Permalink
Commits on Jul 2, 2010
  1. pullup 3153

    spz committed Jul 2, 2010
  2. Pullup ticket 3153 - requested by tron

    security patch
    
    Revisions pulled up:
    - pkgsrc/www/w3m/Makefile	1.58
    - pkgsrc/www/w3m/distinfo	1.21
    - pkgsrc/www/w3m-img/Makefile	1.20
    
    Files added:
    pkgsrc/www/w3m/patches/patch-ac
    pkgsrc/www/w3m/patches/patch-ad
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   tron
       Date:           Thu Jul  1 18:50:15 UTC 2010
    
       Modified Files:
               pkgsrc/www/w3m: Makefile distinfo
               pkgsrc/www/w3m-img: Makefile
       Added Files:
               pkgsrc/www/w3m/patches: patch-ac patch-ad
    
       Log Message:
       Add patch by Ludwig Nussel to fix the certificate spoofing vulnerability
       reported in CVE-2010-2074.
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.57 -r1.58 pkgsrc/www/w3m/Makefile
       cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/w3m/distinfo
       cvs rdiff -u -r1.19 -r1.20 pkgsrc/www/w3m-img/Makefile
       cvs rdiff -u -r0 -r1.14 pkgsrc/www/w3m/patches/patch-ac
       cvs rdiff -u -r0 -r1.8 pkgsrc/www/w3m/patches/patch-ad
    spz committed Jul 2, 2010
Commits on Jun 29, 2010
  1. pullup 3152

    spz committed Jun 29, 2010
  2. Pullup ticket 3152 - requested by tron

    security patch
    
    Revisions pulled up:
    - pkgsrc/lang/python26/Makefile		via patch
    - pkgsrc/lang/python26/distinfo		via patch
    - pkgsrc/lang/python26/patches/patch-af	via patch
    
       -------------------------------------------------------------------------
       Module Name:	pkgsrc
       Committed By:	tron
       Date:		Tue Jun 29 08:15:42 UTC 2010
    
       Modified Files:
       	pkgsrc/lang/python26: Makefile distinfo
       Added Files:
       	pkgsrc/lang/python26/patches: patch-af
    
       Log Message:
       Add fix for CVE-2010-2089 taken from Red Hat's Bugzilla database.
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.23 -r1.24 pkgsrc/lang/python26/Makefile
       cvs rdiff -u -r1.21 -r1.22 pkgsrc/lang/python26/distinfo
       cvs rdiff -u -r0 -r1.1 pkgsrc/lang/python26/patches/patch-af
    spz committed Jun 29, 2010
Commits on Jun 28, 2010
  1. Pullup ticket #3151.

    tron committed Jun 28, 2010
  2. Pullup ticket #3151 - requested by spz

    lang/perl5: security patch
    
    Revisions pulled up:
    - lang/perl5/Makefile				1.159
    - lang/perl5/distinfo				1.65
    - lang/perl5/patches/patch-fa			1.1
    ---
    Module Name:	pkgsrc
    Committed By:	spz
    Date:		Sun Jun 27 13:38:39 UTC 2010
    
    Modified Files:
    	pkgsrc/lang/perl5: Makefile distinfo
    Added Files:
    	pkgsrc/lang/perl5/patches: patch-fa
    
    Log Message:
    fix CVE-2010-1168 and CVE-2010-1447 by updating Safe.pm to the current,
    not-affected version
    tron committed Jun 28, 2010
Commits on Jun 19, 2010
  1. Pullup ticket #3150.

    tron committed Jun 19, 2010
  2. Pullup ticket #3150 - requested by taca

    net/samba: security patch
    
    Revisions pulled up:
    - net/samba/Makefile			1.201
    - net/samba/Makefile.mirrors		1.7
    - net/samba/distinfo			1.74
    - net/samba/patches/patch-ee		1.3
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Sat Jun 19 14:08:56 UTC 2010
    
    Modified Files:
    	pkgsrc/net/samba: Makefile Makefile.mirrors distinfo
    Added Files:
    	pkgsrc/net/samba/patches: patch-ee
    
    Log Message:
    Add a patch to fix CVE-2010-2063.
    
