| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
websites
The primary purpose of whisker is to be a URL scanner, which is
used to search for known vulnerable CGIs on websites. Whisker does
this by both scanning the the CGIs directly as well as crawling the
website in order to determine what CGIs are already currently in
use.
Submitted by adrianp@stindustries.net in pkgsrc-wip
|
|
|
|
|
|
|
|
fixes PR pkg/20986
|
|
|
|
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0132
- file descriptor leak to child process (i.e. cgi)
|
|
Changes:
arts
* Several memory corruption fixes.
kdelibs
* kdialog: Fix screen numbering problem for centerOnScreen() static method
* kprogress: Fix math problem in displaying correct percentage for large
numbers
* kio_http: Fix data processing for webdav(s) listing of directories and files
* kate: Many small bugfixes, including:
+ Fixed code completion drop-down box position
+ Fixed "wrap cursor disabled" bugs
+ Fixed vertical scrollbar middle mouse behaviour
+ Fixed remove whitespace feature
+ Now clears the redo history when it is irrelevant
+ Fixed crash after starting up with a non-existant directory in the file
selector history
* kparts: Fix extension of transparently downloaded files, this fixes ark
(used to display temp file instead of archive content)
* klauncher: Fixed support for "Path=" entry in .desktop files. This entry
can be used to specify a working directory.
* kio: Don't let ChModJob's -X emulation interfere with mandatory file locking.
* kdeui: Fix for alternate background coloring in Konqueror list views.
* kdeui: Fix to prevent an event loop in conjunction with Qt 3.1.2.
* kio/bookmarks: Properly handle multiple shown bookmarks with the same URL;
fixes crash on exit in Konqueror when bookmarkbar is on and some bookmarks
points to the same place
* kstyles: Handle focus indicators on label-less checkboxes better
* kdeprint: Don't freeze when there is no route to the selected CUPS server
* SSL: add support for OpenSSL 0.9.7
* SSL: ADH ciphers are now explicitly disabled in all cases
* SSL: new CA root certificate added
* Several Xinerama related fixes
* QXEmbed fixes for various situations that don't handle XEMBED well
* Java on IRIX with SGI 1.2 VM is fixed
* khtml: Several major bugfixes, partially incorporated fixes from Safari as well.
kdeaddons
kdeadmin
* Linux Kernel Configurator: Add details about the lightbulb icon's meaning
* Linux Kernel Configurator: Support for more incorrect kernel configuration
files
kdeartwork
kdebase
* kcmshell: Restored backwards compatibility wrt KDE 3.0 module names
* klipper: Escape "&" everywhere.
* konsole:
+ Removed "get prompt back"-hacks, don't assume emacs key shell bindings.
+ Fixed usage of background images with spaces in the filename.
+ Profile support fixes (disabled menubar etc.)
+ Bookmarks invoked from "Terminal Sessions" kicker menu now set correct
title.
+ Fixed a problem with the "Linux" font that prevented it from being used
with fontconfig.
* kdesktop: Made desktop menus pop up in unused Kicker space work.
* kicker: Fixed empty taskbar sometimes showing scroll buttons.
* konqueror:
+ Various startup performance improvements
+ Fix crash when sidebar tree expands hidden directory
+ Fix crash when config button hidden from config button's menu
+ Extensive fixes to Netscape plugins, fixing crashes and plugin support
+ Changes to default preview settings, making the defaults safer on various
platforms
* Java configuration module: Make it possible to properly configure Java in
all cases
* Previews: Fixed a privacy issue where previews of HTML files could access
files or hosts on the network.
kdeedu
* KStars:
+ Fixed bug #51708: No longer exits if starting position is below horizon
(only affected some systems)
+ Fixed bug #52205: Country of Lhasa is China, not Tibet.
+ Fixed too-narrow coordinates field in statusbar.
