| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
blur6ex is a simple, fast, and moderately feature-rich content system. It
supports a blog, a simple content system for article publishing, RSS feed
generation, CSS-based layouts (no tables at all), simple galleries for
your photos and more.
|
|
Apply four official fixes.
* 2005-02-15 02:14 (Cosmetic) FTP URL cleanups
* 2005-02-15 01:07 (Cosmetic) Allow high characters in generated FTP and
Gopher directory listings
* 2005-02-15 00:03 (Cosmetic) Cross-platform format fixes
* 2005-02-13 05:58 (Major) Assertion failure on certain odd DNS responses
Fixes PR pkg/29412 from Mike M. Volokhov.
|
|
|
|
Patches from awstats CVS.
Bump PKGREVISION.
|
|
Fixes pkg/25486 by Aymeric Vincent <aymeric@netbsd.org>
|
|
This fixes PR pkg/29210.
|
|
|
|
|
|
is a Kwiki plugin to protect pages from viewing and editing.
|
|
using the Hook class to use only one module instead of two, and to
write out images in PNG, JPEG, or GIF depending on what's supported
by GD.pm.
|
|
Most of these changes are already included in previous squid-2.5.7nb12.
But last one is really new one.
Changes to squid-2.5.STABLE8 (11 Feb 2005)
- [Minor] 100% CPU usage on half-closed PUT/POST requests (Bug #354,
#1096)
- [Cosmetic] Document -v (protocol version) option to LDAP helpers
- [Minor] The new req_header and resp_header acls segfaults
immediately on parse of squid.conf (Bug #961)
- [Minor] Failure to shut down busy helpers on -k rotate/reconfigure
(Bug #1118)
- [Minor] Don't use O_NONBLOCK on disk files. (Bug #1102)
- [Minor] Squid fails to close TCP connection after blank HTTP
response (Bug #1116)
- [Minor security] Random error messages in response to malformed
host name (Bug #1143)
- [Minor] PURGE should not be able to delete internal objects
(Bug #1112)
- [Minor] httpd_accel_port 0 (virtual) not working correctly (Bug
#1121)
- [Minor] cachemgr vm_objects segfault (Bug #1149)
- [Minor security] Confusing results on empty acl declarations (Bug
#1166)
- [Minor] Don't close all "other" filedescriptors on startup (Bug
#1177)
- [Minor] fakeauth_auth memory leak and NULL pointer access (Bug
#1183)
- [Security] buffer overflow bug in gopherToHTML() (Bug #1189)
- [Medium security] Denial of service with forged WCCP messages
(Bug #1190)
- [Minor] DNS related memory leak on certain malformed DNS responses
(Bug #1197)
- [Minor] Internal DNS sometimes truncates host names in reverse
(PTR) lookups (Bug #1136)
- [Minor Security] Add sanity checks on LDAP user names (Bug #1187)
- [Security] Harden Squid agains HTTP request smuggling attacks
- [Minor] Icon URLs fails in non-anonymous FTP directory listings is
short_icon_urls is on (Bug #1203)
- [Security] Harden Squid agains HTTP response splitting attacks
(Bug #1200)
- [Medium security] Buffer overflow in WCCP recvfrom() call
(Bug #1217)
- [Security] Properly handle oversized reply headers (Bug #1216)
- [Minor] LDAP helpers search fixed to properly ask for no attributes
- [Minor] A sporadic segmentation fault when using ntlm authentication
fixed (Bug #1127)
- [Major] Segmentation fault on failed PUT/POST requests (Bug #1224)
- [Medium] Persistent connection mismatch on failed PUT/POST request
(Bug #1122)
- [Minor] WCCP easily disturbed by forged packets (Bug #1225)
- [Minor] Password management in ftp:// gatewaying improved (Bug #1226)
- [Major] HTTP reply data corruption in certain situations involving
reply headers split over multiple packets (Bug #1233)
|
|
|
|
|
|
|
|
operamotifwrapper to load the plugins.
Pointed out by Frank Benkstein in private email.
|
|
- Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740.
[Max Bowsher <maxb ukf.net>]
- mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170.
[Rici Lake <rici ricilake.net>]
- mod_proxy: Respect errors reported by pre_connection hooks.
