- This fixes a few potential cross-site scripting bugs which was intended
to be fixed in 1.4.4.5
- Apply PORTDOCS
- Add some minor fixes about COMMENT and DISTNAME
PR: 77247
Submitted by: Alex Varju <freebsd-ports at varju.ca>
application. It is ideal for people wanting to offer a hosted version
of WordPress, but due to its complexity installation and maintainance
is not supported in the same manner WordPress is.
WWW: http://mu.wordpress.org/
PR: 75240
Submitted by: Jin-Shan Tseng <tjs at cdpa.nsysu.edu.tw>
Security:
- Solved data URL issue described in Secunia Advisory SA13818,
http://secunia.com/advisories/13818/
- Additional fixes for frame injection issue reported in
Secunia Advisory SA13253,
http://secunia.com/advisories/13253/
Miscellaneous:
- Improvements to handling of the must-revalidate directive.
- Solved stability issue in Japanese version.
UNIX specific:
- Added extra warning dialog when opening .sh, .desktop or
executables directly from Web or from transfer manager with
kfmclient exec. Addresses issue reported in Secunia Advisory
SA13447, http://secunia.com/advisories/13447/
- Fixed crash when importing e-mail.
http://www.opera.com/linux/changelogs/754u2/
- Few other small cleans up.
- Let's see if Realplayer plugins will work for anyone. It's not tested, but
added support. I am not going to be surpised if the support is limited as
common in the Linux world.
This is my first port with code from PEAR, so I hope I got
it right. I based it off of www/pear-HTTP.
The HTTP_Client class wraps around HTTP_Request and provides
a higher level interface for performing multiple HTTP
requests.
Features:
* Manages cookies and referrers between requests
* Handles HTTP redirection
* Has methods to set default headers and request parameters
* Implements the Subject-Observer design pattern: the base class sends
events to listeners that do the response processing.
PR: ports/76995
Submitted by: Joseph Scott <joseph@randomnetworks.com>
All ports depending on postgresql shall use the USE_PGSQL=yes knob
defined in Mk/bsd.ports.mk. Bumping portrevisions where needed.
PR: 75344
Approved by: portmgr@ (kris), ade & sean (mentors)
Perhaps you don't need to update when you didn't remove
~/.opera-devel/search.ini manually. Is your search working correctly?
Every translation is being led into google, isn't it? Then update now(TM) and
remove ~/.opera-devel/search.ini, quit, and restart opera.
<http://www.squid-cache.org/Versions/v2/2.5/bugs/>:
+ Reject malformed HTTP requests and responses that conflict with the HTTP
specifications
This issue is qualified as a security issue by the vendor.
+ PURGE is allowed to delete internal objects (squid bug #1112)
+ Disable Path-MTU discovery on intercepted requests (squid bug #1154)
(VuXML vid=b4d94fa0-6e38-11d9-9e1e-c296ac722cb3)
- Clean up and correct package list generation. Now installed files
and directories are visible via PLIST_FILES and PLIST_DIRS.
- Don't claim that squid related files or directories are still present
after deinstallation when in fact they are not.
- Add "-g" to CFLAGS when WITH_SQUID_STACKTRACES is defined to make this
option actually useful.
PR: ports/76628
Submitted by: maintainer
o Major change(s)
- in some cases, modules are still built as static modules, making
modules selection useless and generate a non-desired httpd
o Minor change(s)
- apxs detection is done only if port isn't a server one.
- Mark modules ports as IGNORED if apaxhe is built statically
- fix make show-modules when when WITH_ALL_STATIC_MODULES is defined
Most issues discovered by: Jason Mealins <jason_mealins@bigfix.com>
thing is that on RELENG_5, it did not prevent gzip -cd file | tar -xf -
from working. Other versions/platforms are not so lucky.
Noticed by: buildcluster via kris
This port now supports installation of multiple wiki
instances as proposed by the installation guide.
Follow the textual instructions that are echoed out
by the 'make install' progress for more information.
Thanks to Florent for polishing up my update patches.
