Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Jun 28, 2006
  1. 1714

    snj authored
  2. Pullup ticket 1714 - requested by salo

    snj authored
    security update for hashcash
    
    Revisions pulled up:
    - pkgsrc/security/hashcash/Makefile		1.9
    - pkgsrc/security/hashcash/distinfo		1.7
    - pkgsrc/security/hashcash/patches/patch-aa	removed
    - pkgsrc/security/hashcash/patches/patch-ab	removed
    
       Module Name:    pkgsrc
       Committed By:   gdt
       Date:           Mon Apr 17 12:44:02 UTC 2006
    
       Modified Files:
               pkgsrc/security/hashcash: Makefile distinfo
       Removed Files:
               pkgsrc/security/hashcash/patches: patch-aa patch-ab
    
       Log Message:
       Update to 1.22.
    
       hashcash-1.22 - 08-Apr-2006 - Adam Back <adam@cypherspace.org>
    
       [BUG FIXES]
    
       hashcash-1.18 - 05-Jul-2005 - Adam Back <adam@cypherspace.org>
    
               * add a simpler minting API to make it easier to mint stamps
                 from VB scripting
       hashcash-1.17 - 30-Mar-2005 - Adam Back <adam@cypherspace.org>
    
       [BUG FIXES]
    
       hashcash-1.15 - 12-Jan-2005 - Adam Back <adam@cypherspace.org>
    
               * make "Hashcash:" be accepted as well as "X-Hashcash:"
                 suggestion by Simon Josefsson <jas@extundo.com>.  This way
                 if/when the X- is dropped from hashcash headers we will not
                 have a backwards compatibility problem.  (Well not after
                 version 1.15).
    
               * implement the -Z option to compress stamps; in fact the
                 usage changed so -Z takes an argument: 0, 1 or 2.  0 =3D not
                 compressed, 1 =3D compressed but not so the counter + padding
                 is split, and 2 =3D very compressed, but slow.  (Due to a late
                 discovered bug 2 is the same as 1 for now until I can fix
                 that.)
    
               * added -O x -sv to request benchtest of core x only
    
               * make code work with -DOPENSSL, think this slipped during
                 integration of Jonathan's libfastmint as it uses some lower
                 level openssl APIs internally.  I fixed it but it might be
                 a bit openssl version specific, if they changed the state
                 fields at any point.  (This change coincidentally I think
                 should work around the linking with openssl problem that Hal
                 Finney <hal@finney.org> reported).
    
               * add libhashcash.a intermediate target to make hashcash more
                 convenient to link into other software on linux.  (A
                 suggestion from Hal Finney who was trying to link to his
                 RPOW system.)
    
       hashcash-1.14 - 14-Dec-2004 - Adam Back <adam@cypherspace.org>
    
               * make hashcash -cX accept continuation lines starting with
                 space as well as tab
    
               * add library function to wrap lines and use it from hashcash
                 command line tool.
    
               * fix long vs time_t prototype mismatch that was giving
                 compile errors on BSD; also cleaned up some warnings that
                 can be obtained with gcc -Wall.
Commits on Jun 27, 2006
  1. #1713.

    ghen authored
  2. Pullup ticket 1713 - requested by salo

    ghen authored
    security fix for mutt-devel
    
    Revisions pulled up:
    - pkgsrc/mail/mutt-devel/Makefile		1.50
    - pkgsrc/mail/mutt-devel/distinfo		1.30
    - pkgsrc/mail/mutt-devel/patches/patch-ae	1.5
    
       Module Name:	pkgsrc
       Committed By:	tonio
       Date:		Tue Jun 20 14:07:31 UTC 2006
    
       Modified Files:
    	pkgsrc/mail/mutt-devel: Makefile distinfo
    
       Log Message:
       Add fix for imap code from mutt's cvs repository:
       A malicious IMAP server could cause at least DoS
       Bomp PKGREVISION
    ---
       Module Name:	pkgsrc
       Committed By:	tonio
       Date:		Tue Jun 20 14:08:05 UTC 2006
    
       Added Files:
    	pkgsrc/mail/mutt-devel/patches: patch-ae
    
       Log Message:
       The patch for imap/browse
Commits on Jun 26, 2006
  1. #1711.