+ Fixed bug in "length of day" calculator module; it now properly accounts
for latitude and longitude
kdegames
* Atlantik: Many small bugfixes, including:
+ Better handling of incoming messages
+ Fixed token animation
* kbackgammon: Common crash fix.
kdegraphics
* KIconEdit: Fix the ellipse/circle tool not to leave any "holes" in the
drawings
* Kooka: Some UI crashes fixed
* KViewShell: Default paper size is fixed
* KGhostView: Fixed wheel-mouse scrolling
kdemultimedia
* KsCD:
+ Stopped KsCD from pausing after tracks in random mode
+ Correctly associate extra CDDB information with tracks
+ Support non-Latin encodings properly in CDDB entries and elsewhere
+ Proper systemtray behaviour
+ Updated key accel code to avoid depricated calls
* Movie previews have been removed due to severe unresolved stability problems
kdenetwork
* Desktop Sharing server (krfb):
+ fix problems on X11 servers with 8 bit depth
+ fix problems on X11 servers with big-endian framebuffer
+ allow X11 servers without XShm (thin clients). Warning: requires a lot
of bandwidth
+ remove read timeouts. This should solve problems with some clients that
got disconnected after a minute of inactivity (but increases the time to
detect dead clients)
+ fix problem with clients that support both RichCursor and SoftCursor
encodings (like krdc from HEAD)
* Desktop Sharing client (krdc):
+ fix: when an error occurred in fullscreen krdc did not restore the
original resolution
+ fix: krdc stopped to repaint the framebuffer after a disconnect while
the error dialog was displayed
+ the quality setting in medium quality mode has been increased because
the original setting looked too bad with Keramik
kdepim
* KOrganizer bug fixes:
+ Use correct default duration for events crossing a day boundary (#53477).
+ Correctly save category colors (#54913).
+ Don't show todos more than once in what's next view.
+ Include todos in print output of month view (#53291).
+ Don't restrict maximum size of search dialog (#54912).
+ Make cancel button of template selection dialog work (#54852).
+ Don't break sorting when changing todos by context menu (#53680).
+ Update views on changes of todos directly in the todo list (#43162).
+ Save state of statusbar (#55380).
* knotes: Escape "&" in note titles
kdesdk
* Cervisia:
+ Fixed line break in protocol view
+ Fixed timestamp for files that are not in cvs (#55053)
+ Fixed handling of Cervisia's options like 'Update Recursively' when run
as embedded part in konqueror (#55665)
kdetoys
* kworldclock: Fixed that all clocks show the same time.
* kweather: Made it work again with non-english locales. (#52147)
* kweather: Prevent KWeather from looping and freezing Kicker when not
connected to the internet.(#49191)
kdeutils
* klaptopdaemon: Fix serious stalling problems on GNU/Linux with ACPI
* kcalc: Now a KMainWindow instead of a KDialog to fix various UI
inconsistencies
* kdf: Support escapes in fstab
quanta
* Bugfixes:
+ Allow resizing of the main window even with large user toolbars [#53230]
+ Insert valid DTD definitions [#53274]
+ Honor the View Default settings from Settings->Configure Editor [#53569]
+ Be less braindead regarding the Show DTD Toolbar setting [#53739]
+ Be able to select also directories in tag dialogs [#54819]
+ Do not complain about text files being binary ones on a system with
broken mimetypes [#54924]
+ Bring up the "File Changed" dialog only, when the file content has
changed[#55678]
+ Select Tag Area behaviour fixed for optional tags
+ Insert non-translated string in CSS code parts
+ Insert "border-top", "border-right", etc. correctly in CSS
+ Don't quote the script line more than once in the action configuration
dialog
+ Memory leak fixed: editor parts were not deleted when a file was closed
+ Fix insertion of "img" tags in HTML documents
+ Upload/rescan project/add to new project tree view behaviour fixed
+ Fix renaming of file in the Project Tree, when a file with the new name
was already present in the project
+ Rename only what has to be renamed in the project and enable project
saving after a rename
+ Use the correct encoding for newly created files
+ Saving of Author and E-Mail project options was broken in some cases
+ Fix the numbering of new documents
+ Fix the execution of actions
+ Fix crash when deleting an action
+ Insert valid single tags from the toolbar
* Enhancements:
+ Show the tag attributes (Alt-Down) menu lower than the current line
+ "Insert in cursor position" for script actions replaces the selection if
there was some text selected
+ New DCOP interface (WindowManagerIf) added to enable the modification of
the opened documents from a script
+ DTD for Quanta tags (DTD definition) added
+ XHTML 1.0 Strict DTD added
|
|
curses can build this, too. (Makes this build under Linux, for example.)
|
|
|
|
|
|
|
|
|
|
also using Xft2/fontconfig
|
|
|
|
|
|
|
|
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1396
(Patch obtained from RedHat's php-4.2.2-8.0.7.src.rpm.)
