OpenBSD ports changes summary for 2016-04-14 ============================================
databases/ruby-sequel_pg devel/mozjs17 devel/p5-Coro devel/ruby-puppet_forge devel/spidermonkey devel/xulrunner geo/mapproxy lang/go lang/racket-minimal lang/rust net/ldns net/winexe sysutils/py-elasticsearch-curator sysutils/ruby-r10k textproc/py-elasticsearch www/libwebsockets www/py-urllib3 x11/py-Xlib == databases ========================================================= 01/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/databases ruby-sequel_pg ~ Makefile ~ distinfo > Update to sequel_pg 1.6.16 (jeremy@) == devel ============================================================= 02/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/devel mozjs17 + patches/patch-config_milestone_pl > s/if (defined(@foo))/if (@foo)/ to fix with perl 5.22 (sthen@) p5-Coro ~ Makefile ~ distinfo > update to p5-Coro-6.49 (sthen@) ruby-puppet_forge ~ Makefile ~ distinfo > Update to 2.1.4 > OK jasper@ (sebastia@) spidermonkey + patches/patch-config_milestone_pl > fix with perl 5.22: defined(@array) (sthen@) xulrunner + 24/patches/patch-config_milestone_pl > fix with perl 5.22: defined(@array) (sthen@) == geo =============================================================== 03/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/geo mapproxy - patches/patch-setup_py > garbage-collect now-broken patch, it was replaced with a command in > Makefile (sthen@) == lang ============================================================== 04/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/lang go ~ Makefile ~ distinfo ~ pkg/PLIST > Update to go 1.5.4. OK jasper@ jsing@ (MAINTAINER). > https://groups.google.com/forum/#!topic/golang-announce/9eqIHqaWvck > "Go's crypto libraries passed certain parameters unchecked to the > underlying big integer library, possibly leading to extremely > long-running computations, which in turn makes Go programs vulnerable to > remote denial of service attacks. Programs using HTTPS client > certificates or the Go SSH server libraries are both exposed to this > vulnerability. > This is CVE-2016-3959 and was addressed by this change: > https://golang.org/cl/21533 > Thanks to David Wong for identifying this issue." (juanfra@) ~ Makefile ~ distinfo ~ pkg/PLIST TAGGED OPENBSD_5_9 > Update to go 1.5.4. OK jasper@ jsing@ (MAINTAINER). > https://groups.google.com/forum/#!topic/golang-announce/9eqIHqaWvck > "Go's crypto libraries passed certain parameters unchecked to the > underlying big integer library, possibly leading to extremely > long-running computations, which in turn makes Go programs vulnerable to > remote denial of service attacks. Programs using HTTPS client > certificates or the Go SSH server libraries are both exposed to this > vulnerability. > This is CVE-2016-3959 and was addressed by this change: > https://golang.org/cl/21533 > Thanks to David Wong for identifying this issue." (juanfra@) racket-minimal ~ Makefile > I forgot to add libiconv to LIB_DEPENDS. Spotted by naddy@. (juanfra@) rust ~ Makefile ~ pkg/PLIST-doc > add plist update too in lang/rust > (and bump revision) > bad semarie@, no cookie. (semarie@) == net =============================================================== 05/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net ldns + libldns/patches/patch-doc_doxyparse_pl > fix with perl 5.22: defined(@$foo) (sthen@) winexe + patches/patch-pidl_pidl > fix with perl 5.22: defined @.. (sthen@) == sysutils ========================================================== 06/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/sysutils py-elasticsearch-curator - patches/patch-setup_py ~ Makefile ~ distinfo > update to elasticsearch-curator-3.5.1 > ok sebastia@ (MAINTAINER) (jasper@) ruby-r10k ~ Makefile ~ distinfo ~ pkg/PLIST > Update to 2.2.0 > OK jasper@ (sebastia@) == textproc ========================================================== 07/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/textproc py-elasticsearch ~ Makefile ~ distinfo > update to elasticsearch-2.3.0 > ok sebastia@ (MAINTAINER) (jasper@) == www =============================================================== 08/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/www libwebsockets ~ Makefile ~ distinfo > Update www/libwebsockets 1.7.4 => 1.7.5 > OK abieber@ sthen@ (awolk@) py-urllib3 ~ Makefile ~ distinfo > Update to 1.15 > tested with the only user of it: curator > OK jasper@ (sebastia@) == x11 =============================================================== 09/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/x11 py-Xlib + patches/patch-doc_html_texi2html > minimal patch to fix py-Xlib build with perl 5.22 due to ancient texi2html > someone please kill this and pypanel unless there are objections! (sthen@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