    Bump PKGREVISION.
    tron committed Jun 19, 2010
Commits on Jun 17, 2010
  1. Pullup ticket #3149.

    tron committed Jun 17, 2010
  2. Pullup ticket #3149 - requested by drochner

    graphics/tiff: security update
    
    Revisions pulled up:
    - graphics/tiff/Makefile		1.96
    - graphics/tiff/distinfo		1.48
    ---
    Module Name:	pkgsrc
    Committed By:	drochner
    Date:		Wed Jun 16 13:56:41 UTC 2010
    
    Modified Files:
    	pkgsrc/graphics/tiff: Makefile distinfo
    
    Log Message:
    update to 3.9.4
    changes:
    -Complete the fixes for CVE-2009-2347.
    -Tiffcrop now supports custom page sizes.
    +minor bugfixes
    tron committed Jun 17, 2010
Commits on Jun 16, 2010
  1. Pullup ticket #3147 and #3148.

    tron committed Jun 16, 2010
  2. Pullup ticket #3148 - requested by taca

    net/samba33: security update
    
    Revisions pulled up:
    - net/samba33/Makefile			1.10
    - net/samba33/distinfo			1.4
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Wed Jun 16 14:34:35 UTC 2010
    
    Modified Files:
    	pkgsrc/net/samba33: Makefile distinfo
    
    Log Message:
    Update samba33 package to 3.3.13.
    
    Changes since 3.3.12
    --------------------
    
    o   Jeremy Allison <jra@samba.org>
        * BUG 7494: Fix for CVE-2010-2063.
    tron committed Jun 16, 2010
  3. Pullup ticket #3147 - requested by bad

    misc/openoffice3-bin: security update
    
    Revisions pulled up:
    - misc/openoffice3-bin/Makefile			1.7
    - misc/openoffice3-bin/distinfo			1.4
    ---
    Module Name:	pkgsrc
    Committed By:	bad
    Date:		Tue Jun 15 16:48:19 UTC 2010
    
    Modified Files:
    	pkgsrc/misc/openoffice3-bin: Makefile distinfo
    
    Log Message:
    Update openoffice3-bin to 3.2.1.
    
    Bugfixes only. Including fixes for
    CVE-2010-0395: A security vulnerability in OpenOffice.org, related to python
    	scripting, may lead to unexpected code execution.
    CVE-2009-3555: OpenOffice.org 2 and 3 may be affected by the TLS/SSL
    	Renegotiation Issue in 3rd Party Libraries.
    
    The release notes at http://development.openoffice.org/releases/3.2.1.html
    are not extremely difficult to summarize sensibly.
    tron committed Jun 16, 2010
Commits on Jun 15, 2010
  1. Pullup ticket #3146.

    tron committed Jun 15, 2010
  2. Pullup ticket #3146 - requested by dholland

    graphics/tiff: security update
    
    Revisions pulled up:
    - graphics/tiff/Makefile		1.95
    - graphics/tiff/distinfo		1.47
    ---
    Module Name:	pkgsrc
    Committed By:	dholland
    Date:		Tue Jun 15 05:57:45 UTC 2010
    
    Modified Files:
    	pkgsrc/graphics/tiff: Makefile distinfo
    
    Log Message:
    Update to 3.9.3, fixing CVE-2010-1411. Other changes are minor bug fixes;
    gory details at http://www.remotesensing.org/libtiff/v3.9.3.html.
    tron committed Jun 15, 2010
Commits on Jun 12, 2010
  1. pullups 3144 + 3145

    spz committed Jun 12, 2010
  2. Pullup ticket 3145 - requested by tron

    security fix
    
    Revisions pulled up:
    - pkgsrc/www/apache22/Makefile		1.59
    - pkgsrc/www/apache22/distinfo		1.33
    - pkgsrc/www/apache22/patches/patch-af	1.3
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   tron
       Date:           Sat Jun 12 10:40:27 UTC 2010
    
       Modified Files:
               pkgsrc/www/apache22: Makefile distinfo
       Added Files:
               pkgsrc/www/apache22/patches: patch-af
    
