use compatible code for libressl (mupdf expects openssl 1.1.0), and use
certs from /etc/ssl/cert.pem instead of relying only on Adobe embedded
certificate.
OK sthen@
OK kn@
Comment:
set of tools built upon the Test2 framework
Description:
Rich set of tools, plugins, bundles, etc built upon the Test2 testing
library. If you are interested in writing tests, this is the
distribution for you.
This module allows determining the display width of strings, mostly
useful with multibyte character encodings. It provides functionality
equivalent to C's wcwidth(3), wcswidth(3) and mblen(3).
While most characters have a width of 1, there are exceptions - many
east Asian characters have a width of 2, and some languages use Unicode
"combining characters" which have a zero width.
The taiwan-cns11643-fonts package contains TrueType fonts designed by the
Taiwanese Ministry of Education, created to be compliant with the CNS11643
encoding standard.
TW-Kai is a regular-script-style font. It consists of three files: TW-Kai,
containing characters from Unicode's Basic Multilingual Plane; TW-Kai-Ext-B,
containing characters from Unicode's Supplementary Ideographic Plane; and
TW-Kai-Plus, containing characters in the Private Use Plane.
TW-Sung is a Ming-style font. It consists of three files: TW-Sung, containing
characters from Unicode's Basic Multilingual Plane; TW-Sung-Ext-B, containing
characters from Unicode's Supplementary Ideographic Plane; and TW-Sung-Plus,
containing characters in the Private Use Plane.
ok sthen@ rsadowski@
- Affects users of webservers not using .htaccess:
Moved php files outside of public html directory (Apache was protected
by .htaccess)
Some files could be accessed directly, leaking some information, like
the version in about.inc.php but not statistics because it doesn't have
DB access.
- Affects all users:
Some files did not check for authentication and could disclose some info.
Better checks before including files from user input
Fix unescaped variables in ajax_search.php
CVE-2019-10691: Trying to login with 8bit username containing invalid
UTF8 input causes auth process to crash if auth policy is enabled. This
could be used rather easily to cause a DoS. Similar crash also happens
during mail delivery when using invalid UTF8 in From or Subject header
when OX push notification driver is used.
file timestamps in the .tar.gz have the generated file older than the
source file for re2c, resulting in a build failure if re2c was installed
during autoconf but later junked. found by kili@
PKGNAME that hasn't been necessary since long ago.
Got rid of NO_TEST and added MODPY_PYTEST
This update was able to build every user of MODPY_SETUPTOOLS in
/usr/ports/devel without issue.
OK phessler
