FreeBSD Monitor
2014-07-24 21:13:31
- Update to 0.2.7.3
- Improve build to include preload.tar.gz files
- Depend upon X11
Mk/Scripts
2014-07-24 21:03:10
- Fix check-plist so that its 'files in plist but missing from STAGEDIR' check
does not incorrectly ignore plist items in %%DOCSDIR%% and %%EXAMPLESDIR%%.
It was incorrectly ignoring these items when %%PORTDOCS%% or %%PORTEXAMPLES%%
was missing. This manifested as a failure in 'make package' later when pkg(8)
detected the missing files.

With hat: portmgr
2014-07-24 20:22:08
- backport upstream security fixes
- fix build with SSL from ports [1]

SECURITY: CVE-2014-0118 (cve.mitre.org)

mod_deflate: The DEFLATE input filter (inflates request bodies) now
limits the length and compression ratio of inflated request bodies to
avoid denial of sevice via highly compressed bodies. See directives
DeflateInflateLimitRequestBody, DeflateInflateRatioLimit, and
DeflateInflateRatioBurst.

http://svn.apache.org/viewvc?view=revision&revision=1611426

SECURITY: CVE-2014-0226 (cve.mitre.org)

Fix a race condition in scoreboard handling,
which could lead to a heap buffer overflow. Thanks to Marek Kroemeke
working with HP's Zero Day Initiative for reporting this.
* include/scoreboard.h: Add ap_copy_scoreboard_worker.
* server/scoreboard.c (ap_copy_scoreboard_worker): New function.
* modules/generators/mod_status.c (status_handler): Use it.

http://svn.apache.org/viewvc?view=revision&revision=1610515

SECURITY: CVE-2014-0231 (cve.mitre.org)

mod_cgid: Fix a denial of service against CGI scripts that do not consume
stdin that could lead to lingering HTTPD child processes filling up the
scoreboard and eventually hanging the server.

http://svn.apache.org/viewvc?view=revision&revision=1611185

[1] noted and testd by mat@

MFH: 2014Q3
Security: f927e06c-1109-11e4-b090-20cf30e32f6d
CVE-2014-0118
CVE-2014-0231
CVE-2014-0226
2014-07-24 20:07:57
- Update from 1.11.3 to 1.11.4

PR: ports/192070
Submitted by: Allan Jude <[email protected]>
2014-07-24 19:59:01
The 11.5 tarball has been removed: mirror it untill I get the time for
the upgrade to 11.6.
2014-07-24 19:31:09
- Add LICENSE
- Don't use a suffix based on selected options
- Add an entry to UPDATING about this
- Use options helpers
- Improve WWW

