Permalink
Commits on Mar 8, 2017
  1. Updated time/p5-DateTime-Locale to 1.14

    wiz committed Mar 8, 2017
  2. Updated p5-DateTime-Locale to 1.14.

    1.14     2017-03-05
    
    - Codes with just a language and script code were not parsed correctly,
      leading to bugs in their data, so that they did not report a script_code,
      nor did their name reflect the script. So for example "bs-Latn" was just
      "Bosnian" instead of "Bosnian Latin".
    
    
    1.13     2017-03-05
    
    - Fixed a regression bug where providing a locale's English name or native
      name to DateTime::Locale->load no longer worked. Fixed by Sergey. GH #13.
    wiz committed Mar 8, 2017
  3. Updated devel/p5-Moo to 2.003001

    wiz committed Mar 8, 2017
  4. Updated p5-Moo to 2.003001.

    2.003001 - 2017-03-06
      - fix +attributes replacing builder subs if parent attribute was defined with
        builder => $subref
      - fix trigger with a default value and init_arg of undef
    wiz committed Mar 8, 2017
  5. Updated www/p5-libwww to 6.23

    wiz committed Mar 8, 2017
  6. Updated p5-libwww to 6.23.

    6.23      2017-03-06
        - Fix bug where Protocol::NNTP called undef on a variable before being done
          using it. (GH PR #121)
        - Ran perltidy on LWP::Protocol::NNTP
        - Re-organized current documentation set.
    wiz committed Mar 8, 2017
  7. + binutils-2.28, openvpn-2.4.0 [pkg/52044], p5-DateTime-Locale-1.14,

      p5-Moo-2.003001, p5-libwww-6.23, phoronix-7.0, py-gevent-1.2.1.
    wiz committed Mar 8, 2017
  8. Updated mail/mutt to 1.8.0nb1

    wiz committed Mar 8, 2017
  9. Rename mutt-mmdf(5) back to mmdf(5), to reduce diffs with upstream.

    Conflict with tin was solved by renaming tin's man page.
    
    Requested by Michael-John Turner in PR 52046.
    
    Bump PKGREVISION.
    wiz committed Mar 8, 2017
  10. Updated x11/xf86-video-openchrome to 0.6.0

    wiz committed Mar 8, 2017
  11. Updated xf86-video-openchrome to 0.6.0.

    Finally figured out how to use the X.Org automatic submission
    script after realizing that I had to change the script in order for
    OpenChrome DDX to build in the first place.
    
    OpenChrome DDX Version 0.6 has added the following new features.
    
    - First official support for CX700, VX700, and VX800 chipsets
      integrated TMDS transmitter (i.e., DVI support)
    - Initial support for Silicon Image SiI 164 TMDS transmitter
    
    
    OpenChrome DDX Version 0.6 has the following improvements.
    
    - Improved FP reinitialization when resuming from standby
      (HP 2133 Mini-Note, FIC CE260 / CE261 based netbooks like
       Everex CloudBook and Sylvania g netbook)
    - Improved automatic detection of display resources
    - Improved X Server stability in dual monitor mode
    - Automatic active steering of the display controller channel to the
      correct display output device
    
    
    OpenChrome DDX Version 0.6 fixes the following bugs.
    
    - Fix for the disruption of the VT (Virtual Terminal) screen bug
      introduced in Version 0.5
    - Fix for HP 2133 Mini-Note's PCIe WLAN getting turned off
      inadvertently bug introduced in Version 0.5
    wiz committed Mar 8, 2017
  12. Tabs vs spaces!

    Unbreak with the Python 3 versions of the package.
    Heads up by Daniel Jakots.
    sevan committed Mar 8, 2017
Commits on Mar 7, 2017
  1. Patch CVE-2013-7459, obtained from:

    dlitz/pycrypto@8dbe0dc
    Bump rev.
    
    Reviewed by: wiz
    sevan committed Mar 7, 2017
  2. Updated misc/calibre to 2.80.0

    wiz committed Mar 7, 2017
  3. Updated calibre to 2.80.0.

    - version: 2.80.0
      date: 2017-02-24
    
      new features:
        - title: "Add support for sideloading of KFX files created with the third-party KFX calibre plugin"
    
        - title: "Edit book: Allow drag and drop of image files, stylesheets and html files into the editor to insert the appropriate <img> and <link> tags and add the files to the book automatically."
    