    ghen authored
  2. Pullup ticket 1711 - requested by salo

    ghen authored
    security update for netpbm
    
    Revisions pulled up:
    - pkgsrc/graphics/netpbm/Makefile		1.136, 1.137, 1.138, 1.142, 1.143
    - pkgsrc/graphics/netpbm/distinfo		1.54, 1.56, 1.58, 1.59
    - pkgsrc/graphics/netpbm/patches/patch-aa	1.37, 1.38
    - pkgsrc/graphics/netpbm/patches/patch-ab	1.20
    - pkgsrc/graphics/netpbm/patches/patch-ac	removed
    - pkgsrc/graphics/netpbm/patches/patch-ag	removed
    - pkgsrc/graphics/netpbm/patches/patch-ai	removed
    - pkgsrc/graphics/netpbm/patches/patch-aj	removed
    - pkgsrc/graphics/netpbm/patches/patch-ca	1.1
    
       Module Name:	pkgsrc
       Committed By:	tron
       Date:		Mon Apr  3 16:46:51 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/netpbm: Makefile
    
       Log Message:
       Make sure all documentation files are installed world readable. Bump
       package revision because this change affects the binary package.
    ---
       Module Name:	pkgsrc
       Committed By:	tron
       Date:		Mon Apr  3 16:53:58 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/netpbm: Makefile
    
       Log Message:
       Make last change work with IRIX's old fashioned "find" command.
    ---
       Module Name:	pkgsrc
       Committed By:	adam
       Date:		Mon Apr 17 08:11:17 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/netpbm: Makefile distinfo
       Removed Files:
    	pkgsrc/graphics/netpbm/patches: patch-ag
    
       Log Message:
       Changes 10.33:
       Add pamtosvg.
    
       g3topbm: Add -width, -paper_size.
    
       libnetpbm / most newer programs: Fix bug that produces
       plain format output when it should be raw because
       pnm_readpaminit() does not set 'plainformat' and most
       programs just copy the input pam to the output pam.
    
       pamflip: fix bug with left/right flip of PBM that has
       width an even multiple of 8 plus something less than 8.
    
       pnmquant: turn on autoflush when creating seekable file.
    
       install: fix symbolic link pnmdepth -> pamdepth.
    
       build: fix some importinc dependencies.
    ---
       Module Name:	pkgsrc
       Committed By:	jlam
       Date:		Wed May 10 17:19:00 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/netpbm: distinfo
       Added Files:
    	pkgsrc/graphics/netpbm/patches: patch-ca
    
       Log Message:
       On FreeBSD 4.x, <netinet/in.h> needs <sys/types.h> to be included first.
    ---
       Module Name:	pkgsrc
       Committed By:	minskim
       Date:		Sun Jun 18 16:18:11 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/netpbm: Makefile distinfo
    	pkgsrc/graphics/netpbm/patches: patch-aa
    
       Log Message:
       Build .dylib instead of .so on Darwin.  Bump PKGREVISION.
    ---
       Module Name:	pkgsrc
       Committed By:	adam
       Date:		Sun Jun 25 06:35:58 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/netpbm: Makefile distinfo
    	pkgsrc/graphics/netpbm/patches: patch-aa patch-ab
       Removed Files:
    	pkgsrc/graphics/netpbm/patches: patch-ac patch-ag patch-ai patch-aj
    
       Log Message:
       This is a security update, which fixes a buffer overflow vulnerability.
    
       Changes 10.34:
       * Add pamthreshold, pamx, pamtoxvmini.
       * pammasksharpen: Add -threshold.
       * pnmtopng: make "N colors found" message verbose-only.
       * pnmtopng: make "no room in palette" message non-verbose.
       * picttoppm: Tolerate various PICT file corruptions.
       * picttoppm: Don't issue warning message when file named
         'fontdir' doesn't exist.
       * libnetpbm: Add ppmd_fill_path().
       * ppmtobmp: Fix for PBM input.
       * bmptopnm: Don't crash on BMP with no color map.
       * bmptopnm: Fix wrong file name in error messages.
       * ppmtogif: fix bug: always produces garbage output.
       * ppmtompeg: fix input from Standard Input.
       * pnmflip: fix bug: -rotate90, -rotate180, and -rotate270
         (and synonyms) don't work when followed by other rotation options.
       * ppmtoilbm: Fig bug: generates more planes than necessary.
       * pamtofits: fix buffer overflow in asembling header.
       * picttoppm: fix bug - interprets some images wrong because of
         bogus "rowBytes" value.
       * Redo asprintfN(), etc. so as not to use va_list in a way
         that doesn't work on some machines.
       * cameratopam: remove definition of memmem() so it doesn't collide
         with same in some C libraries.  Add memmemN() and MEMEQ to libnetpbm.
       * Fix build of filename.o.
Commits on Jun 25, 2006
  1. 1710

