protocol string to avoid using !SSLv2 which is not supported. ok juanfra@ Brad
* CVE-2017-15130: TLS SNI config lookups may lead to excessive memory usage,
causing imap-login/pop3-login VSZ limit to be reached and the process
restarted. This happens only if Dovecot config has local_name { } or local
{ } configuration blocks and attacker uses randomly generated SNI servernames.
* CVE-2017-14461: Parsing invalid email addresses may cause a crash or leak
memory contents to attacker. For example, these memory contents might contain
parts of an email from another user if the same imap process is reused for
multiple users.
* CVE-2017-15132: Aborted SASL authentication leaks memory in login process.
Tool for sharing files of any size anonymously over the Tor public
anonymity network.
From attila with feedback from sthen, Grégoire Jadi and me; OK sthen.
Also, missing RUN_DEPENDS on it; not strictly, because
security/passwort-store pulls it in, but relying on
transitive BUILD_DEPENDS are a little bit fragile.
ok kn@
This seems to be the way almost all Linux distributions and BSDs ship
LLVM and is what Mesa expects. There are concerns this may cause issues
if ports start linking it, hopefully this won't happen as everything
links libLLVM-X.Y.so where X.Y is the branch version which will have the
same ABI throughout X.Y.Z releases. The rust port explicitly links
statically even if shared libLLVM is available.
Patch cmake files in a similiar way to a patch in NetBSD pkgsrc to
correct symbols not getting added to the shared library on OpenBSD.
Use the documented cmake var for RTTI while here.
ok brad (MAINTAINER) sthen@ bcallah@
ShellCheck is a shell script static analysis tool. The goals of
ShellCheck are:
* To point out and clarify typical beginner's syntax issues, that
causes a shell to give cryptic error messages.
* To point out and clarify typical intermediate level semantic
problems, that causes a shell to behave strangely and
counter-intuitively.
* To point out subtle caveats, corner cases and pitfalls, that may
cause an advanced user's otherwise working script to fail under
future circumstances.
From (maintainer) Caspar Schutijser.
ok kn@, sthen@.
