Manually merge changes between samba 2.2.7a and samba 2.2.7b,
addressing both CAN-2003-0201 and CAN-2003-0085 by The Common
Vulnerabilities and Exposures (CVE) project.
This release fixes the problem with scrambled screens when using
xemacs in a terminal. Other changes are numerous as its a -current.
Mainly bug fixes.
Please see http://www.xemacs.org for details.
Changes since 2.2.8:
Digital Defense, Inc. has alerted the Samba Team to a serious
vulnerability in all stable versions of Samba currently shipping.
The Common Vulnerabilities and Exposures (CVE) project has assigned
the ID CAN-2003-0201 to this defect.
This vulnerability, if exploited correctly, leads to an anonymous
user gaining root access on a Samba serving system. All versions
of Samba up to and including Samba 2.2.8 are vulnerable. An active
exploit of the bug has been reported in the wild.
- rewrite of large parts of code. Now use net-snmp libraries instead of
calling an external program
- There are now a sdig(8) and sdig.conf(5) man pages
- the debug code now has multiple levels so using -d once
doesn't give you all the really messy unimportant stuff. To see
that, use several - the really ugly ones are hiding down at 5 and 6.
With some snmp fixes by myself, I can now successfully querry my 3com and
alliedtelesyn switches.
XOSD is a simple library to display shaped text on your X display,
like a TV On Screen Display. It also contains an XMMS plugin, and
a simple example program that can display system logs overlayed on
your desktop.
Closes my own PR pkg/18117.
Package change: $PKG_SYSCONFDIR/ctags.conf added as glogal,
configuration file, parsed before /etc/ctags.conf,
/usr/local/etc/ctags.conf and $HOME/.ctags
Changes since version 5.4:
ctags-5.5 (Tue Apr 1 2003)
* Changed kind indicator for methods from 'f' to 'm' [Tcl].
* Changed tags within interfaces to be disabled by default (like prototypes in
C/C++) [Fortran].
* Removed explicit descriptions of individual --<LANG>-types options from
--help output. See new --list-languages and --list-kinds options.
* Removed explicit list of supported languages and supported tag kinds and
mapping patterns from man page. See new --list-languages, --list-kinds, and
--list-maps options.
* Renamed --<LANG>-types option to --<LANG>-kinds (still accepts old name).
* Added --list-kinds option.
* Added --list-maps option.
* Added --list-languages option.
* Added support for dimensioned variables, contributed by Simon Bohlin [ASP].
* Added support for C# language.
* Added support for Erlang language, contributed by Brent Fulgham.
* Added support for HTML language files.
* Added support for JavaScript language files.
* Added support for SML (Standard ML) language, contributed by Venkatesh Prasad.
* Added mapping for .plx to Perl.
* Added tags for autocommand groups [Vim, Patch #664685].
* Added support for numerous language extensions [Fortran].
* Added '$', 'D', and 'd' in column 1 as comment characters [Fortran].
* Added special handling of --options=NONE to disable automatic reading of
options from configuration files or environment.
* Added check for case-insensitive filenames to configure.
* Fixed problem with lower case <SID> tag [Vim, Bug #657327].
* Fixed problem recognizing indented code [Vim, Patch #664685].
* Fixed problem with infinite loop in certain comments [PL/SQL, Bug #629115].
* Fixed problem of incorrect extension field [C, Bug #639639].
* Fixed problem of empty scoping extension field [C, Bug #639644].
* Fixed missing tags for functions split across lines [PHP, Bug #681824].
* Fixed missing tags for nested subprograms using 'contains' [Fortran, Bug #670433].
* Fixed missing tags when variable has same name as keyword [Fortran].
* Fixed spurious tag when an array-spec occurs within an entity-decl [Fortran].
* Fixed mishandling of multiline raw strings [Python, Bug #699171].
* Fixed missing scope extension field on namespaces [C++, C#, Bug #665086].
* Fixed several bugs causing missed tags [Fortran].
* Fixed problem with --langmap option preventing clearing of map [Bug #688442].
* Fixed recognition of Unicode-8 characters [Java].
* Fixed man page errors and omissions.
* Fixed bug in readFieldValue() in readtags library.
* Fixed bug in option parsing in readtags command-line program.
* Fixed portability problems with DJGPP [Bug #692569].
* Fixed portability problems with Cygwin.