[Jeff Trawick]
- --with-module can now take more than one module to be statically
linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,...
If the <modtype>-subdirectory doesn't exist it will be created and
populated with a standard Makefile.in. [Erik Abele]
- Fix the RPM spec file so that an RPM build now works. An RPM
build now requires system installations of APR and APR-util.
Remove some arbitrary moving around of binaries - the RPM now
maps to the ASF build of httpd.
[Graham Leggett]
- mod_dumpio, an I/O logging/dumping module, added to the
modules/expermimental subdirectory. [Jim Jagielski]
- mod_auth_ldap: Handle the inconsistent way in which the MS LDAP
library handles special characters. Problem report 24437.
[Jess Holle]
- Win32 MPM: Correct typo in debugging output. [William Rowe]
- conf: Remove AddDefaultCharset from the default configuration because
setting a site-wide default does more harm than good.
Problem report 23421. [Roy Fielding]
- Add charset to example CGI scripts. [Roy Fielding]
- mod_ssl: fail quickly if SSL connection is aborted rather than
making many doomed ap_pass_brigade calls.
Problem report 32699. [Joe Orton]
- Remove compiled-in upper limit on LimitRequestFieldSize.
[Bill Stoddard]
- Start keeping track of time-taken-to-process-request again for
mod_status if ExtendedStatus is enabled. [Jim Jagielski]
- mod_proxy: Handle client-aborted connections correctly.
Problem report 32443. [Janne Hietamäki, Joe Orton]
- Fix handling of files >2Gb on all platforms (or builds) where
apr_off_t is larger than apr_size_t.
Problem report 28898. [Joe Orton]
- mod_include: Fix bug which could truncate variable expansions
of N*64 characters by one byte. Problem report 32985. [Joe Orton]
- Correct handling of certain bucket types in ap_save_brigade, fixing
possible segfaults in mod_cgi with #include virtual.
Problem report 31247. [Joe Orton]
- Allow for the use of --with-module=foo:bar where the ./modules/foo
directory is local only. Assumes, of course, that the required
files are in ./modules/foo, but makes it easier to statically
build/log "external" modules. [Jim Jagielski]
- Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that
ldap authorization only modules have access to the util_ldap
user cache without having to require ldap authentication as well.
Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes]
- mod_auth_ldap: Added the directive "Requires ldap-attribute" that
allows the module to only authorize a user if the attribute value
specified matches the value of the user object. Problem report 31913
[Ryan Morgan <rmorgan pobox.com>]
- SECURITY: CAN-2004-0942 (cve.mitre.org)
Fix for memory consumption DoS in handling of MIME folded request
headers. [Joe Orton]
- SECURITY: CAN-2004-0885 (cve.mitre.org)
mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be
bypassed during an SSL renegotiation. Problem report 31505.
[Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton]
- mod_ssl: Fail at startup rather than segfault at runtime if a
client cert is configured with an encrypted private key.
Problem report 24030. [Joe Orton]
- apxs: fix handling of -Wc/-Wl and "-o mod_foo.so".
Problem report 31448 [Joe Orton]
- mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d.
[Jeff Trawick]
- mod_cache: CacheDisable will only disable the URLs it was meant to
disable, not all caching. Problem report 31128.
[Edward Rudd <eddie omegaware.com>, Paul Querna]
- mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale
cache responses. [Justin Erenkrantz]
- mod_rewrite: Handle per-location rules when r->filename is unset.
Previously this would segfault or simply not match as expected,
depending on the platform. [Jeff Trawick]
- mod_rewrite: Fix 0 bytes write into random memory position.
Problem report 31036. [André Malo]
- mod_disk_cache: Do not store aborted content. Problem report 21492.
[Rüdiger Plüm <r.pluem t-online.de>]
- mod_disk_cache: Correctly store cached content type.
Problem report 30278.
[Rüdiger Plüm <r.pluem t-online.de>]
- mod_ldap: prevent the possiblity of an infinite loop in the LDAP
statistics display. Problem report 29216. [Graham Leggett]
- mod_ldap: fix a bogus error message to tell the user which file
is causing a potential problem with the LDAP shared memory cache.
