OpenBSD ports changes summary for 2017-03-20 ============================================
databases/evolution-data-server databases/p5-DBD-mysql graphics/libgexiv2 graphics/shotwell multimedia/xine-lib net/gssdp net/gupnp plan9/drawterm security/libsodium www/epiphany www/firefox-esr www/firefox-esr-i18n www/firefox-i18n www/mozilla-firefox x11/gtk+3 x11/xfce4 == databases ========================================================= 01/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/databases evolution-data-server ~ Makefile ~ distinfo > Update to evolution-data-server-3.22.7. (ajacoutot@) p5-DBD-mysql ~ Makefile ~ distinfo > Update to 4.042 (giovanni@) == graphics ========================================================== 02/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/graphics libgexiv2 ~ Makefile ~ distinfo ~ pkg/PLIST > Update to libgexiv2-0.10.5. (ajacoutot@) shotwell - patches/patch-src_Resources_vala ~ Makefile ~ distinfo ~ patches/patch-Makefile_in ~ patches/patch-configure > Update to shotwell-0.26.0. (ajacoutot@) == multimedia ======================================================== 03/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/multimedia xine-lib ~ Makefile ~ pkg/PLIST + pkg/patch-src_combined_ffmpeg_ff_video_decoder_c + pkg/patch-src_demuxers_demux_matroska_c + pkg/patch-src_demuxers_matroska_h > Bring in some bug fixes from upstream and use the FFmpeg decoder for > VP8 / VP9 content. > from Brad (maintainer) (ajacoutot@) == net =============================================================== 04/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net gssdp ~ Makefile ~ distinfo > update to gssdp-1.0.2 (jasper@) gupnp ~ core/Makefile ~ core/distinfo > update to gupnp-1.0.2 (jasper@) == plan9 ============================================================= 05/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/plan9 drawterm ~ Makefile ~ distinfo > Update to drawterm-20170319 > from maintainer Stanley Lieber (jca@) == security ========================================================== 06/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/security libsodium ~ Makefile > use clang to build libsodium on i386 to unbreak (sthen@) ~ Makefile + patches/patch-src_libsodium_Makefile_in > Use sse2 cflags, move back to base compiler on i386. This is a Makefile.in > adaptation of a Makefile.am diff committed upstream (thanks for the quick > fix Frank). (sthen@) == www =============================================================== 07/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/www epiphany ~ Makefile ~ distinfo > update to epiphany-3.22.7 (jasper@) firefox-esr ~ Makefile ~ distinfo > Update to firefox-esr 52.0.1. > Fixes MFSA 2017-08/CVE-2017-5428, see > https://www.mozilla.org/en-US/security/advisories/mfsa2017-08/ > While here, add a patch from semarie@ (tested by and ok danj@) to tweak > a last-minute change in the jit engine memory allocator that happened to > fix a security issue in 52 branch (bug #1334933/CVE-2017-5400) - see > https://hg.mozilla.org/releases/mozilla-esr52/rev/6b35bbf96b67. > Sadly, this change resulted in a browser crashing at startup > on OpenBSD with the default limits, because the jit engine tried to > allocate 1Gb (previously 640Mb in #1334933, then 1Gb because of > #1337561, see > https://hg.mozilla.org/releases/mozilla-esr52/rev/65bb26d07408) and hit > the default datasize ulimit of 768Mb. The patch makes it allocate 128Mb > instead (as it's done on 32bit architectures), while a better (?) fix > might be devised in bug #1347139. > Generally speaking, if you see firefox crashing with ENOMEM errors, > raise the datasize limit for your login class, write your own wrapper > script to temporarly raise the limit when starting firefox, or stop > using the modern web. Websites are ginormous, deal with it. (landry@) firefox-esr-i18n ~ Makefile.inc ~ distinfo + patch-js_src_jit_ProcessExecutableMemory_cpp > Update to firefox-esr 