| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
http://www.kde.org/info/security/advisory-20050420-1.txt
to fix untrusted code execution (CAN-2005-0754)
bump PKGREVISION
|
|
- Fix bad PID directory of squid binary introduced by previous pkgsrc.
- Update DIST_SUBDIR through DIST_STAMP since some of patch files
are updated.
- Fix error in doc/Makefile with nbmake.
- Newer patch (aufs improvement) aren't included now.
Bump PKGREVISION.
|
|
taya ... well really he said "I don't object your idea.")
This fixes a build bug when heimdal is detected but not buildlinked.
It is a known mozilla bug:
https://bugzilla.mozilla.org/show_bug.cgi?id=245467
I didn't put this in the mozilla/Makefile.common, because didn't test that
yet.
This issue probably only happens when using /usr as the LOCALBASE,
which is not really supported and maybe I am the only one to hit this
with pkgsrc.
Maybe later someone can consider adding a build option for GSSAPI,
but I don't know anything about it in regards to a web browser myself.
|
|
o 2005-04-23 01:38 (Minor Security)
Fix for CVE-1999-0710: cachemgr malicouse use
o 2005-04-22 20:48 (Cosmetic) PID file check fails when chrooting
o 2005-04-24 16:35 (Minor)
Make the use of the %m error page to return auth info messages
o 2005-04-22 20:21 (Minor)
Unrecognized cache-control directives are silently dropped
pkgsrc change.
- remove aufs from store I/O backend until it controlled by options.mk
frame work.
- remove patch-cd; it is covered by squid-2.5.STABLE9-transparent_port.patch.
Bump PKGREVISION.
|
|
o fix some off-by-one errors from <roland.illig@gmx.de>
o properly support nph- CGI
o make content maps case insensitive
o fix proto header merging to include the missing comma
o major source reorganisation; most features are in separate files now
o new -V flag that makes unknown virtualhosts use slashdir
from <rumble@ephemeral.org>
o HTTP/1.x protocol headers are now properly merged for CGI
|
|
*) mod_cache: Add CacheIgnoreHeaders directive.
*) mod_ldap: Added the directive LDAPConnectionTimeout to configure
the ldap socket connection timeout value.
*) Correctly export all mod_dav public functions.
*) Add a build script to create a solaris package.
*) worker MPM: Fix a problem which could cause httpd processes to
remain active after shutdown.
*) Unix MPMs: Shut down the server more quickly when child processes are
slow to exit.
*) Remove formatting characters from ap_log_error() calls. These
were escaped as fallout from CAN-2003-0020.
*) mod_ssl: If SSLUsername is used, set r->user earlier.
*) htdigest: Fix permissions of created files.
*) core_input_filter: Move buckets to a persistent brigade instead of
creating a new brigade. This stop a memory leak when proxying a
Streaming Media Server.
*) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid
hiccups from additional path information passed in non-utf-8 format.
|
|
explicitly, because it fails to detect them with default setting.
suggested by Todd Willey.
|
|
instead of using ':ts' modifier.
becase make of NetBSD-1.6.x doesn't have it.
suggested by Jeremy C. Reed.
|
|
|
|
application server environment.
|
|
make sure lib/mozilla-linux/plugins exists, even for binary packages.
Should fix moz-bin-* packages in bulk builds.
XXX: binary package still doesn't install quite a number of (empty)
directories that do get created with 'make install'.
|
|
|
|
o 2005-04-21 10:31 (Cosmetic)
Correctly read DOS/Windows formatted config files with CRLF as
line terminator
o 2005-04-20 21:55 (Minor) Unable to run "squid -k" when hostname cannot
be determined
o 2005-04-20 21:55 (Minor) fix transparent proxying when squid listens
on NATed non-80 port
o 2005-04-21 10:46 (Cosmetic) Missing newlines in debug statements
o 2005-04-20 21:36 (Cosmetic) Error template substitution for
authenitcated user name
Because of update of squid-2.5.STABLE9-2GB.patch, DIST_SUBDIR updated again.
|
|
- squid-2.5.STABLE9-LDAP_SUN_SDK.patch
- squid-2.5.STABLE9-2GB.patch
Bump PKGREVISION.
|
|
This is a security fix release.
Fixed vulnerabilities are follows:
MFSA 2005-33 Javascript "lambda" replace exposes memory contents
MFSA 2005-35 Showing blocked javascript: popup uses wrong privilege context
MFSA 2005-36 Cross-site scripting through global scope pollution
MFSA 2005-37 Code execution through javascript: favicons
MFSA 2005-38 Search plugin cross-site scripting
MFSA 2005-40 Missing Install object instance checks
MFSA 2005-41 Privilege escalation via DOM property overrides
|
|
* Add one more offcial patch:
- 2005-04-05 23:05 (Cosmetic) should syslog to daemon facility not local4
* One patch updated, so update DIST_SUBDIR through DIST_STAMP change.
* Add aufs to --enable-storeio configuration.
TODO: use <bsd.options.mk> frame work and allow to use
--enable-pf-transparent which is mutual exclusive parameter
with --enable-ipf-transparent.
|
|
|
|
|
|
|
|
share/htdig/common/root2word.db
share/htdig/common/word2root.db
with md5 checksums, because they get changed too often; use
@unexec ${RM} instead.
