| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
This update is a bug and security fix release. The following security
problem hasn't been fixed in "pkgsrc" before:
- CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when
parsing date-related headers.
|
|
to build bozohttpd.
* Use a custom do-install target to install the binary and the manpage.
* Replace the pre-build target with a subst framework class.
Bump the PKGREVISION to 1 now that we no longer build or install the
catman page.
|
|
|
|
to version 2.0.61.
This update is a bug and security fix release. The following security
problem hasn't been fixed in "pkgsrc" before:
- CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when
parsing date-related headers.
|
|
libcrypt.so and so just include <unistd.h> is enough to use crypt().
This doesn't work when the assumption fails. Since we always build
with SSL support in pkgsrc, just use the DES_crypt() from the OpenSSL
libraries.
|
|
and to support the "inet6" option instead.
Remaining usage of USE_INET6 was solely for the benefit of the scripts
that generate the README.html files. Replace:
BUILD_DEFS+= USE_INET6
with
BUILD_DEFS+= IPV6_READY
and teach the README-generation tools to look for that instead.
This nukes USE_INET6 from pkgsrc proper. We leave a tiny bit of code
to continue to support USE_INET6 for pkgsrc-wip until it has been nuked
from there as well.
|
|
|
|
The Pound program is a reverse proxy, load balancer and HTTPS front-end
for Web server(s). Pound was developed to enable distributing the
load among several Web-servers and to allow for a convenient SSL wrapper
for those Web servers that do not offer it natively. Pound is a very
small program, easily audited for security problems. It can run as
setuid/setgid and/or in a chroot jail. Pound does not access the
hard-disk at all (except for reading the certificate file on start,
if required) and should thus pose no security threat to any machine.
|
|
When the svn option is enabled (as it is per default), depend on
subversion-base instead of subversion (only the svn executable is
needed).
Bump PKGREVISION.
|
|
|
|
A Perl implementation of the Facebook API, working off of the
canonical Java and PHP implementations. By default it uses JSON::Any
to parse the response returned by Facebook's server. There is an
option to return the raw response in either XML or JSON.
|
|
Changes to squid-2.6.STABLE16 (5 Sep 2007)
- Test for sys/capability.h linux include file to avoid failing on
linux systems missing libcap
- Release private objects on cache rebuild
- Segfault in clientBuildReplyHeader when http->entry == NULL
- Bug #2072: digest_pw_auth fails when using plaintext passwords
- Bug #2073: assertion failed: client_side.c:4175: "buf != NULL ||
!conn->body.request on POST
- Adjust default pconn timeouts to avoid shutting down connection while
child sends request
- Bug #1980: cache_peer monitortimeout not working
- Bug #1882: Parent responses are not cached if sibling returns 504
- More squid.conf reordering to get the dependencies between options
sorted proper
Changes to squid-2.6.STABLE15 (31 Aug 2007)
- The select() I/O loop got broken by the /dev/poll addition
(2.6.STABLE14)
- Bug #2017: Fails to work around broken servers sending just the HTTP
headers
- Bug #2023: Compile error with old GCC 2.x or other ANSI-C compilers
before C99
- squid.conf.default updated and reorganised in more sensible groups
- correct and document the syslog access_log format
- Armenian error pages translation
- digest_ldap_helper usage help updated
- Bug #1560: ftpSendPasv: getsockname(-1,..): (9) Bad file descriptor
- Improve delay pools in low traffic environment by checking timeouts
at a steady 1 second interval even when there is not much activity
- Don't request authentication on transparently intercepted
connections
- Cleanup linux capabilities for tproxy
- Bug #2003: 'via' config directive doesn't affect response headers
- Bug #1902: Adds Numeric Hit and invalid request counters to IP Cache
- Add missing $|=1 to squid_db_auth
- Bug #2050: Persistent connection dropped if cache has no
Content-Length
- Verify the URL on memory cache hits
- Bug #2057: NTLM stop work in messengers after upgrade to 2.6.STABLE14
- Bug #1972: Squid sets peers to down state when they are in fact
working.