    snj authored
  2. Pullup ticket 1710 - requested by salo

    snj authored
    security fix for gnupg-devel
    
    Revisions pulled up:
    - pkgsrc/security/gnupg-devel/Makefile		1.17
    - pkgsrc/security/gnupg-devel/distinfo		1.12
    - pkgsrc/security/gnupg-devel/patches/patch-ba	1.1
    
       Module Name:    pkgsrc
       Committed By:   shannonjr
       Date:           Fri Jun 23 12:28:55 UTC 2006
    
       Modified Files:
               pkgsrc/security/gnupg-devel: Makefile buildlink3.mk distinfo
       Added Files:
               pkgsrc/security/gnupg-devel/patches: patch-ba
    
       Log Message:
       Backport fix for CVE-2006-3082 from GnuPG: trunk/g10/
  3. 1709

    snj authored
  4. Pullup ticket 1709 - requested by salo

    snj authored
    security update for gnupg
    
    Revisions pulled up:
    - pkgsrc/security/gnupg/Makefile		1.83, 1.86
    - pkgsrc/security/gnupg/PLIST			1.16
    - pkgsrc/security/gnupg/distinfo		1.39, 1.40
    - pkgsrc/security/gnupg/options.mk		1.6, 1.7
    - pkgsrc/security/gnupg/patches/patch-aa	1.11
    - pkgsrc/security/gnupg/patches/patch-ak	1.3
    - pkgsrc/security/gnupg/patches/patch-ba	1.1
    
       Module Name:    pkgsrc
       Committed By:   wiz
       Date:           Tue Apr  4 21:16:37 UTC 2006
    
       Modified Files:
               pkgsrc/security/gnupg: Makefile PLIST distinfo options.mk
               pkgsrc/security/gnupg/patches: patch-aa patch-ak
    
       Log Message:
       Update to 1.4.3:
    
       Noteworthy changes in version 1.4.3 (2006-04-03)
       ------------------------------------------------
    
           * If available, cURL-based keyserver helpers are built that can
             retrieve keys using HKP or any protocol that cURL supports
             (HTTP, HTTPS, FTP, FTPS, etc).  If cURL is not available, HKP
             and HTTP are still supported using a built-in cURL emulator.  To
             force building the old pre-cURL keyserver helpers, use the
             configure option --enable-old-keyserver-helpers.  Note that none
             of this affects finger or LDAP support, which are unchanged.
             Note also that a future version of GnuPG will remove the old
             keyserver helpers altogether.
    
    
           * Implemented Public Key Association (PKA) signature verification.
             This uses special DNS records and notation data to associate a
             mail address with an OpenPGP key to prove that mail coming from
             that address is legitimate without the need for a full trust
             path to the signing key.
    
           * When exporting subkeys, those specified with a key ID or
             fingerpint and the '!' suffix are now merged into one keyblock.
    
           * Added "gpg-zip", a program to create encrypted archives that can
             interoperate with PGP Zip.
    
           * Added support for signing subkey cross-certification "back
             signatures".  Requiring cross-certification to be present is
             currently off by default, but will be changed to on by default
             in the future, once more keys use it.  A new "cross-certify"
             command in the --edit-key menu can be used to update signing
             subkeys to have cross-certification.
    
           * The key cleaning options for --import-options and
             --export-options have been further polished.  "import-clean" and
             "export-clean" replace the older
             import-clean-sigs/import-clean-uids and
             export-clean-sigs/export-clean-uids option pairs.
    
           * New "minimize" command in the --edit-key menu removes everything
             that can be removed from a key, rendering it as small as
             possible.  There are corresponding "export-minimal" and
             "import-minimal" commands for --export-options and
             --import-options.
    
           * New --fetch-keys command to retrieve keys by specifying a URI.
             This allows direct key retrieval from a web page or other
             location that can be specified in a URI.  Available protocols
             are HTTP and finger, plus anything that cURL supplies, if built
             with cURL support.
    