Bump PKGREVISION for thus fixed PLIST.
|
|
itself. Okayed by the maintainer, taya@.
|
|
|
|
|
|
new Acrobat 7 reader.
|
|
gets restarted when "/etc/rc.d/apache restart" is used. This fixes
PR pkg/24179 for the "apache" package.
Based on a similar change for the apache2 package.
Bump PKGREVISION.
|
|
gets restarted when "/etc/rc.d/apache restart" is used. This fixes
PR pkg/24179 for the "apache2" package.
|
|
|
|
|
|
been renamed to firefox-bin.
|
|
package to match.
There are no firefox gtk1 binary packages for linux any longer, so
no need to keep two different -bin packages around.
This way it also matches the non-bin firefox packages.
|
|
|
|
This is a security fix release.
Fixed vulnerabilities are follows:
MFSA 2005-33 Javascript "lambda" replace exposes memory contents
MFSA 2005-34 javascript: PLUGINSPAGE code execution
MFSA 2005-35 Showing blocked javascript: popup uses wrong privilege context
MFSA 2005-36 Cross-site scripting through global scope pollution
MFSA 2005-37 Code execution through javascript: favicons
MFSA 2005-38 Search plugin cross-site scripting
MFSA 2005-39 Arbitrary code execution from Firefox sidebar panel II
MFSA 2005-40 Missing Install object instance checks
MFSA 2005-41 Privilege escalation via DOM property overrides
|
|
the following security issues:
MFSA 2005-33 Javascript "lambda" replace exposes memory contents
MFSA 2005-34 javascript: PLUGINSPAGE code execution
MFSA 2005-35 Showing blocked javascript: popup uses wrong privilege context
MFSA 2005-36 Cross-site scripting through global scope pollution
MFSA 2005-37 Code execution through javascript: favicons
MFSA 2005-38 Search plugin cross-site scripting
MFSA 2005-39 Arbitrary code execution from Firefox sidebar panel II
MFSA 2005-40 Missing Install object instance checks
MFSA 2005-41 Privilege escalation via DOM property overrides
|
|
not available yet but it includes security fixes for e.g. SA14821.
Support for Solaris SPARC and x86 is not available due to lack of a
precompiled binary at this point of time.
|
|
|
|
to fix binary packages.
|
|
to fix binary packages.
|
|
* Bug-fixes and improvements
|
|
bump PKGREVISION.
fix PR pkg/29595
|
|
- added mkcert to help with certificate creation
|
|
|
|
conditionals and buildlink logic, and convert to standard DEPENDS
|
|
|
|
This is a maintenance release that in addition to over 70 non-critical
bug fixes addresses several security issues inside the exif and
fbsql extensions as well as the unserialize(), swf_definepoly()
and getimagesize() functions. All Users of PHP are strongly
encouraged to upgrade to this release.
Bugfix release
* Crash in bzopen() if supplied path to non-existent file.
* DOM crashing when attribute appended to Document.
* unserialize() float problem on non-English locales.
* Crash in msg_send() when non-string is stored without being serialized.
* Possible infinite loop in imap_mail_compose().
* Fixed crash in chunk_split(), when chunklen > strlen.
* session_set_save_handler crashes PHP when supplied non-existent object ref.
* Memory leak in zend_language_scanner.c.
* Compile failures of zend_strtod.c.
* Fixed crash in overloaded objects & overload() function.
* cURL functions bypass open_basedir.
PHP4 also doesn't bundle PEAR Net_Socket and Net_SMTP anymore now.
|
|
taken from the ap-ssl package (which is for apache 1.3.x).
|
|
Changes since 7.1 according to
http://wp.netscape.com/eng/mozilla/ns7/relnotes/7.html:
* Popup Window Controls have been improved to block mouseover pop-ups and
limit the number of pop-ups when popup window controls preference is set
to off.
* Password Manager allows you to display saved passwords.
* vCard support in Netscape Mail.
* Improvements to Palm Sync.
* Table Editing controls in Composer.
* New Macromedia? Flash 7 plugin for Windows.
* Improvements in browser rendering speed and application start-up.
* Improvements in standards support.
|
|
Fri Apr 1 10:20:14 JST 2005 sugi@nemui.org
* Include errno.h
Fri Apr 1 08:09:13 JST 2005 aredridel@nbtsc.org
* Report actual errors
Adds reporting of errors fcgi experiences. Credit to David Heinemier Hansson
for discovery.
Fri Apr 1 08:08:07 JST 2005 aredridel@nbtsc.org
* FHS Include Paths
Wed Mar 30 21:45:11 JST 2005 sugi@nemui.org
* 16k+request-memleak
fix memory leak when 16k+/reqest.
from http://enigo.com/projects/iowa/fcgipatch.html
Wed Mar 30 21:43:02 JST 2005 sugi@nemui.org
* fix-check_stream_error
Simple fix in CHECK_STREAM_ERROR for Potential DoS
see http://groups-beta.google.com/group/comp.lang.ruby/browse_thread/thread/f51e79974a454b70/54fe207411e9eb05
for details.
|