        - title: "Kobo driver: Add support for updated firmware"
    
        - title: "Edit Book: Spell Check: If there are no suggestions fill the suggested word box with the original word."
    
        - title: "Viewer: add a shortcut (Ctrl+F11) to show/hide toolbars."
    
      bug fixes:
        - title: "PDF Output: Fix courier font not being rendered when converting on windows."
    
        - title: "E-mail delivery: Add a Message-ID header when sending emails. Reduces probability of mails sent from calibre being marked as spam"
    
        - title: "Save to disk: Fix path shortening being applied to entire save template even when saving to singe directory."
    
        - title: "Get Books: Update the Virualo and Publi store plugins for website changes"
    
        - title: "Viewer: Fix regression that caused slow opening of some books with missing font/css/image files"
    
        - title: "Viewer: Pressing Ctrl+F in fullscreen mode should show the controls."
    
        - title: "Edit book: Do not allow creating multiple new files whose names differ only by case."
    
        - title: "Viewer: Use heuristics to try to detect comics encoded as fixed layout EPUBs to ensure they are displayed as intended."
    
      improved recipes:
        - The Atlantic
        - The Financial Times
    
      new recipes:
        - title: Various new and improved Belgian news sources
    wiz committed Mar 7, 2017
  4. bring back patch-ipc_chromium_src_base_message__pump__libevent.cc to

    fix build on netbsd-7
    snj committed Mar 7, 2017
  5. Updated net/youtube-dl to 20170307

    leot committed Mar 7, 2017
  6. Update net/youtube-dl to 20170307

    Changes:
    version 2017.03.07
    
    Core
    * Metadata are now added after conversion (#5594)
    
    Extractors
    * [soundcloud] Update client id (#12376)
    * [openload] Fix extraction (#10408, #12357)
    
    
    version 2017.03.06
    
    Core
    + [utils] Process bytestrings in urljoin (#12369)
    * [extractor/common] Improve height extraction and extract bitrate
    * [extractor/common] Move jwplayer formats extraction in separate method
    + [external:ffmpeg] Limit test download size to 10KiB (#12362)
    
    Extractors
    + [drtv] Add geo countries to GeoRestrictedError
    + [drtv:live] Bypass geo restriction
    + [tunepk] Add extractor (#12197, #12243)
    
    
    version 2017.03.05
    
    Extractors
    + [twitch] Add basic support for two-factor authentication (#11974)
    + [vier] Add support for vijf.be (#12304)
    + [redbulltv] Add support for redbull.tv (#3919, #11948)
    * [douyutv] Switch to the PC API to escape the 5-min limitation (#12316)
    + [generic] Add support for rutube embeds
    + [rutube] Relax URL regular expression
    + [vrak] Add support for vrak.tv (#11452)
    + [brightcove:new] Add ability to smuggle geo_countries into URL
    + [brightcove:new] Raise GeoRestrictedError
    * [go] Relax URL regular expression (#12341)
    * [24video] Use original host for requests (#12339)
    * [ruutu] Disable DASH formats (#12322)
    
    
    version 2017.03.02
    
    Core
    + [adobepass] Add support for Charter Spectrum (#11465)
    * [YoutubeDL] Don't sanitize identifiers in output template (#12317)
    
    Extractors
    * [facebook] Fix extraction (#12323, #12330)
    * [youtube] Mark errors about rental videos as expected (#12324)
    + [npo] Add support for audio
    * [npo] Adapt to app.php API (#12311, #12320)
    
    
    version 2017.02.28
    
    Core
    + [utils] Add bytes_to_long and long_to_bytes
    + [utils] Add pkcs1pad
    + [aes] Add aes_cbc_encrypt
    
    Extractors
    + [azmedien:showplaylist] Add support for show playlists (#12160)
    + [youtube:playlist] Recognize another playlist pattern (#11928, #12286)
    + [daisuki] Add support for daisuki.net (#2486, #3186, #4738, #6175, #7776,
      #10060)
    * [douyu] Fix extraction (#12301)
    
    
    version 2017.02.27
    
    Core
    * [downloader/common] Limit displaying 2 digits after decimal point in sleep
      interval message (#12183)
    + [extractor/common] Add preference to _parse_html5_media_entries
    