Problem report 31431 [Graham Leggett]
- mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz]
- Fix the re-linking issue when purging elements from the LDAP cache
Problem report 24801. [Jess Holle <jessh ptc.com>]
- mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz]
- Fix Expires handling in mod_cache. [Justin Erenkrantz]
- Alter mod_expires to run at a different filter priority to allow
proper Expires storage by mod_cache. [Justin Erenkrantz]
|
|
2005-01-06 Gisle Aas
Release 3.45
Fix stack memory leak caused by missing PUTBACK. Only
code that used $p->parse(\&cb) form was affected.
Fix provided by Gurusamy Sarathy
2004-12-28 Gisle Aas
Release 3.44
Fix confusion about nested quotes in <script> and <style> text.
2004-12-06 Gisle Aas
Release 3.43
The SvUTF8 flag was not propagated correctly when replacing
unterminated entities.
Fixed test failure because of missing binmode on Windows.
|
|
2004-11-05 Gisle Aas
Release 1.35
Documentation update.
Simplified uri_escape_utf8 implementation. No need to load the
Encode module. Contributed by Alexey Tourbin.
Work around bug in perl-5.6.0 that made t/query.t fail.
2004-10-05 Gisle Aas
Release 1.34
URI->canonical will now always unescape any escaped unreserved
chars. Previously this only happened for the http and https scheme.
Patch contributed by Eric Promislow
2004-09-19 Gisle Aas
Release 1.33
URI::file->canonical will now try to change the 'authority'
to the default one.
Fix heuristic test. Apparently www.perl.co.uk is no more.
2004-09-07 Gisle Aas
Release 1.32
Introduce $URI::file::DEFAULT_AUTHORITY which control what
authority string to use for absolute file URIs. Its value
default to "" which produce file URIs that better interoperates
with other implementations. The old mapping behaviour can be
requested by setting this variable to undef.
2004-06-08 Gisle Aas
Release 1.31
Added uri_escape_utf8() function to URI::Escape module.
Fixed abs/rel behaviour for sip: URIs. Fixed by
Ville Skyttä
Avoid croaking on code like $u->query_form(a => { foo => 1 }).
It will still not really do anything useful.
|
|
|
|
Ganglia provides a complete real-time monitoring and execution
environment that is in use by hundreds of universities, private and
government laboratories and commercial cluster implementors around the
world. Whether you want to monitor hundreds of computers in real-time
across a university campus or around the world, ganglia is for you.
The ganglia web frontend provides access to the data collected by the
monitoring core (parallel/ganglia-monitor-core) via the web.
|
|
This closes PR 26824. Approved by Johnny C. Lam.
|
|
lang/ruby but lang/ruby${RUBY_VER}.
|
|
Changes since 7.54u1:
Security
* Solved data URL issue described in Secunia Advisory SA13818
* Additional fixes for frame injection issue reported in Secunia Advisory
SA13253
Miscellaneous
* Improvements to handling of the must-revalidate directive.
* Solved stability issue in Japanese version.
UNIX specific
* Added extra warning dialog when opening .sh, .desktop or executables
directly from Web or from transfer manager with kfmclient exec. Addresses
issue reported in Secunia Advisory SA13447.
* Fixed crash when importing e-mail.
Also add a 'opera-distinfo' make target, which takes care to update
distinfo for all supported ports, which should significantly reduce
amount of necessary manual work on package updates.
|
|
Adding several official patches which fix security and critical problem.
o 2005-02-06 00:57 (Cosmetic)
Improve password handling in FTP gatewaying of ftp://user@host URLs
o 2005-02-04 11:41 (Minor) WCCP easily disturbed by forged packets
o 2005-02-04 00:33 (Medium)
Persistent connection trouble on failed PUT/POST requests
o 2005-02-04 00:12 (Major) Segmentation fault on failed PUT/POST request
o 2005-02-03 23:27 (Minor)
Sporadic segmentation fault when using ntlm authentication
o 2005-02-03 23:17 (Minor)
LDAP helpers sends slightly malformed search requests
o 2005-01-31 22:50 (Security issue)
Correct handling of oversized reply headers
|
|
|
|
|
|
|
|
caused erros while installing the binary package. Bump package revision
because of this.
|
|
0.12 include adapting to Spoon-0.21.
|
|
include updating the username on the screen immediately after the user
changes it.
|
|
adapting to Spoon-0.21.
|
|
include adding a 6-months option.
|
|
adapting to p5-Spoon-0.21.
|
|
adapting to Spoon-0.21.
|
|
include:
- Add archive if none for new page
- Move commit hook to super class
- Fix unix time to work for older stuff
|
|
the PKGREVISION to 1.
|
|
Noted by salo@ first and PR pkg/29181 later.
|
|
squid-2.5.STABLE7-response_splitting.patch was updated, so update distinfo
and DIST_SUBDIR. It seems that a patch to one more file was added.