           * Files containing several signed messages are not allowed any
             longer as there is no clean way to report the status of such
             files back to the caller.  To partly revert to the old behaviour
             the new option --allow-multisig-verification may be used.
    
           * The keyserver helpers can now handle keys in either ASCII armor
             or binary format.
    
           * New auto-key-locate option that takes an ordered list of methods
             to locate a key if it is not available at encryption time (-r or
             --recipient).  Possible methods include "cert" (use DNS CERT as
             per RFC2538bis, "pka" (use DNS PKA), "ldap" (consult the LDAP
             server for the domain in question), "keyserver" (use the
             currently defined keyserver), as well as arbitrary keyserver
             URIs that will be contacted for the key.
    
           * Able to retrieve keys using DNS CERT records as per RFC-2538bis
             (currently in draft): http://www.josefsson.org/rfc2538bis
    
       pkgsrc change:
       make architecture-specific options really architecture-specific.
    ---
       Module Name:    pkgsrc
       Committed By:   drochner
       Date:           Wed Apr  5 10:04:12 UTC 2006
    
       Modified Files:
               pkgsrc/security/gnupg: options.mk
    
       Log Message:
       --with-libcurl is on per default, so revert the logics
       (no functional change, just more effective because a compile check
       is skipped)
    ---
       Module Name:    pkgsrc
       Committed By:   salo
       Date:           Sat Jun 24 14:20:29 UTC 2006
    
       Modified Files:
               pkgsrc/security/gnupg: Makefile distinfo
       Added Files:
               pkgsrc/security/gnupg/patches: patch-ba
    
       Log Message:
       Security fix for CVE-2006-3082:
    
       "parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions,
        allows remote attackers to cause a denial of service (gpg crash) and
        possibly overwrite memory via a message packet with a large length,
        which could lead to an integer overflow, as demonstrated using the
        --no-armor option."
    
       Patch from GnuPG CVS repository.
       Bump PKGREVISION.
Commits on Jun 23, 2006
  1. #1708.

    ghen authored
  2. Pullup ticket 1708 - requested by salo

    ghen authored
    security update for chmlib
    
    Revisions pulled up:
    - pkgsrc/devel/chmlib/Makefile		1.14
    - pkgsrc/devel/chmlib/PLIST		1.3
    - pkgsrc/devel/chmlib/distinfo		1.11
    - pkgsrc/devel/chmlib/patches/patch-ab	removed
    - pkgsrc/devel/chmlib/patches/patch-ac	1.2
    
       Module Name:	pkgsrc
       Committed By:	salo
       Date:		Fri Jun 23 12:56:26 UTC 2006
    
       Modified Files:
    	pkgsrc/devel/chmlib: Makefile PLIST distinfo
    	pkgsrc/devel/chmlib/patches: patch-ac
       Removed Files:
    	pkgsrc/devel/chmlib/patches: patch-ab
    
       Log Message:
       Update to version 0.38
    
       Changes:
    
       - Security fix for extract_chmLib.  Pathnames containing a ".." element
         will not be extracted.  There doesn't seem to be a legitimate reason
         to use ".." as a path element in a chm file.
    
         http://secunia.com/advisories/20734/
    
       - Fix for reading some chm files.  Running over a large directory of chm
         files, about 1% of them turned out to be unreadable.  This resulted
         from an incomplete understanding of one of the header fields
         (index_root).  Apparently, this can take negative values other than -1.
Commits on Jun 20, 2006
  1. #1705.

    ghen authored
  2. Pullup ticket 1705 - requested by tron

    ghen authored
    security fix for mutt
    
    Revisions pulled up:
    - pkgsrc/mail/mutt/Makefile		via patch
    - pkgsrc/mail/mutt/distinfo		1.30
    - pkgsrc/mail/mutt/patches/patch-ae	1.4
    
       Module Name:	pkgsrc
       Committed By:	tron
       Date:		Tue Jun 20 09:14:47 UTC 2006
    
       Modified Files:
    	pkgsrc/mail/mutt: Makefile PLIST distinfo
       Added Files:
    	pkgsrc/mail/mutt/patches: patch-ae
    
       Log Message:
       Add fix from the "mutt" CVS repository for a buffer overflow in the
       IMAP code which could be exploited by a malicious IMAP server.
       Bump package revision.
Commits on Jun 15, 2006
  1. #1704

    salo authored
  2. Pullup ticket 1704 - requested by markd

    salo authored
    security fix for kdebase3
    
    Patch provided by the submitter.
    
