[odc] Daily ports changes for 2005-11-21

Tue Nov 22 07:05:00 GMT 2005

OpenBSD ports changes summary for 2005-11-21
============================================

audio/faad                              devel/bison
devel/guilib                            games/freeciv
graphics/gdk-pixbuf                     net/lftp
net/pebrot                              www/mediawiki
www/phpmyadmin                          x11/gtk+2

== audio ============================================================= 01/07 ==

  http://www.openbsd.org/cgi-bin/cvsweb/ports/audio

faad

  + patches/patch-libfaad_common_h        

  > fix building on i386 (jolan@)

== devel ============================================================= 02/07 ==

  http://www.openbsd.org/cgi-bin/cvsweb/ports/devel

bison

  ~ Makefile                              
  + patches/patch-data_m4sugar_m4sugar_m4
  + patches/patch-src_output_c            

  > quick&dirty fix to avoid unwanted runtime dependency on gnu-m4.
  > tests sturm@, naddy@ (espie@)

guilib

  - patches/patch-Makefile_am             - patches/patch-ltconfig
  - patches/patch-ltmain_sh               ~ Makefile
  ~ distinfo                              

  > - distfile was rerolled
  > - USE_LIBTOOL
  > - general cleanup
  > - bump pkgname
  > OK wilfried@ (jakemsr@)

== games ============================================================= 03/07 ==

  http://www.openbsd.org/cgi-bin/cvsweb/ports/games

freeciv

  ~ Makefile                              ~ distinfo
  ~ pkg/PLIST-share                       

  > Update to 2.0.7 (http://www.freeciv.org/index.php/NEWS-2.0.7)
  > From Rui Reis <rui at rui.cxMAINTAINER) (alek@)

== graphics ========================================================== 04/07 ==

  http://www.openbsd.org/cgi-bin/cvsweb/ports/graphics

gdk-pixbuf

  ~ Makefile                              ~ patches/patch-gdk-pixbuf_io-bmp_c
  ~ patches/patch-gdk-pixbuf_io-xpm_c     

  > SECURITY:
  > Fix
  > - double free() in BMP handler (CVE-2005-0891),
  > - endless loop (CVE-2005-2975) and
  > - integer overflows in XPM loader (CVE-2005-2976, CVE-2005-3186).
  > From Ubuntu. (naddy@)

== net =============================================================== 05/07 ==

  http://www.openbsd.org/cgi-bin/cvsweb/ports/net

lftp

  ~ Makefile                              ~ distinfo

  > update to lftp 3.3.4 (kevlo@)

pebrot

  ~ Makefile                              ~ distinfo

  > update to 0.8.7.1 (kevlo@)

== www =============================================================== 06/07 ==

  http://www.openbsd.org/cgi-bin/cvsweb/ports/www

mediawiki

  ~ Makefile                              ~ distinfo
  ~ pkg/PLIST                             

  > update to 1.5.2 (kevlo@)

phpmyadmin

  ~ Makefile                              ~ distinfo
  ~ pkg/PLIST                             

  > upgrade to phpmyadmin 2.6.4pl4 (kevlo@)

== x11 =============================================================== 07/07 ==

  http://www.openbsd.org/cgi-bin/cvsweb/ports/x11

gtk+2

  ~ Makefile                              + patches/patch-gdk-pixbuf_io-xpm_c

  TAGGED OPENBSD_3_7
  > security fixes from Debian:
  > CVE-2005-3186: Add check to XPM reader to prevent integer overflow for
  > specially crafted number of colors.
  > CVE-2005-2975: Fix endless loop with specially crafted number of colors.
  > (sturm@)

  ~ Makefile                              + patches/patch-gdk-pixbuf_io-xpm_c

  TAGGED OPENBSD_3_8
  > security fixes from Debian:
  > CVE-2005-3186: Add check to XPM reader to prevent integer overflow for
  > specially crafted number of colors.
  > CVE-2005-2975: Fix endless loop with specially crafted number of colors.
  > (sturm@)

===============================================================================