIWrapper to add link to a wrapper script
into each title of Dolibarr reports. This can be used to add a wrapper
to download data into a CSV file for example.
Fixes:
- Security fix into awredir.pl
- Fix: Case of uk in googlechart api
|
|
- Remove supporting php5 (PHP 5.2.x) supporting codes.
|
|
DragonFly uses millisecond rather than second as the unit of TCP_KEEPIDLE.
Patch multiples obtained value by 1000 on DragonFly.
Patch will be submitted to curl at SourceForge.
|
|
|
|
* Sync with www/seaonkey
|
|
* Use Lightning 1.6 release
* Enigmail is not tested fully
Changelog: from http://www.seamonkey-project.org/releases/seamonkey2.11/
SeaMonkey-specific changes
A click-to-play option (off by default for now) has been implemented for plugins.
Mozilla platform changes
The Pointer Lock API has been implemented.
A new API to prevent your display from sleeping is available.
New text-transform and font-variant CSS improvements have been made for Turkic languages and Greek.
Fixed several stability issues.
|
|
* Sync with www/firefox
|
|
as ../../lang/php5 doesn't exist in pkgsrc any longer.
|
|
Bug 3013: segmentation fault on shutdown commSetCloseOnExec at comm.cc:1889
Bug 3233: Invalid URL accepted with url host is white spaces
Bug 3074: Improper URL handling with empty path (RFC 3986)
Bug 3463: dnsserver fails to compile
Bug 3390: Proxy auth data visible to scripts
Extend g++ compatibility for extern inline functions
Bug 3545: FreeBSD dnsserver segfaults
Bug 3466: Adaptation stuck on last single-byte body piece
Bug 3539: CONNECT server connection not closed correctly on errors
Bug 3133: Memory leak handling requests for sites that don't exist
Bug 3504: Regression: clientside_tos fails to mark traffic
Fix URL schemes out of sync
AnyP is a 3.2-only namespace
Support CoAP over HTTP
Bug 3263: ssl_crtd: undefined references to squid_curtime
Bug 3439: correct external_acl_type documented default for ipv4/ipv6 option
Fix closePipesSafely. It is a 3.2 feature
Revert rev10436. Correct patch already applied in 3.1.19
Bug 3420: part 2: Request body consumption races and theConsumer
Better helper-to-Squid buffer size management.
Support for 3.2 error template codes
Translations: Sync with 3.2
Regression: snmp/udp address directives not resolving hostname
Bug 3502: client timeout uses server-side read_timeout, not request_timeout
|
|
Changelog:
NEW
Google searches now utilize HTTPS
NEW
Full screen support for Mac OS X Lion implemented
NEW
Plugins can now be configured to only load on click (requires an about:config change)
NEW
The Awesome Bar now auto-completes typed URLs
CHANGED
Improved site identity manager, to prevent spoofing of an SSL connection with favicons
DEVELOPER
Pointer Lock API implemented
DEVELOPER
New API to prevent your display from sleeping
DEVELOPER
New text-transform and font-variant CSS improvements for Turkic languages and Greek
FIXED
Various security fixes
FIXED
GIF animation can gets stuck when src and image size are changed (743598)
FIXED
OS X: nsCocoaWindow::ConstrainPosition uses wrong screen in multi-display setup (752149)
FIXED
CSS :hover regression when an element's class name is set by Javascript (758885
|
|
by Obache.
|
|
|
|
years. As far as anyone has been able to figure out, it is actually an
older version of devel/SOPE, even though the latter has a lower
version number.
|
|
Changes include:
Posix semaphore support for FreeBSD and NetBSD.
Improved syslog support.
Linux KSM and unshare support.
Threading improvements.
|
|
Fix PR pkg/46691 and some module related problems.
* Remove all apache-shared-modules conditionals
* Fix PLIST, mod_suexec.so is installed.
|
