lang/php74: Update from 7.4.5 to 7.4.6
Changelog:
Core:
Fixed bug #78434 (Generator yields no items after valid() call).
Fixed bug #79477 (casting object into array creates references).
Fixed bug #79514 (Memory leaks while including unexistent file).
Fixed bug #79470 (PHP incompatible with 3rd party file system on demand).
Fixed bug #78784 (Unable to interact with files inside a VFS for Git repository).
Fixed bug #78875 (Long variables cause OOM and temp files are not cleaned). (CVE-2019-11048).
Fixed bug #78876 (Long variables in multipart/form-data cause OOM and temp files are not cleaned). (CVE-2019-11048).
DOM:
Fixed bug #78221 (DOMNode::normalize() doesn't remove empty text nodes).
EXIF:
Fixed bug #79336 (ext/exif/tests/bug79046.phpt fails on Big endian arch).
FCGI:
Fixed bug #79491 (Search for .user.ini extends up to root dir).
MBString:
Fixed bug #79441 (Segfault in mb_chr() if internal encoding is unsupported).
OpenSSL:
Fixed bug #79497 (stream_socket_client() throws an unknown error sometimes with <1s timeout).
PCRE:
Upgraded to PCRE2 10.34.
Phar:
Fixed bug #79503 (Memory leak on duplicate metadata).
SimpleXML:
Fixed bug #79528 (Different object of the same xml between 7.4.5 and 7.4.4).
SPL:
Fixed bug #69264 (__debugInfo() ignored while extending SPL classes).
Fixed bug #67369 (ArrayObject serialization drops the iterator class).
Standard:
Fixed bug #79468 (SIGSEGV when closing stream handle with a stream filter appended).
Fixed bug #79447 (Serializing uninitialized typed properties with __sleep should not throw).
Sponsored by: Bounce Experts
Approved by: ports-secteam (joneum, implicit for PHP Updates)
lang/php73: Update from 7.3.17 to 7.3.18
Changelog:
Core:
Fixed bug #78875 (Long filenames cause OOM and temp files are not cleaned). (CVE-2019-11048)
Fixed bug #78876 (Long variables in multipart/form-data cause OOM and temp files are not cleaned). (CVE-2019-11048)
Fixed bug #79434 (PHP 7.3 and PHP-7.4 crash with NULL-pointer dereference on !CS constant).
Fixed bug #79477 (casting object into array creates references).
Fixed bug #79470 (PHP incompatible with 3rd party file system on demand).
Fixed bug #78784 (Unable to interact with files inside a VFS for Git repository).
DOM:
Fixed bug #78221 (DOMNode::normalize() doesn't remove empty text nodes).
FCGI:
Fixed bug #79491 (Search for .user.ini extends up to root dir).
MBString:
Fixed bug #79441 (Segfault in mb_chr() if internal encoding is unsupported).
OpenSSL:
Fixed bug #79497 (stream_socket_client() throws an unknown error sometimes with <1s timeout).
Phar:
Fixed bug #79503 (Memory leak on duplicate metadata).
SimpleXML:
Fixed bug #79528 (Different object of the same xml between 7.4.5 and 7.4.4).
Standard:
Fixed bug #79468 (SIGSEGV when closing stream handle with a stream filter appended).
Sponsored by: Bounce Experts
Approved by: ports-secteam (joneum, implicit for PHP Updates)
lang/php72: Upgrade from 7.2.30 to 7.2.31
Core:
Fixed bug #78875 (Long filenames cause OOM and temp files are not cleaned). (CVE-2019-11048)
Fixed bug #78876 (Long variables in multipart/form-data cause OOM and temp files are not cleaned). (CVE-2019-11048)
Sponsored by: Bounce Experts
Approved by: ports-secteam (joneum, implicit for PHP Updates)
dns/dnsperf: depends on expired dns/bind914, not compatible with dns/bind916
2020-04-30 dns/bind914: End of life, please migrate to a newer version of BIND9
Convert GitLab patches to simple diffs
GitLab unlike GitHub keeps the footer from git-format-patch(1) which
frequently changes on Git version upgrades. So, switch to git-diff(1)
which lacks header/footer.
Approved by: x11 (zeising via Gitter)
Approved by: ports-secteam (joneum)
Differential Revision: https://reviews.freebsd.org/D24810
net/py-ldappool: Update to 2.4.1
* Separate USES block from non-relevant variables.
* While I'm here: Add "do-test" target to make future QA easier.
Notable changes since 2.2.0:
* Allow pool status to be printed as a table
* Handle retry logic for timeouts with multiple LDAP servers
* Improve connection retry logging
* Fix ldappool bad password retry logic
PR: 246402
Submitted by: sunpoet
Approved by: ports-secteam bugfix blanket
Backport r530401 | gerald | 2020-04-02 from our wine-devel companion:
Explicitly configure --without-unwind so that the presence of the
devel/libunwind port does not pull in an implicit dependency that
is not tracked properly.
