| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
2009-02-07 John J Lee <jjl@pobox.com>
* 0.1.11 release.
* Fix quadratic performance in number of .read() calls (and add an
automated performance test).
|
|
KDE 4.3.2 brings a nice number of bugfixes, some critical, some just
fixing small annoyances:
* Many crashers have been fixed in KDE's core libraries, bringing more
stability to all applications
* KWin's window compositing effects have been further stabilized by fixing
a number of bugs in effect plugins such as the famous coverswitch window
switcher
* The biggest number of bugs for this release has been fixed in KMail,
KDE's email client, making it more reliable and usable by correcting a
number of display issues
* Saving files over themselves works again in Okular, KDE's document viewer
|
|
* parentlinks: Add has_parentlinks template parameter to allow styling
the toplevel index differently etc.
* img: Correct bug in image size calculation code.
* img: Fix dependency code for full size images.
* toggle, relativedate: Support templates that add attributes
to the body tag.
* Support RPC::XML 0.69's incompatible object instantiation method.
* mirrorlist: Display nothing if list is empty.
* Fix a bug that could lead to duplicate links being recorded
for tags.
* Optimize away most expensive file prune calls, when refreshing,
by only checking new files.
|
|
* Norwegian translation files are updated.
|
|
|
|
|
|
* Update Dutch, Russian, Swedish and Ukrainan langage files.
|
|
This packages contains hacked gettext and using it.
Bump PKGREVISION.
|
|
Version 2.7.5 (2009-10-04)
--------------------------
- Fixed issue with newsletter subscriptions not being activated (#1036)
- Fixed issue with events spanning multiple months not displaying correctly (#1045)
- Optimized function trimsplit() to handle large amounts of data (#1001)
|
|
in CVE-2009-3095.
|
|
|
|
OKed during freeze by wiz and agc
|
|
* pkgsrc change: now typolight27 dosen't depends on php-calendar as before.
==========================
TYPOlight webCMS CHANGELOG
==========================
Version 2.7.4 (2009-09-30)
--------------------------
- Added replacement for unixtojd()
- Added insert tag "page_language" (#1003)
- Added option to choose root title in breadcrumb menus (#993)
- Added a safer and more reliable way to determine the HTTP host (#1002)
- Fixed issue with file tree path not overriding filemounts (#1020)
- Fixed issue with compressed JavaScripts having the wrong content type (#1013)
- Fixed issue with default options of checkboxes/radio buttons not being set (#998)
- Fixed issue with image resizing not using the Safe Mode Hack (#1016)
- Fixed issue with country/language sorting not being binary-safe (#983)
- Fixed issue with parseDate() not checking for valid timestamps
- Fixed issue with users not being authenticated on error 404 pages
- Fixed issue with new pseudo entities not working on cached pages
- Fixed issue with news archive module overriding the headline
- Fixed issue with news archive menu not supporting yearly archives
- Fixed a few minor issues
|
|
least bulk builds are not left retrying the distfile for hours and hours.
|
|
|
|
* Add Croatian(hr)
* Update Catalan(ca), German(de), Greek(el), Hungarian(hu), Italian(it),
Japanese(ja), Dutch(nl), Portuguese(pt-pt), Swedish(sv), Ukrainian(uk)
and Chinese(zh-tw).
|
|
pkgsrc change: add LICENSE.
Drupal 6.14, 2009-09-16
----------------------
- Fixed security issues (OpenID association cross site request forgeries,
OpenID impersonation and File upload), see SA-CORE-2009-008.
- Changed the system modules page to not run all cache rebuilds; use the
button on the performance settings page to achieve the same effect.
- Added support for PHP 5.3.0 out of the box.
- Fixed a variety of small bugs.
|
|
pkgsrc change: add LICENSE.
Drupal 5.20, 2009-09-16
-----------------------
- Avoid security problems resulting from writing Drupal 6-style menu
declarations.
- Fixed security issues (session fixation), see SA-CORE-2009-008.
- Fixed a variety of small bugs.
|
|
It is bug fix release and this is a leaf package.
