Update to 4.4.12
Changelog:
Fixes a bug. When -N is used, the input is not supposed to be split
using $IFS, but leading and trailing IFS whitespace was still removed.
Approved by: ports-secteam (feld)
gecko: unbreak with clang/libc++ 4.0
In file included from mozilla/ipc/contentproc/plugin-container.cpp:7:
In file included from ../../dist/include/nsXPCOM.h:10:
In file included from ../../dist/include/nscore.h:20:
In file included from ../../dist/include/mozilla/mozalloc.h:16:
In file included from objdir/dist/stl_wrappers/new:44:
In file included from objdir/dist/system_wrappers/new:3:
/usr/include/c++/v1/new:132:1: error: function declared '[[noreturn]]' after its first declaration
_LIBCPP_NORETURN _LIBCPP_FUNC_VIS void __throw_bad_alloc(); // not in C++ spec
^
/usr/include/c++/v1/__config:273:30: note: expanded from macro '_LIBCPP_NORETURN'
# define _LIBCPP_NORETURN [[noreturn]]
^
../../dist/include/mozilla/throw_gcc.h:35:1: note: declaration missing '[[noreturn]]' attribute is here
__throw_bad_alloc(void)
^
PR: 216186
Submitted by: dim
Obtained from: upstream
Approved by: ports-secteam blanket
- Fix build when CC is absolute path
Upstream build scripts have some machinery to include compiler-specific
.mak file depending on compiler used. This is handled in an ugly way by the
port, roughly, upstream makefile includes ${CC}.mak and ports Makefile
copies that from default .mak. This is breaks when CC is an absolute path
and is useless anyway, as even if it was implemented properly, customized
.mak files are for compilers we'll never use such as gcc 3.2, intel and suncc.
So make upstream makefile always include the default .mak.
PR: 215253
Approved by: maintainer timeout (mi@aldan.algebra.com, 6 weeks)
Approved by: ports-secteam (with hat)
Move forward to 5.0-gtk3 release.
Changes: <http://rawtherapee.com/blog/rawtherapee-5-released>
Fix compilation on FreeBSD 11+, and enable OpenMP.
Use devel/openmp for libomp.
Code generation improvements: On i386, use SSE2 instead of only SSE [1]
when compiler optimizations are requested (which they are by default) RT
code uses mostly SSE2 for SIMD). Fix i386 SSE2 crashes with GCC(*) (use
clang there), and clean up a bit.
(*) GCC does not get the stack properly aligned in i386 for SSE2 and
causes SIGBUS on startup when trying to access an 8-byte aligned
double[8] array with SIMD instructions. One workaround is -mstackrealign
(which RT does on Win32), the other is to use clang - we don't get
OpenMP on i386 anyhow, so clang 3.4 in 10.3 is sufficient.
Drop -fexpensive-optimizations, clang does not support it, and gcc 5.4
includes it in -O2 and -O3.
Note that the upstream discourages the use of 32-bit architectures for
rawtherapee.
Approved by: ports-secteam@ (junovitch)
Update to 1.1.4: A specially-crafted Opus packet could cause an
integer wrap-around in the SILK LSF stabilization code.
Reported as CVE-2017-0381, but upstream does not believe that any
remote code execution is possible.
https://git.xiph.org/?p=opus.git;a=commit;h=70a3d641b760b3d313b6025f82aed93a4607
Requested by: jbeich
Approved by: ports-secteam (feld)
www/uwsgi: Change default socket mode to 600 for security
This change may be a disruptive for some users, but the default mode
of 777 is a disaster waiting to happen.
Approved by: ports-secteam (with hat)
databases/mariadb101-server: Update to 10.1.21
- Update to 10.1.21
- Fix patches that no longer cleanly apply
- Rename patches to new naming scheme
Security: 4d2f9d09-ddb7-11e6-a9a5-b499baebfeaf
Approved by: ports-secteam (feld)
databases/mysql56: Update to 5.6.35
- Port improvements from MySQL 5.7 port
- Use system libs instead of bundled
- Fix many open PRs
- Change MAINTAINER
PR: 216244 192657 198812 199751 205093
PR: 209618 211248 205983 209338
databases/mysql56-server: Rollback rc script changes
databases/mysql56-server: Do not install my.cnf sample
An issue was discovered where users of mysql did not have a my.cnf and
the recent update was causing mysqld to find a sample my.cnf and load
its parameters. This was causing errors on startup for users of innodb
as the parameters used to init the database did not match the ones in
the sample config file it was now reading.
databases/mysql56-server: Fix build with LibreSSL
- Fix CMake SSL detection
- Always set WITH_SSL=${OPENSSLBASE}
PR: 216311
Approved by: Mahdi Moktari <mokhi64@gmail.com> (maintainer)
Differential Revision: D9272
Revert r432035 part 2, it breaks build with openssl from base
With hat: portmgr
databases/mysql56-server: Fix OpenSSL linking
- Force dynamic linking with OpenSSL
Approved by: ports-secteam (feld)
net/rabbitmq: add full path to the daemon(8) call in rc script.
This allows the script to work in crontab, where /usr/sbin is not
in PATH.
