aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Bump revisions of poppler consumers after r544863Tobias C. Berner2020-08-1474-64/+74
| | | | Notes: svn path=/head/; revision=544866
* devel/py-enlighten: Add the "python" categoryYuri Victorovich2020-08-141-1/+1
| | | | Notes: svn path=/head/; revision=544865
* devel/py-blessed: Add the "python" categoryYuri Victorovich2020-08-141-1/+1
| | | | | | | Reported by: koobs (via e-mail) Notes: svn path=/head/; revision=544864
* graphics/poppler: update to 20.08.0Tobias C. Berner2020-08-142-5/+5
| | | | | | | | | | | | | | | | | | | | Release 20.08.0: core: * Sub-page objects: initialize clip max values considering the render resolution. Issue #937 * Splash: Set initial line width to 1. Issue #674 * Fix stack overflow with specially crafted files * GfxShading: Simplify holding the Function * Splash: Fix x86 + windows asm build qt5: * Deprecate Document::toc * Deprecate AnnotationUtils PR: 248419 Exp-run by: antoine Notes: svn path=/head/; revision=544863
* misc/py-toil: Update 3.22.0 -> 4.2.0Yuri Victorovich2020-08-142-10/+8
| | | | Notes: svn path=/head/; revision=544862
* New port: devel/py-enlighten: Console progress bar module for PythonYuri Victorovich2020-08-144-0/+32
| | | | Notes: svn path=/head/; revision=544861
* New port: devel/py-blessed: Easy, practical library for making terminal appsYuri Victorovich2020-08-144-0/+32
| | | | Notes: svn path=/head/; revision=544860
* misc/py-kartograph: Remove the 2.7 limitation on python because it's no ↵Yuri Victorovich2020-08-141-4/+2
| | | | | | | longer needed Notes: svn path=/head/; revision=544859
* net/openldap4-server: update to 2.4.51.Xin LI2020-08-144-19/+6
| | | | Notes: svn path=/head/; revision=544858
* mail/dovecot, mail/dovecot-pigeonhole: upgrade to 2.3.11.3 and 0.5.11, ↵Larry Rosenman2020-08-1410-28/+22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | repectively. dovecot changelog: * CVE-2020-12100: Parsing mails with a large number of MIME parts could have resulted in excessive CPU usage or a crash due to running out of stack memory. * CVE-2020-12673: Dovecot's NTLM implementation does not correctly check message buffer size, which leads to reading past allocation which can lead to crash. * CVE-2020-10967: lmtp/submission: Issuing the RCPT command with an address that has the empty quoted string as local-part causes the lmtp service to crash. * CVE-2020-12674: Dovecot's RPA mechanism implementation accepts zero-length message, which leads to assert-crash later on. * Events: Fix inconsistency in events. See event documentation in https://doc.dovecot.org. * imap_command_finished event's cmd_name field now contains "unknown" for unknown commands. A new "cmd_input_name" field contains the command name exactly as it was sent. * lib-index: Renamed mail_cache_compress_* settings to mail_cache_purge_*. Note that these settings are mainly intended for testing and usually shouldn't be changed. * events: Renamed "index" event category to "mail-index". * events: service:<name> category is now using the name from configuration file. * dns-client: service dns_client was renamed to dns-client. * log: Prefixes generally use the service name from configuration file. For example dict-async service will now use "dict-async(pid): " log prefix instead of "dict(pid): " * *-login: Changed logging done by proxying to use a consistent prefix containing the IP address and port. * *-login: Changed disconnection log messages to be slightly clearer. + dict: Add events for dictionaries. + lib-index: Finish logging with events. + oauth2: Support local validation of JWT tokens. + stats: Add support for dynamic histograms and grouping. See https://doc.dovecot.org/configuration_manual/stats/. + imap: Implement RFC 8514: IMAP SAVEDATE + lib-index: If a long-running transaction (e.g. SORT/FETCH on a huge folder) adds a lot of data to dovecot.index.cache file, commit those changes periodically to make them visible to other concurrent sessions as well. + stats: Add OpenMetrics exporter for statistics. See https://doc.dovecot.org/configuration_manual/stats/openmetrics/. + stats: Support disabling stats-writer socket by setting stats_writer_socket_path="". - auth-worker: Process keeps slowly increasing its memory usage and eventually dies with "out of memory" due to reaching vsz_limit. - auth: Prevent potential timing attacks in authentication secret comparisons: OAUTH2 JWT-token HMAC, imap-urlauth token, crypt() result. - auth: Several auth-mechanisms allowed input to be truncated by NUL which can potentially lead to unintentional issues or even successful logins which should have failed. - auth: When auth policy returned a delay, auth_request_finished event had policy_result=ok field instead of policy_result=delayed. - auth: auth process crash when auth_policy_server_url is set to an invalid URL. - auth: Lua passdb/userdb leaks stack elements per call, eventually causing the stack to become too deep and crashing the auth or auth-worker process. - dict-ldap: Crash occurs if var_expand template expansion fails. - dict: If dict client disconnected while iteration was still running, dict process could have started using 100% CPU, although it was still handling clients. - doveadm: Running doveadm commands via proxying may hang, especially when doveadm is printing a lot of output. - imap: "MOVE * destfolder" goes to a loop copying the last mail to the destination until the imap process dies due to running out of memory. - imap: Running "UID MOVE 1:* Trash" on an empty folder goes to infinite loop. - imap: SEARCH doesn't support $. - lib-compress: Buffer over-read in zlib stream read. - lib-dns: If DNS lookup times out, lib-dns can cause crash in calling process. - lib-index: Fixed several bugs in dovecot.index.cache handling that could have caused cached data to be lost. - lib-index: Writing to >=1 GB dovecot.index.cache files may cause assert-crashes: Panic: file mail-index-util.c: line 37 (mail_index_uint32_to_offset): assertion failed: (offset < 0x40000000) - lib-mail: v2.3.11 regression: MIME parts not returned correctly by Dovecot MIME parser. - lib-ssl-iostream: Fix buggy OpenSSL error handling without assert-crashing. If there is no error available, log it as an error instead of crashing: Panic: file iostream-openssl.c: line 599 (openssl_iostream_handle_error): assertion failed: (errno != 0) - lib-ssl-iostream: ssl_key_password setting did not work. - pop3-login: Login didn't handle commands in multiple IP packets properly. This mainly affected large XCLIENT commands or a large SASL initial response parameter in the AUTH command. - pop3: pop3_deleted_flag setting was broken, causing: Panic: file seq-range-array.c: line 472 (seq_range_array_invert): assertion failed: (range[count-1].seq2 <= max_seq) - pop3-login: Login would fail with "Input buffer full" if the initial response for SASL was too long. - submission: A segfault crash may occur when the client or server disconnects while a non-transaction command like NOOP or VRFY is still being processed. - virtual: Copying/moving mails with IMAP into a virtual folder assert-crashes: Panic: file cmd-copy.c: line 152 (fetch_and_copy): assertion failed: (copy_ctx->copy_count == seq_range_count(&copy_ctx->saved_uids)) pigeonhole changelog: * managesieve: managesieve_max_line_length setting is now a "size" type instead of just number of bytes. This allows using e.g. "64k" as the value. - lib-sieve: When folding white space is used in the Message-ID header, it is not stripped away correctly before the message ID value is used, causing e.g. garbled log lines at delivery. PR: 248640 PR: 248644 Submitted by: juraj@lutter.sk Reported by: juraj@lutter.sk MFH: 2020Q3 Security: 87a07de1-e55e-4d51-bb64-8d117829a26a Security: CVE-2020-12100 Security: CVE-2020-12673 Security: CVE-2020-10967 Security: CVE-2020-12674 Notes: svn path=/head/; revision=544857
