OpenBSD ports changes summary for 2016-11-23 ============================================
audio/p5-Audio-Scan databases/ruby-hiera3 devel/jsoncpp devel/p5-App-Cmd devel/p5-ExtUtils-InstallPaths devel/p5-IO-TieCombine devel/p5-Import-Into devel/p5-Role-Tiny devel/p5-Test-YAML devel/p5-YAML devel/p5-indirect devel/p5-strictures editors/vim lang/ruby multimedia/gstreamer-0.10 multimedia/gstreamer1 net/amule net/mldonkey net/openvpn net/py-botocore print/poppler security/oletools sysutils/awscli sysutils/consul sysutils/rancid sysutils/salt textproc textproc/fzy www/tomcat x11/lablgtk2 x11/xmobar == audio ============================================================= 01/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/audio p5-Audio-Scan ~ Makefile ~ distinfo > update to p5-Audio-Scan-0.96 (sthen@) == databases ========================================================= 02/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/databases ruby-hiera3 ~ Makefile ~ pkg/PLIST > Missing @sample directories. (ajacoutot@) == devel ============================================================= 03/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/devel jsoncpp ~ Makefile ~ distinfo > Update to jsoncpp-1.7.7 (dcoppa@) p5-App-Cmd ~ Makefile ~ distinfo > update p5-App-Cmd to 0.331 > from maintainer Sergey Bronnikov; OK afresh1@ (bluhm@) p5-ExtUtils-InstallPaths ~ Makefile ~ distinfo > update p5-ExtUtils-InstallPaths to 0.011 > form maintainer Sergey Bronnikov; OK afresh1@ (bluhm@) p5-IO-TieCombine ~ Makefile ~ distinfo > update p5-IO-TieCombine 1.005 > form maintainer Sergey Bronnikov; OK afresh1@ (bluhm@) p5-Import-Into ~ Makefile ~ distinfo > update p5-Import-Into to 1.002005 > from maintainer Sergey Bronnikov; input and OK afresh1@ (bluhm@) p5-Role-Tiny ~ Makefile ~ distinfo > update p5-Role-Tiny to 2.000005 > from maintainer Sergey Bronnikov; OK afresh1@ (bluhm@) p5-Test-YAML ~ Makefile ~ distinfo > update devel/p5-Test-YAML to 1.06 > OK bluhm@ (afresh1@) p5-YAML ~ Makefile ~ distinfo > Update devel/p5-YAML to 1.19 (afresh1@) p5-indirect ~ Makefile ~ distinfo > update p5-indirect to 0.37 > from maintainer Sergey Bronnikov; OK afresh1@ (bluhm@) p5-strictures ~ Makefile ~ distinfo > update p5-strictures to 2.000003 > from maintainer Sergey Bronnikov; OK afresh1@ (bluhm@) == editors =========================================================== 04/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/editors vim - patches/patch-src_configure_in ~ Makefile ~ distinfo ~ pkg/PLIST-main + patches/patch-src_configure_ac > update to vim-8.0.0095, including fix for CVE-2016-1248 (arbitrary shell > commands are executed if a file is opened with a malicious modeline) > http://seclists.org/oss-sec/2016/q4/506 > http://seclists.org/oss-sec/2016/q4/att-506/vim_CVE-2016-1248.patch > (sthen@) ~ Makefile + patches/patch-src_option_c TAGGED OPENBSD_6_0 > patch 6.0-stable vim for CVE-2016-1248 (sthen@) == lang ============================================================== 05/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/lang ruby ~ 2.3/Makefile ~ 2.3/distinfo > Update to ruby 2.3.3 (jeremy@) == multimedia ======================================================== 06/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/multimedia gstreamer-0.10 ~ plugins-good/Makefile > Security fix for flxdec: add some write bounds checking > Without checking the bounds of the frame we are writing into, we can > write off the end of the destination buffer. > https://scarybeastsecurity.blogspot.dk/2016/11/0day-exploit-advancing-explo > itation.html > https://bugzilla.gnome.org/show_bug.cgi?id=774834 > From upstream git > OK ajacoutot@ (dcoppa@) gstreamer1 ~ plugins-good/Makefile + plugins-good/patch-gst_flx_gstflxdec_c + plugins-good/patch-gst_flx_gstflxdec_c > Security fix for flxdec: add some write bounds checking > Without checking the bounds of the frame we are writing into, we can > write off the end of the destination buffer. > https://scarybeastsecurity.blogspot.dk/2016/11/0day-exploit-advancing-explo > itation.html > https://bugzilla.gnome.org/show_bug.cgi?id=774834 > From upstream git > OK ajacoutot@ (dcoppa@) == net =============================================================== 07/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net