    Extractors
    + [npo] Add support for zapp.nl
    + [npo] Add support for hetklokhuis.nl (#12293)
    - [scivee] Remove extractor (#9315)
    + [cda] Decode download URL (#12255)
    + [crunchyroll] Improve uploader extraction (#12267)
    + [youtube] Raise GeoRestrictedError
    + [dailymotion] Raise GeoRestrictedError
    + [mdr] Recognize more URL patterns (#12169)
    + [tvigle] Raise GeoRestrictedError
    * [vevo] Fix extraction for videos with the new streams/streamsV3 format
      (#11719)
    + [freshlive] Add support for freshlive.tv (#12175)
    + [xhamster] Capture and output videoClosed error (#12263)
    + [etonline] Add support for etonline.com (#12236)
    + [njpwworld] Add support for njpwworld.com (#11561)
    * [amcnetworks] Relax URL regular expression (#12127)
    
    
    version 2017.02.24.1
    
    Extractors
    * [noco] Modernize
    * [noco] Switch login URL to https (#12246)
    + [thescene] Extract more metadata
    * [thescene] Fix extraction (#12235)
    + [tubitv] Use geo bypass mechanism
    * [openload] Fix extraction (#10408)
    + [ivi] Raise GeoRestrictedError
    
    
    version 2017.02.24
    
    Core
    * [options] Hide deprecated options from --help
    * [options] Deprecate --autonumber-size
    + [YoutubeDL] Add support for string formatting operations in output template
      (#5185, #5748, #6841, #9929, #9966 #9978, #12189)
    
    Extractors
    + [lynda:course] Add webpage extraction fallback (#12238)
    * [go] Sign all uplynk URLs and use geo bypass only for free videos
      (#12087, #12210)
    + [skylinewebcams] Add support for skylinewebcams.com (#12221)
    + [instagram] Add support for multi video posts (#12226)
    + [crunchyroll] Extract playlist entries ids
    * [mgtv] Fix extraction
    + [sohu] Raise GeoRestrictedError
    + [leeco] Raise GeoRestrictedError and use geo bypass mechanism
    
    
    version 2017.02.22
    
    Extractors
    * [crunchyroll] Fix descriptions with double quotes (#12124)
    * [dailymotion] Make comment count optional (#12209)
    + [vidzi] Add support for vidzi.cc (#12213)
    + [24video] Add support for 24video.tube (#12217)
    + [crackle] Use geo bypass mechanism
    + [viewster] Use geo verification headers
    + [tfo] Improve geo restriction detection and use geo bypass mechanism
    + [telequebec] Use geo bypass mechanism
    + [limelight] Extract PlaylistService errors and improve geo restriction
      detection
    
    
    version 2017.02.21
    
    Core
    * [extractor/common] Allow calling _initialize_geo_bypass from extractors
      (#11970)
    + [adobepass] Add support for Time Warner Cable (#12191)
    + [travis] Run tests in parallel
    + [downloader/ism] Honor HTTP headers when downloading fragments
    + [downloader/dash] Honor HTTP headers when downloading fragments
    + [utils] Add GeoUtils class for working with geo tools and GeoUtils.random_ipv4
    + Add option --geo-bypass-country for explicit geo bypass on behalf of
      specified country
    + Add options to control geo bypass mechanism --geo-bypass and --no-geo-bypass
    + Add experimental geo restriction bypass mechanism based on faking
      X-Forwarded-For HTTP header
    + [utils] Introduce GeoRestrictedError for geo restricted videos
    + [utils] Introduce YoutubeDLError base class for all youtube-dl exceptions
    