       Log Message:
       Add patch provided by the Apache foundation to close the privacy leak
       reported in CVE-2010-2068.
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.58 -r1.59 pkgsrc/www/apache22/Makefile
       cvs rdiff -u -r1.32 -r1.33 pkgsrc/www/apache22/distinfo
       cvs rdiff -u -r0 -r1.3 pkgsrc/www/apache22/patches/patch-af
    spz committed Jun 12, 2010
  3. Pullup ticket 3144 - requested by tron

    security update
    
    Revisions pulled up:
    - pkgsrc/net/wireshark/Makefile		1.46
    - pkgsrc/net/wireshark/distinfo		1.32
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   tron
       Date:           Thu Jun 10 18:24:40 UTC 2010
    
       Modified Files:
               pkgsrc/net/wireshark: Makefile distinfo
    
       Log Message:
       Update "wireshark" package to version 1.2.9. Changes since version 1.2.8:
       - Bug Fixes
         - The following vulnerabilities have been fixed.
           - The SMB dissector could dereference a NULL pointer. (Bug 4734)
           - J. Oquendo discovered that the ASN.1 BER dissector could overrun
             the stack.
           - The SMB PIPE dissector could dereference a NULL pointer on some
             platforms.
           - The SigComp Universal Decompressor Virtual Machine could go into an
             infinite loop. (Bug 4826)
            - The SigComp Universal Decompressor Virtual Machine could overrun
              a buffer. (Bug 4837)
          - The following bugs have been fixed:
            - Cannot open file with File -> Open. (Bug 1791)
            - Application crash when changing real-time option. (Bug 4035)
            - Crash in filter autocompletion. (Bug 4306)
            - The XML dissector doesn't allow dots (".") in tags. (Bug 4405)
            - Live capture stops when using zlib 1.2.5. (Bug 4708)
            - Want to be able to apply decode as to Data Portion of Lan Trace.
              (Bug 4721)
            - SABP short pdu (packet_per.c). (Bug 4743)
            - Kerberos pre-auth type constants - MS extensions are wrong. (Bug 4752)
            - Check HTTP Content-Length parsing for overflow. (Bug 4758)
            - Wrong variable used for proto_tree_add_text() in ptp dissector.
              (Bug 4773)
            - Crash when close window frame of gtk file chooser. (Bug 4778)
            - Wrong decoding for BGP ORF. (Bug 4782)
            - Crash when Ctrl-Backspacing the display filter. (Bug 4797)
            - Acker AFI field incorrect size in PGM dissector. (Bug 4798)
            - Fedora 13: wireshark fails to build (linking problem). (Bug 4815)
            - The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles.
              (Bug 4839)
            - AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt).
              (Bug 4838)
       - Updated Protocol Support
         ASN.1 BER, BGP, HTTP, IGMP, IPsec, Kerberos, NFS, PGM, PTP, SABP, SigComp,
         SMB, TCAP, XML,
       - Updated Capture File Support
         ERF, PacketLogger.
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.45 -r1.46 pkgsrc/net/wireshark/Makefile
       cvs rdiff -u -r1.31 -r1.32 pkgsrc/net/wireshark/distinfo
    spz committed Jun 12, 2010
  4. Pullup ticket #3142.

    tron committed Jun 12, 2010
  5. Pullup ticket #3142 - requested by taca

    www/typolight28-translations: build fix
    
    Revisions pulled up:
    - www/typolight28-translations/Makefile		1.19-1.28
    - www/typolight28-translations/PLIST.es		1.2
    - www/typolight28-translations/PLIST.fa		1.2
    - www/typolight28-translations/PLIST.hu		1.2
    - www/typolight28-translations/PLIST.lt		1.3
    - www/typolight28-translations/PLIST.sr		1.2
    - www/typolight28-translations/PLIST.tr		1.2
    - www/typolight28-translations/PLIST.uk		1.2
    - www/typolight28-translations/distinfo		1.19-1.28
    - www/typolight28-translations/options.mk	1.19-1.28
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Tue Apr 13 15:58:56 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
    
    Log Message:
    Update typolight28-translations package to 20100413.
    