Addresses PR pkg/20912 by Todd Vierling.
|
|
bsd.pkg.install.mk.
|
|
Changelog
* Secunia Security fix (redirect exploit fix)
* Fixes in Xft library loader
* Fix for match failures in XftConfig when font size was involved
in the conditions. Now it should be possible to e.g. disable anti-aliasing
for certain font sizes.
|
|
the suse/Makefile.application file doesn't include it for us anymore.
|
|
|
|
Phoenix is a redesign of the Mozilla browser component, similar to Galeon,
K-Meleon and Chimera, but written using the XUL user interface language
and designed to be cross-platform.
This package provides a simple way to track nightly Linux builds of
phoenix.
|
|
rather
make all packages that use linux emulation include bsd.pkg.mk as the
last files just like any normal package.
|
|
pkgsrc change: install some supplemental documents.
Changes to squid-2.5.STABLE2 (Mars 17, 2003):
- Contrib files added back to the distribution
- Several compiler warnings fixed when using --disable-ident or
--disable-http-violations
- authentication can now be used in most access controls, but
must in most cases first be enforced in http_access to force
the user to authenticate.
- cleanups in the developer bootstrap.sh process when preparing
the sources.
- several squid.conf.default documentation updated to correctly
refer to the current names when refering to other directives
- authenticate_ip_ttl documentation updates
- several assertion faults and segmentation violations corrected
- the RunCache/RunAccel and squid.rc scripts updated to refer to
the squid binary in sbin rather than the old bin location.
- squid_ldap_auth command line processing fixes when specifying
the LDAP server last on the line instead of -h option
- aufs data corruption bugfix
- aufs performance improvement for low traffic systems
- aufs stability improvements
- external_acl corrected to properly deal with quoted strings
- WCCPv1 bugfix to make sure the router accepts the hash assignments
- "Total accounted memory" now correctly reported in cachemgr
- several small memory leaks (mostly reconfigure related)
- new squid.conf option to allow GET/HEAD requests with a request
entity
- "make uninstall" no longer removes squid.conf
- cachemgr.cgi now uses POST to avoid having the cachemgr password
logged in the web server logs
- authentication schemes which are known to not be proxyable are now
filtered out from forwarded server replies to avoid that the clients
tries to use such schemes when we know for a fact it won't work
- spelling corrections in various error messages
- now possible to define acl values with spaces in them
by using the "include file" feature
- squid_ldap_group updated to 2.10 to fix compilation issues with
recent (and older) OpenLDAP libraries and to make the helper deal
correctly with true LDAP groups by first looking up the user DN.
- Some internal code cleanups
- now verifies that programs etc exists iside the chroot directory
when using chroot_dir. No longer neccesary to set up a split view
environment where the same paths works both inside the chroot and
outside just to convince Squid that the files is actually there..
- improved memory usage reporting
- --disable-hostname-checks configure option
- no longer ignores double dots in host names. Any hostname with
double dots is now rejected as invalid.
- log_mime_hdrs no longer logs garbage if very long headers
are seen.
- 'select_fds_hist' object added to cachemgr 'histogram' output
- pid file now unlinked when squid has really shut down, not
immediately when the shutdown request is received. This allows
the pid file to be monitored to determine when Squid has shut down
properly
- correct authentication scheme setups on some platforms or compilers
- several squid.conf.default documentation updates to remove references
to renamed or replaced directives by changing them to their current
names.
- the SSL reverse proxy support updated to allow building with
OpenSSL 0.9.7 and and later.
- Corrected a minor performance problem while processing HEAD replies
from various broken web servers not sending a correct HTTP reply
- time acls can now specify multiple times in the same acl name, like
most other acl types.
