| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
security patch
Revisions pulled up:
- pkgsrc/www/w3m/Makefile 1.58
- pkgsrc/www/w3m/distinfo 1.21
- pkgsrc/www/w3m-img/Makefile 1.20
Files added:
pkgsrc/www/w3m/patches/patch-ac
pkgsrc/www/w3m/patches/patch-ad
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu Jul 1 18:50:15 UTC 2010
Modified Files:
pkgsrc/www/w3m: Makefile distinfo
pkgsrc/www/w3m-img: Makefile
Added Files:
pkgsrc/www/w3m/patches: patch-ac patch-ad
Log Message:
Add patch by Ludwig Nussel to fix the certificate spoofing vulnerability
reported in CVE-2010-2074.
To generate a diff of this commit:
cvs rdiff -u -r1.57 -r1.58 pkgsrc/www/w3m/Makefile
cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/w3m/distinfo
cvs rdiff -u -r1.19 -r1.20 pkgsrc/www/w3m-img/Makefile
cvs rdiff -u -r0 -r1.14 pkgsrc/www/w3m/patches/patch-ac
cvs rdiff -u -r0 -r1.8 pkgsrc/www/w3m/patches/patch-ad
|
|
security fix
Revisions pulled up:
- pkgsrc/www/apache22/Makefile 1.59
- pkgsrc/www/apache22/distinfo 1.33
- pkgsrc/www/apache22/patches/patch-af 1.3
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sat Jun 12 10:40:27 UTC 2010
Modified Files:
pkgsrc/www/apache22: Makefile distinfo
Added Files:
pkgsrc/www/apache22/patches: patch-af
Log Message:
Add patch provided by the Apache foundation to close the privacy leak
reported in CVE-2010-2068.
To generate a diff of this commit:
cvs rdiff -u -r1.58 -r1.59 pkgsrc/www/apache22/Makefile
cvs rdiff -u -r1.32 -r1.33 pkgsrc/www/apache22/distinfo
cvs rdiff -u -r0 -r1.3 pkgsrc/www/apache22/patches/patch-af
|
|
www/typolight28-translations: build fix
Revisions pulled up:
- www/typolight28-translations/Makefile 1.19-1.28
- www/typolight28-translations/PLIST.es 1.2
- www/typolight28-translations/PLIST.fa 1.2
- www/typolight28-translations/PLIST.hu 1.2
- www/typolight28-translations/PLIST.lt 1.3
- www/typolight28-translations/PLIST.sr 1.2
- www/typolight28-translations/PLIST.tr 1.2
- www/typolight28-translations/PLIST.uk 1.2
- www/typolight28-translations/distinfo 1.19-1.28
- www/typolight28-translations/options.mk 1.19-1.28
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 13 15:58:56 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to 20100413.
Update Czech and Japanese translation files are updated to support
TYPOlight 2.8.2.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 16 15:37:50 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile PLIST.lt distinfo
options.mk
Log Message:
Update typolight28-translations pacakge to 20100415.
Update Czech, French, Italian, Lithuanian and Swedish language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 20 23:20:38 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to 20100420.
Update Latvian and Russian language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 4 15:18:50 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to 20100504.
Update Japanese and Russian langage files.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun May 16 09:41:57 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile PLIST.fa PLIST.hu
PLIST.sr PLIST.tr PLIST.uk distinfo options.mk
Log Message:
Update typolight28-translations package to 20100514.
Update Croatian, Hungarian, Persian, Russian, Serbian, Turkish
and Ukrainian language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon May 17 15:41:16 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations pacakge to 20100516.
Update Danish language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed May 26 16:18:42 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to 20100523.
Update Czech language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jun 2 13:37:34 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to 20100527.
Update Dutch language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jun 5 15:19:37 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
Log Message:
Update typolight28-translations package to 20100603.
Update Czech language files.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Jun 7 11:30:07 UTC 2010
Modified Files:
pkgsrc/www/typolight28-translations: Makefile PLIST.es distinfo
options.mk
Log Message:
Update typolight28-translations package to 20100606.
* Update Spanish, Swedish and Turkish language files.
