Uses pod2man.

(hans)

lang/gcc-aux: Fix DragonFly iostream bug

(marino)

Use /usr/bin/bash on all SunOS 5.11 variants if it exists. Fall back to
shells/pdksh in all other cases, native /bin/ksh is not good enough.

(hans)

Updated lang/gawk to 4.0.2

(adam)

Changes 4.0.2:
1. Infrastructure upgrades: Autoconf 2.69, Automake 1.12.6, bison 2.7.
2. `fflush()', `nextfile', and `delete array' are all now part of POSIX.
3. fflush() behavior changed to match BWK awk and for POSIX - now both
  fflush() and fflush("") flush all open output redirections.
4. Various minor bug fixes and documentation updates.

(adam)

Updated devel/gettext to 0.18.2

(adam)

Added print/qpdf version 4.0.1

(wiz)

+ qpdf.

(wiz)

Import qpdf-4.0.1 as print/qpdf, packaged by dillo@.

QPDF is a command-line program that does structural, content-preserving
transformations on PDF files.  It could have been called something
like pdf-to-pdf. It also provides many useful capabilities to
developers of PDF-producing software or for people who just want
to look at the innards of a PDF file to learn more about how they
work.

QPDF is capable of creating linearized (also known as web-optimized)
files and encrypted files. It is also capable of converting PDF
files with object streams (also known as compressed objects) to
files with no compressed objects or to generate object streams from
files that don't have them (or even those that already do). QPDF
also supports a special mode designed to allow you to edit the
content of PDF files in a text editor. For more details, please
see the documentation links below.

QPDF includes support for merging and splitting PDFs through the
ability to copy objects from one PDF file into another and to
manipulate the list of pages in a PDF file. The QPDF library also
makes it possible for you to create PDF files from scratch. In this
mode, you are responsible for supplying all the contents of the
file, while the QPDF library takes care off all the syntactical
representation of the objects, creation of cross references tables
and, if you use them, object streams, encryption, linearization,
and other syntactic details.

QPDF is not a PDF content creation library, a PDF viewer, or a
program capable of converting PDF into other formats. In particular,
QPDF knows nothing about the semantics of PDF content streams. If
you are looking for something that can do that, you should look
elsewhere. However, once you have a valid PDF file, QPDF can be
used to transform that file in ways perhaps your original PDF
creation can't handle. For example, programs generate simple PDF
files but can't password-protect them, web-optimize them, or perform
other transformations of that type.

(wiz)

Changes 0.18.2:
* xgettext now understands the block comment syntax of Guile 2.0.
* libgettextpo library:
  - The initial msgstr of a new message is now "", not NULL.
  - Bug fixes in the functions po_message_is_range, po_file_check_all,
    po_message_check_all.
* Installation options:
  The configure options --with-xz and --with-bzip2 can be used to specify
  alternate compression methods for the archive used by the 'autopoint'
  program. These options, together with --with-git, allow to trade
  dependencies against installed package size. --with-xz has the highest
  compression rate, followed by --with-git, followed by --with-bzip2.
* Autoconf macros:
  - The autoconf macros installed by 'gettextize' now work with the
    forthcoming Automake 1.14 and require Autoconf version 2.60 or
    newer.
* Portability:
  - Building on MacOS X 10.7, Cygwin 1.7.10, and newer 64-bit mingw is
    now supported.

(adam)

Updated devel/gmp to 5.1.0; math/glpk to 4.48

(adam)

Changes 4.48:
This is a maintainer release.
Some minor changes in API (glpk.h) were made. For details please see ChangeLog.
Some bugs/typos were fixed.

(adam)

Changes 5.1.0:

BUGS FIXED
* When reading a C++ number (like mpz_class) in an istream reaches the end
  of the stream, the eofbit is now set.

* The result sign of mpz_rootrem's remainder is now always correct.
* The mpz_remove function now handles negative divisors.
* Contains all fixes from release 5.0.5.