2009-09-28 Ingmar Schlecht <ingmar@typo3.org>
* Release of TYPO3 4.2.9
2009-09-20 Francois Suter <francois@typo3.org>
* Fixed bug #11995: Prompt for keyboard input does not get displayed in CLI scripts
* Fixed bug #11224: Special menu directory only renders 1st level if special.value is a mount point (Thanks to Xavier Perseguers)
2009-09-19 Rupert Germann <rupi@gmx.li>
* Fixed bug #11986: dynamic update of translation status im EM is broken
2009-09-17 Rupert Germann <rupi@gmx.li>
* Fixed bug #9270: Editors can´t undelete records in history (thanks to Christian Hernmarck)
2009-09-15 Stanislas Rolland <typo3@sjbr.ca>
* Fixed bug #11915: htmlArea RTE: superfluous span tags in content after server-based cleaning on paste operation
* Updated htmlArea RTE version to 1.7.12 (branch TYPO3_4-2)
* Follow-up to bug #11946: htmlArea RTE: reference was made to context menu item after context menu was closed
2009-09-13 Stanislas Rolland <typo3@sjbr.ca>
* Fixed bug #11847: htmlArea RTE displays empty editing area in Opera 10
* Fixed bug #11946: htmlArea RTE: table properties editing dialogue windows loose focus after opening in IE8
2009-09-01 Oliver Hader <oliver@typo3.org>
* Fixed bug #11845: Typo in a CLI error mesage: suue -> sure (thanks to Oliver Klee)
2009-08-26 Michael Stucki <michael@typo3.org>
* Fixed bug #11731: ENABLE_INSTALL_TOOL file check in yellow box does not check the file age (thanks to Moreno Feltscher)
2009-08-19 Michael Stucki <michael@typo3.org>
* Fixed bug #11716: Install Tool always sets TYPO3_CONF_VARS[FE][disableNoCacheParameter] upon save
2009-08-14 Michael Stucki <michael@typo3.org>
* Fixed bug #8968: DBAL incompatible SQL in "impexp" extension (thanks to Marc Bastian Heinrichs)
2009-08-12 Michael Stucki <michael@typo3.org>
* Follow-up to bug #11513: Shorten one ident field which is known to be too long (solved the issue on those setups where the DB is not updated)
* Fixed bug #11513: cache_hash table could not be filled because information field (ident) was too short (thanks to Ingo Schmitt)
2009-08-02 Oliver Hader <oliver@typo3.org>
* Fixed bug #10769: Wrong encoded email header (thanks to Ivan Kartolo)
2009-07-20 Ingo Renner <ingo@typo3.org>
* Fixed bug: #11006: Tooltip for page path in Page/List module is missing (thanks to Steffen Gebert)
2009-07-19 Oliver Hader <oliver@typo3.org>
* Fixed bug #6875: IRRE - Sorting of child records is inverted on moving parent record to different page (thanks to Nabil Saleh)
2009-07-09 Martin Kutschker <masi@typo3.org>
* Fixed bug: same error message is used twice for different errors
2009-07-08 Oliver Hader <oliver@typo3.org>
* Fixed bug #11412: Using typolinkLinkAccessRestrictedPages does not take different domain names into account
|
|
Pkgsrc force to not install egg-info, so trac can't find docutils module.
|
|
module, depends it misc/php-calendar.
Bump PKGREVISION.
|
|
- Bug 2777: Various build issues on OpenSolaris
- Bug 2773: Segfault in RFC2069 Digest authentication
- Bug 2747: Compile errors on Solaris 10
- Bug 2735: Incomplete -fhuge-objects detection
- Bug 2722: Fix http_port accel combined with CONNECT
- Bug 2718: FTP sends EPSV2 on IPv4 connection
- Bug 2648: stateful helpers stuck in reserved
- Bug 2570: wccp2 "Here I Am" announcements not sent in memory-ony mode
- Bug 2510: digest_ldap_auth uses incorrect logic with TLS
- Bug 2483: bind() called before connect()
- Bug 2215: config file line length limit (extended to 2 KB)
- Support Accept-Language: * wildcard
- Support autoconf 2.64
- Support TPROXY for IPv6 traffic (requires kernel support)
- Support TPROXY cache cluster behind WCCPv2
- Correct ESI support to work in multi-mode Squid
- Add 0.0.0.0 as an to_localhost address
- DiskIO detection fixes and use optimal IO in default build.
