- Added the $line->replace() method for a convenient way to achieve simple
autofix tasks.
- When autofixing, no backup file is created (it had been created before).
1. Usually "cvs diff" is available.
2. All current autofixed changes are trivial.
3. The fixed file is first written to disk in a new file and then renamed
to the original file, greatly reducing the risk of data loss.
- Fixed a bug in checkdir_package(): In the call to load_package_Makefile(),
the last parameter had not been passed by reference, but by value.
Luckily this had not influenced any other part of pkglint.
- While there, I noticed that it is not necessary to pass some subroutines
the lines of all included Makefiles, so I removed that parameter.
XPM reader, which allows attackers to execute arbitrary code via specially
crafted XPM images (CVE-2005-3186, CVE-2005-2976).
Thanks to <smb> for the notice.
Updated print/ghostscript-esp to 8.15.1nb1
Updated print/ghostscript-esp-nox11 to 8.15.1nb1
Updated print/ghostscript-gnu to 8.15nb1
Updated print/ghostscript-gnu-nox11 to 8.15nb1
Updated print/ghostscript to 6.01nb6
Updated print/ghostscript-nox11 to 6.01nb6
All for http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0967
"io-xpm.c in the gdk-pixbuf XPM image rendering library allows attackers
to cause a denial of service (infinite loop) via a crafted XPM image
with a large number of colors."
"Integer overflow in io-xpm.c in gdk-pixbuf allows attackers to cause a
denial of service (crash) or execute arbitrary code via an XPM file with
large height, width, and colour values, a different vulnerability than
CVE-2005-3186."
"Integer overflow in the gdk-pixbuf XPM image rendering library allows
attackers to execute arbitrary code via an XPM file with a number of
colors that causes insufficient memory to be allocated, which leads to
a heap-based buffer overflow."
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2975http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2976http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3186
- Fixed several compilation warnings and errors for different platforms (Volker)
- Fixed FPU tag word restore in FXRSTOR instruction (Stanislav)
- Added missing scancodes for F11 and F12 to BIOS translation table (Volker)
- Bochs disassembler bugfixes (h.johansson)
- About 5% emulation speed improvement (h.johansson)
- Handle writing of zero to APIC timer initial count register (Stanislav)
- Enable Idle-Hack for 'TERM' GUI (h.johansson)
- Reduced overhead of BX_SHOW_IPS option to minimum. Now every simulation
could run with --enable-show-ips without significant performance
penalty. (Stanislav)
- Fixed pcipnic register access (Volker)
- Limited write support for TFTP server in 'vnet' networking module added (Volker)
- Changed some timing defaults changed to more useful values (Volker)
- WinXP/2003 style common controls now supported (Vitaly Vorobyov)
- Updated LGPL'd VGABIOS to version 0.5c (Volker)
- New floating point emulator based on SoftFloat floating point
emulation library.
- improved x86-64 emulation
- Cirrus SVGA card emulation added
- status bar with indicators for keyboard, floppy, cdrom and disk (gui dependant)
- many improvements in Bochs emulated I/O devices (e.g. PCI subsystem)
User-visible change between release 0.3.6.2 and 0.3.7 include:
o) The experimental PowerPC emulation mode is now working well enough
to allow NetBSD/prep 2.1 to be installed and run inside the emulator.
It is not 100% stable, and it is not optimized for performance yet,
but hopefully enough for simple experiments.
o) I finally took the time to implement a DEC 21143 NIC; this brings
network connectivity to NetBSD/cats. (The userland "NAT"-like
networking layer is still a bit buggy, and does not work with
everything. However, NetBSD/cats can now be installed via ftp.)
o) CD-ROM images can now in some cases be detected as ATAPI CD-ROMs
instead of IDE harddisks. It works for at least NetBSD, OpenBSD,
and Linux on CATS, and NetBSD on hpcmips.
Internal (code related) changes include:
o) Cleanup of the PCI and ISA bus frameworks; in practice this means
that more code can be shared between different emulated machine
models than before, and that adding new machine types will become
easier.
o) Dyntrans updates; 32-bit PowerPC mostly, but also many performance
related updates for ARM.
be built with standard settings in /etc/mk.conf, and fixes a problem
in the bulk build results.
In short: install the manual pages into freetds/man/man1 (the rest of
the files in this package have a prefix directory of ${PREFIX}/freetds)
libgsf 1.13.3
J.H.M. Dassen (Ray) :
* Improve documentation.
Jody :
* More work on extension interface to sax import wrapper.
--------------------------------------------------------------------------
libgsf 1.13.0
Jody:
* API changes SAX wrappers for help OpenDoc and SpreadsheetML.
Kasal:
* Improve libtool versioning.
* Relax the gconf requirement.
Luciano Wolf:
* OpenDocument meta stream parser.
Sven Herzberg:
* Fix for GsfOutputGnomeVFS
API change with shlib major change -> BUILDLINK_DEPENDS bumped.
From the CHANGES:
> Major changes compared to the Horde version 3.0.5 are:
> * Fixed sidebar menu layout with Opera browsers.
> * Fixed calendar popup with Safari browsers.
> * Fixed blank screens with Internet Explorer browsers after logins.
> * Fixed warnings with PHP 4.4.0 and 5.0.5.
> * Added ability to enable and disable IMSP globally.
> * Fixed URL generation with some PHP CGI setups.
> * Fixed sharing with groups if using group hooks.
> * Updated Finnish, French, German, Hungarian, Korean, Polish, Slovak,
> Turkish, and Traditional Chinese translations.
> * Minor improvements and bug fixes.
>
> Major changes compared to the Horde version 3.0.6 are:
> * Fixed cross site scripting vulnerabilities in the gzip/tar and css MIME
> viewers.
> * Fixed MySQL session handler.
