| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Notes:
svn path=/head/; revision=544866
|
|
|
|
| |
Notes:
svn path=/head/; revision=544865
|
|
|
|
|
|
|
| |
Reported by: koobs (via e-mail)
Notes:
svn path=/head/; revision=544864
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release 20.08.0:
core:
* Sub-page objects: initialize clip max values considering the render resolution. Issue #937
* Splash: Set initial line width to 1. Issue #674
* Fix stack overflow with specially crafted files
* GfxShading: Simplify holding the Function
* Splash: Fix x86 + windows asm build
qt5:
* Deprecate Document::toc
* Deprecate AnnotationUtils
PR: 248419
Exp-run by: antoine
Notes:
svn path=/head/; revision=544863
|
|
|
|
| |
Notes:
svn path=/head/; revision=544862
|
|
|
|
| |
Notes:
svn path=/head/; revision=544861
|
|
|
|
| |
Notes:
svn path=/head/; revision=544860
|
|
|
|
|
|
|
| |
longer needed
Notes:
svn path=/head/; revision=544859
|
|
|
|
| |
Notes:
svn path=/head/; revision=544858
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
repectively.
dovecot changelog:
* CVE-2020-12100: Parsing mails with a large number of MIME parts could
have resulted in excessive CPU usage or a crash due to running out of
stack memory.
* CVE-2020-12673: Dovecot's NTLM implementation does not correctly check
message buffer size, which leads to reading past allocation which can
lead to crash.
* CVE-2020-10967: lmtp/submission: Issuing the RCPT command with an
address that has the empty quoted string as local-part causes the lmtp
service to crash.
* CVE-2020-12674: Dovecot's RPA mechanism implementation accepts
zero-length message, which leads to assert-crash later on.
* Events: Fix inconsistency in events. See event documentation in
https://doc.dovecot.org.
* imap_command_finished event's cmd_name field now contains "unknown"
for unknown commands. A new "cmd_input_name" field contains the
command name exactly as it was sent.
* lib-index: Renamed mail_cache_compress_* settings to mail_cache_purge_*.
Note that these settings are mainly intended for testing and usually
shouldn't be changed.
* events: Renamed "index" event category to "mail-index".
* events: service:<name> category is now using the name from
configuration file.
* dns-client: service dns_client was renamed to dns-client.
* log: Prefixes generally use the service name from configuration file.
For example dict-async service will now use
"dict-async(pid): " log prefix instead of "dict(pid): "
* *-login: Changed logging done by proxying to use a consistent prefix
containing the IP address and port.
* *-login: Changed disconnection log messages to be slightly clearer.
+ dict: Add events for dictionaries.
+ lib-index: Finish logging with events.
+ oauth2: Support local validation of JWT tokens.
+ stats: Add support for dynamic histograms and grouping. See
https://doc.dovecot.org/configuration_manual/stats/.
+ imap: Implement RFC 8514: IMAP SAVEDATE
+ lib-index: If a long-running transaction (e.g. SORT/FETCH on a huge
folder) adds a lot of data to dovecot.index.cache file, commit those
changes periodically to make them visible to other concurrent sessions
as well.
+ stats: Add OpenMetrics exporter for statistics. See
https://doc.dovecot.org/configuration_manual/stats/openmetrics/.
+ stats: Support disabling stats-writer socket by setting
stats_writer_socket_path="".
- auth-worker: Process keeps slowly increasing its memory usage and
eventually dies with "out of memory" due to reaching vsz_limit.
- auth: Prevent potential timing attacks in authentication secret
comparisons: OAUTH2 JWT-token HMAC, imap-urlauth token, crypt() result.
- auth: Several auth-mechanisms allowed input to be truncated by NUL
which can potentially lead to unintentional issues or even successful
logins which should have failed.
- auth: When auth policy returned a delay, auth_request_finished event
had policy_result=ok field instead of policy_result=delayed.
- auth: auth process crash when auth_policy_server_url is set to an
invalid URL.
- auth: Lua passdb/userdb leaks stack elements per call, eventually
causing the stack to become too deep and crashing the auth or
auth-worker process.
- dict-ldap: Crash occurs if var_expand template expansion fails.
- dict: If dict client disconnected while iteration was still running,
dict process could have started using 100% CPU, although it was still
handling clients.
- doveadm: Running doveadm commands via proxying may hang, especially
when doveadm is printing a lot of output.
- imap: "MOVE * destfolder" goes to a loop copying the last mail to the
destination until the imap process dies due to running out of memory.
- imap: Running "UID MOVE 1:* Trash" on an empty folder goes to infinite
loop.
- imap: SEARCH doesn't support $.
- lib-compress: Buffer over-read in zlib stream read.
- lib-dns: If DNS lookup times out, lib-dns can cause crash in calling
process.
- lib-index: Fixed several bugs in dovecot.index.cache handling that
could have caused cached data to be lost.
- lib-index: Writing to >=1 GB dovecot.index.cache files may cause
assert-crashes:
Panic: file mail-index-util.c: line 37 (mail_index_uint32_to_offset):
assertion failed: (offset < 0x40000000)
- lib-mail: v2.3.11 regression: MIME parts not returned correctly by
Dovecot MIME parser.