* Update HOMEPAGE and MASTER_SITES since www.TYPOlight.org migrated to
www.contao.org.
|
|
www/typolight27-translations: build fix
Revisions pulled up:
- www/typolight27-translations/Makefile 1.42
- www/typolight27-translations/options.mk 1.40
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Jun 7 11:24:30 UTC 2010
Modified Files:
pkgsrc/www/typolight27-translations: Makefile options.mk
Log Message:
Update HOMEPAGE and MASTER_SITES since www.TYPOlight.org migrated to
www.contao.org.
|
|
www/mediawiki: security update
Revisions pulled up:
- www/mediawiki/Makefile 1.12
- www/mediawiki/distinfo 1.8
---
Module Name: pkgsrc
Committed By: martti
Date: Fri May 28 08:11:32 UTC 2010
Modified Files:
pkgsrc/www/mediawiki: Makefile distinfo
Log Message:
Updated www/mediawiki to 1.15.4
This is a security and bugfix release of MediaWiki 1.15.4.
Two security vulnerabilities were discovered.
Kuriaki Takashi discovered an XSS vulnerability in MediaWiki. It
affects Internet Explorer clients only. The issue is presumed to
affect all recent versions of IE, it has been confirmed on IE 6 and 8.
Noncompliant CSS parsing behaviour in Internet Explorer allows
attackers to construct CSS strings which are treated as safe by
previous versions of MediaWiki, but are decoded to unsafe strings by
Internet Explorer. Full details can be found at:
https://bugzilla.wikimedia.org/show_bug.cgi?id=23687
A CSRF vulnerability was discovered in our login interface. Although
regular logins are protected as of 1.15.3, it was discovered that the
account creation and password reset features were not protected from
CSRF. This could lead to unauthorised access to private wikis. See
https://bugzilla.wikimedia.org/show_bug.cgi?id=23371 for details.
These vulnerabilities are serious and all users are advised to
upgrade. Remember that CSRF and XSS vulnerabilities can be used even
against firewall-protected intranet installations, as long as the
attacker can guess the URL.
|
|
www/typolight28: bug fix
Revisions pulled up:
- www/typolight28/Makefile 1.8
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 18 12:52:01 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile
Log Message:
Copy some missing configuration files from example directory.
It should make FancyUpload work.
Bump PKGREVISION.
|
|
www/geeklog: security update
Revisioned pulled up:
- www/geeklog/Makefile 1.27
- www/geeklog/distinfo 1.13
---
Module Name: pkgsrc
Committed By: taca
Date: Mon May 17 15:46:38 UTC 2010
Modified Files:
pkgsrc/www/geeklog: Makefile distinfo
Log Message:
Update geeklog package to 1.6.1.1 (1.6.1sr1).
May 9, 2010 (1.6.1sr1)
------------
This release addresses the following security issue:
The autologin (using the long-term session cookie) is vulnerable to dictionary
attacks. This issue was originally reported by Bookoo of the Nine Situations
Group in one of his reports in April 2009 but apparently overlooked by the
Geeklog Team. Thanks to geeklog.net user Jack for pointing this out.
|
|
www/typolight27-example: build fix
Revisions pulled up:
- www/typolight27-example/Makefile 1.4
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 11 13:28:46 UTC 2010
Modified Files:
pkgsrc/www/typolight27-example: Makefile
Log Message:
Add DIST_SUBDIR to match typolight27's update.
|
|
typolight27: build fix
Revisions pulled up:
- www/typolight27/Makefile 1.17
- www/typolight27/distinfo 1.11
---
Module Name: pkgsrc
Committed By: taca
Date: Tue May 4 13:18:19 UTC 2010
Modified Files:
pkgsrc/www/typolight27: Makefile distinfo
Log Message:
Since DISTFILES has been changed with the same filename, now
specify DIST_SUBDIR. Fix PR pkg/43249 reported by Robert Elz.
The change was installed TYPOlight's version string only but
binary package has changed. So, bump PKGREVISION.
|
|
www/typolight28: security update
Revisions pulled up:
- www/typolight28/Makefile 1.6-1.7
- www/typolight28/Makefile.version 1.6
- www/typolight28/PLIST 1.5
- www/typolight28/distinfo 1.6-1.7
---
ommitted By: taca
Date: Sat Apr 17 18:23:35 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile distinfo
Added Files:
pkgsrc/www/typolight28/patches: patch-aa patch-ab patch-ac
Log Message:
Add patches to disable autoresize plugin of TinyMCE since it cause
unexpected redisplay with large editing area.