SPEEDUPS
* The n-factorial and n-over-k functions have been reimplemented for great
  speedups for small and large operands.
* New subquadratic algorithm for the Kronecker/Jacobi/Legendre symbol.
* Major speedup for ARM, in particular ARM Cortex-A9 and A15, thanks to broad
  assembly support.
* Significant speedup or POWER6 and POWER7 thanks to improved assembly.
* The performance under M$ Windows' 64-bit ABI has been greatly improved
  thanks to complete assembly support.
* Minor speed improvements of many functions and for many platforms.

FEATURES
* Many new CPUs recognised.
* New functions for multi-factorials, and primorial: mpz_2fac_ui,
  mpz_mfac_uiui and mpz_primorial_ui.
* The mpz_powm_sec function now uses side-channel silent division for
  converting into Montgomery residues.
* The fat binary mechanism is now more robust in its CPU recognition.

MISC
* Inclusion of assembly code is now controlled by the configure options
  --enable-assembly and --disable-assembly.  The "none" CPU targets is gone.
* In C++, the conversions mpq_class->mpz_class, mpf_class->mpz_class and
  mpf_class->mpq_class are now explicit.
* Includes "mini-gmp", a small, portable, but less efficient, implementation
  of a subset of GMP's mpn and mpz interfaces. Used in GMP bootstrap, but it
  can also be bundled with applications as a fallback when the real GMP
  library is unavailable.
* The ABIs under AIX are no longer called aix32 and aix64, but mode64 and 32.
  This is more consistent with other powerpc systems.
* The coverage of the testsuite has been improved, using the lcov tool.  See
  also http://gmplib.org/devel/lcov/.
* It is now possible to compile GMP using a C++ compiler.
* K&R C compilers are no longer supported.
* The BSD MP compatibility functions have been removed.

(adam)

lang/gcc47: Fix DragonFly c++ iostream bug

(marino)

* py-numpy should be buildlinke-ed on g95 support platforms only like Makefile.

(ryoon)

Update HOMEPAGE to github's one.

(taca)

Note update of Ruby 1.9.3-p374 packages:

lang/ruby193-base 1.9.3p374
databases/ruby-gdbm 1.9.3p374nb2
devel/ruby-curses 1.9.3p374
devel/ruby-fiddle 1.9.3p374
devel/ruby-readline 1.9.3p374nb2
x11/ruby-tk 1.9.3p374nb1
lang/ruby193 1.9.3p374
devel/ruby-mode 1.9.3p374

(taca)

Update ruby193 to 1.9.3p374 (Ruby 1.9.3-p374).

These releasess don't include any security fixes.

Ruby 1.9.3-p362:

This release includes other many bug fixes.

    Resolved build problems on Solaris.
    Windows 8 support (hopefully).
    other many bug fixes.

Ruby 1.9.3-p374:

This release includes many bug fixes. Especially,

    Fixed randomly SEGV problem (often reported with Rails)
    Windows 8 support (maybe, hopefully)
    other many bug fixes.

See tickets and ChangeLog for details.

(taca)

Note update of databases/ruby-dm-rails package to 1.2.1nb2.

(taca)

ruby-dm-rails  can work with all 3.x versions of Ruby on Rails.

Bump PKGREVISION.

(taca)

Note update of databases/ruby-dm-active_model package to 1.2.1nb2.

(taca)

ruby-dm-active_model can work with all 3.x versions of Ruby on Rails.

Bump PKGREVISION.

(taca)

* Fix typo in MESSAGE.
* Remove obsolete patches and regen distinfo.

(ryoon)

Note update of the "wireshark" package to version 1.8.5.

(tron)

