a fixed stack buffer when constructing HTTP requests. Prevents an overflow
if a malicious VPN gateway sends a very long hostname/path (for redirects)
or cookie list. (There is a newer release of OpenConnect which includes
this fix, but also some bigger code changes, so that will wait until we
are done with 5.3 release). ok aja@ jasper@
gconf_ping() will try to shutdown gconfd, but since installing pkg is
done as root, there is not gconfd nor dbus that can be started when
DISPLAY isn't set and an annoying warning is issued.
discussed with espie@
Apache ActiveMQ is the most popular and powerful open source
messaging and Integration Patterns server. Apache ActiveMQ is fast,
supports many Cross Language Clients and Protocols, comes with easy to
use Enterprise Integration Patterns and many advanced features while
fully supporting JMS 1.1 and J2EE 1.4.
rc.d help and ok aja@
Fix wrong use of mutexes and some wrong error checking
related to pthreads. (The patch for this had been sent
upstream)
Hack around the abuse of NS_IN6ADDRSZ and NS_INT16S probably
found on certain systems (see Makefile for an explanation).
ok sthen@
- at least three remotely exploitable buffer overflows in the
unique_service_name() function, which is called to process incoming
SSDP requests on UDP port 1900.
- devices that use libupnp may also accept UPnP queries over the
WAN interface, therefore exposing the vulnerabilitites to the
internet.
(and roll shared libs from PFRAG.shared into PLIST while there).
libircclient is a small but extremely powerful library which implements
the IRC protocol. It is designed to be small, fast, portable and
compatible with the RFC standards as well as non-standard but popular
features. It is perfect for building the IRC clients and bots.
tweaks and ok sthen@