       Module Name:		pkgsrc
       Committed By:	markd
       Date:		Thu Jun 15 01:35:33 UTC 2006
    
       Modified Files:
       	pkgsrc/x11/kdebase3: Makefile distinfo
    
       Log Message:
       Fix for KDM symlink vulnerability. CVE-2006-2449
       Bump PKGREVISION.
  3. #1702.

    ghen authored
  4. Pullup ticket 1702 - requested by salo

    ghen authored
    security fix for gd
    
    Revisions pulled up:
    - pkgsrc/graphics/gd/Makefile		1.68, 1.69, 1.70
    - pkgsrc/graphics/gd/distinfo		1.23
    - pkgsrc/graphics/gd/patches/patch-ac	1.3
    
       Module Name:	pkgsrc
       Committed By:	minskim
       Date:		Sun May 14 18:19:08 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/gd: Makefile
    
       Log Message:
       Fix a pkglint warning.
    ---
       Module Name:	pkgsrc
       Committed By:	minskim
       Date:		Sun May 14 18:22:38 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/gd: Makefile
    
       Log Message:
       This package installs a perl script.  Add a dependency on perl using
       USE_TOOLS.
    
       Bump PKGREVISION.
    ---
       Module Name:	pkgsrc
       Committed By:	salo
       Date:		Wed Jun 14 21:42:33 UTC 2006
    
       Modified Files:
    	pkgsrc/graphics/gd: Makefile distinfo
       Added Files:
    	pkgsrc/graphics/gd/patches: patch-ac
    
       Log Message:
       Security fix for CVE-2006-2906:
    
       "The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas
        Boutell graphics draw (GD) library (aka libgd) 2.0.33 allows remote
        attackers to cause a denial of service (CPU consumption) via malformed
        GIF data that causes an infinite loop."
    
       Patch from Xavier Roche via Ubuntu.
  5. #1703

    salo authored
  6. Pullup ticket 1703 - requested by markd

    salo authored
    security fix for arts
    
    Patch provided by the submitter.
    
       Module Name:		pkgsrc
       Committed By:	markd
       Date:		Thu Jun 15 01:33:05 UTC 2006
    
       Modified Files:
       	pkgsrc/audio/arts: Makefile distinfo
    
       Log Message:
       Fix for artswrapper return value checking vulnerability. CVE-2006-2916
       Bump PKGREVISION
Commits on Jun 14, 2006
  1. #1700, #1701

    salo authored
  2. Pullup ticket 1701 - requested by adrianp

    salo authored
    security fix for sendmail812
    
    Patch provided by the submitter.
    
       Module Name:		pkgsrc
       Committed By:	adrianp
       Date:		Wed Jun 14 18:57:34 UTC 2006
    
       Modified Files:
       	pkgsrc/mail/sendmail812: Makefile distinfo
       Added Files:
       	pkgsrc/mail/sendmail812/patches: patch-ah patch-ai patch-aj patch-ak
    
       Log Message:
       Bump PKGREVISION.
       A malformed MIME structure with many parts can cause sendmail to
       crash while trying to send a mail due to a stack overflow,
       e.g., if the stack size is limited (ulimit -s).  This
       happens because the recursion of the function mime8to7()
       was not restricted.  The function is called for MIME 8 to
       7 bit conversion and also to enforce MaxMimeHeaderLength.
       To work around this problem, recursive calls are limited to
       a depth of MAXMIMENESTING (20); message content after this
       limit is treated as opaque and is not checked further.
  3. Pullup ticket 1700 - requested by adrianp

    salo authored
    security fix for sendmail
    
    Patch provided by the submitter.
    