Update "wireshark" package to version 1.8.5. Changes since 1.8.4:
- Bug Fixes
  The following vulnerabilities have been fixed.
    o wnpa-sec-2013-01
      Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI
      DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS,
      SDP, and SIP dissectors. Reported by Laurent Butti. (Bugs
      8036, 8037, 8038, 8040, 8041, 8042, 8043, 8198, 8199, 8222)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-02
      The CLNP dissector could crash. Discovered independently by
      Laurent Butti and the Wireshark development team. (Bug 7871)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-03
      The DTN dissector could crash. (Bug 7945)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-04
      The MS-MMC dissector (and possibly others) could crash. (Bug
      8112)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-05
      The DTLS dissector could crash. Discovered by Laurent Butti.
      (Bug 8111)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-06
      The ROHC dissector could crash. (Bug 7679)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-07
      The DCP-ETSI dissector could corrupt memory. Discovered by
      Laurent Butti. (Bug 8213)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-08
      The Wireshark dissection engine could crash. Discovered by
      Laurent Butti. (Bug 8197)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
    o wnpa-sec-2013-09
      The NTLMSSP dissector could overflow a buffer. Discovered by
      Ulf H辰rnhammar. (Bug X)
      Versions affected: 1.8.0 to 1.8.4, 1.6.0 to 1.6.12.
      GENERIC-MAP-NOMATCH
- The following bugs have been fixed:
    o SNMPv3 Engine ID registration. (Bug 2426)
    o Wrong decoding of gtp.target identification. (Bug 3974)
    o Reassemble.c leaks memory for GLIB > 2.8. (Bug 4141)
    o Wireshark crashes when starting due to out-of-date plugin left
      behind from earlier installation. (Bug 7401)
    o Failed to dissect TLS handshake packets. (Bug 7435)
    o ISUP dissector problem with empty Generic Number. (Bug 7632)
    o Illegal character is used in temporary capture file name. (Bug
      7877)
    o Lua code crashes wireshark after update to 1.8.3. (Bug 7976)
    o Timestamp info is not saved correctly when writing DOS Sniffer
      files. (Bug 7998)
    o 1.8.3 Wireshark User's Guide version is 1.6. (Bug 8009)
    o Core dumped when the file is closed. (Bug 8022)
    o LPP is misspelled in APDU parameter in
      e-CIDMeasurementInitiation request for LPPA message. (Bug
      8023)
    o Wrong packet bytes are selected for ISUP CUG binary code. (Bug
      8035)
    o Decodes FCoE Group Multicast MAC address as Broadcom MAC
      address. (Bug 8046)
    o The SSL dissector stops decrypting the SSL conversation with
      Malformed Packet:SSL error messages. (Bug 8075)
    o Unable to Save/Apply [Unistim Port] in Preferences. (Bug 8078)
    o Some Information Elements in GTPv2 are not dissected
      correctly. (Bug 8079)
    o Wrong bytes highlighted with "Find Packet...". (Bug 8085)
    o 3GPP ULI AVP. SAI is not correctly decoded. (Bug 8098)
    o Wireshark does not show "Start and End Time" information for
      Cisco Netflow/IPFIX with type 154 to 157. (Bug 8105)
    o GPRS Tunnel Protocoll GTP Version 1 does not decode DAF flag
      in Common Flags IE. (Bug 8193)
    o Wrong parcing of ULI of gtpv2 messages - errors in SAC, RAC &
      ECI. (Bug 8208)
    o Version Number in EtherIP dissector. (Bug 8211)
    o Warn Dissector bug, protocol JXTA. (Bug 8212)
    o Electromagnetic Emission Parser parses field Event Id as
      Entity Id. (Bug 8227)
- Updated Protocol Support
  ANSI IS-637-A, ASN.1 PER, AX.25, Bluetooth HCI, CLNP, CSN.1,
  DCP-ETSI, DIAMETER, DIS PDU, DOCSIS CM-STATUS, DTLS, DTN, EtherIP,
  Fibre Channel, GPRS, GTP, GTPv2, HomePlug AV, IEEE 802.3 Slow,
  IEEE 802.15.4, ISUP, JXTA, LAPD, LPPa, MPLS, MS-MMC, NAS-EPS,
  NTLMSSP, ROHC, RSL, RTPS, SDP, SIP, SNMP, SSL
- New and Updated Capture File Support
  DOS Sniffer

(tron)

Updated pkgtools/pkg_install to 20130131

(wiz)

+ erlang-16a, xf86-video-ati-7.1.0.

(wiz)

Shut up warnings about 6.0 packages on 6.0.1 (and similar).
Welcome to 20130131.

(wiz)

Updated security/mozilla-rootcerts to 1.0.20121229

(wiz)

Update mozilla root certificates to 20121229 version.

(wiz)

Remove zsh-current -- for some time now it is much older than shells/zsh.