* security/vuxml: mail/dovecot multiple vulnerabilities.Larry Rosenman2020-08-141-0/+45
| | | | Notes: svn path=/head/; revision=544856
* MOVED: Fix typo: editors/nvi2-ports -> editors/nvi2-portCraig Leres2020-08-131-1/+1
| | | | | | | Thanks to @zi for helping me to find this. Notes: svn path=/head/; revision=544855
* Upgrade devel/opengrok to version 1.3.16, unbreak, undeprecate, andDon Lewis2020-08-136-142/+342
| | | | | | | | | | | | | | | | unexpire. Take maintainership. Tomcat < 8.0 is no longer supported. Upstream is silent on resin, but claims that glassfish is supported. Upstream says to use uctags. Upgrading requires re-indexing. Notes: svn path=/head/; revision=544854
* graphics/ilmbase, graphics/openexr: PORTREVISION bump for usersMatthias Andree2020-08-1335-31/+35
| | | | | | | | | | | ilmbase and openexr were updated to v2.5.3 and their shlibs changed from *.25.0.1 to *.25.0.2. This is a PORTREVISION bump to ports using ilmbase or openexr to chase that change and trigger rebuild. Notes: svn path=/head/; revision=544853
* devel/py-ordereddict: Remove the 2.7 limitation on python because it's no ↵Yuri Victorovich2020-08-131-2/+2
| | | | | | | | | longer needed Approved by: portmgr (blanket; unbreak for the upcoming 2.7 EOLing) Notes: svn path=/head/; revision=544852
* net-im/py-unmessage: Remove the 2.7 limitation on python because it's no ↵Yuri Victorovich2020-08-131-6/+3
| | | | | | | | | longer needed The previus commit was reverted because security/py-pyaxo was still at 2.7 Notes: svn path=/head/; revision=544851
* sysutils/py-zfs-autobackup: define NO_ARCH=yesSerhii (Sergey) Kozlov2020-08-131-0/+2
| | | | Notes: svn path=/head/; revision=544850
* graphics/ilmbase, graphics/openexr: security update to v2.5.3Matthias Andree2020-08-136-20/+28
| | | | | | | | | | | | | | | | | | | | | | | | | ChangeLog: https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.5.3 "Patch release with various bug/security fixes and build/install fixes, plus a performance optimization: * Various sanitizer/fuzz-identified issues related to handling of invalid input * Fixes to misc compiler warnings [...] * Read performance optimization (#782) * Fix for building on non-glibc (#798) * Fixes to tests" The full name of shared libraries changed from *.25.0.1 to *.25.0.2 => PORTREVISION bumps for all ports that use either ilmbase or openexr coming up in separate commit to ease MFH. All test builds of direct users succeeded on 12.1 amd64. MFH: 2020Q3 (patchlevel update w/ security fixes) Security: b1d6b383-dd51-11ea-a688-7b12871ef3ad Notes: svn path=/head/; revision=544849
* security/py-pyaxo: Remove the 2.7 restriction from python because it's no ↵Yuri Victorovich2020-08-131-3/+3
| | | | | | | longer needed Notes: svn path=/head/; revision=544848
* Update to the latest versionMateusz Piotrowski2020-08-132-9/+5
| | | | Notes: svn path=/head/; revision=544847
* Remove unncessary memcpy(3) and fix file system ID handling.Jung-uk Kim2020-08-132-2/+3
| | | | | | | | | | | I removed a bzero() call to reduce compiler warnings in the previous commit (r544829). It turned out the next memcpy() call was also wrong. Just use natural assignments here not to obfuscate the code. Reported by: Martin Simmons (martin at lispworks dot com) (some time ago) Notes: svn path=/head/; revision=544846