This change is derived from TYPOlight's SVN repository.
(http://dev.typolight.org/projects/typolight/repository/revisions/317
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat May 1 23:42:56 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile Makefile.version PLIST distinfo
Removed Files:
pkgsrc/www/typolight28/patches: patch-aa patch-ab patch-ac
Log Message:
Update typolight28 package from 2.8.2 to 2.8.3.
Version 2.8.3 (2010-05-01)
--------------------------
- Removed the TinyMCE autoresize plugin
- Fixed: function idnaEncode() encoded the URL multiple times (#1829)
- Fixed: insert tags were not removed in the page description (#1856)
- Fixed: the download element was not hidden if there was no downloadable file (#1853)
- Fixed: ampersand characters were not converted to entities in meta files (#1823, #1831)
- Fixed: image paths were converted to absolute URLs during PDF export (#1843)
- Fixed: search index URLs were incorrect when alias usage is disabled (#1864)
- Fixed: automatically deactivate invalid e-mail addresses while sending newsletters
- Fixed: skipFirst had no effect on news lists without pagination (#1872)
- Fixed: the ModuleWizard and TableWizard were dependent on tl_content (#1883)
- Fixed: the XML news/calendar feeds were not updated if modified via Ajax (#1833)
- Fixed: CSV import failed if the Safe Mode Hack was enabled (#1908)
- Fixed a remote code execution vulnerability in the PDF export function
- Fixed some minor issues
|
|
www/typolight28: security update
Revisions pulled up:
- www/typolight28/Makefile.version 1.5
- www/typolight28/PLIST 1.4
- www/typolight28/distinfo 1.5
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 13 15:43:59 UTC 2010
Modified Files:
pkgsrc/www/typolight28: Makefile.version PLIST distinfo
Log Message:
Update typolight28 package to 2.8.2.
Version 2.8.2 (2010-04-13)
--------------------------
- Updated TCPDF to version 4.9.011 (#1802)
- Updated TinyMCE to version 3.3.2 (#1711)
- Updated MooTools More to version 1.2.4.4 (#1697)
- Added: added the white Mediabox theme (#1637)
- Added: DC_Table "oncut_callback" and "oncopy_callback" (#1745)
- Added: added the active record to "ondelete_callbacks" (#1721)
- Added: added class "trail" to the custom navigation module (#1691)
- Added: added the wildcard ##token## to the newsletter subscription
module (#1729)
- Added: added the Russian typolinks translation to TinyMCE (#1744)
- Added: the image resizer now considers the file modification time (#1743)
- Added: added ­ as basic entity (#1768)
- Added: added the "mode" parameter to the image insert tag (#1712)
- Added: added a loadDataContainer hook (#1687)
- Added: added an addComment hook (#1669)
- Fixed: special HTML characters were encoded twice (#1642)
- Fixed: the newsletter reader failed to replace insert tags (#1645)
- Fixed: the subtree navigation did not work in the popup file manager (#1653)
- Fixed: the BBCode parser did not add missing URI protocols (#1658)
- Fixed: PDF exports contained incorrect download links (#1654)
- Fixed: the option "always show in sitemap" did not work for hidden
pages (#1679)
- Fixed: the downloads element did not hide meta.txt files (#1688)
- Fixed: the downloads element did not pass all meta information (#1689)
- Fixed: reverted the changes to the navigation menu (#1635)
- Fixed: the function addToUrl() generated invalid URLs in the front end (#1707)
- Fixed: the Config library did not handle numeric strings correctly (#286)
- Fixed: the Mediabox plugin did not support .jpeg file extensions (#1728)
- Fixed: the file manager allowed invalid file and folder names (#1699)
- Fixed: the news and event reader did not overwrite the page
description (#1702)
- Fixed: regular users were not able to copy/move multiple content
elements (#1715)
- Fixed: the PDF export function did not handle whitespace characters
correctly (#1716)
- Fixed: news headlines appeared twice in link headlines (#1749)
- Fixed: the search module did not remove insert tags from the
keywords string (#1750)
- Fixed: the file tree widget did not validate the mounted paths (#1746)