Reported by: Andy Mender <andymenderunix@gmail.com>
PR: 245172
Approved by: portmgr (blanket: dependency issue)
www/gitea: Fix viewing of branches with a slash in the name
An issue[0] was filed upstream in January that branches with a slash in
their name (e.g. stable/11) result in a 500 error when attempting to view
them.
I tracked down the issue to the fact that read(2) on a directory fd in
FreeBSD will actually succeed, while it will not on Linux/other OS. I have
filed a PR[1] with go-git to remedy the problem there, and then we
(hopefully) convince gitea maintainers to accept the patch as well once it's
upstreamed.
The attached patch brings it into the ports tree as well, so that FreeBSD
users can more immediately get the fix. It should still apply to the version
in 2020Q2, more or less, with version numbers changed to protect the
innocent.
[0] https://github.com/go-gitea/gitea/issues/9938
[1] https://github.com/go-git/go-git/pull/39
PR: 245863
Approved by: <stb lassitu de> (maintainer)
Aoorived by: koobs (mentor, ports)
Approved by: ports-secteam (blanket: minor bugfix patch)
Explicitly configure --without-inotify so that the presence of the
devel/libinotify port does not pull in an implicit dependency that
is not tracked properly.
Reported by: Andy Mender <andymenderunix@gmail.com>
PR: 245172
Approved by: portmgr (blanket: dependency issue)
Explicitly configure --without-unwind so that the presence of the
devel/libunwind port does not pull in an implicit dependency that
is not tracked properly.
Reported by: Andy Mender <andymenderunix@gmail.com>
PR: 245172
Approved by: portmgr (blanket: dependency issue)
graphics/darktable: fix broken build, data/kernels/ related
This patch is to fix this problem:
| CMake Error at data/kernels/CMakeLists.txt:34 (foreach):
| Unknown argument:
| /usr/ports/graphics/darktable/work/darktable-3.0.0/data/kernels/atrous.cl
Approved by: portmgr@ (blanket approval to fix broken builds)
Note that his revealed a Tools/scripts/mfh bug where it does not currently
check out the port directory, but only files/.
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=246336
Push USES=pkgconfig to the global level instead just contingent on the
VKD3D option.
This makes a real difference for the GNUTLS option (on by default) and
others. Accordingly bump PORTREVISION.
Reported by: Benny Goemans <benny.goemans@belgacom.net>
Approved by: portmgr (blanket: missing dependency)
security/zeek: Update to 3.0.6 and address multiple vulnerabilites:
https://raw.githubusercontent.com/zeek/zeek/v3.0.6/NEWS
- Fix buffer over-read in Ident analyzer
- Fix SSL scripting error leading to uninitialized field access
and memory leak
- Fix POP3 analyzer global buffer over-read
- Fix potential stack overflows due to use of Variable-Length-Arrays
Other changes since 3.0.5 include:
- Fix unusable `subscriber.poll()` method in Broker Python bindings
- Fix uninitialized field access in `ssl/log-hostcerts-only.zeek`
- Fix missing default function for Kerberos constant-lookup-tables
- Fix cloning of `TypeType` values
- Remove misleading error message on empty bloomfilter lookup
- Fix `misc/stats.zeek` skipping log entry on termination
Approved by: ports-secteam (joneum)
databases/mysql80-{client, server}: Update to latest release 8.0.20
- Performance: Certain queries against tables with spatial indexes were not performed as efficiently following an upgrade from MySQL 5.7 to MySQL 8.0.
- NDB Cluster: NDB defines one SPJ worker per node owning a primary partition of the root table. If this table used read from any replica, DBTC put all SPJ workers in the same DBSPJ instance, which effe
- NDB Cluster: Executing the SHOW command using an ndb_mgm client binary from NDB 8.0.16 or earlier to access a management node running NDB 8.0.17 or later produced the error message Unknown field: is_s
- On EL7 and EL8, CMake configuration was adjusted to look for GCC 9 before GCC 8. Because libmysqlclient ships with MySQL distributions, client applications built against libmysqlclient on those platfo
- The max_length_for_sort_data system variable is now deprecated due to optimizer changes that make it obsolete and of no effect.
More Infos: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-20.html
Special thanks to: fluffy
Security: 21d59ea3-8559-11ea-a5e2-d4c9ef517024 (MySQL - Server)
Security: 622b5c47-855b-11ea-a5e2-d4c9ef517024 (MySQL - Client)
Sponsored by: Netzkommune GmbH
Approved by: ports-secteam (with hat)
Backporting 2.1.31 needs more consideration and more than just MFH r534101,
so forgo that and for the nonce, plug this information leak quickly with the
one-line fix by upstream, and hack additional translations to match into the
.po files with REINPLACE_CMD.
Approved by: ports-secteam@ (blanket, trivial security fix)
Security: 88760f4d-8ef7-11ea-a66d-4b2ef158be83
Change default MDNS backend to the more commonly used avahi one.
This avoids conflicting with KDE and other commonly used ports.
Reported by: Chris Watson <bsdunix44@gmail.com>
Approved by: ports-secteam (joneum)