* misc/nn-insight: fix build with GCC and on headPiotr Kubaj2020-08-133-0/+29
| | | | | | | | | | | | | | Add missing includes. This fixes build on stable/12 for powerpc64 (with GCC) and on head with powerpc64. Looking at https://www.freshports.org/misc/nn-insight/, it seems currently doesn't build even on head/amd64, so those includes should fix it. The original error that made me look into it was: /wrkdirs/usr/ports/misc/nn-insight/work/nn-insight-1.0.5/tensor.h:18:75: error: 'std::shared_ptr' has not been declared 18 | bool readTensorDataAsJson(const char *fileName, const TensorShape &shape, std::shared_ptr<const float> &tensorData); | ^~~ MFH: 2020Q3 (fix build blanket) Notes: svn path=/head/; revision=544844
* Update from 1.18.0 to 1.19.0.Sergey A. Osokin2020-08-133-174/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | <ChangeLog> *) Feature: reworked IPC between the router process and the applications to lower latencies, increase performance, and improve scalability. *) Feature: support for an arbitrary number of wildcards in route matching patterns. *) Feature: chunked transfer encoding in proxy responses. *) Feature: basic variables support in the "pass" option. *) Feature: compatibility with PHP 8 Beta 1. Thanks to Remi Collet. *) Bugfix: the router process could crash while passing requests to an application under high load. *) Bugfix: a number of language modules failed to build on some systems; the bug had appeared in 1.18.0. *) Bugfix: time in error log messages from PHP applications could lag. *) Bugfix: reconfiguration requests could hang if an application had failed to start; the bug had appeared in 1.18.0. *) Bugfix: memory leak during reconfiguration. *) Bugfix: the daemon didn't start without language modules; the bug had appeared in 1.18.0. *) Bugfix: the router process could crash at exit. *) Bugfix: Node.js applications could crash at exit. *) Bugfix: the Ruby module could be linked against a wrong library version. </ChangeLog> Notes: svn path=/head/; revision=544843
* misc/pyobd: Remove the 2.7 limitation on python because it's no longer neededYuri Victorovich2020-08-131-5/+2
| | | | Notes: svn path=/head/; revision=544842
* Revert r544837 and unbreak bulk -aAntoine Brodin2020-08-131-1/+4
| | | | | | | With hat: portmgr Notes: svn path=/head/; revision=544841
* devel/blitz: Remove the 2.7 python limitation because it's no longer neededYuri Victorovich2020-08-131-4/+1
| | | | Notes: svn path=/head/; revision=544840
* science/dvc: Remove the 2.7 python limitation because the cuplrit dependency ↵Yuri Victorovich2020-08-131-7/+4
| | | | | | | is now python3-compatible Notes: svn path=/head/; revision=544839
* devel/py-jsonpath-rw: Add missing USE_PYTHON=concurrentYuri Victorovich2020-08-131-2/+3
| | | | Notes: svn path=/head/; revision=544838
* net-im/py-unmessage: Remove 2.7 restriction from USES=python because the ↵Yuri Victorovich2020-08-131-5/+2
| | | | | | | culprit dependency is now python3-compatible Notes: svn path=/head/; revision=544837
* audio/py-opuslib: Update 2.0.0 -> 3.0.1Yuri Victorovich2020-08-133-6/+7
| | | | Notes: svn path=/head/; revision=544836
* Update audio/musescore to latest upstream release, 3.5Adriaan de Groot2020-08-133-14/+19
| | | | | | | | | | | | | | | | | - There's no minor (3.5.0) so fiddle a bit with the PLIST substitution - Adds dependencies for Qt graphicaleffects - Since musescore is not Qt 5.15 compatible (the palettes are broken, see https://musescore.org/en/node/307238) but usable-ish, I'm still committing this since it's no worse than the previous version w/ Qt 5.15, and users with an older Qt can build against that. Upstream release notes: https://musescore.org/en/handbook/developers-handbook/release-notes/release-notes-musescore-3x/release-notes-musescore-35x-3 PR: 247466 Notes: svn path=/head/; revision=544835