Submitted by: Florent Thoumie <flz@xbsd.org>
PR: ports/76377
attack and other patches
Integrate vendor patches as published on
<http://www.squid-cache.org/Versions/v2/2.5/bugs/>:
- FTP data connection fails on some FTP servers when requesting
a directory without a trailing slash (squid bug #1194)
- Icons fail to load on non-anonymous FTP when using the
short_icons_url configuration directive (squid bug #1203)
- Strengthen squid against HTTP response splitting cache pollution
attacks (squid bug #1200), classified as security issue by
the vendor
Proposed VuXML information, entry date left to be filled in:
(Note: I added only a publically accessible link to the Sanctum,
Inc. whitepaper, the squid bug tracker contains a deep link
to the PDF itself; if we are allowed to publish it, it could
instead be used as reference because Sanctum, Inc. wants you
to register with them before you get access to their whitepapers.)
PR: ports/76550
Submitted by: Thomas-Martin Seck <tmseck@netcologne.de>
o Add more support DragonFlyBSD. [1]
o Add support Helix Real Player. [2]
But not tested well.
Submitted by: YONETANI Tomokazu <qhwt+dfly@les.ath.cx> [1]
Sebastian Strollo <seb@strollo.org> [2]
Integrate vendor patches as published on
<http://www.squid-cache.org/Versions/v2/2.5/bugs/>:
- Sanity check usernames in squid_ldap_auth (squid bug #1187),
classified as minor security issue by the vendor, see below for VuXML
information
- FQDN names truncated on compressed DNS responses (squid bug #1136)
- Internal DNS memory leak on malformed responses (squid bug #1197)
PR: ports/76364
Submitted by: Thomas-Martin Seck <tmseck@netcologne.de>
Provides an interface to easily send hidden files or any
arbitrary data to HTTP clients. HTTP_Download can gain its
data from variables, files or stream resources.
It features:
- Basic caching capabilities
- Basic throttling mechanism
- On-the-fly gzip-compression
- Ranges (partial downloads and resuming)
- Delivery of on-the-fly generated archives through Archive_Tar
and Archive_Zip
PR: ports/76366
Submitted by: Antônio Carlos Venâncio Júnior <antonio@php.net>
- from Changes
- Remove load_class calls per Spoon 0.21
- Move archive commit hook into super class
- Split Kwiki::COmmand into Spoon::Command
- Make kwiki -compress work again :\
- Change -subwiki to -new_view
- List all plugins commented out in plugins file
- Support PagePrivacy
- Support multiple config*.*
- Make toolbar, widgets, and status prereqs of theme
that patches rotatelogs to always keep a hardlink to the latest log
file, but without the seconds-since-epoch integer. Just as a
convenience - when developing web apps, it makes it easier to just
check the log file.
Submitted by: Palle Girgensohn
that patches rotatelogs to always keep a hardlink to the latest log
file, but without the seconds-since-epoch integer. Just as a
convenience - when developing web apps, it makes it easier to just
check the log file.
Submitted by: Palle Girgensohn
Please add http://bsdchat.com/dist/dryice/ to the MASTER_SITES
of the following ports. Thanks Clive Lin and bsdchat.com for
the mirror space!
chinese/xpdf
deskutils/etask
devel/cedet
devel/ecb
devel/eieio
devel/ipython
devel/kodos
devel/semantic
devel/xtla
editors/speedbar
editors/tree-widget
games/emacs-chess
net/tcping
www/mod_scgi
www/py-scgi
www/quixote
PR: ports/75743
Submitted by: Dryice Liu <dryice@liu.com.cn>
<http://www.squid-cache.org/Versions/v2/2.5/bugs/> for the following
issues:
+ Prevent a possible denial of service attack via WCCP messages (squid bug
#1190), classified as security issue by the vendor
+ Fix a buffer overflow in the Gopher to HTML conversion routine (squid bug
#1189), classified as security issue by the vendor
+ Fix a null pointer access and plug memory leaks in the fake_auth NTLM
helper (squid bug #1183) (this helper app is not installed by default by
the port)
+ Stop closing open filedescriptors beyond stdin, stdout and stderr on
startup (squid bug #1177)
- Unbreak the port on NO_NIS systems (thanks to "Alexander <freebsd AT
nagilum.de>" for reporting this)
- Document the two security issues in VuXML.
PR: ports/76173
Submitted by: Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
Approved by: erwin (mentor)
- Use apache{2,21}flags variable in apache{2,21}_checkconfig().