Submitted by: Dmitriy Simakov
Approved by: ports-secteam (feld)
multimedia/x265: unbreak on aarch64[1] and mips
/usr/bin/ld: common/CMakeFiles/common.dir/common.cpp.o: relocation R_AARCH64_ADR_PREL_PG_HI21 against external symbol `__stderrp@@FBSD_1.0' can not be used when making a shared object; recompile with -fPIC
/usr/bin/ld: common/CMakeFiles/common.dir/common.cpp.o(.text+0x1e0): unresolvable R_AARCH64_ADR_PREL_PG_HI21 relocation against symbol `__stderrp@@FBSD_1.0'
/usr/bin/ld: final link failed: Bad value
/usr/bin/ld: x265: hidden symbol `__sync_fetch_and_add_4' in /usr/lib/libgcc.a(stdatomic.o) is referenced by DSO
/usr/bin/ld: final link failed: Nonrepresentable section on output
PR: 216473 [1]
Reported by: pkg-fallout
Submitted by: mikael.urankar@gmail.com [1]
Approved by: portmgr blanket
Approved by: ports-secteam blanket
print/texlive-texmf: unbreak on aarch64 on real hardware
=======================<phase: package >============================
===> Building package for texlive-texmf-20150523_3
pkg-static: Warning: @exec is deprecated, please use @[pre|post][un]exec
====>> Killing timed out build after 3600 seconds
====>> Cleaning up wrkdir
===> Cleaning for texlive-texmf-20150523_3
pkg-static: lstat(/wrkdirs/usr/ports/print/texlive-texmf/work/stage/usr/local/share/texmf-dist/fonts/type1/public/pl/plti7.pfm): No such file or directory
pkg-static: lstat(/wrkdirs/usr/ports/print/texlive-texmf/work/stage/usr/local/share/texmf-dist/fonts/type1/public/pl/plti8.pfb): No such file or directory
pkg-static: lstat(/wrkdirs/usr/ports/print/texlive-texmf/work/stage/usr/local/share/texmf-dist/fonts/type1/public/[...]
Reported by: pkg-fallout (runaway_proces)
Approved by: portmgr blanket (unblocking 172 ports)
Approved by: ports-secteam blanket
mail/pear-Mail_Queue: overloading isError static mismatch
Since devel/pear was upgraded to 1.10.1, mail/pear-Mail_Queue
was broken and could not be used, giving the following error:
PHP Fatal error: Cannot make static method PEAR::isError() non
static in class Mail_Queue in /usr/local/share/pear/Mail/Queue.php on line 126
Upstream bug report: http://pear.php.net/bugs/bug.php?id=20976
PR: 215325
Submitted by: ml@netfence.it
Reported by: ml@netfence.it
Approved by: Jochen Neumeister (maintainer), rakuco (mentor)
Approved by: ports-secteam (feld), rakuco (mentor)
Fix graphics/py-poppler-qt4: fails to build with clang 4.0
PyList_SET_ITEM() is supposed to be void, but as a macro it's an
expression and has a pointer value. Clang 4.0 trips on the bogus
pointer comparison; given the comparison, it should be PyList_SetItem()
which returns -1 on failure.
PR: 216228
Approved by: portmgr blanket, rakuco (mentor)
Approved by: ports-secteam (junovitch), rakuco (mentor)
security/libgcrypt: update to 1.7.6
Noteworthy changes in version 1.7.6
* Bug fixes:
- Fix AES CTR self-check detected failure in the SSSE3 based
implementation.
- Remove gratuitous select before the getrandom syscall.
PR: 216305
Exp-run by: antoine
Approved by: ports-secteam (feld)
- Relax dependency version requirement for pyflakes, fixing the runtime failure:
The 'pyflakes<1.1,>=0.8.1' distribution was not found and is required by flake8
- Update WWW
PR: 213960
Submitted by: pete@nomadlogic.org
Approved by: maintainer timeout (wg, 5 weeks)
Approved by: ports-secteam (with hat)
Update to 4.4.11
Changelog:
Under certain circumstances, bash will evaluate arithmetic expressions as
part of reading an expression token even when evaluation is suppressed. This
happens while evaluating a conditional expression and skipping over the
failed branch of the expression.
There is a race condition in add_history() that can be triggered by a fatal
signal arriving between the time the history length is updated and the time
the history list update is completed. A later attempt to reference an
invalid history entry can cause a crash.
Depending on compiler optimizations and behavior, the `read' builtin may not
save partial input when a timeout occurs.
Subshells begun to run command and process substitutions may attempt to
set the terminal's process group to an incorrect value if they receive
a fatal signal. This depends on the behavior of the process that starts
the shell.
Approved by: ports-secteam (junovitch)
Update to 4.4.7
Changelog:
- Out-of-range negative offsets to popd can cause the shell to crash attempting
to free an invalid memory block.
- When performing filename completion, bash dequotes the directory name being
completed, which can result in match failures and potential unwanted
expansion.
Approved by: ports-secteam (junovitch)
Update to 0.9.11
This includes a security fix for CVE-2016-9941 and CVE-2016-9942
* Drop files/patch-libvncclient_h264.c -- upstream has dropped h264 support
* Switch from USE_OPENSSL to USES+=ssl
* PORTREVISION bump in ports that link against libvncserver.so (with
their default OPTIONS settings) due to change in ABI version of
libvncserver.so
PR: 215802
Submitted by: vlad-fbsd@acheronmedia.com
Security: 64be967a-d379-11e6-a071-001e67f15f5a
Bump PORTREVISION chasing ABI version increment in libvncserver --
this port was missed from r432083, and this change should be MFH'd as
well.
Approved by: ports-secteam (junovitch)
science/openbabel: unbreak with GCC >= 6
GCC defaults to C++14 since 6.0 which no longer converts istream to
bool by default. Instead of fixing just downgrade to C++98.
PR: 216036
Approved by: ports-secteam blanket