PR: ports/191563
Submitted by: [email protected]
databases/evolution-data-server databases/glom databases/ldb databases/libgda4 databases/libgda4-bdb databases/libgda4-jdbc databases/libgda4-ldap databases/libgda4-mdb databases/libgda4-mysql databases/libgda4-postgresql databases/libgda5 databases/libgda5-bdb databases/libgda5-jdbc databases/libgda5-ldap databases/libgda5-mdb databases/libgda5-mysql databases/libgda5-postgresql databases/libgda5-ui databases/libgdamm databases/libgdamm5 databases/postgresql84-server databases/postgresql91-server databases/postgresql92-server databases/virtuoso deskutils/kdepim4 deskutils/kdepimlibs4 devel/anjuta devel/apr1 devel/gconf2 devel/p5-Test-OpenLDAP devel/ptlib devel/pwlib dns/bind910 dns/bind98 dns/bind99 dns/ldapdns dns/powerdns dns/powerdns-devel editors/libreoffice emulators/wine emulators/wine-devel ftp/curl ftp/pure-ftpd irc/atheme-services irc/inspircd lang/hiphop-php mail/alpine mail/balsa mail/claws-mail mail/courier mail/cyrus-imapd23 mail/cyrus-imapd24 mail/dbmail mail/dbmail22 mail/dovecot mail/dovecot2 mail/dovecot2-pigeonhole mail/dspam mail/dspam-devel mail/evolution mail/evolution-exchange mail/exim mail/gnarwl mail/milter-greylist mail/milter-greylist-devel mail/opendkim mail/perdition mail/postfix mail/postfix-current mail/postfix210 mail/postfix27 mail/postfix28 mail/postfix29 mail/prayer mail/qmail-activedir mail/qmail-ldap mail/sendmail mail/spamass-milter mail/spmfilter mail/sylpheed mail/tpop3d mail/vpopmail math/gnumeric misc/libhome net/asterisk net/asterisk11 net/courier-authlib-ldap net/echoping net/fpc-ldap net/freeradius2 net/freeradius3 net/gnu-dico net/gq net/isc-dhcp41-server net/isc-dhcp42-server net/isc-dhcp43-server net/ldap2dns net/ldapdiff net/ldapscripts net/lualdap net/netatalk net/netatalk3 net/nss-pam-ldapd net/nss_ldap net/ohphone net/openh323 net/openldap24-server net/openradius net/php5-ldap net/php53-ldap net/php55-ldap net/proftpd-mod_ldap net/proxy-suite net/py-ldap2 net/ruby-ldap net/samba36 net/samba4 net/samba41 net/ss5 net/x2goclient net/xbone net/yptransitd news/nntpcache security/clamav security/cyrus-sasl2-ldapdb security/cyrus-sasl2-saslauthd security/dirmngr security/gnupg security/gnupg1 security/heimdal security/ike security/ipsec-tools security/krb5 security/krb5-maint security/openscep security/openssh-portable security/openvpn-auth-ldap security/pam_ldap security/pam_yubico security/seahorse security/sssd security/strongswan security/sudo sysutils/adtool sysutils/am-utils sysutils/cpu sysutils/ldapenter sysutils/ldapvi sysutils/lookupd_ldap sysutils/msktutil www/aws www/c-icap www/cacheboy16 www/cherokee www/lighttpd www/lusca-head www/mod_cfg_ldap www/mod_vhost_ldap www/nginx www/nginx-devel www/sarg www/squid www/squid32 www/squid33 www/squidguard www/tengine www/xshttpd www/xshttpd-devel
2014-07-24 18:34:16
M /head/x11-toolkits/py-gnome-extras/Makefile
M /head/x11-toolkits/py-gnome-extras/pkg-plist

net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample

databases/libgdamm:
- Drop :keepla
- USES=tar:bzip2
- Use INSTALL_TARGET=install-strip

databases/libgdamm5:
- Add INSTALL_TARGET=install-strip
- Drop --enable-static (inherited from old repocopy)

devel/anjuta x11-toolkits/py-gnome-extras:
- Drop :keepla

dns/powerdns dns/powerdns-devel:
- Convert to USES=libtool
- Add INSTALL_TARGET=install-strip
- Disable static modules
- Stop creating library symlinks with .0 suffix, not needed for dynamically
opened modules

mail/dovecot2:
- Add USES=libtool

mail/dovecot2-pigeonhole:
- Drop CONFIGURE_TARGET (incorrect for Dragonfly)
- Add USES=libtool and INSTALL_TARGET=install-strip

math/gnumeric:
- USES=libtool tar:xz

Approved by: portmgr (implicit, bump unstaged ports)
2014-07-24 16:47:21
- Update to 0.14.1

PR: ports/191857
Submitted by: John W. O'Brien <[email protected]> (maintainer)
2014-07-24 16:33:10
M /head/x11-themes/icons-buuf/Makefile
M /head/x11-toolkits/py-kiwi/Makefile

Reset maintainership for ports not staged with no pending PR

With hat: portmgr
2014-07-24 16:24:05
Stage, and move pkg-install into the plist to handle modifying
files outside of $PREFIX correctly.
2014-07-24 16:22:57
- Update to 0.5.1

Changes: https://github.com/tatsuhiro-t/nghttp2/releases
2014-07-24 16:22:04
- Update to 0.040005

Changes: http://search.cpan.org/dist/GeoIP2/Changes