       Module Name:		pkgsrc
       Committed By:	adrianp
       Date:		Wed Jun 14 18:53:54 UTC 2006
    
       Modified Files:
       	pkgsrc/mail/sendmail: Makefile distinfo
       Added Files:
       	pkgsrc/mail/sendmail/patches: patch-aj patch-ak patch-al patch-am
    
       Log Message:
       Bump PKGREVISION.
       A malformed MIME structure with many parts can cause sendmail to
       crash while trying to send a mail due to a stack overflow,
       e.g., if the stack size is limited (ulimit -s).  This
       happens because the recursion of the function mime8to7()
       was not restricted.  The function is called for MIME 8 to
       7 bit conversion and also to enforce MaxMimeHeaderLength.
       To work around this problem, recursive calls are limited to
       a depth of MAXMIMENESTING (20); message content after this
       limit is treated as opaque and is not checked further.
  4. #1699

    salo authored
  5. Pullup ticket 1699 - requested by markd

    salo authored
    security update for wv2
    
    Revisions pulled up:
    - pkgsrc/converters/wv2/Makefile		1.21
    - pkgsrc/converters/wv2/distinfo		1.5
    
       Module Name:		pkgsrc
       Committed By:	markd
       Date:		Wed Jun 14 12:45:30 UTC 2006
    
       Modified Files:
       	pkgsrc/converters/wv2: Makefile distinfo
    
       Log Message:
       Update to wv2-0.2.3
    
       * Fixed an integer overflow bug (CVE-2006-2197)
       * Applied a patch by Friedemann Kleint (Fa. metis)
         with fixes for Solaris / Sun C++ 5.5 Patch 113817-02 2003/08/29.
         Additionally fixes some tab-related bugs (unique and erase stuff)
Commits on Jun 13, 2006
  1. #1696

    salo authored
  2. Pullup ticket 1696 - requested by drochner

    salo authored
    security update for dia
    
    Revisions pulled up:
    - pkgsrc/graphics/dia-python/Makefile		1.8
    - pkgsrc/graphics/dia-python/PLIST		1.2
    
       Module Name:		pkgsrc
       Committed By:	drochner
       Date:		Tue May  2 16:23:30 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/dia: Makefile Makefile.common PLIST distinfo
       	pkgsrc/graphics/dia-python: Makefile PLIST
       Removed Files:
       	pkgsrc/graphics/dia/patches: patch-ab patch-ac patch-ad
    
       Log Message:
       update to 0.95
       changes:
       -"mainpoint" system allows lines to always point towards the middle
       -Python plug-ins added
       -automatically change grid size depending on zoom level
       -Text input now highlights the object
       -security problems fixed in XFig import and Python plug-in
       -new shapes added
       -new UML objects added
       -Full screen mode
       -Improved SVG import
       -Plug-in loading and unloading doesn't require restart
       -i18n problems fixed
       -bugs have been fixed
       -Command line usage has improved
       -ses the new GTK+ File Dialog
    
       pkgsrc change:
       -precompile Python files
  3. Pullup ticket 1696 - requested by drochner

    salo authored
    security update for dia
    
    Revisions pulled up:
    - pkgsrc/graphics/dia/Makefile			1.44
    - pkgsrc/graphics/dia/Makefile.common		1.10, 1.11, 1.12
    - pkgsrc/graphics/dia/PLIST			1.12, 1.13
    - pkgsrc/graphics/dia/distinfo			1.16, 1.17, 1.18
    - pkgsrc/graphics/dia/options.mk		1.4
    - pkgsrc/graphics/dia/patches/patch-ab		removed
    - pkgsrc/graphics/dia/patches/patch-ac		removed
    - pkgsrc/graphics/dia/patches/patch-ad		removed
    - pkgsrc/graphics/dia/patches/patch-ca		1.1
    - pkgsrc/graphics/dia/patches/patch-cb		1.1
    - pkgsrc/graphics/dia/patches/patch-cc		1.1
    - pkgsrc/graphics/dia-python/Makefile		1.8
    - pkgsrc/graphics/dia-python/PLIST		1.2
    
       Module Name:		pkgsrc
       Committed By:	drochner
       Date:		Tue May  2 16:23:30 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/dia: Makefile Makefile.common PLIST distinfo
       	pkgsrc/graphics/dia-python: Makefile PLIST
       Removed Files:
       	pkgsrc/graphics/dia/patches: patch-ab patch-ac patch-ad
    
       Log Message:
       update to 0.95
       changes:
       -"mainpoint" system allows lines to always point towards the middle
       -Python plug-ins added
       -automatically change grid size depending on zoom level
       -Text input now highlights the object
       -security problems fixed in XFig import and Python plug-in
       -new shapes added
       -new UML objects added
       -Full screen mode
       -Improved SVG import
       -Plug-in loading and unloading doesn't require restart
       -i18n problems fixed
       -bugs have been fixed
       -Command line usage has improved
       -ses the new GTK+ File Dialog
    
       pkgsrc change:
       -precompile Python files
    ---
       Module Name:		pkgsrc
       Committed By:	abs
       Date:		Tue May 16 21:15:23 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/dia: Makefile.common
    