- Fixed: the task center e-mails contained invalid links (#1753)
- Fixed: the option "show protected pages" also showed guest pages (#1694)
- Fixed: the list wizard did not render correctly if the first item
was empty (#1740)
- Fixed: System::idnaEncode() encoded more than just the domain name (#1748)
- Fixed: the Captcha field was missing class="mandatory" (#1767)
- Fixed: the newsletter recipient importer did not count correctly (#1732)
- Fixed: regular users could not edit comments on unmounted pages (#1659)
- Fixed: the ZipReader class failed to handle empty files (#1804)
- Fixed: the Newsletter module did not embed images correctly (#1799)
- Fixed: parameters passed to the file insert tag were cached by the
Input object (#1818)
- Fixed a possible request forgery vulnerability in the back end
- Fixed some minor issues
|
|
typolight27: security update
Revisions pulled up:
- www/typolight27/Makefile.version 1.9
- www/typolight27/distinfo 1.10
---
Module Name: pkgsrc
Committed By: taca
Date: Sat May 1 23:41:16 UTC 2010
Modified Files:
pkgsrc/www/typolight27: Makefile.version distinfo
Log Message:
Update typolight27 package from 2.7.6 to 2.7.7.
Version 2.7.7 (2010-05-01)
--------------------------
- Consolidated security update
|
|
typo3: security update
Revisions pulled up:
- www/typo3/Makefile 1.21
- www/typo3/PLIST 1.12
- www/typo3/distinfo 1.14
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Apr 9 10:15:24 UTC 2010
Modified Files:
pkgsrc/www/typo3: Makefile PLIST distinfo
Log Message:
Update typo3 package to 4.3.3.
I coudn't access release note with the URL in release announce but
I could with http://wiki.typo3.org/index.php/TYPO3_4.3.3 at this
moment.
Quote from release announce:
TYPO3 version 4.3.3 is ready for download. It is a maintenance release
of version 4.3 and therefore contains only bugfixes and security fixes.
IMPORTANT: This version includes an important security fix
to the TYPO3 core. A security announcement has just been
released:
http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-008/
For details about the release, see:
http://wiki.typo3.org/TYPO3_4.3.3
|
|
This is a security and bugfix release of MediaWiki 1.15.3 and MediaWiki
1.16.0beta2.
MediaWiki was found to be vulnerable to login CSRF. An attacker who
controls a user account on the target wiki can force the victim to log
in as the attacker, via a script on an external website. If the wiki is
configured to allow user scripts, say with "$wgAllowUserJs = true" in
LocalSettings.php, then the attacker can proceed to mount a
phishing-style attack against the victim to obtain their password.
Even without user scripting, this attack is a potential nuisance, and so
all public wikis should be upgraded if possible.
Our fix includes a breaking change to the API login action. Any clients
using it will need to be updated. We apologise for making such a
disruptive change in a minor release, but we feel that security is
paramount.
For more details see https://bugzilla.wikimedia.org/show_bug.cgi?id=23076
|
|
Update Dutch language files.
|
|
Update Swedish language files.
|
|
Update Czech language files.
|
|
* websetup: Add websetup_unsafe to allow marking other settings
as unsafe.
* Improve openid url munging; do not display anchors and cgi parameters,
as used by yahoo and google urls.
* Add complete German basewiki and directives translation done by
Sebastian Kuhnert.
* Add a include setting, which can be used to make ikiwiki process
wiki source files, such as .htaccess, that would normally be skipped
for security or other reasons. Closes: #447267
(Thanks to Aaron Wilson for the original patch.)
* Add support for setup files written in YAML.
* Add --set-yaml switch for setting more complex config file options.
* filecheck: Fix bugs that prevented the pagespecs from matching when
not called by attachment plugin.
* Fix incorrect influence info returned by a failing link() pagespec,
that could lead to bad dependency handling in certian situations.
* Add preprocessed 'use lib' line to ikiwiki-transition and ikiwiki-calendar
if necessary for unusual install.