52.0.1. > Fixes MFSA 2017-08/CVE-2017-5428, see > https://www.mozilla.org/en-US/security/advisories/mfsa2017-08/ > While here, add a patch from semarie@ (tested by and ok danj@) to tweak > a last-minute change in the jit engine memory allocator that happened to > fix a security issue in 52 branch (bug #1334933/CVE-2017-5400) - see > https://hg.mozilla.org/releases/mozilla-esr52/rev/6b35bbf96b67. > Sadly, this change resulted in a browser crashing at startup > on OpenBSD with the default limits, because the jit engine tried to > allocate 1Gb (previously 640Mb in #1334933, then 1Gb because of > #1337561, see > https://hg.mozilla.org/releases/mozilla-esr52/rev/65bb26d07408) and hit > the default datasize ulimit of 768Mb. The patch makes it allocate 128Mb > instead (as it's done on 32bit architectures), while a better (?) fix > might be devised in bug #1347139. > Generally speaking, if you see firefox crashing with ENOMEM errors, > raise the datasize limit for your login class, write your own wrapper > script to temporarly raise the limit when starting firefox, or stop > using the modern web. Websites are ginormous, deal with it. (landry@) firefox-i18n ~ Makefile.inc ~ distinfo + patch-js_src_jit_ProcessExecutableMemory_cpp > Update to firefox 52.0.1. > Fixes MFSA 2017-08/CVE-2017-5428, see > https://www.mozilla.org/en-US/security/advisories/mfsa2017-08/ > While here, add a patch from semarie@ (tested by and ok danj@) to tweak > a last-minute change in the jit engine memory allocator that happened to > fix a security issue in 52 branch (bug #1334933/CVE-2017-5400) - see > https://hg.mozilla.org/releases/mozilla-esr52/rev/6b35bbf96b67. > Sadly, this change resulted in a browser crashing at startup > on OpenBSD with the default limits, because the jit engine tried to > allocate 1Gb (previously 640Mb in #1334933, then 1Gb because of > #1337561, see > https://hg.mozilla.org/releases/mozilla-esr52/rev/65bb26d07408) and hit > the default datasize ulimit of 768Mb. The patch makes it allocate 128Mb > instead (as it's done on 32bit architectures), while a better (?) fix > might be devised in bug #1347139. > Generally speaking, if you see firefox crashing with ENOMEM errors, > raise the datasize limit for your login class, write your own wrapper > script to temporarly raise the limit when starting firefox, or stop > using the modern web. Websites are ginormous, deal with it. (landry@) mozilla-firefox ~ Makefile ~ distinfo > Update to firefox 52.0.1. > Fixes MFSA 2017-08/CVE-2017-5428, see > https://www.mozilla.org/en-US/security/advisories/mfsa2017-08/ > While here, add a patch from semarie@ (tested by and ok danj@) to tweak > a last-minute change in the jit engine memory allocator that happened to > fix a security issue in 52 branch (bug #1334933/CVE-2017-5400) - see > https://hg.mozilla.org/releases/mozilla-esr52/rev/6b35bbf96b67. > Sadly, this change resulted in a browser crashing at startup > on OpenBSD with the default limits, because the jit engine tried to > allocate 1Gb (previously 640Mb in #1334933, then 1Gb because of > #1337561, see > https://hg.mozilla.org/releases/mozilla-esr52/rev/65bb26d07408) and hit > the default datasize ulimit of 768Mb. The patch makes it allocate 128Mb > instead (as it's done on 32bit architectures), while a better (?) fix > might be devised in bug #1347139. > Generally speaking, if you see firefox crashing with ENOMEM errors, > raise the datasize limit for your login class, write your own wrapper > script to temporarly raise the limit when starting firefox, or stop > using the modern web. Websites are ginormous, deal with it. (landry@) == x11 =============================================================== 08/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/x11 gtk+3 ~ Makefile ~ distinfo > Update to gtk+3-3.22.11. (ajacoutot@) xfce4 ~ xfwm4/Makefile ~ xfwm4/distinfo > Update to xfwm4 4.12.4 (landry@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