       Log Message:
       USE_LANGUAGES+=c++
    ---
       Module Name:		pkgsrc
       Committed By:	drochner
       Date:		Wed May 31 17:50:12 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/dia: Makefile.common distinfo
    
       Log Message:
       update to 0.95.1
       changes:
       3 minor bugfixes
    ---
       Module Name:		pkgsrc
       Committed By:	drochner
       Date:		Sun Jun 11 16:55:35 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/dia: PLIST distinfo options.mk
       Added Files:
       	pkgsrc/graphics/dia/patches: patch-ca patch-cb patch-cc
    
       Log Message:
       fix help file installation in the !gnome case, problem found by
       Lubomir Sedlacik
       (no PKGREVISION bump because the default case is not affected)
       Help display seems fundamentally broken to me in the !gnome case;
       the code looks for an "index.html" which is not installed (and which
       no make rule is present for).
  4. #1698.

    ghen authored
  5. Pullup ticket 1698 - requested by salo

    ghen authored
    security update for sylpheed
    
    Revisions pulled up:
    - pkgsrc/mail/sylpheed/Makefile		1.92, 1.93, 1.96
    - pkgsrc/mail/sylpheed/distinfo		1.48, 1.49, 1.50
    - pkgsrc/mail/sylpheed/options.mk	1.2
    
       Module Name:	pkgsrc
       Committed By:	xtraeme
       Date:		Wed Mar 29 22:04:57 UTC 2006
    
       Modified Files:
    	pkgsrc/mail/sylpheed: Makefile distinfo
    
       Log Message:
       Update to:
    
       * 2.2.3 (stable)
    
           * The sorting of the result of the query search was enabled.
           * The printing of messages now follows the state of 'Show all headers'.
           * Relative path is allowed for signature files.
           * The To, Cc, and Bcc button of the address book are now always enabled.
           * The window position of the address book is now preserved.
           * The toggle of the Cc entry on the composition window was enabled.
           * The appearance of the address book was modified.
           * Unix: The support of metamail command was removed, and it was replaced
             with the alternative implementation.
           * Win32: libwimp.dll was updated, and the appearance of the UI was
             improved.
           * Win32: zlib1.dll was updated.
           * Win32: The application icon was updated.
           * Win32: The unnecessary message catalog files were removed to reduce the
             archive size.
    ---
       Module Name:	pkgsrc
       Committed By:	chris
       Date:		Wed Mar 29 22:54:42 UTC 2006
    
       Modified Files:
    	pkgsrc/mail/sylpheed: Makefile distinfo options.mk
    
       Log Message:
       Update sylpheed to 2.2.4. Changes are:
           * MIME filename encoding with RFC 2322 parameter value extension was
             supported.
           * The clear button for the quick search entry was added.
           * The bug that bold face was disabled in GtkTreeView with GLib 2.10
             and Pango 1.12 was fixed.
           * Win32: libwimp.dll was updated.
           * Win32: The bug that subfolders were duplicated when rebuilding
             folder tree while the settings were shared between Win32 and Unix
             was fixed.
           * Win32: The uninstaller was modified so that it only removes files
             and folders created by the installer.
    
       Also remove extra blank lines at the end of options.mk to appease pkglint.
    ---
       Module Name:	pkgsrc
       Committed By:	xtraeme
       Date:		Sat Jun 10 23:38:36 UTC 2006
    
       Modified Files:
    	pkgsrc/mail/sylpheed: Makefile distinfo
    
       Log Message:
       Update to 2.2.6.
    
       Changes 2.2.6:
    
           * The 8-bit literal (literal8) in IMAP4 response was supported.
           * The missing timeout handling was added for SMTP.
           * The failure of URI security check when they have leading space
             was fixed.
    
