Update to 1.12.7. See
https://www.wireshark.org/docs/relnotes/wireshark-1.12.7.html for a
list of changes in this release.
Security: CVE-2015-6241
Security: CVE-2015-6242
Security: CVE-2015-6243
Security: CVE-2015-6244
Security: CVE-2015-6245
Security: CVE-2015-6246
Security: CVE-2015-6247
Security: CVE-2015-6248
Security: CVE-2015-6249
Approved by: ports-secteam (with hat)
graphics/libwmf: Fix bug introduced by patch for CVE-2015-4696
- The original CVE-2015-4696 patch from upstream was missing line numbers
in the first patch hunk. The security issue was resolved by the
restructured code but a new potential bug was introduced in the process.
- While here, update to my FreeBSD.org email
PR: 201513
Reported by: Sevan Janiyan <venture37@geeklan.co.uk>
Obtained from: Fedora libwmf RPM git (commit c8bc53c1)
Approved by: ports-secteam (feld), feld (mentor)
Disable use of SSE instructions in Xorg's xf86SlowBcopy() function.
When such instructions are used to copy data from/to mapped video
memory, some hypervisors (e.g. KVM, Microsoft Hyper-V) can generate
SIGILL or SIGBUS exceptions, causing Xorg to crash.
Reported by: nogcjx@fastmail.fm
Approved by: ports-secteam (feld)
PR: 202643
r395861
QEMU update to 2.4.0
- remove patch files accepted and merge upstream
- Add new vgabios-virtio
r396024
Build fixes for 2.4.0
- regenerate patch-pcap
- Escape --extra-ldflags as it looks like the qemu builder is eating spaces
or lines making it frustrating to use.
PR: 202402 202536 202864
r394418
Update qemu-sbruno to track bsd-user branch on github. I *am* the
upstream of this port and maintainer notified developers on 07/17/15 to
update his ports while he is AFK.
Sync's to pre-release 2.4.0
Differential Revision: https://reviews.freebsd.org/D3385
r395787
Build fix:
- Remove etc/qemu/target-x86_64.conf.sample dropped by upstream
- Add vgabios-virtio.bin
r396026
Fix Makefile so that those who want to use this port directly can still
build.
PR: 202536
PR: 202402
Security: CVE-2015-5154
Security: CVE-2015-5165
Security: CVE-2015-5166
Security: da451130-365d-11e5-a4a5-002590263bf5
Security: f06f20dc-4347-11e5-93ad-002590263bf5
Security: ee99899d-4347-11e5-93ad-002590263bf5
Approved by: ports-secteam (feld), feld (mentor)
Update BIND to 9.9.7-P3 and 9.10.2-P4.
Also:
- Add an option to enable the bind min override ttl patch.
- When not using OpenSSL from ports, do not try to unmount the chrooted
engines directory.
- Add an option for embedding PORTREVISION in the server's version string.
Security: CVE-2015-5722, CVE-2015-5986
Sponsored by: Absolight
- Apply fix for CVE-2015-3228, denial of service via crafted Postscript files.
The security relevant change was applied manually as r395047 split the
Ghostscript ports into separate X11-independent and -dependent parts.
PR: 202781
Security: CVE-2015-3228
Security: fc1f6658-4f53-11e5-934b-002590263bf5
Approved by: ports-secteam (feld), feld,delphij (mentors)
Require a C++11-compliant standard library and make it work with GCC < 4.9.
Despite ports r340913, the port still fails to build on FreeBSD 9.3 with
lang/gcc (GCC 4.8):
libreify/src/parser.cc: In member function 'void Reify::Parser::parseProgram()':
libreify/src/parser.cc:130:51: error: 'to_string' is not a member of 'std'
Apply a workaround for bug 193528 found in other ports to make that function
visible to GCC 4.8 (GCC 4.9 and later are fine).
Additionally, the port actually requires a C++11 standard library in
addition to a C++11-compliant compiler, so adjust the USES line and later
simplify the process of choosing which compiler to use.
Approved by: vsevolod (maintainer)
Differential Revision: https://reviews.freebsd.org/D3545
Approved by: portmgr (blanket approval)
- Change upstream GH account
- Change WWW
This is only the GH account change and WWW; the version was already
superceded, but became unfetchable due to this missing MFH.
Approved by: ports-secteam (with hat)
Reset maintainership per mail on freebsd-ports@ list
Requested by: Joe Horn <joehorn@gmail.com> (maintainer)
Approved by: ports-secteam trivial documentation blanket
www/lighttpd: modernize, support lua 5.2+
- Use USE OPTIONs helpers
- add support for lua 5.2+
PR: 202302
Submitted by: pkubaj@riseup.net (maintainer)
Needed to complete merge done in r395736.
Approved by: ports-secteam (delphij)
multimedia/mplayer2: make GIF=on actually work
GIF option was both auto-disabled during configure and broken when
forced to be enabled. So, bump PORTREVISION to restore GIF support
for users with GIF=on.
PR: 202404
Submitted by: Carlos J Puga Medina <cpm@fbsd.es> (maintainer)
Approved by: ports-secteam (delphij)
multimedia/mplayer2: slightly improve options
- Make CACA=on actually work
- Convert PULSE and LIBCDIO to standard spelling
- Drop option descriptions where standardized
PR: 202404
Submitted by: Carlos J Puga Medina <cpm@fbsd.es> (maintainer)
Approved by: ports-secteam (delphij)