- potential segmentation fault in storeLocateVary()
- Bug #2066: chdir after chroot
- Windows port: Fix compiler warnings when building Squid as
application (not Windows service mode)
- Spelling correction of received
|
|
|
|
New in 3.0.14:
* Build fix (Shire)
* Don't hook the upload hook if APC is disabled (Rasmus)
* Local shadow cache support (Gopal)
* Avoid uneccessary loops over op_arrays for "known" auto-globals (Gopal)
* Fix apc_add() to overwrite timed out user entries (Rasmus)
* Fix double inclusion of files with conditional classes in php4 (Gopal)
* Allocator fixes to reduce fragmentation (Gopal)
New in 3.0.13:
* PHP 5.2 file upload progress tracking support (Rasmus)
* Pthread mutex and spin locks (Shire)
* Recursive zval support for apc_fetch/_store (Shire, Gopal)
* apc.stat_ctime flag for ctime checks (Rasmus)
* Multiple key fetches with apc_fetch (Shire)
* Canary checks for shm memory deallocation (Gopal)
* Add hooks for external optimizer (Shire)
* Obsolete and remove apc optimizer (Gopal)
* APC info changes - cache insert rate, hit and miss rates (Shire)
* Fix apc_load_constants (Gopal)
* Rewrite dump opcode code to use vld (Gopal)
* Use apc_[ewn]print functions for error reporting (Shire)
* Auto global fixes and refactoring (Gopal, Shire)
* Fix memory leaks in object serialization (Ilia)
* Memory cleanup code for destructor order (Gopal)
* Win32 build fixes (Ilia, Wez)
* ZTS and Php 4 build fixes (Bjori)
* Add apc_add() function (Rasmus)
* Add optional limited flag to apc_sma_info() (Rasmus)
Also fixes:
PR: 33424 by FUKAUMI Naoki
|
|
changes: bugfixes
(I see that 1.4.0 is out, but prefer to wait for .1.)
|
|
bug fixes
|
|
php5) to fix build on Mac OS X
compilation confirmed on Mac OS X 10.4.10 and NetBSD 4.99.19
PR: 32397 by MOCHIDA Shuji
|
|
|
|
|
|
|
|
Get rid of t/live/validator test. Too much JavaScript madness
for it to be a sane LWP test.
|
|
=== RELEASE 2.1pre30 ===
Mon Aug 6 04:01:05 MET 2007 PROGMAN:
Fixed security bug in pre29 (not in any previous versions):
special characters in URL could be passed to a shell when spawning
user viewer
Sat Jul 28 02:28:15 MET 2007 PROGMAN:
Fixed needlessly large selection boxes in graphics mode
Mon Jul 16 02:41:18 MET 2007 mikulas:
Release mouse when spawning OS shell or user viewers
|
|
|
|
swish-e.
|
|
|
|
|
|
* Fixed four crash bugs found using Mozilla's jsfunfuzz tool.
* Fixed a stability issue with Speed Dial.
Security
* Fixed a JavaScript security issue discovered with Mozilla's
jsfunfuzz tool. See our advisory.
|
|
and ease-of-maintenance.
|
|
|
|
of an emulated operating system. Instead of proliferating things like
SUSE_VERSION_REQD, NETBSD_VERSION_REQD, SOLARIS_VERSION_REQD, etc., a
package can say:
EMUL_REQD= suse>=9.1 netbsd>=2.0 solaris>=10
all in one, succinct line.
|
|
matches the native operating system. Use it in place of checking
whether EMUL_DISTRO matches "native-*" as EMUL_DISTRO is no longer
defined after bsd.prefs.mk is included.
This should fix PR pkg/36823 by Robert Elz.
|
|
result. Bump revision.
|
|
|
|
depend upon to supply the Linux shared libraries already tell the user
this. The JDK packages also depend on the corresponding JRE package,
so they don't need to show the same message -- keep the message with
the JRE packages instead.
|
|
Changes:
0.33 2006-09-26
- When setting up tests with Apache::Test, if the user has apache2 we
need to make sure that they have the mod_apreq2.so library
available. If they don't, the live tests will be skipped. Based on a
patch from Derek Price. RT #21552.