    Extractors
    + [ninecninemedia] Use geo bypass mechanism
    * [spankbang] Make uploader optional (#12193)
    + [iprima] Improve geo restriction detection and disable geo bypass
    * [iprima] Modernize
    * [commonmistakes] Disable UnicodeBOM extractor test for python 3.2
    + [prosiebensat1] Throw ExtractionError on unsupported page type (#12180)
    * [nrk] Update _API_HOST and relax _VALID_URL
    + [tv4] Bypass geo restriction and improve detection
    * [tv4] Switch to hls3 protocol (#12177)
    + [viki] Improve geo restriction detection
    + [vgtv] Improve geo restriction detection
    + [srgssr] Improve geo restriction detection
    + [vbox7] Improve geo restriction detection and use geo bypass mechanism
    + [svt] Improve geo restriction detection and use geo bypass mechanism
    + [pbs] Improve geo restriction detection and use geo bypass mechanism
    + [ondemandkorea] Improve geo restriction detection and use geo bypass mechanism
    + [nrk] Improve geo restriction detection and use geo bypass mechanism
    + [itv] Improve geo restriction detection and use geo bypass mechanism
    + [go] Improve geo restriction detection and use geo bypass mechanism
    + [dramafever] Improve geo restriction detection and use geo bypass mechanism
    * [brightcove:legacy] Restrict videoPlayer value (#12040)
    + [tvn24] Add support for tvn24.pl and tvn24bis.pl (#11679)
    + [thisav] Add support for HTML5 media (#11771)
    * [metacafe] Bypass family filter (#10371)
    * [viceland] Improve info extraction
    leot committed Mar 7, 2017
  7. Updated devel/nss to 3.29.3

    ryoon committed Mar 7, 2017
  8. Update to 3.29.3

    Changelog:
    The NSS team has released Network Security Services (NSS) 3.29.3
    
    No new functionality is introduced in this release.
    This is a patch release to fix a rare crash when initializing an SSL socket
    fails.
    
    
    The NSS team has released Network Security Services (NSS) 3.29.2
    
    No new functionality is introduced in this release.
    This is a patch release to fix an issue with TLS session tickets.
    ryoon committed Mar 7, 2017
  9. Updated www/firefox-l10n to 52.0

    ryoon committed Mar 7, 2017
  10. Update to 52.0

    * Sync with firefox-52.0
    ryoon committed Mar 7, 2017
  11. Updated www/firefox to 52.0

    ryoon committed Mar 7, 2017
  12. Update to 52.0

    * Switch to GTK3 build
    * Remove py-sqlite2 dependency, fix PR pkg/52032
    
    Changelog:
    New
        Added support for WebAssembly, an emerging standard that brings near-native performance to Web-based games, apps, and software libraries without the use of plugins.
    
        Added automatic captive portal detection, for easier access to Wi-Fi hotspots. When accessing the Internet via a captive portal, Firefox will alert users and open the portal login page in a new tab.
    
        Added user warnings for non-secure HTTP pages with logins. Firefox now displays a "This connection is not secure" message when users click into the username and password fields on pages that don't use HTTPS.
    
        Implemented the Strict Secure Cookies specification which forbids insecure HTTP sites from setting cookies with the "secure" attribute. In some cases, this will prevent an insecure site from setting a cookie with the same name as an existing "secure" cookie from the same base domain.
    
        Enhanced Sync to allow users to send and open tabs from one device to another.
    
    Fixed
        Various security fixes
    
        Improved text input for third-party keyboard layouts on Windows. This will address some keyboard layouts that
          * have chained dead keys
          * input two or more characters with a non-printable key or a dead key sequence
          * input a character even when a dead key sequence failed to compose a character
    
    Changed
        Removed support for Netscape Plugin API (NPAPI) plugins other than Flash. Silverlight, Java, Acrobat and the like are no longer supported.
    
        Removed Battery Status API to reduce fingerprinting of users by trackers
    
        Improved experience for downloads:
          * Notification in the toolbar when a download fails
          * Quick access to five most recent downloads rather than three
          * Larger buttons for canceling and restarting downloads
    
        Display (but allow users to override) an "Untrusted Connection" error when encountering SHA-1 certificates that chain up to a root certificate included in Mozilla's CA Certificate Program. (Note: Firefox continues to permit SHA-1 certificates that chain to manually imported root certificates.) Read more about the Mozilla Security Team's plans to deprecate SHA-1
    
        Migrated Firefox users on Windows XP and Windows Vista operating systems to the extended support release (ESR) version of Firefox.
    
