and the line with the unregister.sh script down to the bottom of
the plist. Silences all the blurb about ".../*.haddock doesn't exist
or isn't a file."
diff submitted by Ryan Boggs (MAINTAINER), thanks!
This update fixes a security issue related to host header poisoning.
more details at: ttps://www.djangoproject.com/weblog/2012/oct/17/security/
(it wants Data.Serialize.IEEE754).
Bump the other ports where necessary (because their haskell package
signatures changed).
Suggestion about bumps, and ok kili@
for ruby scripts, so they work correctly without setting up
symlinks manually. Use nginx 1.2.3 for standalone version.
Heads up on curl issues from Peter Ljung via william@
- see http://www.seamonkey-project.org/releases/seamonkey2.13/ for details
- remove patch-mozilla_build_unix_mozilla_in, useless since bin/seamonkey
is not a script anymore since a while
- remove patch-mozilla_build_unix_run-mozilla_sh, seamonkey can be directly
debugged in gdb now. update README accordingly
- fix plugin path in README
- see http://www.mozilla.org/en-US/firefox/16.0/releasenotes/ for details
- install an icon into share/pixmaps to fix desktop file icon path
- garbage collect patch-browser_installer_Makefile_in, and
patch-browser_installer_package-manifest_in, were from upstream
- remove patch-build_unix_mozilla_in, useless since bin/firefox is not a
script anymore since a while
- remove patch-build_unix_run-mozilla_sh, firefox can be directly
debugged in gdb now. update README accordingly
- remove patch-config_autoconf_mk_in, XCFLAGS are already passed
- update patch-content_media_gstreamer_nsGStreamerReader_cpp to fix
gstreamer on BE archs (#777696)
- update patch-extensions_spellcheck_hunspell_src_mozHunspell_cpp after
nsILocalFile api removal
- remove useless patch-gfx_thebes_Makefile_in pangox patch
- fix PLIST to use proper MOZILLA_VERSION instead of beta MOZILLA_VER
on the whole gstreamer gang which are only uses by web browsers to
display audio/video.
So remove RUN_DEPENDS, it'll be explicitely added to webkit browsers
with a small comment so that maintainers of such browsers can decide
which gstreamer dependencies they need/want.
ok landry@ (maintainer)
* Fixes some issues in the admin area where some older browsers (IE7,
in particular) may slow down, lag, or freeze.
* Fixes the use of multiple trackback URLs in a post.
Prevents improperly sized images from being uploaded as headers from
the customizer.
* Ensures proper error messages can be shown to PHP4 installs.
(WordPress requires PHP 5.2.4 or later.)
* Fixes handling of oEmbed providers that only return XML responses.
* Addresses pagination problems with some category permalink
structures.
* Adds more fields to be returned from the XML-RPC wp.getPost method.
* Avoids errors when updating automatically from very old versions of
WordPress (pre-3.0).
* Fixes problems with the visual editor when working with captions.
Tested on i386.
Ok merdely@
ports, for the ports that are built both on ruby 1.8 and ruby 1.9,
switch the category Makefiles to explicitly list the ruby18 FLAVOR
instead of the ruby19 FLAVOR.
Also, for home_run, fastri, and fastercsv, explicitly build only the
ruby 1.8 version of the port. These libraries can run on ruby 1.9, but
it doesn't make sense to build a ruby 1.9 version by default.
FLAVOR and FLAVORS set to ruby18, so attempting to build them without a
FLAVOR set still builds the ruby 1.8 version.
Remove MAINTAINER at his request.
- remove useless patch to gfx/thebes/Makefile.in adding -lpangox-1.0 to
EXTRA_DSO_LDOPTS, this was maybe useful before ffx 3.0, but mozilla
stopped using pangox between 2.0 and 3.0. See for the last traces of
pangox.h use : https://bugzilla.mozilla.org/show_bug.cgi?id=528941. See
also bugs #323671/#338446
- backport the patch from #528941 to remove useless pangox.h inclusion
from www/firefox35.
- remove the RUN_DEPENDS on pangox-compat
- bump all corresponding REVISIONS
- while here, make sure all moz ports depend on latest nspr 4.9.2 since
it'll be a requirement for upcoming gecko 16 releases
The situation is this: even when we --disable-gtk-doc, if gtk-doc is
actually installed at configure stage, tools like gtkdoc-rebase will be
picked up and run during the install target. That is bad because the
gtk-doc package may have been removed by then, especially during dpb(1)
bulks (we explicitely disable support for it so why should it stay...).
So for now, let's add the following env to configure whenever we use
--disable-gtk-doc, until a bettersolution is found...
CONFIGURE_ENV +=ac_cv_path_GTKDOC_CHECK="" \
ac_cv_path_GTKDOC_REBASE="" \
ac_cv_path_GTKDOC_MKPDF=""
* Unbreak custom URI handling
* Fix display of about:favorites with no favorites
* Prevent using back on an about:secviolation page from returning back
to the exact same page that triggered the cert warning.
* Fix build with glib 2.30.0
* Kill a crash when using older libsoup versions
* Sync the preloaded HSTS list with Chromium's
Tested on amd64.