0.32 2006-09-18
- Work around a (maybe) bug in Apache2::Cookie. Set -value to undef to
in Apach2::Cookie->new causes it to return undef, rather than a
cookie with no value. This meant that delete_session() caused an
"attempt to call method of undefined value" error. Reported by Derek
Price. RT #20992.
|
|
- bugfixes
- FileFilter is using fork/exec directly, avoiding possible shell escape
issues
- proximity suppor tfor matchs
- fix sparc64 issues
- switch to GPL as license with a special link clause
- make use of strcoll for sorting
|
|
to-be-added-soon portability check.
|
|
useful for category Makefiles, as opposed to bsd.pkg.subdir.mk, which is
also relevant for the top-level directory. Adjusted the category Makefiles.
|
|
Serf 0.1.2 [2007-6-18, r1114]
Enable thread-safety with OpenSSL (Issue 19)
Teach serfmake to install headers into include/serf-0.
Be more tolerant when servers close the connection without telling us.
Do not open the connection until we have requests to deliver.
Fix serfmake to produce the library that corresponds to the minor version.
Fix a memory leak with the socket bucket (Issue 14)
Fix uninitialized branch in serf_spider (Issue 15)
Serf 0.1.1 [2007-5-12, r1105]
Add SSL client certificate support
Implement optimized iovec reads for header buckets
Fix up 'make clean' and 'make distclean' (Issues 9, 10)
Add SERF_VERSION_AT_LEAST macro
Remove abort() calls (Issue 13)
|
|
Bump revision.
|
|
Security fixes in this version:
MFSA 2007-27 Unescaped URIs passed to external programs
MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows
For more info, see http://www.mozilla.org/projects/seamonkey/releases/seamonkey1.1.4/
|
|
The main goal of the 0.96 release is to cleanup and stabilise the
features from 0.95.
Incompatible changes:
- constraint names changed in some cases, this can effect manage.py
reset on old databases
- some names in manage.py changed
- backslash escaping is done more consistently
- ENABLE_PSYCO is gone
Important changes:
- merge of newforms
- URLconf takes normal callables
- new test framework
- passwords for users can be entered as normal text in the admin
interface, no need to hash manually
In addition: dropped py-setuptools dependency.
|
|
- Support gzip compression of XHTML pages using the correct MIME type.
- Deprecate WSGI_SCRIPT_NAME and scriptName in scgi_base.
- Update servers to default to an empty QUERY_STRING if not present in
the environ
- Update gzip.py: compresslevel -> compress_level
- Change intra-package imports into absolute imports.
- Add forceCookieOutput attribute to SessionService to force Set-Cookie
output for the current request.
- Add UNIX domain socket support to scgi, scgi_fork, scgi_app.
- Add flup.client package which contains various WSGI -> connector
client implentations.
- Change mime-type matching algorithm in GzipMiddleware.
- Add cookieAttributes to SessionService to make it easier to customize
the generated cookie's attributes.
Switch to use the common egg framework and mark as DESTDIR safe.
|
|
- without-x doesn't make sense, remove option
- depend on libiconv and libidn
- quarantine to prevent changes to the normal LOCALEDIR -- this is
a stupid, non-standard version of gettext for no good reason
- fix mremap on NetBSD
Upstream changes:
- various crashes fixed
- fix use after free
- fix large file support for FTP listenings
- automatic HTML detection
Submitted by Blair Sadewitz, consider switching to links, please.
|
|
|
|
|
|
Linux kernel emulation <= 2.0.38. Also ensure that /lib is in
LD_LIBRARY_PATH so that the opera binary can find /lib/libpthread.so.0
in ${EMULDIR} and not NetBSD's /usr/lib/libpthread.so.0.
Bump the PKGREVISION to 1.
|
|
2007-07-31 Gisle Aas
Release 5.807
Apply patch correction from CPAN RT #26152
More laxed t/live/validator test.
|
