OpenBSD ports changes summary for 2015-11-21 ============================================
cad/xtrkcad databases/sqsh devel/p5-IPC-Run3 devel/p5-boolean emulators emulators/emulationstation emulators/vice graphics/cfdg graphics/exiv2 mail/lumail misc misc/ietf-cli multimedia/gstreamer-0.10 multimedia/motion net/wireshark security/flasm security/hydra sysutils sysutils/noice sysutils/pftop textproc/libxml x11/freerdp x11/xfce4 == cad =============================================================== 01/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/cad xtrkcad - patches/patch-app_bin_misc2_c ~ Makefile ~ distinfo ~ pkg/PLIST > Simple update to 4.2.2 > OK jung@ (sebastia@) == databases ========================================================= 02/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/databases sqsh ~ Makefile > disable session-locking support that uses passwords from getpwuid. > helpfully, if you try to use it it segfaults, leaving around a core > with your password and the sql password. > you could use tmux lock-client instead, which uses lock(1) or a > command of your choice. (sthen@) == devel ============================================================= 03/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/devel p5-IPC-Run3 ~ Makefile ~ distinfo > Update to IPC-Run3-0.048 (jca@) p5-boolean ~ Makefile ~ distinfo ~ pkg/PLIST > Update to boolean-0.45, add the github repo in HOMEPAGE. (jca@) == emulators ========================================================= 04/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/emulators emulators ~ Makefile > +emulationstation (bentley@) emulationstation + Makefile + distinfo + pkg/DESCR + pkg/PLIST > New import: > Import emulationstation-2.0.1a. vice + patches/patch-src_platform_platform_cpu_type_h > Fix a typo that breaks hppa. > No change on other archs, no bump. (jca@) == graphics ========================================================== 05/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/graphics cfdg ~ Makefile + patches/patch-src-common_yglue_h > Unbreak building with newer flex > ok ajacoutot@ (dcoppa@) exiv2 - patches/patch-xmpsdk_src_Makefile ~ Makefile ~ distinfo ~ patches/patch-config_config_mk_in ~ patches/patch-configure ~ patches/patch-src_value_cpp ~ patches/patch-src_version_cpp ~ patches/patch-xmpsdk_src_XMPMeta-Serialize_cpp ~ pkg/PLIST > Update to exiv2-0.25 > Diff from Daniel jakots, bulk by ajacoutot@, ok ajacoutot@ sthen@ (jca@) + patches/patch-src_Makefile + patches/patch-src_http_cpp > Missed in previous. (jca@) == mail ============================================================== 06/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/mail lumail ~ Makefile > Add PORTROACH limit as this is now considered lumail legacy (jturner@) == misc ============================================================== 07/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/misc misc ~ Makefile > +ietf-cli (sthen@) ietf-cli + Makefile + distinfo + pkg/PLIST + pkg/DESCR + patches/patch-ietf + patches/patch-ietf_config > New import: > import ports/misc/ietf-cli, ok phessler@ jca@ == multimedia ======================================================== 08/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/multimedia gstreamer-0.10 ~ plugins-ffmpeg/Makefile ~ plugins-ffmpeg/patch-ext_ffmpeg_gstffmpegdec_c > Unbreak mp3 support. > reported by steven@ (ajacoutot@) motion ~ Makefile > missing AUTO* deps, found by naddy (sthen@) == net =============================================================== 09/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net wireshark ~ Makefile > unbreak bdep (sthen@) ~ Makefile > ah, I found the source of the failure aja@ ran into. bdep on qt5 for now. > (sthen@) == security ========================================================== 10/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/security flasm ~ Makefile ~ pkg/PLIST > add MAKE_FLAGS to Makefile and flasm.ini during installation. > from sthen@ (rpointel@) hydra ~ Makefile ~ distinfo ~ patches/patch-Makefile_am ~ patches/patch-configure ~ patches/patch-hydra-oracle-listener_c ~ patches/patch-hydra-smb_c + patches/patch-hydra-snmp_c > update hydra to 8.1. > From Sebastien Dellac ([email protected]), ok benoit@. (rpointel@) == sysutils ========================================================== 11/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/sysutils sysutils ~ Makefile > link sysutils/noice (jung@) noice + Makefile + distinfo + pkg/PLIST + pkg/DESCR > New import: > import sysutils/noice, a minimalistic file browser pftop ~ Makefile ~ patches/patch-engine_c > don't use CIRCLEQ (sthen@) == textproc ========================================================== 12/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/textproc libxml - patches/patch-buf_c - patches/patch-include_libxml_tree_h - patches/patch-parser_c - patches/patch-xmlreader_c - patches/patch-xzlib_c ~ Makefile ~ distinfo TAGGED OPENBSD_5_8 > Merge all recent CVEs from upstream: > CVE-2015-8242 Buffer overead with HTML parser in push mode > CVE-2015-7500 Fix memory access error due to incorrect entities boundaries > CVE-2015-7499-2 Detect incoherency on GROW > CVE-2015-7499-1 Add xmlHaltParser() to stop the parser > CVE-2015-5312 Another entity expansion issue > CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey > CVE-2015-7498 Avoid processing entities after encoding conversion failures > CVE-2015-8035 Fix XZ compression support loop > CVE-2015-7942-2 Fix an error in previous Conditional section patch > CVE-2015-7942 Another variation of overflow in Conditional sections > CVE-2015-1819 Enforce the reader to run in constant memory > CVE-2015-7941_2 Cleanup conditional section error handling > CVE-2015-7941_1 Stop parsing on entities boundaries errors (ajacoutot@) - patches/patch-buf_c - patches/patch-include_libxml_tree_h - patches/patch-parser_c - patches/patch-xmlreader_c - patches/patch-xzlib_c ~ Makefile ~ distinfo TAGGED OPENBSD_5_8 > SECURITY: merge all recent CVEs from upstream > CVE-2015-8242 Buffer overead with HTML parser in push mode > CVE-2015-7500 Fix memory access error due to incorrect entities boundaries > CVE-2015-7499-2 Detect incoherency on GROW > CVE-2015-7499-1 Add xmlHaltParser() to stop the parser > CVE-2015-5312 Another entity expansion issue > CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey > CVE-2015-7498 Avoid processing entities after encoding conversion failures > CVE-2015-8035 Fix XZ compression support loop > CVE-2015-7942-2 Fix an error in previous Conditional section patch > CVE-2015-7942 Another variation of overflow in Conditional sections > CVE-2015-1819 Enforce the reader to run in constant memory > CVE-2015-7941_2 Cleanup conditional section error handling > CVE-2015-7941_1 Stop parsing on entities boundaries errors > Note that there's a new libxml release out, but it's in a bulk currently... > (ajacoutot@) == x11 =============================================================== 13/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/x11 freerdp ~ Makefile ~ patches/patch-channels_client_CMakeLists_txt ~ pkg/PLIST + patches/patch-channels_CMakeLists_txt + patches/patch-client_CMakeLists_txt + patches/patch-server_CMakeLists_txt + patches/patch-third-party_CMakeLists_txt > Fix loading of plugins to restore clipboard sharing, printer, ... > issue reported by giovanni@ (ajacoutot@) xfce4 ~ xfce4-verve/Makefile ~ xfce4-verve/distinfo ~ xfce4-verve/pkg/PLIST > Update to xfce4-verve 1.1.0. (landry@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