        When not using Direct2D on Windows, Skia is used for content rendering
    
    Developer
        Enabled CSS Grid Layout, opening up a world of new possibilities for graphic design
    
        Redesigned Responsive Design Mode to include device selection, network throttling, and more
    
        Improved security for screen sharing, which now shows a preview and no longer requires a whitelisted domain
    
    unresolved
        Google Hangouts temporarily won't work
    
    Security fixes:
     #CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP
     #CVE-2017-5401: Memory Corruption when handling ErrorResult
     #CVE-2017-5402: Use-after-free working with events in FontFace objects
     #CVE-2017-5403: Use-after-free using addRange to add range to an incorrect root object
     #CVE-2017-5404: Use-after-free working with ranges in selections
     #CVE-2017-5406: Segmentation fault in Skia with canvas operations
     #CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters
     #CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping
     #CVE-2017-5411: Use-after-free in Buffer Storage in libGLES
     #CVE-2017-5409: File deletion via callback parameter in Mozilla Windows Updater and Maintenance Service
     #CVE-2017-5408: Cross-origin reading of video captions in violation of CORS
     #CVE-2017-5412: Buffer overflow read in SVG filters
     #CVE-2017-5413: Segmentation fault during bidirectional operations
     #CVE-2017-5414: File picker can choose incorrect default directory
     #CVE-2017-5415: Addressbar spoofing through blob URL
     #CVE-2017-5416: Null dereference crash in HttpChannel
     #CVE-2017-5417: Addressbar spoofing by draging and dropping URLs
     #CVE-2017-5425: Overly permissive Gecko Media Plugin sandbox regular expression access
     #CVE-2017-5426: Gecko Media Plugin sandbox is not started if seccomp-bpf filter is running
     #CVE-2017-5427: Non-existent chrome.manifest file loaded during startup
     #CVE-2017-5418: Out of bounds read when parsing HTTP digest authorization responses
     #CVE-2017-5419: Repeated authentication prompts lead to DOS attack
     #CVE-2017-5420: Javascript: URLs can obfuscate addressbar location
     #CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports
     #CVE-2017-5421: Print preview spoofing
     #CVE-2017-5422: DOS attack by using view-source: protocol repeatedly in one hyperlink
     #CVE-2017-5399: Memory safety bugs fixed in Firefox 52
     #CVE-2017-5398: Memory safety bugs fixed in Firefox 52 and Firefox ESR 45.8
    ryoon committed Mar 7, 2017
  13. Provide gssapi pkg option for {,neo}mutt.

    elric committed Mar 7, 2017
  14. Added devel/py-requests-ftp version 0.3.1

    minskim committed Mar 7, 2017
  15. Add py-request-ftp

    minskim committed Mar 7, 2017
  16. Import py-request-ftp-0.3.1 as devel/py-request-ftp

    Requests-FTP is an implementation of an FTP transport adapter for use
    with the awesome Requests Python library.  This library is intended as
    both a starting point for future development and a useful example for
    how to implement transport adapters.
    minskim committed Mar 7, 2017
  17. Note update of net/haproxy

    morr committed Mar 7, 2017
  18. Update to newest stable version 1.7.3.

    ChangeLog to long to include here, please take a look at
    http://www.haproxy.org/download/1.7/src/CHANGELOG
    
    Fixes PR pkg/52014
    morr committed Mar 7, 2017
  19. Note update of www/wordpress

    morr committed Mar 7, 2017
  20. Security update to version 4.7.3.

    Fixed security bugs:
    
    * Cross-site scripting (XSS) via media file metadata. Reported by Chris Andrè
      Dale, Yorick Koster, and Simon P. Briggs.
    * Control characters can trick redirect URL validation. Reported by Daniel
      Chatfield.
    * Unintended files can be deleted by administrators using the plugin deletion
      functionality. Reported by xuliang.
    * Cross-site scripting (XSS) via video URL in YouTube embeds. Reported by Marc
      Montpas.
    * Cross-site scripting (XSS) via taxonomy term names. Reported by Delta.
    * Cross-site request forgery (CSRF) in Press This leading to excessive use of
      server resources. Reported by Sipke Mellema.
    
    More information here: https://codex.wordpress.org/Version_4.7.3
    morr committed Mar 7, 2017
  21. Updated security/py-cryptodome to 3.4.5

    maya committed Mar 7, 2017
  22. py-cryptodome: update to 3.4.5

    The library can also be compiled using MinGW.
    Removed use of alloca().
    [Security] Removed implementation of deprecated "quick check" feature of PGP block cipher mode.
    Improved the performance of scrypt by converting some Python to C.
    maya committed Mar 7, 2017
  23. Updated mail/neomutt to 20170306

    wiz committed Mar 7, 2017