OpenBSD ports changes summary for 2017-07-14 ============================================
devel/git devel/llvm devel/quirks infrastructure/bin lang/clang mail/neomutt misc/osinfo multimedia/gstreamer1 net net/dhcpcd net/py-botocore net/py-smbc print print/py-cups print/system-config-printer security/cyrus-sasl2 security/libsodium sysutils/amazon-ecs-cli sysutils/awscli sysutils/bacula tests/portcheck textproc/libxml www/apache-httpd www/chromium www/phantomjs x11/gnome x11/xscreensaver == devel ============================================================= 01/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/devel git ~ Makefile ~ distinfo ~ patches/patch-t_t1450-fsck_sh > Update to git-2.13.3. (benoit@) llvm - patches/patch-lib_Support_Triple_cpp - patches/patch-tools_lld_ELF_Config_h - patches/patch-tools_lld_ELF_SyntheticSections_cpp ~ Makefile ~ distinfo ~ patches/patch-tools_clang_lib_Basic_Targets_cpp ~ patches/patch-tools_clang_lib_Driver_ToolChains_cpp ~ patches/patch-tools_clang_lib_Driver_Tools_cpp ~ patches/patch-tools_lld_ELF_DriverUtils_cpp ~ patches/patch-tools_lld_ELF_Driver_cpp + patches/patch-lib_MC_MCAsmInfoELF_cpp + patches/patch-lib_MC_MCELFStreamer_cpp + patches/patch-lib_Target_Sparc_SparcFrameLowering_cpp + patches/patch-lib_Target_X86_MCTargetDesc_X86AsmBackend_cpp + patches/patch-tools_clang_include_clang_Basic_DiagnosticGroups_td > update to LLVM-4.0.1, from Brad (maintainer) > been through i386 and amd64 bulks (sthen@) quirks ~ Makefile ~ files/Quirks.pm > py-cups and system-config-printer are back. (ajacoutot@) == infrastructure ==================================================== 02/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/infrastructure bin ~ portcheck > Catch QML-specific errors, inspired by recently discovered breakage. > (zhuk@) == lang ============================================================== 03/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/lang clang ~ clang.port.mk > update to LLVM-4.0.1, from Brad (maintainer) > been through i386 and amd64 bulks (sthen@) == mail ============================================================== 04/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/mail neomutt ~ Makefile ~ distinfo > update to neomutt-20170714 (sthen@) == misc ============================================================== 05/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/misc osinfo ~ osinfo-db-tools/Makefile > Sync WANTLIB after libarchive lost lzo2. > reported by nigel@ (ajacoutot@) == multimedia ======================================================== 06/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/multimedia gstreamer1 ~ Makefile.inc ~ core/Makefile ~ core/distinfo ~ plugins-bad/Makefile ~ plugins-bad/distinfo ~ plugins-base/Makefile ~ plugins-base/distinfo ~ plugins-good/distinfo ~ plugins-libav/distinfo ~ plugins-ugly/distinfo ~ py-gstreamer/distinfo > Update the gstreamer1 gang to version 1.12.2. (ajacoutot@) == net =============================================================== 07/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net net ~ Makefile > +py-smbc > +py-smbc,python3 (ajacoutot@) dhcpcd ~ pkg/README ~ Makefile > Adjust the sample DHCPv6-PD configuration in dhcpcd's pkg-readme following > earlier feedback from naddy, and a reminder about rtsol from Ross L > Richardson. > - convert some description into comments in the sample config > - disable all hooks in DHCPv6-PD sample by overriding "script", they're > often not needed in this situation (and disabling hooks individually with > nohook leaves you open to the potential for new ones being added later) > - rtsol -> "inet6 autoconf" (sthen@) py-botocore ~ Makefile ~ distinfo > Update to py-botocore-1.5.82. (ajacoutot@) py-smbc + Makefile + distinfo + pkg/DESCR + pkg/PLIST > Resurrect and update to py-smbc-1.0.15.7. Needed by the upcoming > resurrection of py-cups and system-config-printer. > Add a python3 FLAVOR. (ajacoutot@) == print ============================================================= 08/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/print print ~ Makefile > +py-cups > +py-cups,python3 > +system-config-printer (ajacoutot@) py-cups + Makefile + distinfo + patches/patch-setup_py + pkg/DESCR + pkg/PLIST > Resurrect and update to py-cups-1.9.73. Add a python3 FLAVOR. (ajacoutot@) system-config-printer + Makefile + distinfo + patches/patch-Makefile_am + patches/patch-cupshelpers_cupshelpers_py + patches/patch-firewallsettings_py + patches/patch-jobviewer_py + pkg/DESCR + pkg/PLIST > Resurrect and update to system-config-printer-1.5.9. (ajacoutot@) == security ========================================================== 09/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/security cyrus-sasl2 ~ Makefile + patches/patch-lib_checkpw_c > fix interoperability between cyrus-sasl and courier-authdaemond > committed upstream > ok aja@ (giovanni@) libsodium - patches/patch-src_libsodium_Makefile_in ~ Makefile ~ distinfo > update to libsodium-1.0.13 (sthen@) == sysutils ========================================================== 10/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/sysutils amazon-ecs-cli ~ Makefile ~ distinfo > Update to ecs-cli-0.6.1. (ajacoutot@) awscli ~ Makefile ~ distinfo > Update to awscli-1.11.119. (ajacoutot@) bacula ~ Makefile ~ distinfo > update to bacula-9.0.1 (sthen@) == tests ============================================================= 11/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/tests portcheck + t19/Makefile + t19/distinfo + t19/pkg/PLIST > New import: > Test for Qt5 QML outside lib/qt5/qml. + t20/Makefile + t20/distinfo + t20/pkg/PLIST > New import: > Test for missing x11/qt5/qtdeclarative dependency. + t21/Makefile + t21/distinfo + t21/pkg/PLIST > New import: > Test for QML files with missing Qt dependency. ~ Makefile + t19.sample + t20.sample + t21.sample > Hook up QML-related tests. (zhuk@) == textproc ========================================================== 12/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/textproc libxml ~ Makefile ~ patches/patch-parser_c ~ patches/patch-valid_c + patches/patch-nanohttp_c > Fix libxml2 CVE-2017-7375, CVE-2017-7376, CVE-2017-9663. > From Matthias Pitzl; OK danj@ (bluhm@) == www =============================================================== 13/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/www apache-httpd ~ Makefile ~ distinfo ~ patches/patch-configure ~ patches/patch-docs_man_httpd_8 ~ pkg/PLIST-main + patches/patch-modules_ssl_mod_ssl_c + patches/patch-modules_ssl_ssl_engine_init_c + patches/patch-modules_ssl_ssl_engine_io_c + patches/patch-modules_ssl_ssl_engine_kernel_c + patches/patch-modules_ssl_ssl_engine_vars_c + patches/patch-modules_ssl_ssl_private_h + patches/patch-modules_ssl_ssl_util_ssl_h > security update to apache-httpd-2.4.26, from David CARLIER with minor > tweaks from me > (2.4.27 to follow) (sthen@) ~ Makefile > oops, reinstate a line i dropped by mistake (sthen@) + patches/patch-support_ab_c > additional patch for ab with earlier libressl > (SSL_CTX_set_*_proto_version), > not needed for -current, but easier to keep in sync for -stable if it's > here (sthen@) ~ Makefile ~ distinfo > update to httpd-2.4.27 (sthen@) ~ Makefile ~ distinfo ~ patches/patch-configure ~ patches/patch-docs_man_httpd_8 ~ pkg/PLIST-main TAGGED OPENBSD_6_1 > MFC security update to Apache httpd-2.4.27 > fixed in 2.4.26: > ap_get_basic_auth_pw() Authentication Bypass CVE-2017-3167 > mod_ssl Null Pointer Dereference CVE-2017-3169 > mod_http2 Null Pointer Dereference CVE-2017-7659 > ap_find_token() Buffer Overread CVE-2017-7668 > mod_mime Buffer Overread CVE-2017-7679 > fixed in 2.4.27: > Read after free in mod_http2 CVE-2017-9789 > Uninitialized memory reflection in mod_auth_digest CVE-2017-9788 (sthen@) + patches/patch-modules_ssl_mod_ssl_c + patches/patch-modules_ssl_ssl_engine_init_c + patches/patch-modules_ssl_ssl_engine_io_c + patches/patch-modules_ssl_ssl_engine_kernel_c + patches/patch-modules_ssl_ssl_engine_vars_c + patches/patch-modules_ssl_ssl_private_h + patches/patch-modules_ssl_ssl_util_ssl_h + patches/patch-support_ab_c TAGGED OPENBSD_6_1 > MFC security update to Apache httpd-2.4.27 > fixed in 2.4.26: > ap_get_basic_auth_pw() Authentication Bypass CVE-2017-3167 > mod_ssl Null Pointer Dereference CVE-2017-3169 > mod_http2 Null Pointer Dereference CVE-2017-7659 > ap_find_token() Buffer Overread CVE-2017-7668 > mod_mime Buffer Overread CVE-2017-7679 > fixed in 2.4.27: > Read after free in mod_http2 CVE-2017-9789 > Uninitialized memory reflection in mod_auth_digest CVE-2017-9788 (sthen@) chromium ~ Makefile + patches/patch-chrome_browser_ui_libgtkui_gtk_ui_cc > Backport a fix from chromium git so that DPI settings are honored. > https://bugs.chromium.org/p/chromium/issues/detail?id=732440 > https://chromium.googlesource.com/chromium/src/+/b50cab37a165f1f11d9a046d7f > 3367e4a563a73f (robert@) phantomjs ~ Makefile ~ patches/patch-src_qt_qtbase_configure ~ patches/patch-src_qt_qtbase_mkspecs_openbsd-g++_qmake_conf + patches/patch-src_qt_qtbase_mkspecs_openbsd-clang_qmake_conf + patches/patch-src_qt_qtbase_mkspecs_openbsd-clang_qplatformdefs_h + patches/patch-src_qt_qtbase_src_corelib_plugin_qlibrary_unix_cpp > reinstate shared library suffix diff from before the phantomjs update. > create a separate configuration for openbsd-clang, similar to what's done > in qt5/qtbase. it doesn't build yet there though, there's a problem early > on > when it detects STL.. (sthen@) == x11 =============================================================== 14/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/x11 gnome ~ control-center/Makefile > Needs print/system-config-printer to interact with CUPS. (ajacoutot@) xscreensaver ~ Makefile ~ pkg/PLIST > Stop creating dot.desktop files; iirc it was needed during the GNOME 2 > ages but is now useless and conflicts with mate-screensaver. > conflict reported by espie@ (ajacoutot@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