    Update Czech and Japanese translation files are updated to support
    TYPOlight 2.8.2.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Fri Apr 16 15:37:50 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile PLIST.lt distinfo
    	    options.mk
    
    Log Message:
    Update typolight28-translations pacakge to 20100415.
    
    Update Czech, French, Italian, Lithuanian and Swedish language files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Tue Apr 20 23:20:38 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
    
    Log Message:
    Update typolight28-translations package to 20100420.
    
    Update Latvian and Russian language files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Tue May  4 15:18:50 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
    
    Log Message:
    Update typolight28-translations package to 20100504.
    
    Update Japanese and Russian langage files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Sun May 16 09:41:57 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile PLIST.fa PLIST.hu
    	    PLIST.sr PLIST.tr PLIST.uk distinfo options.mk
    
    Log Message:
    Update typolight28-translations package to 20100514.
    
    Update Croatian, Hungarian, Persian,  Russian, Serbian, Turkish
    and Ukrainian language files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Mon May 17 15:41:16 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
    
    Log Message:
    Update typolight28-translations pacakge to 20100516.
    
    Update Danish language files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Wed May 26 16:18:42 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
    
    Log Message:
    Update typolight28-translations package to 20100523.
    
    Update Czech language files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Wed Jun  2 13:37:34 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
    
    Log Message:
    Update typolight28-translations package to 20100527.
    
    Update Dutch language files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Sat Jun  5 15:19:37 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile distinfo options.mk
    
    Log Message:
    Update typolight28-translations package to 20100603.
    
    Update Czech language files.
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Mon Jun  7 11:30:07 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight28-translations: Makefile PLIST.es distinfo
    	    options.mk
    
    Log Message:
    Update typolight28-translations package to 20100606.
    
    * Update Spanish, Swedish and Turkish language files.
    * Update HOMEPAGE and MASTER_SITES since www.TYPOlight.org migrated to
      www.contao.org.
    tron committed Jun 12, 2010
Commits on Jun 8, 2010
  1. Ticket #3143.

    tron committed Jun 8, 2010
  2. Pullup ticket #3143 - requested by minskim

    print/dvipsk: security patch
    
    Revisions pulled up:
    - print/dvipsk/Makefile				1.6
    - print/dvipsk/distinfo				1.5
    - print/dvipsk/patches/patch-ab			1.4
    ---
    Module Name:	pkgsrc
    Committed By:	minskim
    Date:		Tue Jun  8 15:17:05 UTC 2010
    
    Modified Files:
    	pkgsrc/print/dvipsk: Makefile distinfo
    	pkgsrc/print/dvipsk/patches: patch-ab
    
    Log Message:
    Fix CVE-2010-1440.  Patch from TeX Live repository.
    
      Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX
      Live 2009 and earlier, and teTeX, allow remote attackers to cause a
      denial of service (application crash) or possibly execute arbitrary
      code via a special command in a DVI file, related to the (1)
      predospecial and (2) bbdospecial functions, a different
      vulnerability than CVE-2010-0739.
    tron committed Jun 8, 2010
Commits on Jun 7, 2010
  1. Pullup tickets #3140 and #3141.

    tron committed Jun 7, 2010
  2. Pullup ticket #3141 - requested by taca

    www/typolight27-translations: build fix
    
    Revisions pulled up:
    - www/typolight27-translations/Makefile		1.42
    - www/typolight27-translations/options.mk	1.40
    ---
    Module Name:	pkgsrc
    Committed By:	taca
    Date:		Mon Jun  7 11:24:30 UTC 2010
    
    Modified Files:
    	pkgsrc/www/typolight27-translations: Makefile options.mk
    
    Log Message:
    Update HOMEPAGE and MASTER_SITES since www.TYPOlight.org migrated to
    www.contao.org.
    tron committed Jun 7, 2010
  3. Pullup ticket #3140 - requested by kefren

    net/bftpd: security update
    
    Revisions pulled up:
    - net/bftpd/Makefile				1.11-1.12
    - net/bftpd/distinfo				1.5-1.6
    - net/bftpd/patches/patch-aa			1.4
    - net/bftpd/patches/patch-ab			delete
    - net/bftpd/patches/patch-ac			1.1
    ---
    Module Name:	pkgsrc
    Committed By:	obache
    Date:		Thu May 27 14:14:30 UTC 2010
    