- lib-ssl-iostream: Fix buggy OpenSSL error handling without
assert-crashing. If there is no error available, log it as an error
instead of crashing:
Panic: file iostream-openssl.c: line 599 (openssl_iostream_handle_error):
assertion failed: (errno != 0)
- lib-ssl-iostream: ssl_key_password setting did not work.
- pop3-login: Login didn't handle commands in multiple IP packets properly.
This mainly affected large XCLIENT commands or a large SASL initial
response parameter in the AUTH command.
- pop3: pop3_deleted_flag setting was broken, causing:
Panic: file seq-range-array.c: line 472 (seq_range_array_invert):
assertion failed: (range[count-1].seq2 <= max_seq)
- pop3-login: Login would fail with "Input buffer full" if the initial
response for SASL was too long.
- submission: A segfault crash may occur when the client or server
disconnects while a non-transaction command like NOOP or VRFY is still
being processed.
- virtual: Copying/moving mails with IMAP into a virtual folder
assert-crashes:
Panic: file cmd-copy.c: line 152 (fetch_and_copy): assertion failed:
(copy_ctx->copy_count == seq_range_count(©_ctx->saved_uids))
pigeonhole changelog:
* managesieve: managesieve_max_line_length setting is now a "size" type
instead of just number of bytes. This allows using e.g. "64k" as the
value.
- lib-sieve: When folding white space is used in the Message-ID header,
it is not stripped away correctly before the message ID value is used,
causing e.g. garbled log lines at delivery.
PR: 248640
PR: 248644
Submitted by: juraj@lutter.sk
Reported by: juraj@lutter.sk
MFH: 2020Q3
Security: 87a07de1-e55e-4d51-bb64-8d117829a26a
Security: CVE-2020-12100
Security: CVE-2020-12673
Security: CVE-2020-10967
Security: CVE-2020-12674
Notes:
svn path=/head/; revision=544857
|
|
|
|
| |
Notes:
svn path=/head/; revision=544856
|
|
|
|
|
|
|
| |
Thanks to @zi for helping me to find this.
Notes:
svn path=/head/; revision=544855
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
unexpire.
Take maintainership.
Tomcat < 8.0 is no longer supported. Upstream is silent on resin, but
claims that glassfish is supported.
Upstream says to use uctags.
Upgrading requires re-indexing.
Notes:
svn path=/head/; revision=544854
|
|
|
|
|
|
|
|
|
|
|
| |
ilmbase and openexr were updated to v2.5.3 and their shlibs changed
from *.25.0.1 to *.25.0.2.
This is a PORTREVISION bump to ports using ilmbase or openexr
to chase that change and trigger rebuild.
Notes:
svn path=/head/; revision=544853
|
|
|
|
|
|
|
|
|
| |
longer needed
Approved by: portmgr (blanket; unbreak for the upcoming 2.7 EOLing)
Notes:
svn path=/head/; revision=544852
|
|
|
|
|
|
|
|
|
| |
longer needed
The previus commit was reverted because security/py-pyaxo was still at 2.7
Notes:
svn path=/head/; revision=544851
|
|
|
|
| |
Notes:
svn path=/head/; revision=544850
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ChangeLog:
https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v2.5.3
"Patch release with various bug/security fixes and build/install fixes, plus a performance optimization:
* Various sanitizer/fuzz-identified issues related to handling of invalid input
* Fixes to misc compiler warnings [...]
* Read performance optimization (#782)
* Fix for building on non-glibc (#798)
* Fixes to tests"
The full name of shared libraries changed from *.25.0.1 to *.25.0.2
=> PORTREVISION bumps for all ports that use either ilmbase or openexr
coming up in separate commit to ease MFH.
All test builds of direct users succeeded on 12.1 amd64.
MFH: 2020Q3 (patchlevel update w/ security fixes)
Security: b1d6b383-dd51-11ea-a688-7b12871ef3ad
Notes:
svn path=/head/; revision=544849
|
|
|
|
|
|
|
| |
longer needed
Notes:
svn path=/head/; revision=544848
|
|
|
|
| |
Notes:
svn path=/head/; revision=544847
|
|
|
|
|
|
|
|
|
|
|
| |
I removed a bzero() call to reduce compiler warnings in the previous commit
(r544829). It turned out the next memcpy() call was also wrong. Just use
natural assignments here not to obfuscate the code.
Reported by: Martin Simmons (martin at lispworks dot com) (some time ago)
Notes:
svn path=/head/; revision=544846
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add missing includes. This fixes build on stable/12 for powerpc64 (with GCC) and on head with powerpc64. Looking at https://www.freshports.org/misc/nn-insight/, it seems currently doesn't build even on head/amd64, so those includes should fix it.