* audio/py-hsaudiotag: Replace with a python3-compatible version ↵Yuri Victorovich2020-08-136-11/+9
| | | | | | | audio/py-hsaudiotag3k Notes: svn path=/head/; revision=544834
* math/py-PyMetis: Update 2016.2 -> 2019.1.1Yuri Victorovich2020-08-132-9/+8
| | | | Notes: svn path=/head/; revision=544833
* biology/groopm: Remove python's 2.7 restriction placed here by mistakeYuri Victorovich2020-08-131-5/+2
| | | | Notes: svn path=/head/; revision=544832
* sysutils/consul: update to 1.8.3Steve Wills2020-08-132-4/+4
| | | | Notes: svn path=/head/; revision=544831
* www/py-html: Replace with python3-compatible www/py-html3Yuri Victorovich2020-08-136-11/+9
| | | | Notes: svn path=/head/; revision=544830
* Remove a superfluous bzero(3) call to reduce compiler warnings.Jung-uk Kim2020-08-131-3/+2
| | | | | | | PR: 226073 Notes: svn path=/head/; revision=544829
* Fix building emulators/virtualbox-ose-additions on head after vaccess(9) KPIJung-uk Kim2020-08-131-2/+7
| | | | | | | change. Notes: svn path=/head/; revision=544827
* www/minio-client: update to version RELEASE.2020-08-08T02-33-58ZJohn Hixson2020-08-132-20/+23
| | | | Notes: svn path=/head/; revision=544826
* sysutils/nomad: update to version 0.12.2John Hixson2020-08-134-74/+4
| | | | Notes: svn path=/head/; revision=544825
* KDE's August 2020 Apps UpdateTobias C. Berner2020-08-13299-1257/+1080
| | | | | | | | | | | | | Dozens of KDE apps are getting new releases from KDE’s release service. New features, usability improvements, re-designs and bug fixes all contribute to helping boost your productivity and making this new batch of applications more efficient and pleasant to use. Full announcement: https://kde.org/announcements/releases/2020-08-apps-update/ Notes: svn path=/head/; revision=544824
* graphics/bmeps: Update to 4.29.3Niclas Zeising2020-08-132-4/+4
| | | | | | | | | | | | Update graphics/bmeps to 4.29.3 Changelog: https://sourceforge.net/p/dktools/wiki/change%20log/ PR: 248544 Submitted by: takefu@airport.fm (maintainer) Notes: svn path=/head/; revision=544823
* www/uwebsockets: Update 18.10.0 -> 18.11.0Yuri Victorovich2020-08-132-4/+4
| | | | | | | Reported by: portscout Notes: svn path=/head/; revision=544822
* math/flint2: Update 2.6.2 -> 2.6.3Yuri Victorovich2020-08-133-5/+5
| | | | | | | Reported by: portscout Notes: svn path=/head/; revision=544821
* graphics/darktable: Make the dependency to exiftool optionalJean-Sébastien Pédron2020-08-132-8/+13
| | | | | | | | ... and off by default. The only component which uses it is a rarely used script. Notes: svn path=/head/; revision=544820
* editors/o: Update 2.32.2 -> 2.32.5Yuri Victorovich2020-08-132-10/+13
| | | | | | | Reported by: portscout Notes: svn path=/head/; revision=544819
* security/tor-devel: Update 0.4.4.3-alpha -> 0.4.4.4-rcYuri Victorovich2020-08-132-4/+4
| | | | | | | Reported by: upstream notification Notes: svn path=/head/; revision=544818
* sysutils/watchman: Rollback to 4.5.0, move sysutils/watchman450 to ↵Yuri Victorovich2020-08-134-8/+3
| | | | | | | | | | sysutils/watchman PR: 247343 Suggested by: mat Notes: svn path=/head/; revision=544817
* sysutils/watchman: Rollback to 4.5.0, remove sysutils/watchman in favor of ↵Yuri Victorovich2020-08-135-89/+0
| | | | | | | | | | sysutils/watchman450 PR: 247343 Suggested by: mat Notes: svn path=/head/; revision=544816
* Update to 0.95.9 and make it depend on ImageMagick7.Hiroki Sato2020-08-1321-107/+72
| | | | Notes: svn path=/head/; revision=544815
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-09 12:02:31 +0000