cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
81,433 Commits 1 Branch 0 Tags 554 MiB
56c723a3e8
Commit Graph

81433 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
jasper
4bf2fc7c44 - add missing build dependency, spotted by several 
ok aja@
 2013-03-02 12:21:10 +00:00
naddy
bacef4041b sync, 7893 2013-02-25 19:14:32 +00:00
jasper
e378789687 add RUN_DEPENDS on php-curl; while it's sort-of-optional dep, it's light and 
useful.

ok landry@ (MAINTAINER) sthen@
 2013-02-24 16:31:54 +00:00
sthen
c0a59f9671 force opus support to be disabled for now (hidden dep); to be enabled 
later.  ok naddy@ espie@
 2013-02-24 14:47:52 +00:00
sthen
80b61379f2 hidden build dep on libgcrypt (which shouldn't be necessary, but to be 
fixed properly later). ok naddy@ espie@
 2013-02-24 14:46:29 +00:00
sthen
950eac2a39 build dep on wdg-sgml-lib, no package change. ok naddy@ espie@ 2013-02-24 14:45:08 +00:00
sthen
089ff7e0cd oops, wrong tree, add a REVISION bump 2013-02-24 14:44:45 +00:00
sthen
3e66370f14 don't pick up openal/freeglut (hidden deps). should probably be enabled at a 
different time in the release cycle. ok naddy@ espie@
 2013-02-24 14:44:25 +00:00
espie
c90669c473 fix LIB_DEPENDS for arches that need the gcc4 modules (multi-packages are 
fun that way). Bump affected pkgs just in case.

problem noticed by rpe@

okay naddy@, sthen@
 2013-02-24 11:18:38 +00:00
jeremy
1f6d81dd85 Update to ruby 1.9.3-p392, fixing CVE-2013-0269 and a DoS 
vulnerability in REXML.

OK jasper@ sthen@
 2013-02-23 01:22:26 +00:00
espie
a1ccfe7ec7 with live debug help from phessler@ : don't register lib signatures from dead 
hosts, thus precluding live hosts from starting up correctly.

okay naddy@
 2013-02-22 19:58:12 +00:00
espie
5d89e474d0 security update, okay jasper@, naddy@ 2013-02-22 17:04:24 +00:00
ajacoutot
f44bdb4a47 Remove an annoying warning at pkg_add/delete time due to an empty manpage. 
Theo confirmed this can still go in.
prodded by and ok sthen@, ok jasper@
 2013-02-21 15:55:32 +00:00
jasper
d3a132e124 add missing build dependency on dbus, as spotted by rpe@ 
ok aja@
 2013-02-21 08:07:34 +00:00
naddy
eca3112a43 5.2 CD packages 2013-02-20 20:22:30 +00:00
ajacoutot
bac61701e3 SECURITY update to owncloud-4.5.7. 
Multiple XSS vulnerabilities (oC-SA-2013-003)
Multiple CSRF vulnerabilities (oC-SA-2013-004)
PHP settings disclosure (oC-SA-2013-005)
Multiple code executions (oC-SA-2013-006)
Privilege escalation in the calendar application (oC-SA-2013-007)
 2013-02-20 15:32:21 +00:00
jasper
64dbe6e3e0 - security update of jenkins to 1.502 which addresses three vulnerabilities, 
as described in https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-02-16

ok aja@
(no response from maintainer as of yet, committing now to make sure it makes 5.3)
 2013-02-19 17:50:44 +00:00
ajacoutot
86e08285c5 Sanitize this package and provide a working runtime out of the box: 
* remove USE_GROFF to prevent warnings
* fix the examples directory
* use .conf files from upcoming 3.1 version (they work by default and the patches can be easily removed when we upgrade)
* add a default minimal puppet.conf that works instead of the currently broken one we ship
* only include conf files we need
* no need to create the hierarchy under /var/puppet since puppet will take care of it

ok robert@ (maintainer), jasper@
 2013-02-19 16:11:16 +00:00
ajacoutot
5de6c24ff0 Unbreak rule parsing by opening the proper libmozjs. 
spotted by landry@
ok landry@ jasper@
 2013-02-19 16:09:15 +00:00
espie
f783cefe01 give a clue to clueless people 
okay sthen@
 2013-02-18 12:07:42 +00:00
jasper
a650be30e4 sync with gtkhtml4 by adding a build dependency on libsoup as used for 
testgtkhtml.

found by naddy@
ok aja@
 2013-02-18 07:53:54 +00:00
sthen
7f9dc60721 The pkg_create magic to handle stripping dynamic libraries on static-only 
arch works by converting the .so to .a (which covers the case where a
shared arch builds an .so with no associated .a). As gettext has a couple
of shared libraries with no associated static library this scheme doesn't
work, so split it back out to PFRAG.shared to disable the magic. Fixes vax.
ok espie@ naddy@
 2013-02-16 18:17:49 +00:00
ajacoutot
8f0aa87e02 Fix for CVE-2013-0292: authentication bypass vulnerability 
ok jasper@ sthen@ espie@
 2013-02-16 09:05:36 +00:00
sthen
106aa47da7 Fix mixed code/decl's in gettext. ok jasper@ aja@ naddy@ 2013-02-15 23:47:04 +00:00
kili
217bf15d14 Ensure that cups/gdevcups.c is compiled with the same flags as 
everything else, especially to get the same value for GX_COLOR_INDEX_TYPE
(and the same field sizes and offsets for the gx_device type).