- winbind helpers updated to match Samba-2.2.7a and should
work with Samba-2.2.6 or later (required). For compability with
older Samba versions A new configure option --with-samba-sources=...
has been added to allow you to specify which Samba version the
helpers should be built for if different than the above versions.
- Squid MIB definition syntax correction to work better with newer
(and older) SNMP tools.
- Fixed access.log format when logging "error:invalid-HTTP-ident" on
requests where parsing the HTTP identifier (HTTP/1.0) failed.
- "make distclean" no longer removes the icons, this avoids the
dependency on "uudecode" to rebuild Squid after "make distclean"
- User name returned by external acl lookups (external_acl_type)
is now available as "ident" in later acl checks in addition to
the logging in access.log.
- Incorrect behaviour of Digest authentication partly corrected - it
will not handle sessions, but will always enforce password
correctness.. (patch submitted by Sean Burford).
- Issue with persistent connections and PUT/POST request corrected
|
|
|
|
|
|
- Recognises Safari and Camino browsers.
- New LOGFORMAT specification %D (processing time in microseconds).
- Understands %A and %D in APACHELOGFORMAT.
|
|
Many minor new features (at least nothing major struck me)
and lots of bug fixes (details: http://www.w3.org/Amaya/User/New.html).
pkg: now uses GTK instead of Motif.
|
|
Noted by Takeshi Nakayama in PR 20734.
|
|
|
|
Changes:
o Fix posible obscure buffer overflow bug in DNS resolver code
o Added additional extended character fixes
o Let code accept partial content response codes along with 200's
o Added code to catch blank hostnames (yes, they have been found!)
Will convert them into 'Unknown'
|
|
fragment really wants to (like php4-apc).
Closes PR 20293 by Soren Jacobsen.
|
|
Closes PR 20023 by Sergey Svishchev according to his suggestions.
|
|
support and IPv6; threads are now a must.
Patch provided in PR pkg/20672 by Quentin Garnier.
|
|
What's new from release notes
* Mozilla Mail has junk-mail classification. With some initial
"training" the client can identify and segregate spam messages from
good messages. To see more about Mozilla's junk-mail classification,
visit the Mozilla Spam Filtering page.
* Newsgroup filters have been implemented.
* An initial implementation of Mozilla Midas, rich text editing
controls, has landed in Mozilla for 1.3. See the Midas page for more
information.
* Image auto sizing allows a user to toggle between full-sized images
and images sized to fit the browser window. To give it a try, load a
large image into the browser window or size the window to be much
smaller. Now clicking on the image will alternate between auto-sized
and full-sized. The feature can be disabled (or enabled) from the
Appearance panel in Preferences.
* Users can now "dynamically" switch profiles. To give it a try, from
the tools menu select "Switch Profile..."
* Find as you type, formerly known as type ahead find, has a new
preferences panel (Advanced: Keyboard Navigation).
* When installed, Chatzilla now has a normal Mozilla preferences panel.
* Mozilla 1.3 also includes fixes for performance, standards
compliance and site compatibility.
* Mozilla has a new splash screen. We already know. Please don't
report this to Bugzilla. Thanks
|
|
|
|
Galeon 1.2.9 is a maintainance release on the stable branch
(for gnome 1.4 and mozilla compiled for gtk 1.2.x). It adds
compatibility with mozilla 1.3 final and fixes the c++ abi
compatability wrappers to actually work properly.
|
|
|
|
Main changes since 2.0:
Add various translations
Add a preference to allow maintenance ops with no confirmation screen
Allow setting the number of columns in the summary screen as a user
preference (Brian Keifer <brian@valinor.net>).
Make text, icon, or both menus a user preference
Add a Horde preferences screen, and a preference to refresh the summary
screen.
Add text/enriched MIME_Viewer
See share/doc/horde/CHANGES for details.
|
|
What's new from release notes
* Mozilla Mail has junk-mail classification. With some initial
"training" the client can identify and segregate spam messages from
good messages. To see more about Mozilla's junk-mail classification,
visit the Mozilla Spam Filtering page.
* Newsgroup filters have been implemented.
* An initial implementation of Mozilla Midas, rich text editing
controls, has landed in Mozilla for 1.3. See the Midas page for more
information.