- Correct peer connect-fail-limit default of 10
- Prevent squidclient sending two Accept: headers
- ... all bug fixes from 3.0.STABLE19
- ... and many more documentation fixes
Approved by Thomas Klausner.
|
|
* Add complete French basewiki and underlays translation from the
Debian French l10n team, including Philippe Batailler, Alexandre
Dupas, and Steve Petruzzello.
* Expand banned_users; it can now include PageSpecs, which allows
banning by IP address.
* underlay: Also allow configuring additional directories to search
for template files in.
* Fix parsing web commits from ipv6 addresses.
* Add genwrapper hook, that can be used to add code into the C wrapper.
* cvs: Yeah, ikiwiki even supports CVS now. Plugin contributed by
Amitai Schlair.
* Updated Czech translation from Miroslav Kure. Closes: #546223
* rsync: New plugin that allows pushing the destdir to a remote host
via rsync or similar. Thanks, Amitai Schlair.
* auto.setup, auto-blog.setup: Fix sanitization of entered wikiname.
Closes: #547378
Updated during the freeze because it's a leaf package and the bugfixes
and feature additions are desirable (if I may say so myself).
|
|
Cherrier via e-Mail and bump revision.
|
|
devel/p5-Class-MOP. A late detected incompible change forced it.
|
|
o Make unused MASTER_SITES to empty.
No functional change.
|
|
- set the default start page to something more sensible.
- Bump PKGREVISION
|
|
Upstream changes:
2009-09-21 Release 5.832
Ville Skytt"a (6):
Fix net test suite.
Comment spelling fixes.
Fix links to old Netscape cookie specification.
Documentation spelling fixes.
Improve max line length exceeded/read error messages.
Do not warn about seemingly wellformed but unrecognized robots.txt lines.
Gisle Aas (1):
$mess->content_charset would fail for empty content
mschilli (1):
Further restrict what variables env_proxy() process
|
|
|
|
* Update Italian translation files.
|
|
|
|
(this prevented pkgsrc wrappers from doing their work)
|
|
pkgsrc changes:
- Add license definition
- Adjust dependencies
Upstream changes:
version: 0.68
date: 2009-03-21
changes:
- (bug #20594) require CSS.pm version 1.07 to fix some 'make test'
errors (eg, DokuWiki)
- improve some documentation
version: 0.67
date: 2009-03-16
changes:
- add 'p_strict' attribute for enabling/disabling
HTML::TreeBuilder's p_strict option (enabled by default) -- this
was done for the Markdown dialect, specifically for bug #43997
- mention XML::Writer requirement in README if cgi app is installed
- webapp-install script creates webapp directory if necessary
- miscellaneous minor code cleanup
version: 0.66
date: 2009-03-07
changes:
- fix test suite: change html2wiki/test.html to
html2wiki-old/test.html
- rudimentary webapp-install script
version: 0.65
date: 2009-03-07
changes:
- web app fixes: comment-out the donation link in
templates/main.html, improved docs in cgi/index.cgi
version: 0.64
date: 2009-03-06
changes:
- add web application, HTML::WikiConverter::WebApp
- now requires CGI::Application (for the aforementioned web app)
- (bug #40845, debian #506584) allow relative wiki_uri (eg,
"/wiki/"); an absolute wiki_uri is constructed from a relative
wiki_uri and a base_uri
- add perl license to Makefile.PL
|
|
pkgsrc changes:
- Adjusting dependencies
Upstream changes:
5.80013 2009-09-17 11:07:04
Bug fixes:
- Preserve immutable_options when temporarily making a class mutable in
Catalyst::ClassData as this is needed by new Class::MOP.
This could have potentially caused issues when using the deprecated runtime
plugins feature in an application with plugins which define their own new
method.
- Require new Moose version and new versions of various dependencies
to avoid warnings from newest Moose release.
Documentation:
- Rework the $c->go documentation to make it more clear.
- Additional documentation in Catalyst::Upgrading covering more deprecation
warnings.
Refactoring / cleanups:
- Action methods in the application class are deprecated and applications
using them will now generate a warning at startup.