* 2005-01-31 01:50 (Security issue)
Strengthen Squid from HTTP response splitting cache pollution attack
|
|
Bump PKGREVISION.
|
|
* 2005-01-28 23:16 (Security issue) Buffer overflow in WCCP recvfrom() call
Bump PKG_REVISION and now squid-2.5.7nb10.
|
|
|
|
- Merge some fixes from Ruby 1.8.2 bundled version.
Bump PKG_REVISION, ruby16-webric-1.3.1nb1.
|
|
Bump PKG_REVISION.
|
|
|
|
- * Fixed a possible attack (program abortion) by malicious web pages, which
contain huge values for <table> attributes "colspan" and "rowspan".
* Changed anchors, they are now tested to be unique, and removed properly,
when a widget tree is changed (e.g. another page is visited). Also added
HTML warnings.
Patches: Sebastian Geerken
- * Fixed two minor memory leaks (IO's Buf1Start & html's SPCBuf).
* Fixed handling of XML's "/>" tag-closing (e.g. <script ... />). BUG#514
* Removed obsolete code from IO/file.c.
* Added a few missing EINTR handlers in dpi.c.
* Orthogonalized the generic parser:
- Fixes memory leaks and widget state when recovering from bad HTML.
- Improves error detection and validation (needed by XHTML).
- Makes DOC tree generation possible (needed by CSS).
- Cleaner design of handling routines for bad HTML.
- Orthodox treatment of double optional elements (HTML, HEAD, BODY).
- Lots of minor code cleanups.
* Switched the dpi file server's design to pthreads (fixes a critical race).
* Avoided a crash when indexed GIF images lack a color map (BUG#647).
* Fixed a bug when the remote HTTP server sends no Content-Type and
the TCP packetizing splits the header from data (BUG#650).
* Returned the parser to the old whitespace "collapsing" mode
(this can be changed with the SGML_SPCDEL define in html.c).
* Fixed a memory leak for DwStyle (there was one leak per page).
Patches: Jorge Arellano
- * Fixed a large memory leak of thread specific resources. --Very important
Patch: Jorge Arellano, Livio Baldini
- * Removed warnings for pointer arithmetic and strict prototypes all
around the code (now it works under LP64 architectures).
* Made miscelaneous cleanups for LP64 architectures.
Patches: Jorge Arellano, Dieter Baron
- * Changed dpid's umask to 0077.
Patch: Jorge Arellano, Richard Zidlicky
- * Switched to g_vsnprintf (instead of vsnprintf).
Patch: Frank Wille
- * Updated a bit the README file.
Patch: Dieter Baron
- * Made a grammatical and typographical review of the whole documentation
in doc/. Also added some clarifications.
* Fixed a libpng detection problem (e.g., on CYGWIN). BUG#651
Patches: Roberto Sanchez
- * Fixed "id" and "name" attributes parsing logic.
* Improved the parsing algorithm for character entities. BUG#605
Patches: Matthias Franz
- * Fixed a security bug with uncertain data and a_Interface_msg().
CAN-2005-0012.
Patch: Tavis Ormandy
|
|
* Fixes:
- Fix documentation path issue (Todd).
- Backport MIME improvements from Drivel-HEAD (Todd).
- Fixed login crash (#164518) (Todd).
* Translation:
- Updated German translation (Frank Arnold).
- Updated Dutch translation (Reinout van Schouwen).
|
|
diff(1) shows that some default values have been changed.
Set DIST_SUBDIR and bump PKGREVISION.
|
|
security fix.
o 2005-01-21 12:10 (Minor)
Disable Path-MTU discovery on intercepted requests
o 2005-01-21 12:43 (Security issue)
Strengthen Squid from HTTP response splitting cache pollution attack
Bump package revision.
|