* Image auto sizing allows a user to toggle between full-sized images
and images sized to fit the browser window. To give it a try, load a
large image into the browser window or size the window to be much
smaller. Now clicking on the image will alternate between auto-sized
and full-sized. The feature can be disabled (or enabled) from the
Appearance panel in Preferences.
* Users can now "dynamically" switch profiles. To give it a try, from
the tools menu select "Switch Profile..."
* Find as you type, formerly known as type ahead find, has a new
preferences panel (Advanced: Keyboard Navigation).
* When installed, Chatzilla now has a normal Mozilla preferences panel.
* Mozilla 1.3 also includes fixes for performance, standards
compliance and site compatibility.
* Mozilla has a new splash screen. We already know. Please don't
report this to Bugzilla. Thanks
|
|
|
|
Bump PKGREVISION.
|
|
2003-01-18 Sean M. Burke <sburke@cpan.org>
Release 3.17 -- minor bugfix
HTML::Element : Making as_HTML('',...) work just like
as_HTML(undef,...). Also fixing as_XML's docs to remove mention of
an unimplemented feature (specifying what characters to escape).
2002-11-06 Sean M. Burke <sburke@cpan.org>
Release 3.16 -- just fixing a doc typo.
2002-11-06 Sean M. Burke <sburke@cpan.org>
Release 3.15 -- a few new features.
Added the aliases "descendents" and "find" to HTML::Element.
Added a new method "simplify_pres" to HTML::Element.
2002-10-19 Sean M. Burke <sburke@cpan.org>
Release 3.14 -- minor bugfix
Just fixes a few problems in HTML::Element with the number_lists
method.
2002-08-16 Sean M. Burke <sburke@cpan.org>
Release 3.13 -- basically a bugfix version
It turns out that 3.12 had a hideous HTML::TreeBuilder bug that
made the whole thing damn near useless. Fixed.
Many many thanks to Michael Koehne for catching this!
Wrote t/parse.t, to catch this sort of thing from happening again.
Fixed a bug that would treat <td> outside any table context
as <tr><table><td> instead of <table><tr><td>
2002-07-30 Sean M. Burke <sburke@cpan.org>
Release 3.12
Added as_trimmed_text method to HTML::Element, as described
(prophesied?) in the fantabulous new book /Perl & LWP/.
Bugfix: fixed unshift_content when given a LoL. (_parent wasn't
getting set right.)
HTML::Element and HTML::TreeBuilder now enforce at least some
minimal sanity on what can be in a tag name. (Notably, no spaces,
slashes, or control characters.)
Semi-bugfix: $element->replace_with(...) can now take LoLs in its
replacement list.
Bumped HTML::Element version up to 3.12 (right from 3.09)
Semi-bugfix: as_XML now doesn't use named entities in its return
value -- it always uses numeric entities.
Added behavior: new_frow_lol can now do clever things in list
context.
HTML::Tree -- added blurb for /Perl & LWP/
HTML::TreeBuilder -- added blurb for /Perl & LWP/
Also added a few tweaks to do better with XHTML parsing.
Added guts() and disembowel() methods, for parsing document fragments.
TODO: desperately need to add tests to t/
|
|
new features and bugfixes. This version is part of the GNOME 2.2 platform.
|
|
|
|
Makefiles simply need to use this value often, for better or for
worse.
(2) Create a new variable FIX_RPATH that lists variables that should
be cleansed of -R or -rpath values if ${_USE_RPATH} is "no". By
default, FIX_RPATH contains LIBS, X11_LDFLAGS, and LDFLAGS, and
additional variables may be appended from package Makefiles.
|
|
changes since bozohttpd 20021106:
o deprecate -r flag; make this the default and silently ignore -r now
o add support for file extentions to call CGI programs (from lukem)
o add dynamic support to add new content map entries, allowing both
new file types and non /cgi-bin CGI programs to be run with the
new -C "suffix cgihandler" and -M "suffix type encoding encoding11"
options
o in -b mode, set the http date after accept() returns, not before we
call accept().
o in -b mode, bind all addresses found not just the first one
o unsupport old hostname API
o in -b mode, set the SO_REUSEADDR socket option (lukem)
o allow -x (index.html) mode to work with CGI handlers
|
|
|