- The -short option has been removed from catalyst.pl, stopping new
applications from being generated using the ::[MVC]:: naming scheme as
this is deprecated and generates warnings. RT#49771
|
|
Patch from awstats-6.95beta.
|
|
|
|
pkgsrc changes: add LICENSE.
Changes to squid-2.7.STABLE7 (17 September 2009)
- Bug #2661 - Solaris /dev/poll support broken with EINVAL
- Clarify external_acl_type %{Header} documentation slightly
- Bug #2482: Remove mem_obj->old_entry in async code to avoid deep ctx
errors
- GCC-4.x cleanups
- Bug #2605: Don't call setsid() on helper childs when running in
daemon mode
- Windows port: Fix PSAPI.DLL usage, is always available on Windows NT
and later
- Windows port: Added support for Windows 7, Windows Server 2008 R2
and later
- Bug #2602: increase MAX_URL to 8192
- The debug mode option '-d' was not documented in LDAP helpers usage
message
- Windows port: Added a note about installation on Windows Vista and
later
- Bug #2642: Remove duplicate peerMonitorInit() on reconfigure
- Bug #2515: Final chunk parsing errors on FreeBSD6+
- Bug #2647: Reprioritise override-* and stale-while-revalidate
- Windows port: Fix improper access permissions to registry and DNS
parsing from registry
- Windows port: Fix getservbyname() usage abuse.
- Bug #2672: cacheMemMaxSize 32-bit overflow during snmpwalk
- Bug #2691: store_url memory leak
- Accept PUT/POST requests without an entity-body
- Plug request_t + HttpStateData memory leak on PUT/POST requests with
early response
- Bug #2710: squid_kerb_auth non-terminated string
- Bug #2369: squid traffic counter 32-bit overflow
- Bug #2080: wbinfo_group.pl - false positive under certain conditions
- Bug #2739: DNS resolver option ndots can't be parsed from
resolv.conf
- Windows port: fix mswin_negotiate_auth.exe crash when executing a
LocalCall authentication with verbose deBug #enabled
- Add 0.0.0.0 as an to_localhost address
- Windows port: Update mswin_check_ad_group to version 2.0
- Windows port: There is no "-P" command line option into
mswin_check_ad_group helper.
- Correct Valgrind mempool protection
- Bug #2451: Correct length handling on 304 responses
- Bug #2541: Hang in 100% CPU loop while extacting header details
using a delimiter other than comma (external_acl_type,
access_log_format, external_refresh_check)
- Bug #2768 - squid_ldap_group -K argument parsing error
|
|
PERL5_MODULE_TYPE makes this package install successfully with
USE_DESTDIR=yes. This fixes installation on NetBSD 3.1 and should also
fix the problem reported in Hasso Tepper's bulk build for DragonFly from
2009-09-11.
Set correct MAINTAINER (I did not create/import this package).
|
|
|
|
|
|
Bump PKGREVISION.
|
|
pkgsrc changes:
- Adjusting license definition
Upstream changes:
0.604 (09.14.2009) - John Siracusa <siracusa@gmail.com>
* Fixed a bug that caused html() to fail when called on a form that
contained a compound field. (Reported by Will Hawes)
* Make sure custom validator is called from DateTime fields.
|
|
www/seamonkey). Bump PKGREVISION.
|
|
so we can automatically find plugins. Bump pkgrevision
|
|
No version bump since this is merely a cleanup, and doesn't
actually change what's installed.
|
|
o Add some pkgsrc patches to improve Content-Type header output.
Geeklog 1.6.0sr2
This release addresses the following security issue:
* Unauthorized file uploads were possible through FCKeditor.
Uploaded files still had to go through FCKeditor's filter, so it was not
possible to upload scripts (and the integrity of the Geeklog site as such
was not in danger). There were, however, reports that this was used to host
malware.
This update prevents use of the upload feature when FCKeditor is disabled
and disables it for anonymous users. It also doesn't allow uploading of
archive files any more. Furthermore, you need some sort of "edit"
permission now to be able to upload files through FCKeditor (this is meant
as an interim measure - we will probably introduce a separate "upload"
permission in future Geeklog versions).
Other fixes:
* Fixed installation using InnoDB tables.