It fixes restart when apache2ssl_enable is set to YES in rc.conf
and httpd.conf is "old" (i.e. non -DSSL safe) [1]
o Makefile
- split post-install target to add install-startup-script:
User can now upgrade startup script without reinstalling apache2.
NOTE: this is NOT package-safe and NOT supported, even if in most of
cases they're no risk.
Noticed by: many [1]
Changes:
Apache's DOCUMENT_ROOT variable now gets the right value from mod_vhs,
Webmaster email is now set from the database, and the pathinfo is now set.
PR: 75988
Submitted by: Xavier Beaudouin <kiwi@oav.net>
Update www/phpwiki to version 1.2.6. Changes:
- supports now register_globals=off
- adds user/password to pgsql
- fix zip and dumpserial on dba, dbm, msql and file
- fixes a minor (un)lock issue, displaying the (un)locked page afterwards and not the FrontPage
- fixed !TitleSearch and Backlinks for flatfile
- enable MostPopular (hitcount storage) for flatfile
PR: ports/75716
Submitted by: Christian Brueffer <chris@unixpages.org>
Major new changes in this release:
* Closed two XSS vulnerabilities.
* Fixed folder views in IMP on some IMAP servers.
* Fixed doubled application menus.
* Fixed deletion of identities.
* Worked around problems if no DataTree driver had been specified.
* Minor bug and layout fixes.
Approved by: portmgr (krion).
little bit and allows to proceed to a more recent linux_base from
a stable (read as: the major bugs should be ironed out or identified
and most linux ports build just fine) source.
It also allows to ship 4.11 with a working linuxolator (the EOLed
linux_base is marked forbidden because of a security hole).
This is a major update, please read UPDATING (and CHANGES if you
develop linux ports).
Changes:
- change the default linux_base from v7 to v8
- add a newer freetype to linux_base-8 for nicer fonts display [1]
- don't let cpio use hardlinks in the linux_base-8 port to quiet some
warnings in some cases [2]
- fix a cut&past error in the linux_base-8 pkg-install script [3]
- convert the binary knob "USE_LINUX" to a version specifier, e.g.
USE_LINUX=<value> specifies a dependency upon
emulators/linux_base-<value>, exceptions are a value of "7" (which
does what you want and adds a dependency to linux_base) and any
value without a corresponding port in
PORTSDIR/emulators/linux_base-<value> (which adds a dependency to
the default linux_base)
- don't implicitly add USE_LINUX with the USE_LINUX_PREFIX knob,
this allows us to use the USE_LINUX_PREFIX knob for linux_base and
paves the way for splitting up future linux base ports into
individual pieces
- remove RESTRICTED from some GPL licensed ports, even when we only
distribute binaries, we get them from official linux sites, so
anyone can grab them there if he needs to
- add a dependency upon the linux X11 bits where necessary (based upon
guesswork)
- don't use USE_X_PREFIX in some linux ports since it adds a dependency
to the FreeBSD X11 libs, as a workaround use PREFIX?= (the clean
solution would be to remove the implicit USE_XLIB from USE_X_PREFIX)
- bump the portrevision of the linux ports ("better safe than sorry"
algorithm)
- pass maintainership of the important linux infrastructure to a
mailinglist, hijack freebsd-emulation@ for this purpose (if somebody
doesn't like this: tell us your bikeshed color at freebsd-emulation@,
my color would be "linuxolator@" in case someone cares...)
- add a pkg-install script for linux-fontconfig, but don't use it;
everything should work without it (the FreeBSD fc-cache program should
do all the work), but in case we need it we just need to decomment the
pkg-install part in the Makefile
- fix some dependencies
- fix some bugs
- add some static plists
- unbreak the ports with dependecies to more than one linux_base
This also fixes some ports which are marked BROKEN because of dependencies
to v7 and v8 of linux_base at the same time.
Known bugs:
- the linux-mesa and linux-devtools ports install libGL*.so symlinks
- some "minor" plist bugs (e.g. ld.so.{conf,cache} are modified by
the linux X11 port, so linx_Base-8 moans at deinstall time)
Future work (interested souls should coordinate with freebsd-emulation@):
- add some kind of USE_LINUX_X11 knob to streamline the X11 dependencies,
or modify the behavior of USE_XLIB in the USE_LINUX case
AFAIK trevor has some patches.
