pkgsrc change:
o set DIST_SUBR to ${PKGNAME}.
Changes:
o 2004-06-07 21:25 (Cosmetic) Negative size in access.log on long
running CONNECT requests
o 2004-06-08 11:01 (Major) Segmentation fault after
"Likely proxy abuse detected"
o 2004-06-18 17:39 (Security issue) Overflow bug in Squid's ntlm_auth helper.
Note: currently below patch isn't applied since it is broken and I'm
not sure how it shold be corrected. I wish it would fixed
before tagging pkgsrc-2004Q2.
o 2004-06-08 11:42 (Minor) sasl_auth doesn't compile with SALS2
changes:
* VPL: (once again) don't lose the comment text from inside a comment
* don't crash when source/VPL buttons are pressed while a plugin is visible
* don't crash when canceling a failed upload
* don't crash when saving files while the structure tree is visible
* don't crash when inserting a dot in an empty CSS file
* fix a major memory leak, cause of many crashes and instability
* don't be confused by quotation marks inside a script area which is
inside a tag value (like <a href="<? echo "foo" ?>">)
* fix search problems when Preview is set to appear in the bottom area
* fix restoration of the toolbar visibility setting
* hide/show the plugin toolbar as well when Show Toolbar is
unchecked/checked
* fix the layout of the Document Properties Dialog
* don't ask for copying a file to the project if it is under the project
directory (happened with symlinked files and projects)
* color with bold in the Files Tree the opened files, even if they are
under a symlinked directory
* don't save the shortcuts as localized strings
* remove the backup files in every case when the document was saved and
don't warn about their presence on the next startup
* <fieldset> is not a single tag
* unconditionally hide the splash screen after 10 seconds
* make uploading of empty folders possible
* don't show the file changed dialog when previewing after Save All or
Project Upload was called
* fix removal of action containing &
* fix toolbar configuration and removal for non-English versions
* improvement: allow two plugins named differently, but using of the same
part
* performance improvement: faster parsing and tree building
o Use subst.mk to patch the files (so the patches are not needed).
o Look for cvsweb.conf in ${PKG_SYSCONFDIR} instead of using
a harcoded "/usr/pkg/etc/cvsweb".
Tested on NetBSD 1.6.2 and Solaris. Installed on FreeBSD but could not
run it without X.
From the (minimal) ChangeLog:
Various stability improvements
Redirecting links correctly marked as visited
Initial support for quoting selected text in messages
Solved problem with duplicate addresses when using "Reply all"
Bug #753: va_copy required
Bug #995: segfault on long URLs (bug in previous patch to Bug #753)
And reduce offset from pkgsrc's patches.
Bump package revision.
* 2004-06-01 08:38 (Medium) Segfault in memBufVPrintf on certain
architectures requiring va_copy
* 2004-06-01 00:00 (Cosmetic) msnt_auth documentation update
* 2004-05-31 23:37 (Cosmetic) dns_servers should default to localhost
if no resolv.conf
* 2004-05-31 23:37 (Cosmetic) FTP directory listing HTML DOCTYPE misread
by some tools
* 2004-06-01 08:26 (Minor) fix compilation on OpenBSD/m88k
* 2004-05-31 22:59 (Cosmetic) Show client ip in cache.log debug output
* 2004-05-31 22:43 (Minor) cacheCurrentUnlinkRequests should be a counter,
not gauge
* 2004-05-31 22:08 (Minor) store_dir_select_algorithm least-load doesn't
work for ufs cache_dir type
* 2004-05-31 21:32 (Cosmetic) Very large cache_mem values reported wrongly
in cache.log
even if it's main app creates another user config directory.
e.g. firefox creates .phoenix, thunderbird creates .thunderbird
so no need to define user config directory for each package based on mozilla.
simply remove ${WRKDIR}/.mozilla is enough
o added ability to "upload" to file:// URLs
o added curl_global_init_mem()
o removed curl_formparse()
o the MSVC project file in the release archive is automatically built
o curl --proxy-digest is a new command line option
o the Windows version of libcurl can use wldap32.dll for LDAP
o added curl_easy_strerror(), curl_multi_strerror() and curl_share_strerror()
o IPv6-enabled Windows hosts now resolves names threaded/asynch as well
o configure --with-libidn can be used to point out the root dir of a libidn
installation (version 0.4.5 or later) for curl to use, then libcurl can
resolve and use IDNA names (domain names with "international" letters)
Bugfixes:
o incoming cookies with domains set with a prefixed dot now works better
o CURLOPT_COOKIEFILE and CURLOPT_COOKIE can be used in the same request
o improved peer certificate name verification
o allocation failures cause no leaks nor crashes
o the progress meter display now handles file sizes up to full 8 exabytes
(which is as high a signed 64 bit number can reach)
o general HTTP authentication improvements
o HTTP Digest authentication with the proxy works
o mulipart formposting with -F and file names with spaces work again
o curl_easy_duphandle() now works when ares-enabled
o HTTP Digest authentication works a lot more like the RFC says
o curl works with telnet and stdin properly on Windows
o configure --without-ssl works even when pkg-config has OpenSSL details
o src/hugehelp.c builds correct again in non-configure build environments
mod_transform is a filter module that allows Apache 2.0 to do dynamic XSL
Transformations on either static XML documents, or XML documents generated
from another Apache module or CGI program.
- fix installation of example README.CSR.
Changes with mod_ssl 2.8.18 (11-May-2004 to 27-May-2004)
*) Fix buffer overflow in "SSLOptions +FakeBasicAuth" implementation
if the Subject-DN in the client certificate exceeds 6KB in length.
(CVE CAN-2004-0488).
*) Handle the case of OpenSSL retry requests after interrupted system
calls during the SSL handshake phase.
*) Remove some unused functions.
without having to hack the Makefile(s).
makes it easier to downgrade to a previous nightly build (provided you
already have the distfile) by simply setting eg. MOZ_VER=20040525, as
I just had to do :)
Many improvements; see the installed file /usr/pkg/share/doc/cvsweb/NEWS or
http://www.freebsd.org/cgi/cvsweb.cgi/projects/cvsweb/NEWS?rev=1.26&content-type=text/x-cvsweb-markup
for more info.
Note: whilst (optional) support for CvsGraph 1.4.0, enscript 1.6.3
and CVSHistory 2.0 exists in this version, this package does
not specifically depend upon those products as the features that use
them are optional...
Changes in release 0.22.2:
* Fix build issues on AIX (Tony Bennett).
* Fix DeltaV commands on locked resources.
* Update to neon 0.24.6:
- SECURITY (CVE CAN-2004-0398): fix for sscanf overflow in date parsing