amule ~ Makefile + patches/patch-src_SearchList_cpp + patches/patch-src_SearchList_h + patches/patch-src_amule_h + patches/patch-src_amuled_cpp > Merge two fixes from upstream git repository. > git commit a19567efa969835503823d6f6d193dcc83eb92ef: > Try to find best possible keyword for Kad search. > For example most user will search like this "The oxymoronaccelerator > 2", which would ask the node which indexes "the". This causes higher > traffic for such nodes and makes them a viable target to attackers, > while the kad result should be the same or even better if we ask > the node which indexes the rare keyword "oxymoronaccelerator", so > we try to rearrange keywords and generally assume that the longer > keywords are rarer. > git commit 5cf7ef9a7dcff2776d9ebc8bb8337e7e3203e6ab: > Add a routine to set file name conversion for amuled, which is based > on wxAppConsole: fix sharing directories with non-ASCII names with > aMule daemon. (dcoppa@) mldonkey ~ Makefile ~ patches/patch-src_networks_donkey_donkeyGlobals_ml ~ patches/patch-src_utils_cdk_gdstubs_c ~ patches/patch-src_utils_cdk_zip_ml ~ patches/patch-src_utils_lib_options_ml4 + patches/patch-src_networks_donkey_donkeyOvernet_ml > Other fixes for Ocaml-4.03 > (upstream git commit f8d595df4fe01512fd945bb6d524958d1361a0a8) > ...And regen patches while here (dcoppa@) openvpn - patches/patch-src_openvpn_syshead_h ~ Makefile ~ patches/patch-src_openvpn_tun_c + patches/patch-src_openvpn_route_c TAGGED OPENBSD_6_0 > MFC recent hack to OpenVPN for "topology subnet" setups that avoids > triggering > the "Too many levels of symbolic links" error following changes to the > kernel. (sthen@) py-botocore ~ Makefile ~ distinfo > Update to py-botocore-1.4.78. (ajacoutot@) == print ============================================================= 08/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/print poppler ~ Makefile ~ distinfo > Update to poppler-0.49. (kili@) == security ========================================================== 09/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/security oletools ~ Makefile ~ distinfo ~ pkg/PLIST > update oletools to 0.50. > ok benoit@. (rpointel@) == sysutils ========================================================== 10/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/sysutils awscli ~ Makefile ~ distinfo > Update to awscli-1.11.21. (ajacoutot@) consul ~ Makefile ~ distinfo > Update to consul-0.7.1. (ajacoutot@) rancid - patches/patch-bin_Makefile_in - patches/patch-bin_fnrancid_in ~ Makefile ~ distinfo ~ files/fnlogin.in ~ patches/patch-Makefile_in ~ patches/patch-configure ~ patches/patch-etc_Makefile_in ~ pkg/DESCR ~ pkg/PLIST ~ pkg/README + patches/patch-etc_rancid_conf_sample_in + patches/patch-share_Makefile_in + pkg/MESSAGE > update to rancid-3.5.1, from Pavel Korovin, ok pea@ > --- > If you are upgrading from rancid-<3, please note that router.db field > separator has been changed from ':' to ';' to avoid conflict with IPv6 > addresses. Replace the field separator in router.db files before running > rancid. > The configuration files location is changed from /etc to /etc/rancid. > --- (sthen@) salt - patches/patch-salt_states_archive_py ~ Makefile ~ distinfo ~ pkg/PLIST > Update to salt-2016.11.0. (ajacoutot@) == textproc ========================================================== 11/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/textproc textproc ~ Makefile > Add fzy. (fcambus@) fzy + Makefile + distinfo + pkg/PLIST + pkg/DESCR + patches/patch-Makefile > New import: > Import textproc/fzy. == www =============================================================== 12/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/www tomcat ~ v6/Makefile ~ v6/distinfo ~ v6/pkg/PLIST-examples ~ v7/Makefile ~ v7/distinfo > Updates: > Tomcat 6.0.48 and Tomcat 7.0.73 (dcoppa@) == x11 =============================================================== 13/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/x11 lablgtk2 ~ Makefile ~ distinfo > Bugfixing update to lablgtk2-2.18.5 (dcoppa@) xmobar ~ Makefile + patches/patch-src_Window_hs > Bug fix: off-by-one drawing borders > (upstream git commit fd10cff3c73cb6fc99c3c34473685bf8b95dccdb) (dcoppa@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