- make USE_XLIB and USE_X_PREFIX orthogonal to be able to get rid of
the PREFIX?= workaround in some linux ports
Should be discussed/coordinated on/with x11@.
- move the RPM bits from x11-toolkits/linux-gtk/Makefile to PORTSDIR/Mk/
- update to a more recent linux base
PR: 69997, 70539 (and maybe others)
Discussed with/on: java@, x11@, trevor, portmgr
Tested by: mezz, portmgr, pointyhat
RPM hunted down by: Joseph Gelinas <scirocco@tasam.com> [1]
Requested by: portmgr [2]
Submitted by: kris [3]
Approved by: portmgr
- Mozilla license team has approved the FreeBSD Gnome team to
use official branding for firefox and thunderbird [1]
o Add --enable-official-branding to mozconfig
o Install official thunderbird/firefox icon as default.xpm icon
- Fix error when running firefox/thunderbird -v [2]
- Bump PORTREVISION
References:
http://www.mozilla.org/foundation/licensing.html [1]
http://people.freebsd.org/~ahze/firefox_thunderbird-approved.txt [1]
PR: ports/75262 [2]
Submitted by: girgen [2]
- Fix plist problem when NOPORTDOCS is defined
- Fix pkg_add permission problem [1]
- use ECHO_MSG rather than ECHO_CMD
- Bump PORTREVISION
PR: 75487, 57235 [1]
Submitted by: maintainer
Horde Version 3 differs from the 2.x releases in many ways, including
the following:
* Full support for groups and arbitrary permissions.
* Completely rewritten, fully RFC-compliant MIME system with many
new MIME viewers.
* Many i18n improvements, including full charset support for the whole
framework.
* User customizable portal page.
* Theme support.
* Global personal categories and category colors.
* Access (shortcut) keys.
* Dynamically updating tree menu for applications, including Mozilla
sidebar support.
* XML-based application configuration through a graphical user interface.
* Forms creation and validation API.
* Template engine.
* Crypt API with support for PGP/GPG and S/MIME.
* XML-RPC and SOAP server and client, experimental SyncML support.
* Improved notification system.
* Many new APIs like Compress, Image, PDF, History, iCalendar, SyncML,
CLI, Version control, NLS, Timer, and SVG.
* and many more...
This is a resurrection of the previous www/horde, upgraded from www/horde2.
PR: ports/75434
Submitted by: /me
libraries. This means Mozilla's GNOME integration (i.e. GConf) should
now work [1]
* Fix i18n support when invoking Mozilla, and add atsdsp support [2]
* Port all fixes to mozilla-devel
PR: 75428 [2]
Reported by: Jose M Rodriguez (freebsd) <josemi@freebsd.jazztel.es> [1]
Submitted by: Jose M Rodriguez (freebsd) <josemi@freebsd.jazztel.es> [2]
o Move databases/sqlite to databases/sqlite2.
o Fix dependency on databases/sqlite.
o Update sqlite2 to 2.8.15.
o Bump PORTREVISION, accordingly.
Approved by: portmgr, maintainers of sqlite and related ports
Update ports www/zope-placelesstranslationservice from 1.0r7 to 1.0r8.
This version has been released since 2004-07-09.
I want to update this to use with japanized-zope
PR: ports/74065
Submitted by: HAYASHI Yasushi <yasi@yasi.to>
contents of epiphany.desktop to generate the translations. I hope none of my
fellow GNOME Translation Project team members object to having their
translations bastardized like this. I don't know whether .desktop entries
can contain comments, so there's nothing attributing their work in there
right now.
I'll let this percolate in here for a bit, and if successful, I'll add it
to moz-devel, firefox, and thunderbird.
- Update to 3.2.1
Also:
- move pre-install to post-extract
- do not copy the -dist files to their real name but leave
that as an exercise for the user. Otherwise it will clobber
up the pkg-plist too much, which is created at install-time
and thus doesn't have the nifty features like @unexec.
PR: ports/75384
Submitted by: Alexander Novitsky <alecn2002@yandex.ru>