The original error that made me look into it was:
/wrkdirs/usr/ports/misc/nn-insight/work/nn-insight-1.0.5/tensor.h:18:75: error: 'std::shared_ptr' has not been declared
18 | bool readTensorDataAsJson(const char *fileName, const TensorShape &shape, std::shared_ptr<const float> &tensorData);
| ^~~
MFH: 2020Q3 (fix build blanket)
Notes:
svn path=/head/; revision=544844
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
<ChangeLog>
*) Feature: reworked IPC between the router process and the applications
to lower latencies, increase performance, and improve scalability.
*) Feature: support for an arbitrary number of wildcards in route
matching patterns.
*) Feature: chunked transfer encoding in proxy responses.
*) Feature: basic variables support in the "pass" option.
*) Feature: compatibility with PHP 8 Beta 1. Thanks to Remi Collet.
*) Bugfix: the router process could crash while passing requests to an
application under high load.
*) Bugfix: a number of language modules failed to build on some systems;
the bug had appeared in 1.18.0.
*) Bugfix: time in error log messages from PHP applications could lag.
*) Bugfix: reconfiguration requests could hang if an application had
failed to start; the bug had appeared in 1.18.0.
*) Bugfix: memory leak during reconfiguration.
*) Bugfix: the daemon didn't start without language modules; the bug had
appeared in 1.18.0.
*) Bugfix: the router process could crash at exit.
*) Bugfix: Node.js applications could crash at exit.
*) Bugfix: the Ruby module could be linked against a wrong library
version.
</ChangeLog>
Notes:
svn path=/head/; revision=544843
|
|
|
|
| |
Notes:
svn path=/head/; revision=544842
|
|
|
|
|
|
|
| |
With hat: portmgr
Notes:
svn path=/head/; revision=544841
|
|
|
|
| |
Notes:
svn path=/head/; revision=544840
|
|
|
|
|
|
|
| |
is now python3-compatible
Notes:
svn path=/head/; revision=544839
|
|
|
|
| |
Notes:
svn path=/head/; revision=544838
|
|
|
|
|
|
|
| |
culprit dependency is now python3-compatible
Notes:
svn path=/head/; revision=544837
|
|
|
|
| |
Notes:
svn path=/head/; revision=544836
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- There's no minor (3.5.0) so fiddle a bit with the PLIST substitution
- Adds dependencies for Qt graphicaleffects
- Since musescore is not Qt 5.15 compatible (the palettes are broken,
see https://musescore.org/en/node/307238) but usable-ish, I'm still
committing this since it's no worse than the previous version w/ Qt 5.15,
and users with an older Qt can build against that.
Upstream release notes:
https://musescore.org/en/handbook/developers-handbook/release-notes/release-notes-musescore-3x/release-notes-musescore-35x-3
PR: 247466
Notes:
svn path=/head/; revision=544835
|
|
|
|
|
|
|
| |
audio/py-hsaudiotag3k
Notes:
svn path=/head/; revision=544834
|
|
|
|
| |
Notes:
svn path=/head/; revision=544833
|
|
|
|
| |
Notes:
svn path=/head/; revision=544832
|
|
|
|
| |
Notes:
svn path=/head/; revision=544831
|
|
|
|
| |
Notes:
svn path=/head/; revision=544830
|
|
|
|
|
|
|
| |
PR: 226073
Notes:
svn path=/head/; revision=544829
|
|
|
|
|
|
|
| |
change.
Notes:
svn path=/head/; revision=544827
|
|
|
|
| |
Notes:
svn path=/head/; revision=544826
|
|
|
|
| |
Notes:
svn path=/head/; revision=544825
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Dozens of KDE apps are getting new releases from KDE’s release service. New
features, usability improvements, re-designs and bug fixes all contribute to
helping boost your productivity and making this new batch of applications more
efficient and pleasant to use.
Full announcement:
https://kde.org/announcements/releases/2020-08-apps-update/
Notes:
svn path=/head/; revision=544824
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update graphics/bmeps to 4.29.3
Changelog:
https://sourceforge.net/p/dktools/wiki/change%20log/
PR: 248544
Submitted by: takefu@airport.fm (maintainer)
Notes:
svn path=/head/; revision=544823
|
|
|
|
|
|
|
| |
Reported by: portscout
Notes:
svn path=/head/; revision=544822
|
|
|
|
|
|
|
| |
Reported by: portscout
Notes:
svn path=/head/; revision=544821
|
|
|
|
|
|
|
|
| |
... and off by default. The only component which uses it is a rarely used
script.
Notes:
svn path=/head/; revision=544820
|
|
|
|
|
|
|
| |
Reported by: portscout
Notes:
svn path=/head/; revision=544819
|
|
|
|
|
|
|
| |
Reported by: upstream notification
Notes:
svn path=/head/; revision=544818
|
|
|
|
|
|
|
|
|
|
| |
sysutils/watchman
PR: 247343
Suggested by: mat
Notes:
svn path=/head/; revision=544817
|
|
|
|
|
|
|
|
|
|
| |
sysutils/watchman450
PR: 247343
Suggested by: mat
Notes:
svn path=/head/; revision=544816
|
|
|
|
| |
Notes:
svn path=/head/; revision=544815
|