    Modified Files:
    	pkgsrc/net/bftpd: Makefile distinfo
    	pkgsrc/net/bftpd/patches: patch-aa
    Added Files:
    	pkgsrc/net/bftpd/patches: patch-ac
    Removed Files:
    	pkgsrc/net/bftpd/patches: patch-ab
    
    Log Message:
    Update bftpd to 2.8
    Based on PR#43352 by Wen Heping.
    
    pkgsrc changes:
    * set LICENSE=gnu-gpl-v2
    * simplify patch-aa.
    * remove patch-ab, replace with SUBST instead, and also replace /etc in manpage.
    * add patch-ac for fixes standalone mode. XXX: IPv4 only
    * cosmetics fixes.
    ---
    Module Name:	pkgsrc
    Committed By:	obache
    Date:		Fri Jun  4 04:30:45 UTC 2010
    
    Modified Files:
    	pkgsrc/net/bftpd: Makefile distinfo
    
    Log Message:
    Update bftpd to 2.9.
    
    Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.9
    	- Bftpdwill attempt to create it's utmp directory
              if that directory does not exist. Fixes issue on
    	  Ubuntu where the direcotry is wiped out at each
    	  reboot.
    	- The ROOTDIR option now works properly for
    	  anonymous users.
    	  Thanks to Paul for reporting this bug.
    tron committed Jun 7, 2010
Commits on Jun 6, 2010
  1. pullup 3139

    spz committed Jun 6, 2010
  2. Pullup ticket 3139 - requested by taca

    security update
    
    Revisions pulled up:
    - pkgsrc/databases/mysql5-client/Makefile.common	1.39
    - pkgsrc/databases/mysql5-client/buildlink3.mk		1.16
    - pkgsrc/databases/mysql5-client/distinfo		1.29
    - pkgsrc/databases/mysql5-server/distinfo		1.25
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   taca
       Date:           Wed Jun  2 13:34:45 UTC 2010
    
       Modified Files:
               pkgsrc/databases/mysql5-client: Makefile.common buildlink3.mk distinfo
               pkgsrc/databases/mysql5-server: distinfo
    
       Log Message:
       Update mysql5-{client,server} package to 5.0.91.
    
       For full changes, refer http://dev.mysql.com/doc/refman/5.0/en/news-5-0-91.html.
    
       Here is security related changes.
    
       * Security Fix: The server failed to check the table name argument of
         a COM_FIELD_LIST command packet for validity and compliance to
         acceptable table name standards. This could be exploited to bypass
         almost all forms of checks for privileges and table-level grants by
         providing a specially crafted table name argument to COM_FIELD_LIST.
    
         In MySQL 5.0 and above, this allowed an authenticated user with
         SELECT privileges on one table to obtain the field definitions of
         any table in all other databases and potentially of other MySQL
         instances accessible from the server's file system.
    
         Additionally, for MySQL version 5.1 and above, an authenticated user
         with DELETE or SELECT privileges on one table could delete or read
         content from any other table in all databases on this server, and
         potentially of other MySQL instances accessible from the server's
         file system. (Bug#53371, CVE-2010-1848)
    
       * Security Fix: The server was susceptible to a buffer-overflow attack
         due to a failure to perform bounds checking on the table name
         argument of a COM_FIELD_LIST command packet. By sending long data
         for the table name, a buffer is overflown, which could be exploited
         by an authenticated user to inject malicious code. (Bug#53237,
         CVE-2010-1850)
    
       * Security Fix: The server could be tricked into reading packets
         indefinitely if it received a packet larger than the maximum size of
         one packet. (Bug#50974, CVE-2010-1849)
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.38 -r1.39 pkgsrc/databases/mysql5-client/Makefile.common
       cvs rdiff -u -r1.15 -r1.16 pkgsrc/databases/mysql5-client/buildlink3.mk
       cvs rdiff -u -r1.28 -r1.29 pkgsrc/databases/mysql5-client/distinfo
       cvs rdiff -u -r1.24 -r1.25 pkgsrc/databases/mysql5-server/distinfo
    spz committed Jun 6, 2010
  3. pullup 3131

    spz committed Jun 6, 2010
  4. Pullup ticket 3131 - requested by is

    bugfix update
    
    Revisions pulled up:
    - pkgsrc/shells/mksh/Makefile	1.15
    - pkgsrc/shells/mksh/distinfo	1.14
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   is
       Date:           Fri May 28 12:26:49 UTC 2010
    