       Changes 2.2.5:
    
           * The character corruption and crash bug when using Japanese
             half-width kana on sending messages was fixed.
           * The execution failure when using the accessibility module was fixed.
           * The bug that new/unread count becoming negative value was fixed.
           * The bug that bold face was disabled in the folder selection dialog
             with GLib 2.10 and Pango 1.12 was fixed.
           * The incorrect progressbar display when expired messages exist was
             fixed.
Commits on Jun 9, 2006
  1. #1695.

    ghen authored
  2. Pullup ticket 1695 - requested by salo

    ghen authored
    security update for freeciv
    
    Revisions pulled up:
    - pkgsrc/games/freeciv-client/Makefile		1.27, 1.29
    - pkgsrc/games/freeciv-server/Makefile		1.23
    - pkgsrc/games/freeciv-share/Makefile		1.13
    - pkgsrc/games/freeciv-share/Makefile.common	1.26, 1.27
    - pkgsrc/games/freeciv-share/distinfo		1.13
    - pkgsrc/games/freeciv-share/patches/patch-aa	1.5
    - pkgsrc/games/freeciv-share/patches/patch-ab	1.4
    
       Module Name:    pkgsrc
       Committed By:   adam
       Date:           Sat Apr 15 09:30:46 UTC 2006
    
       Modified Files:
               pkgsrc/games/freeciv-client: Makefile
               pkgsrc/games/freeciv-server: Makefile
               pkgsrc/games/freeciv-share: Makefile Makefile.common distinfo
               pkgsrc/games/freeciv-share/patches: patch-aa patch-ab
    
       Log Message:
       Changes 2.0.8:
       - Simplification of pubserver authentication system, and other
         pubserver-related changes.
       - Fix problems with some strings in some languages on windows.
       - Fix a potential desynchronization bug when establishing connections.
       - Fix a potential crash when reading packets (CVE-2006-0047).
       - Fix some bugs allowing illegal rehoming of units.
       - Allow loading of savegames created by Freeciv 2.1.
       - Allow client goto into unknown tiles.
       - Fix a set of crashes likely to happen with the XAW client on
         64-bit systems.
       - Fix a bug that allowed unlimited incoming airlifts.
    ---
       Module Name:    pkgsrc
       Committed By:   minskim
       Date:           Thu Jun  8 16:06:50 UTC 2006
    
       Modified Files:
               pkgsrc/games/freeciv-share: Makefile.common
    
       Log Message:
       This package needs zlib.
    ---
       Modified Files:
               pkgsrc/games/freeciv-client: Makefile
    
       Log Message:
       Needs pkg-config to build.
  3. 1694

    snj authored
  4. Pullup ticket 1694 - requested by salo

    snj authored
    security update/fix for tiff
    
    Revisions pulled up:
    - pkgsrc/graphics/tiff/Makefile		1.79, 1.80, 1.82
    - pkgsrc/graphics/tiff/distinfo		1.37-1.38
    - pkgsrc/graphics/tiff/PLIST		1.10
    - pkgsrc/graphics/tiff/patches/patch-au	1.5
    
       Module Name:	pkgsrc
       Committed By:	drochner
       Date:		Fri Mar 31 14:31:03 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/tiff: Makefile distinfo
    
       Log Message:
       update to 3.8.2
       changes: bugfixes
    ---
       Module Name:	pkgsrc
       Committed By:	uebayasi
       Date:		Wed Apr  5 07:04:18 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/tiff: Makefile PLIST
    
       Log Message:
       A missing entry in PLIST, found by ftp://ftp.NetBSD.org/pub/pkgsrc/misc/kristerw
       /pkgstat/i386-2.1/20060404.0711/graphics/tiff/.broken.html.
    
       Reviewed By:	reed
    ---
       Module Name:	pkgsrc
       Committed By:	salo
       Date:		Thu Jun  8 11:05:14 UTC 2006
    
       Modified Files:
       	pkgsrc/graphics/tiff: Makefile distinfo
       Added Files:
       	pkgsrc/graphics/tiff/patches: patch-au
    
       Log Message:
       Security fix for CVE-2006-2193:
    
       "A vulnerability in LibTIFF can be exploited by malicious people to
        cause a DoS (Denial of Service) and potentially compromise a user's
        system.
    
        The vulnerability is caused due to a boundary error within tiff2pdf
        when handling a TIFF file with a "DocumentName" tag that contains
        UTF-8 characters.  This can be exploited to cause a stack-based buffer
        overflow and may allow arbitrary code execution."
    
       http://secunia.com/advisories/20488/
       http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2193
    
       Patch from Ubuntu.
Commits on Jun 7, 2006
  1. #1679

    salo authored
Something went wrong with that request. Please try again.