OpenBSD ports changes summary for 2016-02-07 to 2016-02-14 inclusive ====================================================================
audio/pulseaudio databases/mariadb databases/postgresql devel devel/libgsf devel/py-buildbot devel/py-certifi emulators/qemu geo/gdal graphics/gegl03 lang/gambit lang/node lang/racket lang/racket-minimal mail/mozilla-thunderbird mail/thunderbird-i18n multimedia/mpv net/bird net/icinga net/owncloudclient net/unifi print/cups productivity/taskd security/clamav sysutils/ipmitool sysutils/libvirt sysutils/monit sysutils/xstatbar www/awl www/firefox-esr www/firefox-esr-i18n www/firefox-i18n www/mozilla-firefox x11/qt4 == audio ============================================================= 01/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/audio pulseaudio + patches/patch-src_pulsecore_macro_h > Fix build on mips64. Attempts to use PAGE_SIZE in userspace fail > because the macro refers to PAGE_SHIFT which is visible in kernel code > only. As page size varies between mips64 systems, the size has to be > determined at runtime. > Input and OK jasper@ (visa@) == databases ========================================================= 02/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/databases mariadb ~ Makefile + patches/patch-support-files_my-huge_cnf_sh + patches/patch-support-files_my-innodb-heavy-4G_cnf_sh + patches/patch-support-files_my-large_cnf_sh + patches/patch-support-files_my-medium_cnf_sh + patches/patch-support-files_my-small_cnf_sh > Set default MariaDB config files to use bind-address=127.0.0.1, partly > because > localhost is a safer default, and partly because otherwise it binds to an > IPv6 > socket (::) and OpenBSD deliberately doesn't allow v4 connections to those, > so people who do want (v4) network connections have trouble too. Add a > comment > explaining use of 0.0.0.0 to listen to any IPv4 interface. > ok juanfra@ pea@ giovanni@, ok jcs@ on an earlier version (only change in > the > new one was adding a comment), dhill likes it too (sthen@) postgresql ~ Makefile ~ distinfo ~ patches/patch-src_backend_libpq_ip_c ~ patches/patch-src_include_storage_s_lock_h ~ patches/patch-src_interfaces_ecpg_compatlib_Makefile ~ patches/patch-src_interfaces_ecpg_pgtypeslib_Makefile ~ pkg/PLIST-docs ~ pkg/PLIST-main > SECURITY update to PostgreSQL 9.4.6: various fixes including one for > CVE-2016-0773, an issue with regular expression parsing. Various other > fixes. > Note: ..."if you are upgrading an installation that contains any GIN > indexes that use the (non-default) jsonb_path_ops operator class, see > the first changelog entry"... > http://www.postgresql.org/docs/current/static/release-9-4-6.html > OK pea@ (sthen@) == devel ============================================================= 03/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/devel devel ~ Makefile > +py-certifi,python3 (shadchin@) libgsf ~ Makefile ~ distinfo > Update to libgsf-1.14.35 (buffer underflow error). > ok jasper@ (ajacoutot@) py-buildbot ~ Makefile + patches/patch-setup_py > Fix dependency on twisted so that the correct Twisted_Core python package > name ends up in egg-info/requires.txt. > Fixes an issue with Interpolate feature reported (with a reduced test > case, thanks!) by Alex Holst -a at mongers dot org- (landry@) py-certifi ~ Makefile ~ distinfo ~ patches/patch-certifi_core_py ~ patches/patch-setup_py ~ pkg/PLIST > Add python3 flavor and update version (no functional change) (shadchin@) == emulators ========================================================= 04/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/emulators qemu ~ Makefile ~ patches/patch-hw_usb_hcd-ehci_c > Add a patch from QEMU upstream to fix CVE-2016-2198. From Brad, ok aja@ > "USB Ehci emulation supports host controller capability registers. > But its mmio '.write' function was missing, which lead to a null > pointer dereference issue. Add a do nothing 'ehci_caps_write' > definition