* Fixed a (non-exploitable) SQL error when auto-updating a story's
commentcode field.
* Fixed a wrong function name in the Links plugin.
Geeklog 1.6.0sr1
This release addresses the following security issues:
1. Gerendi Sandor Attila reported an XSS in the forms to email a user and to
email a story to a friend.
2. The "Mail Story to a Friend" function didn't check story permissions, so
that it was possible to email a story even if you didn't have the
permissions to view it on the site.
Other fixes:
* Fixed an SQL error when submitting a story and the story submission queue
was off.
* Fixed calls to a nonexistent function COM_outputMessageAndAbort.
Geeklog 1.6.0
Results from the Summer of Code
This release incorporates the following projects implemented during the the
2008 Google Summer of Code:
* Site migration support and easier plugin installation, by Matt West
* Improved search, by Sami Barakat
* Comment moderation and editable comments, by Jared Wenerd
Other changes
* The minimum PHP version required by Geeklog is now PHP 4.3.0. Given that
the PHP team ended support for PHP 4 in August 2008, you should be looking
into upgrading to PHP 5 anyway.
* Includes FCKeditor 2.6.4.1
* Includes a new plugin, XMLSitemap, that automatically generates a XML
sitemap file, as supported by all major search engines. Plugin written and
provided by mystral-kk.
* Several new plugin API functions have been added and existing functions
have been extended.
* The included documentation has been moved to docs/english to allow for
translations. Links to the documentation from within Geeklog will link to
existing translations for the current language automatically (or fall back
to the English documentation if no suitable translation can be found).
* There were a variety of theme changes to support new functionality and fix
inconsistencies in the layout.
This release also includes a number of patches and improvements made by
students applying for participation in the Google Summer of Code 2009. Thank
you!
|
|
Security fixes in this version:
MFSA 2009-43 Heap overflow in certificate regexp parsing
MFSA 2009-42 Compromise of SSL-protected communication
For more info, see http://www.seamonkey-project.org/releases/seamonkey1.1.18/
|
|
|
|
* Interface changes:
o none, API and ABI backwards-compatible with 0.28.x and 0.27.x
* New interfaces and features:
o added NTLM auth support for Unix builds (Kai Sommerfeld,
Daniel Stenberg)
o ne_auth.h: added NE_AUTH_GSSAPI and NE_AUTH_NTLM auth protocol codes
o added ne_acl3744.h, updated WebDAV ACL support (Henrik Holst)
o added built-in SOCKS v4/v4a/v5 support: ne_socket.h:ne_sock_proxy(),
and ne_session.h:ne_session_socks_proxy()
o added support for system-default proxies: ne_session_system_proxy(),
implemented using libproxy where available
o ne_session.h: added NE_SESSFLAG_EXPECT100 session flag,
SSL verification failure bits extended by NE_SSL_BADCHAIN and
NE_SSL_REVOKED, better handling of failures within the cert chain
(thanks to Ludwig Nussel)
o ne_socket.h: ne_sock_writev() (Julien Reichel), ne_sock_set_error(),
ne_iaddr_raw(), ne_iaddr_parse()
o ne_string.h: ne_buffer_qappend(), ne_strnqdup()
* Deprecated interfaces:
o ne_acl.h is obsoleted by ne_acl3744.h (but is still present)
o obsolete feature "NE_FEATURE_SOCKS" now never marked present
* Other changes:
o fix handling of "stale" flag in RFC2069-style Digest auth challenge
o ne_free() implemented as a function on Win32 (thanks to Helge Hess)
o symbol versioning used for new symbols, where supported
o ensure SSL connections are closed cleanly with OpenSSL
o fix build with OpenSSL 1.0 beta
o updated Polish (pl) translation (Arfrever Frehtes Taifersar Arahesis)
* SECURITY (CVE-2009-2473): Fix "billion laughs" attack against expat;
could allow a Denial of Service attack by a malicious server.
* SECURITY (CVE-2009-2474): Fix handling of an embedded NUL byte in a
certificate subject name; could allow an undetected MITM attack against
an SSL server if a trusted CA issues such a cert.
Tested by Daniel Horecki with SVN client.
|
|
|