From 2.4.2 to 2.5.0 (March/22/2003)
Main change:
* An alternate TV schedule presentation layout with separate columns
for each TV network, similar to the layout principles used by paper
based TV magazines. See a comparison of screenshots of the alternate
and regular layouts.
In detail (Windows-changes omitted):
* Added an alternate layout for GUI: programmes are still sorted
by start time, but presented in separate columns for each
network. Schedules of different networks are aligned, so that
programmes which run at the same time are approximately at the same
height. The new layout also supports user-defined presentation,
i.e. free selection of all attributes which are printed for each
programme, possibly depending on filter shortcuts (for example you
can print more details for movies), plus marking selected programmes
by use of colors and icons.
* UNIX xawtv: implemented "overlay" EPG popup based on nxtvepg
controlled window (no longer uses "vtx" removed command, which was
removed in xawtv-3.7x) The colors can be configured via the new
resources xawtv_overlay_fg and xawtv_overlay_bg (see manual for
details)
* UNIX: the Nxtvepg app-defaults file is now loaded during startup
because some user's didn't realize they should have copied
modified entries into their $HOME/.Xdefaults
* Fixed bug in description text redundancy removal from 2.4.2: texts
with less than 30 characters length were not removed. Thanks to
Thierry for pointing this out. Also fixed a bug which caused text
truncation.
* Fixed bug in text decoder which caused some national characters to
be displayed falsely, e.g. "D'ECONSEILL'" instead of "D?CONSEILL?".
* Fixed bug in "global invert" filter matching (depending on which
filter types were inverted, expired programmes could have shown up
in the listing)
* added possibility to combine several text searches (logical OR)
* added fixes for FreeBSD and NetBSD provided by Simon Barner
* added Linux "devfs" compatibility, i.e. find /dev/v4l/vbi
* added Makefile fixes provided by Debian maintainer Gerd Knorr
* fixed SEGV during build on IA64 due to missing include in tcl2c tool
(reported to Debian bug tracking by Bdale Garbee)
This program has been written in frustration because some constructs in LaTeX
are sometimes non-intuitive, and easy to forget. It is _not_ a replacement
for the built-in checker in LaTeX; however it catches some typographic errors
LaTeX oversees. In other words, it is Lint for LaTeX. Filters are also
provided for checking the LaTeX parts of CWEB documents.
Disk based hashes is a method to create multidimensional binary trees on disk.
This library permits the extension of database concept to a plethora of
electronic data, such as graphic information. With the multidimensional binary
tree it is possible to mathematically prove that access time to any
particular record is minimized (using the concept of critical points from
calculus), which provides the means to construct optimized databases for
particular applications.
Submitted by benedikt.meurer@unix-ag.uni-siegen.de in pkgsrc-wip
Disk based hashes is a method to create multidimensional binary trees on disk.
This library permits the extension of database concept to a plethora of
electronic data, such as graphic information. With the multidimensional binary
tree it is possible to mathematically prove that access time to any
particular record is minimized (using the concept of critical points from
calculus), which provides the means to construct optimized databases for
particular applications.
Submitted by benedikt.meurer@unix-ag.uni-siegen.de in pkgsrc-wip
The primary purpose of whisker is to be a URL scanner, which is
used to search for known vulnerable CGIs on websites. Whisker does
this by both scanning the the CGIs directly as well as crawling the
website in order to determine what CGIs are already currently in
use.
Submitted by adrianp@stindustries.net in pkgsrc-wip
The primary purpose of whisker is to be a URL scanner, which is
used to search for known vulnerable CGIs on websites. Whisker does
this by both scanning the the CGIs directly as well as crawling the
website in order to determine what CGIs are already currently in
use.
Submitted by adrianp@stindustries.net in pkgsrc-wip
iplog is a TCP/IP traffic logger. Currently, it is capable of logging
TCP, UDP and ICMP traffic. Adding support for other protocols
should be relatively easy.
iplog's capabilities include the ability to detect TCP port
scans, TCP null scans, FIN scans, UDP and ICMP "smurf" attacks,
bogus TCP flags (used by scanners to detect the operating system in use),
TCP SYN scans, TCP "Xmas" scans, ICMP ping floods, UDP scans, and IP
fragment attacks.
iplog is able to run in promiscuous mode and monitor traffic to all hosts
on a network.
iplog uses libpcap to read data from the network and can be ported
to any system that supports pthreads and on which libpcap will function.
Submitted by Martin Mersberger <gremlin@portal-to-web.de> in PR 20887