to avoid it; Do nothing because capability registers > are Read Only(RO)." (sthen@) == geo =============================================================== 05/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/geo gdal ~ Makefile ~ distinfo ~ patches/patch-configure > Bugfix update to GDAL 2.0.2. > See https://trac.osgeo.org/gdal/wiki/Release/2.0.2-News for details. > Bump major as two function signatures changed. (landry@) == graphics ========================================================== 06/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/graphics gegl03 + patches/patch-operations_external_tiff-load_c > Fix build on big-endian archs by correcting a typo in a probably never > tested big-endian only codepath.. sigh. Tested on macppc & sparc64. > (landry@) == lang ============================================================== 07/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/lang gambit ~ Makefile > Remove the comment. The workaround fixed the build. (juanfra@) node ~ Makefile ~ distinfo > Update for security fixes. Tested on amd64 and i386. > OK sthen@ (abieber@) racket ~ Makefile + patches/patch-share_pkgs_web-server-lib_web-server_dispatchers_filesystem-map_rkt TAGGED OPENBSD_5_7 > SECURITY: Fix a vulnerability in the Racket web server. > http://article.gmane.org/gmane.comp.lang.racket.user/30142 (juanfra@) racket-minimal ~ Makefile TAGGED OPENBSD_5_8 > SECURITY: Fix a vulnerability in the Racket web server. > http://article.gmane.org/gmane.comp.lang.racket.user/30142 (juanfra@) ~ Makefile TAGGED OPENBSD_5_8 > SECURITY: Fix a vulnerability in the Racket web server. > http://article.gmane.org/gmane.comp.lang.racket.user/30142 (juanfra@) == mail ============================================================== 08/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/mail mozilla-thunderbird ~ Makefile ~ distinfo > Security update to thunderbird 38.6.0/lightning 4.0.6. > See https://www.mozilla.org/en-US/thunderbird/38.6.0/releasenotes/ > Fixes MFSA2016-14. > ok sthen@ naddy@ (landry@) ~ Makefile > Grr. Remove damn REVISION-main. (landry@) thunderbird-i18n ~ Makefile.inc ~ distinfo > Security update to thunderbird 38.6.0/lightning 4.0.6. > See https://www.mozilla.org/en-US/thunderbird/38.6.0/releasenotes/ > Fixes MFSA2016-14. > ok sthen@ naddy@ (landry@) == multimedia ======================================================== 09/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/multimedia mpv ~ Makefile > unbreak mpv on i386 > tested by kili@, ok sthen@ (czarkoff@) == net =============================================================== 10/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net bird ~ Makefile ~ patches/patch-sysdep_unix_io_c > Cherrypick from bird upstream: reject connections rather than overflowing > FD_SET (sthen@) icinga ~ core2/Makefile > mark BROKEN-powerpc to avoid wasting build time; linker issues. > `.gnu.linkonce.t._ZN6icinga5ValueC1EPNS_6ObjectE' referenced in section > `.gnu.linkonce.r._ZN6icinga5ValueC1EPNS_6ObjectE' of > lib/base/CMakeFiles/base.dir/boolean-script.cpp.o: defined in discarded > section `.gnu.linkonce.t._ZN6icinga5ValueC1EPNS_6ObjectE' of > lib/base/CMakeFiles/base.dir/boolean-script.cpp.o (sthen@) owncloudclient ~ Makefile ~ distinfo ~ patches/patch-src_gui_application_cpp ~ pkg/PLIST > update to owncloudclient-2.1.1 (kirby@) unifi ~ Makefile ~ pkg/unifi.rc > Fix unifi's rc script to use daemon_flags. Now you can do "rcctl set unifi > flags -Xmx512M -Xms256M" or similar if you want to impose some bounds on > java's memory usage. OK/feedback aja@ (sthen@) == print ============================================================= 11/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/print cups ~ Makefile ~ distinfo > Maintenance update to cups-2.1.3. > *yes* this is a maintenance update during soft-lock but considering half of > the help request emails I get during a release cycle are about printing, I > prefer having the most recent code around; it seems UNIX printing is still > somewhat a Black Art for people. > ok sthen@ jasper@ (ajacoutot@) == productivity ====================================================== 12/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/productivity taskd ~ Makefile ~ pkg/PLIST > Fix productivity/taskd to @sample the correct file as vars. Reported by > viq, > fix from kspillner@, committing on his behalf. (sthen@) == security ========================================================== 13/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/security clamav ~ Makefile ~ patches/patch-etc_clamd_conf_sample > uncomment the "User _clamav" line in sample config. > clamd won't run without editing this file anyway, but in case somebody > doesn't notice this line while reviewing the file, use a better default. > (sthen@) == sysutils ========================================================== 14/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/sysutils ipmitool ~ Makefile + patches/patch-src_plugins_open_open_h > Adapt to newly added ipmi(4) cdev on amd64 and i386. > OK sthen@ (uebayasi@) libvirt ~ Makefile > explicitly disable wireshark dissector so it won't get picked up at > configure time > found the hard way by jiri b (jasper@) monit ~ Makefile ~ distinfo > - critical bugfix update to monit-5.16 > from Bryce Chidester and David Hill > ok aja@ sthen@ (jasper@) xstatbar ~ Makefile + patches/patch-xstatbar_c > Fix memory leak in xstatbar, from Gregor Best (thank you!), ok ajacoutot@ > "The problem is that XCopyArea generates either a GraphicsExpose or > a NoExpose event after it's done. Since xstatbar doesn't have the > traditional X event loop, the events just accumulate in the queue." > (sthen@) == www =============================================================== 15/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/www awl ~ Makefile > gitlab distfile was rerolled (path changed); mirror it. > spotted by mmcc@ (sthen@) firefox-esr ~ Makefile ~ distinfo > Security update to firefox-esr 38.6.1. > See https://www.mozilla.org/en-US/firefox/38.6.1/releasenotes/ > Fixes https://www.mozilla.org/en-US/security/advisories/mfsa2016-14/ > ok sthen@ naddy@ (landry@) firefox-esr-i18n ~ Makefile.inc ~ distinfo > Security update to firefox-esr 38.6.1. > See https://www.mozilla.org/en-US/firefox/38.6.1/releasenotes/ > Fixes https://www.mozilla.org/en-US/security/advisories/mfsa2016-14/ > ok sthen@ naddy@ (landry@) firefox-i18n ~ Makefile.inc ~ distinfo > Bugfix update to firefox 44.0.1. > See https://www.mozilla.org/en-US/firefox/44.0.1/releasenotes/ > ok sthen@ naddy@ (landry@) ~ Makefile.inc ~ distinfo > Security update to firefox 44.0.2. > See https://www.mozilla.org/en-US/firefox/44.0.2/releasenotes/ > Fixes MFSA2016-13. > ok sthen@ naddy@ (landry@) mozilla-firefox ~ Makefile ~ distinfo > Bugfix update to firefox 44.0.1. > See https://www.mozilla.org/en-US/firefox/44.0.1/releasenotes/ > ok sthen@ naddy@ (landry@) ~ Makefile ~ distinfo > Security update to firefox 44.0.2. > See https://www.mozilla.org/en-US/firefox/44.0.2/releasenotes/ > Fixes MFSA2016-13. > ok sthen@ naddy@ (landry@) == x11 =============================================================== 16/16 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/x11 qt4 ~ Makefile + patch-src_network_socket_qnativesocketengine_unix_cpp > Fix stack smashing happening when Qt4-based program opens more than > FD_SETSIZE (1024 by default) file descriptors. This is often the case > for KDE4 apps when using libinotify as directory monitoring backend. > Positive feedback from deraadt@, final okay sthen@ (zhuk@) ~ Makefile ~ patch-src_network_socket_qnativesocketengine_unix_cpp > It's always better to commit from the right tree. POLLOUT, not POLLHUP. > (zhuk@) =============================================================================== _______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