* auto-blog.setup: Set tagbase by default, since most bloggers will want it.
* Allow wrappers to be built using tcc. (Workaround #452876)
* openid: Use Openid Simple Registration or OpenID Attribute Exchange
to get the user's email address and username. (Neither is yet
used, but they are available in the session object now.)
* page.tmpl: Add Cache-Control must-revalidate to ensure that users
(especially of Firefox) see fresh page content.
* htmlscrubber: Allow colons in urls after '?'
* template: Search for templates in the templatedir, if they are not
found as pages in the wiki.
Leaf package, updating during the freeze for bugfixes.
|
|
* Security fixes (MFSA 2010-16 through MFSA 2010-24)
* Fixes for a number of non-security-relevant crashes, increasing the
stability of the whole platform and the Mail & Newsgroups part of SeaMonkey
* ChatZilla localization packs work again (Bug 540842)
* FTP file upload was fixed (Bug 467524)
* The internal help content was updated some more
|
|
run arbitrary code.
|
|
|
|
|
|
|
|
The 3.1.1 is the first release of the Squid-3.1 series which has passed
the maintainer's criteria for use in production environments.
3.1.1 brings many new features and upgrades to the basic networking
protocols. A short list of the major new features is:
* Connection Pinning (for NTLM Auth Passthrough)
* Native IPv6
* Quality of Service (QoS) Flow support
* Native Memory Cache
* SSL Bump (for HTTPS Filtering and Adaptation)
* TProxy v4.1+ support
* eCAP Adaptation Module support
* Error Page Localization
* Follow X-Forwarded-For support
* X-Forwarded-For options extended (truncate, delete, transparent)
* Peer-Name ACL
* Reply headers to external ACL.
* ICAP and eCAP Logging
* ICAP Service Sets and Chains
* ICY (SHOUTcast) streaming protocol support
* HTTP/1.1 support on connections to web servers and peers.
(with plans to make this full support within the 3.1 series)
Approved by Thomas Klausner.
|
|
Add full lists of dirs to INSTALLATION_DIRS and patch away directory
creation from Makefile fragments.
Use dansgrdn:dansgrdn for user:group instead of nobody:nobody
Bump PKGREVISION
|
|
* Add Galician language translation files.
* Update Swedish language translation files.
|
|
security fix for CVE-2009-1382 and CVE-2009-2459.
While here, set LICENSE=gnu-gpl-v3.
It is hard to explain detailed changes with plain text, please refer following:
http://www.forkosh.com/mimetexchangelog.html
|
|
or "mod_php53.so".
|
|
|
|
Trac-0.11.7.ja1 (Mar 11, 2010)
* Merge Trac-0.11.7
* Fix typos
- trac/wiki/default-pages/InterTrac
Trac 0.11.7 (March 10, 2010)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.7
Trac 0.11.7 is nearly identical to 0.11.7rc1 except for a few more fixes:
- avoid an infinite loop when using an AtomicFile in a read-only
directory (#9081)
- don't report client disconnects during writes as internal errors (#9103)
- don't reuse a closed cursor, which could happen in one specific case
for the pysqlite backend (#9104)
Trac 0.11.7rc1 (February 23, 2010)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.7rc1
Security fixes:
- Fixed a ticket validation issue that would allow unauthorized users to modify the status and resolution of a ticket (#8884)
Performance improvements:
- Trac wiki had some trouble handling very long unicode words (#9025) [[comment(intentionally kept vague, we don't want to advertize a DOS, do we?)]]
- Full text search was very slow if lots of custom fields were used (#8935)
Bug fixes:
- Fixed a race condition that could lead to the destruction of the trac.ini file (#8623)
- Fixed creation of new milestone which could have been a rename if performed after a name clash has been detected (#8816)
- Fixed display of value 0 in report cells (#7512)
|
|
<http://redmine.lighttpd.net/issues/2157>. Without this patch,
lighttpd 1.4.26 will fail to start if built with the pkgsrc OpenSSL
and configured to serve HTTPS. Bump PKGREVISION.
|
|
Also add patch for PR pkg/42988 crash, effectively disabling all
sound support until we decide on what sound API to use.