       Modified Files:
               pkgsrc/shells/mksh: Makefile distinfo
    
       Log Message:
       Update to mksh-39c on suggestion from Thorsten Glaser.
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.14 -r1.15 pkgsrc/shells/mksh/Makefile
       cvs rdiff -u -r1.13 -r1.14 pkgsrc/shells/mksh/distinfo
    spz committed Jun 6, 2010
Commits on Jun 5, 2010
  1. pullups 3137 and 3138

    spz committed Jun 5, 2010
  2. Pullup ticket 3138 - requested by pettai

    functionality fix
    
    Revisions pulled up:
    - pkgsrc/mail/mimedefang/Makefile	1.45
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   pettai
       Date:           Thu Jun  3 09:37:51 UTC 2010
    
       Modified Files:
               pkgsrc/mail/mimedefang: Makefile
    
       Log Message:
       part of PR pkg/43380 that didn't make it the first commit
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.43 -r1.44 pkgsrc/mail/mimedefang/Makefile
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   pettai
       Date:           Fri Jun  4 21:00:07 UTC 2010
    
       Modified Files:
               pkgsrc/mail/mimedefang: Makefile
    
       Log Message:
       Bump PKGREVISION for the bulkbuild
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.44 -r1.45 pkgsrc/mail/mimedefang/Makefile
    spz committed Jun 5, 2010
  3. Pullup ticket 3137 - requested by kefren

    security update
    
    Revisions pulled up:
    - pkgsrc/security/sudo/Makefile	1.121
    - pkgsrc/security/sudo/distinfo	1.63
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   taca
       Date:           Thu Jun  3 14:53:14 UTC 2010
    
       Modified Files:
               pkgsrc/security/sudo: Makefile distinfo
    
       Log Message:
       Update security/sudo package to 1.7.2p7.
    
       For more detail: http://www.sudo.ws/sudo/alerts/secure_path.html
    
       Summary:
           Sudo "secure path" feature works by replacing the PATH environment
           variable with a value specified in the sudoers file, or at
           compile time if the --with-secure-path configure option is used.
           The flaw is that sudo only replaces the first instance of PATH
           in the environment.  If the program being run through sudo uses
           the last instance of PATH in the environment, an attacker may
           be able to avoid the "secure path" restrictions.
    
       Sudo versions affected:
           Sudo 1.3.1 through 1.6.9p22 and Sudo 1.7.0 through 1.7.2p6.
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.120 -r1.121 pkgsrc/security/sudo/Makefile
       cvs rdiff -u -r1.62 -r1.63 pkgsrc/security/sudo/distinfo
    spz committed Jun 5, 2010
Commits on Jun 3, 2010
  1. pullup 3136

    spz committed Jun 3, 2010
  2. Pullup ticket 3136 - requested by kefren

    security update
    
    Revisions pulled up:
    - pkgsrc/chat/p5-POE-Component-IRC/Makefile	1.10
    - pkgsrc/chat/p5-POE-Component-IRC/distinfo	1.5
    
       -------------------------------------------------------------------------
       Module Name:    pkgsrc
       Committed By:   kefren
       Date:           Thu Jun  3 09:12:50 UTC 2010
    
       Modified Files:
               pkgsrc/chat/p5-POE-Component-IRC: Makefile distinfo
    
       Log Message:
       Security update to 6.32
       See http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=581194
    
    
       To generate a diff of this commit:
       cvs rdiff -u -r1.9 -r1.10 pkgsrc/chat/p5-POE-Component-IRC/Makefile
       cvs rdiff -u -r1.4 -r1.5 pkgsrc/chat/p5-POE-Component-IRC/distinfo
    spz committed Jun 3, 2010
  3. pullups 3132, 3133, 3134 and 3135

    spz committed Jun 3, 2010