Ok kili@
- allow multiple AddHeader directives
- fixed memory leak in config/AddHeader
- fixed memory leak in DH
- fixed problem in SNI certificate storage
- changed long to long long for support of requests larger than 2GB
- added parsing for certificate CN
- fixed problem in task enqueing
- fixed small problem in Makefile
And others, while here, GROFF is not needed and patches applied
upstream.
Ok 'Looks fine' aja@
separate from the version in the base OS which deliberately does not include
the mail proxy and additional modules. rc.d/enginx script is added (not
rc.d/nginx to avoid conflicting with base). Lua module is also supported.
Most of the work done by william@, with a few tweaks by me and ok william.
README could use more work and as pointed out by ajacoutot we need to
review permissions of the tmp directory, but the diff is already long enough.
@pkgpath markers are set to update from the 1.0.x packages to 1.2.x (with or
without the passenger flavour as appropriate).
GLPI is the Information Resource-Manager with an additional
Administration- Interface. You can use it to build up a database with an
inventory for your company (computer, software, printers...). It has
enhanced functions to make the daily life for the administrators easier,
like a job-tracking-system with mail-notification and methods to build a
database with basic information about your network-topology.
ok aja@
* [NEW] force_https setting and https command to force a given domain
to always use HTTPS
* [NEW] Use force_https to provide a preloaded HSTS list to help avoid
the ssl stripping attack. Sites in this list are taken from
Chromium's preloaded HSTS list, and additional domains added by the
xombrero authors.
* Add a workaround to fix a GTK focus bug until it has been fixed
upstream (see https://bugzilla.gnome.org/show_bug.cgi?id=677329)
* Modify the about:allthethings output to a more C-like syntax
* Remove the usage of relying on some deprecated webkitgtk signals
* Prevent spitting out warnings of deprecated gcrypt functions when
building
* Prevent a crash when using editsrc on about:blank or any other blank
page
* Many various code cleanups
And more.
Ok pascal@
* Fixed base64::decode() return "" if input ends with garbage and no
padding.
* Fixed segmentation fault when logger failed to open log file.
* Added new file allocation method called 'trunc'. --file-allocation
option can now take new value 'trunc'. 'trunc' uses ftruncate()
system call or platform-specific counterpart to truncate a file to a
specified length.
* Added TLS SNI support.
Ok rpointel@ (maintainer)
High-level cross-protocol url-grabber.
Using urlgrabber, data can be fetched in three basic ways:
urlgrab(url) copy the file to the local filesystem
urlopen(url) open the remote file and return a file object
(like urllib2.urlopen)
urlread(url) return the contents of the file as a string
ok aja@
Mozilla Sync server allows bookmarks, tabs, settings, addons, passwords
and history to be shared across several mozilla instances. Most work
done before previous lock, polished last month and finally here it is!
See https://support.mozilla.org/en-US/kb/how-do-i-set-up-firefox-sync
and the provided README for how to set it up properly.
ok sthen@ on a previous version.
- see http://www.seamonkey-project.org/releases/seamonkey2.12/
- garbage collect nsSound.cpp, the original one uses libcanberra
properly and thus sndio.
- remove patch from #750620, merged upstream (mfbt/double-conversion)
- remove patches from #691898, merged upstream (yarr jit ppc)
- remove useless crashreporter patch, we don't have breakpad
- see http://www.mozilla.org/en-US/firefox/15.0/releasenotes/
- add -Os hack to fix a relocation error when linking on ppc (as was
done in tb since 10..)
- garbage collect nsSound.cpp, the original one uses libcanberra
properly and thus sndio.
- remove patch from #750620, merged upstream (mfbt/double-conversion)
- remove patches from #747257, merged upstream (gstreamer fix)
- remove patches from #691898, merged upstream (yarr jit ppc)
CVE-2012-4377 Stored XSS via a File::link to a non-existing image
CVE-2012-4378 Multiple DOM-based XSS flaws due improper filtering of
uselang parameter
CVE-2012-4379 CSRF tokens, available via API, not protected when
X-Frame-Options headers used
CVE-2012-4380 Did not prevent account creation for IP addresses
blocked with GlobalBlocking
CVE-2012-4381 Password saved always to the local MediaWiki database
CVE-2012-4382 Metadata about blocks
feedback/OKs from aja@ william@ jasper@ giovanni@ kevlo@
- move MESSAGE to README.
- add missing dep on php-mysqli.
- change the unpack/fake-install method to use the standard
extract infrastructure.
- @sample contrib/htaccess into .htaccess so apache can use it by
default if allowoverride is enabled. this does some basic user-agent
checks to reduce the risk of phpmyadmin sites showing up in
search engines.
- provide an @sample'd apache config file which enables use of
the .htaccess file and restricts access to localhost. talk about
this in README so people know what's going on. (phpMyAdmin has
a history of security-related bugs, but because it's rather
commonly used it's much better to have it in ports so that
it can be updated easily; these changes make the default
installation safer).
building the static binary. Fixes build problem reported by nigel@ since the
glib-2.0.pc now (correctly) only lists pthread in Libs.private not in Libs.
ok ajacoutot@
