dns/powerdns: update 4.3.0 -> 4.3.1
Improvements:
- EL8 pkgs: Build mysql backend against mariadb-connector-c-devel
- gpgsql: Reintroduce prepared statements
- gsqlite3backend: add missing indexes
- use real remote for supermaster createSlaveDomain()
- Optimize IXFR-to-AXFR fallback path
- Install bind SQL schema files as part of bindbackend
- Do not send out of zone lookups to the backends
Bug Fixes:
- Raise an exception on invalid hex content in unknown records.
- Handle the extra single-row result set of MySQL stored procedures
PR: 249560
Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
Security: CVE-2020-17482
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2020-05.html
Relnotes: https://doc.powerdns.com/authoritative/changelog/4.3.html#change-4.3.1
Approved by: ports-secteam (blanket)
x11/toolcits-pango: Actually apply security patch
Rename the patch that fixes CVE-2010-1010238 so that it is actually applied
when building pango.
Regenerate it using make makepatch
bump portrevision
Reported by: tobik
Security: 456375e1-cd09-11ea-9172-4c72b94353b5
Approved by: ports-secteam (implicit, security fix)
emulators/virtualbox-ose-kmod: Fix a pair of VM bugs
- Use vm_pager_allocate() to allocate OBJT_PHYS objects. This ensures
that they're initialized properly.
- Don't assume that user wiring will succeed.
This had been a team effort, with multiple independent reports,
a wide variety of experiments, and patches written by kib@
and refined by markj@.
I'm bumping PORTREVISION and aligning the revision of both kmod and
application; it's possible the application bump isn't actually
needed but let's make sure they both get rebuilt with this
important (because of changed kernel assumptions) fix.
PR: 249326
Submitted by: kib, markj
Reported by: adridg, Rainer Hurling
Reviewed by: adridg
Approved by: koobs (vbox)
Approved by: ports-secteam (fluffy)
misc/vxl: Fix build on i386
On i386 architectures projects that need SSE2 have to explicitly enable it using -msse2.
Also fix WWW.
Approved by: ports-secteam (fluffy)
graphics/vv: Update 1.4.0-377 -> 1.4.0-383
graphics/vv: Fix build on some systems by adding the workaround for the bug in science/InsightToolkit
Reported by: fallout
Approved by: ports-secteam (fluffy)
misc/openmvg: Fix build by adding liblz4
For some reason lz4 symbols were missing during build.
Reported by: fallout
Approved by: ports-secteam (fluffy)
misc/glow: Fix build on 13
Add the workaround for a bug in Glow that it uses the default C++ compiler when the supplied LLVM version is different.
Reported by: fallout
Approved by: ports-secteam (fluffy)
audio/beatslash-lv2: Fix build on some systems
Waf warning about duplicately-installed files somehow caused failure to find some files later.
This commit adds the patch to prevent duplicate file installation. This fixes the warning and hopefully fixes poudriere build.
I couldn't reproduce this failure in my poudriere.
Also:
* Strip binarires
* Fix WWW
Approved by: ports-secteam (fluffy)
mail/fetchmail: update to 6.4.12 (from 6.4.8)
(Note this isn't the usual MFH changelog as that doesn't make sense in this
particular case; head/ had some churn around a regression in 6.4.10 that
this MFH-of-two-changeset nicely skips over.)
Add: Romanian-language translation by Florentina Musat
Add: manual page now mentions that --sslfingerprint hash is of MD5 type.
Fix: README contained NEWS fragments (broken since c. 1 year/c. 6.4.2,
fixed in 6.4.12) instead of the actual contents.
Update: the > 2^31 "long long" local patch so it patches the right place of the
NEWS file.
PR: 248954
Approved by: Corey Halpin (maintainer)
PR: 249009
Approved by: Corey Halpin (maintainer)
Approved by: ports-secteam@ (fluffy@)
Upgrade to v1.38.1.
Release notes at <https://github.com/libuv/libuv/releases/tag/v1.38.1>.
devel/libuv: Update 1.38.1 -> 1.39.0
Release notes at <https://github.com/libuv/libuv/releases/tag/v1.39.0>.
While here, take maintainership after an offer by thierry@, since this
is an important dependency for the Node.js ports.
Approved by: thierry (maintainer)
Sponsored by: Miles AS
Approved by: ports-secteam (fluffy)
misc/mnn: Fix build on 13 by unbundling Flatbuffers
The bundled Flatbuffers was failing to build on 13 for some reason.
Reported by: fallout
Approved by: ports-secteam (joneum)
graphics/xournalpp: Update 1.0.18 -> 1.0.18.20200819; Fix build failure on 13-CURRENT with clang-11
Failure on 13: error: cannot initialize return object of type 'bool' with an rvalue of type 'nullptr_t'
Reported by: fallout
Approved by: ports-secteam (fluffy)
audio/stegosaurus-lv2: Fix build on 13-CURRENT with clang-11
Symbol was defined in the header and included mutiple times.
Reported by: fallout
Approved by: ports-secteam (fluffy)
audio/playumidi: update to version 0.8.3
This fixes the build on CURRENT after importing LLVM 11.
PR: 248848
Submitted by: Koine Yuusuke (maintainer)
Event: September 2020 Bugathon
Approved by: ports-secteam (fluffy)
net/aslookup: unexpire by updating to 0.13d
- Various fixes are performed, by Chris, dinoex and myself.
- MASTER_SITES and WWW changed to a new home.
- AS queries are now ran against whois.epoch.net, the former server went
offline.
- Hand over maintainership to Chris
PR: 246187
Submitted by: Chris Hutchinson
Approved by: previous maintainer
Approved by: ports-secteam (fluffy)
Update from 1.0.7 to 1.0.9.
<Security note>
Please consider updating brotli to version 1.0.9 (latest).
Version 1.0.9 contains a fix to "integer overflow" problem. This
happens when "one-shot" decoding API is used (or input chunk for
streaming API is not limited), input size (chunk size) is larger
than 2GiB, and input contains uncompressed blocks. After the
overflow happens, `memcpy` is invoked with a gigantic `num`
value, that will likely cause the crash.
</Security note>
Approved by: ports-secteam (fluffy)