The current dlopen() guesswork is bad, mkay.
Bump PKGREVISION for this and previous changes.
|
|
|
|
New Features and Fixes:
Security fixes
END OF LIFE for SeaMonkey 1.x comes with this version, which does NOT fix all
issues. Only SeaMonkey 2.0 fixes all known issues, we strongly encourage all our
users to switch to that new release series.
Rough Changelog for SeaMonkey 1.1.19:
504523 Thunderbird 2 needs NSS 3.12.3.1
512187 1.1.18 candidate fails to connect with SSL/TLS secured sites, PSM fails to initialize
512085 tracking bug for build and release of SeaMonkey 1.1.18
523984 Old (1.9.0/1.8.1) Default Plugin.plugin Makefile uses non-portable "echo -n"
376192 Thunderbird crashes immediately upon accessing IMAP server (duplicate entries in .mailboxlist) [@ nsImapServerResponseParser::mailbox] - imap protocol log "Internal Syntax Error
494706 [1.8 branch only] Thunderbird creates 4 GB Trash file out of less than 200 kB of deleted mail (If data write to file for "target folder of mail move/copy" is temporary interfered by other software, Tb 2 generates file of file_size=4GB-1)
387502 Mailboxes are allowed to grow larger than 4gb in size
535193 DNS resolution in MakeSN of nsAuthSSPI causing issues for proxy servers that support NTLM auth
363455 Enhance PSM's SSL handling on blocking sockets
389087 nsILocalFileUnix affected by 32bit stat/statvfs/truncate, therefore does not work with large files
495098 Crash when using single XMLHttpRequest object for two simultaneous requests; test case included [@ nsXMLHttpRequest::StreamReaderFunc ]
537307 Update SeaMonkey's copyright strings to 2010
440982 To avoid calling JS at unsafe times from JS_GC, jsds_ScriptHookProc should not get the script hook unless it needs to and it is safe to call
305168 Too many recipients when copy/paste address line or sending from MS Access (increase max to 2000)
511521 downloading file with RTL override (RLO) presents conflicting filenames
344818 Linking - missing library deps
505305 Probably Exploitable - Read Access Violation on Block Data Move starting at MSVCR80D!memcpy+0x000000000000005a
440236 crash after connection lost [@ nsMsgDatabase::GetTableCreateIfMissing(char const*, char const*, nsIMdbTable**, unsigned int&, unsigned int&)], in v2 [@ nsMsgDatabase::GetTableCreateIfMissing]
483437 PSM doesn't properly escape AVA Values in Cert Viewer Details tab
483440 PSM doesn't detect invalid OID encodings in Cert Viewer Details tab
284876 Trunk TB10 crash while sending mail [@ nsMsgLocalMailFolder::WriteStartOfNewMessage() ]
516862 Array indexing error in js/src/dtoa.c's Balloc() leads to floating point memory vulnerability (SA36711)
506871 TreeColumns Dangling Pointer Vulnerability (ZDI-CAN-536)
519839 SVG fails to render correctly
|
|
While here, set LICENSE=2-clause-bsd.
Version 1.0.10 (released 10-Mar-2010)
* security fix: escape user-provided query form input to avoid XSS attack
* fix errors viewing remote Subversion paths with URI-unsafe characters
* fix regexp input validation (issue #426, #427, #440)
|
|
|
|
|
|
|
|
Update Bosnian language files.
|
|
|
|
|
|
|
|
* New modular group and dict data access, you can use group and dict
backend modules to access group and dict data stored anywhere you like.
* Improved Xapian indexing / search
* Improved drawing support
* Themes / static files related
* Syntax highlighting is based on the pygments library now
* Authentication improvements
* Sessions / cookies improvements
* Macros fuctions improved
* More Actions added/improved
* Improved logging / debugging / developer support
* GUI editor: improved attachment dialog
* "moin ... account homepage" script to create user homepages
A bunch of bugfixes!
For the full Changelog, see: http://moinmo.in/MoinMoinRelease1.9
ok'ed during the freeze by agc@
|
|
|
|
Bump revision.
|
|
Bump revision.
|
|
|
|
|
|
Updated as the old distfile disappeared.
|
|
+ gallery2
|