This fixes crashes with the cups driver on 32 bit archs.

Reported and fix tested by Martin Crossley <martin@crossleys.biz>.

ok aja@ dcoppa@ sthen@
 2013-02-15 12:40:00 +00:00
sthen
34d753f122 unbreak build on a clean system. reported by nigel (and I hit it too), 
ok jasper@ nigel@
 2013-02-15 12:06:11 +00:00
fgsch
5321f2a662 SECURITY UPDATE: fix remote DoS. 
aja@ sthen@ ok
 2013-02-15 09:54:36 +00:00
jasper
7ada00f584 Security fix for CVE-2013-0256, an XSS exploit in RDoc 
ok jeremy@ sthen@
 2013-02-13 18:19:37 +00:00
sthen
4764baf432 add bootstraps to SUPDISTFILES, don't use $ARCH in DISTFILES as (despite 
ONLY_FOR_ARCHS) dpb still fetches the files. fixes spurious dpb errors with
!amd64/i386. ok espie@ kurt@
 2013-02-13 18:13:12 +00:00
robert
66b9154738 add devel/swig as a build dependency and regenerate the swig code 
ok aja@
 2013-02-13 08:02:37 +00:00
jasper
2fe11c9811 - correctly pass SMLNJ_HOME around, unbreaking some scripts. 
from Alexander Polakov
ok sthen@
 2013-02-12 22:32:39 +00:00
jasper
e7663d3def add CVE id that was just issued. 
ok sthen@
 2013-02-12 21:39:47 +00:00
landry
af83a5c988 Enable the colord dependency on hppa & alpha too now that spidermonkey 
builds there. I'll see if gtk+3 builds fine on hppa soon...

ok ajacoutot@ sthen@
 2013-02-12 20:15:37 +00:00
landry
1b92a45ed5 Enable spidermonkey on alpha & hppa. 
It works flawlessly on alpha, crashes right away on hppa, but it's not
worse than sparc64 in that regard, so maybe that'll allow more stuff to
build on those archs.

ok sthen@ ajacoutot@
 2013-02-12 20:02:53 +00:00
chris
8e9f812382 update to 1.0 
ok sthen, naddy
 2013-02-12 16:23:33 +00:00
jeremy
f9972365c6 Update to json 1.7.7, fixing CVE-2013-0269. 
OK jasper@ sthen@
 2013-02-12 15:32:51 +00:00
sthen
74672a6f9d Cherrypick OpenConnect fix; use a dynamically allocated buffer rather than 
a fixed stack buffer when constructing HTTP requests. Prevents an overflow
if a malicious VPN gateway sends a very long hostname/path (for redirects)
or cookie list. (There is a newer release of OpenConnect which includes
this fix, but also some bigger code changes, so that will wait until we
are done with 5.3 release).  ok aja@ jasper@
 2013-02-11 21:16:33 +00:00
bluhm
5b5611e8ac update p5-Net-Inspect to 0.27 
OK jasper@ naddy@
 2013-02-11 21:07:38 +00:00
jasper
94861b42af - deal with ports that have STATIC_PLIST=no in print-plist-all, this unbreaks 
check-conflicts -p.

ok espie@
 2013-02-11 14:31:14 +00:00
jasper
a464ad68b1 move two files from -main to -c++ to fix a conflict between gcc version. 
the conflict was already marked, but these two files were in the wrong PLIST.

ok pascal@ (MAINTAINER) sthen@
 2013-02-11 14:29:54 +00:00
jasper
652a787a46 provide upgrade paths from emacs22 and emacs23 to emacs24; 
as noticed by matthieu@
ok sthen@
 2013-02-11 07:43:06 +00:00
miod
8465c8fd02 m68k arches now use gcc 3 2013-02-10 20:27:42 +00:00
robert
9104392e33 backout previous commit, it's too late for this 2013-02-10 19:45:55 +00:00
robert
7436fe4d96 update to pcre-8.32 2013-02-10 19:32:47 +00:00
sthen
15a8fd3c72 change NO_ARCH default to ${MACHINE_ARCH}/no-arch, discussed with espie & naddy 2013-02-10 13:42:38 +00:00
bcallah
b222b6899a Mark as BROKEN on mips64* - no atomics on those archs. 
Remove devel/llvm as a BUILD_DEPENDS, as it is not actually used.

ok jasper@ aja@ jeremy@ (MAINTAINER)
 2013-02-10 11:10:02 +00:00
bcallah
905a6c7e54 Do this the right way, as noted by espie@ on ports@ 
ok aja@ jasper@ (the two MAINTAINERS)
 2013-02-09 17:38:24 +00:00
ajacoutot
9949e8d7c4 Use chsh(1) at @exec-add / @unexec-delete time to set the correct shell 
for the uucp user.

idea from miod@
ok jasper@ sthen@
 2013-02-09 15:17:46 +00:00
sthen
f5a323c546 Don't use ${FLAVOR:L}, we only support lower-case flavours now. 
OK ajacoutot@ espie@
 2013-02-09 14:49:50 +00:00
jasper
6ecc81e38f - update to libwnck-3.4.5 2013-02-08 18:37:26 +00:00