(wiz)

new package: sysutils/menu-cache

(reed)

new package: menu-cache

The libmenu-cache library and its corresponding menu-cached daemon
are for creating and utilizing caches to speed up the manipulation
for freedesktop.org defined application menus.  It can be used as
a replacement of libgnome-menu of gnome-menus.

(reed)

Update Tor's install message to reflect current recommendations.

The Tor Project ceased to recommend privoxy years ago; the only way
they recommend browsing the web is through the Tor Browser Bundle,
which Someone^TM ought to find some way to package up.

(riastradh)

Updated www/tidy to 20091027nb4

(wiz)

New doxygen, new PLIST. Bump dependency and PKGREVISION.

(wiz)

Sort. Add latest package.

(wiz)

Added www/p5-CGI-Session-Plugin-Redirect version 1.01

(wiz)

Import p5-CGI-Session-Plugin-Redirect-1.01 as www/p5-CGI-Session-Plugin-Redirect.

Add a redirect method for CGI::Session.

(wiz)

Updated devel/scmgit to 1.8.1.2

(adam)

Changes 1.8.1.2:
* An element on GIT_CEILING_DIRECTORIES list that does not name the
  real path to a directory (i.e. a symbolic link) could have caused
  the GIT_DIR discovery logic to escape the ceiling.
* Command line completion for "tcsh" emitted an unwanted space
  after completing a single directory name.
* Command line completion leaked an unnecessary error message while
  looking for possible matches with paths in <tree-ish>.
* "git archive" did not record uncompressed size in the header when
  streaming a zip archive, which confused some implementations of unzip.
* When users spelled "cc:" in lowercase in the fake "header" in the
  trailer part, "git send-email" failed to pick up the addresses from
  there. As e-mail headers field names are case insensitive, this
  script should follow suit and treat "cc:" and "Cc:" the same way.

(adam)

add patch from upstream to fix Buffer Overflow in ASF Demuxer
bump PKGREV

(drochner)

Fix fetch: MASTER_SITES is just ${HOMEPAGE} (no :Q).

(schmonz)

Updated devel/scmgit to 1.8.1.1nb1

(wiz)

Add scmgit-gitk to meta package.
Bump PKGREVISION.

(wiz)

Mention cvsps3.

(wiz)

+ csvps3.

(wiz)

Pullup ticket #4046.

(tron)

Pullup ticket #4046 - requested by drochner
net/libupnp: security patch

Revisions pulled up:
- net/libupnp/Makefile                                          1.20
- net/libupnp/distinfo                                          1.19

---
  Module Name:    pkgsrc
  Committed By:  drochner
  Date:          Tue Jan 29 16:22:47 UTC 2013

  Modified Files:
          pkgsrc/net/libupnp: Makefile distinfo

  Log Message:
  update to 1.6.18
  changes:
  -fix multiple buffer overflows (CVE-2012-5958..65)
  -more bugfixes, Compilation optimisation

(tron)

+ di

(obache)

Added sysutils/di version 4.34

(obache)

Import di-4.34 as sysutils/di.
based on PR 47495 by Brad Lanam, some small fixes by me.

di is a disk information utility, displaying everything (and more)
that your df command does. It features the ability to display your
disk usage in whatever format you prefer. It also checks the user
and group quotas, so that the user sees the space available for
their use, not the system wide disk space.

(obache)

- samba-3.6.11.
+ samba-4.0.2, sudo-1.8.6p5, typo3-6.0.1.

(taca)

Note update of smaba packages.

net/samba35 3.5.21
net/samba 3.6.12

(taca)

Update samba to 3.6.12.

                  ==============================
                  Release Notes for Samba 3.6.12
                          January 30, 2013
                  ==============================

This is a security release in order to address
CVE-2013-0213 (Clickjacking issue in SWAT) and
CVE-2013-0214 (Potential XSRF in SWAT).

o  CVE-2013-0213:
  All current released versions of Samba are vulnerable to clickjacking in the
  Samba Web Administration Tool (SWAT). When the SWAT pages are integrated into
  a malicious web page via a frame or iframe and then overlaid by other content,
  an attacker could trick an administrator to potentially change Samba settings.

  In order to be vulnerable, SWAT must have been installed and enabled
  either as a standalone server launched from inetd or xinetd, or as a
  CGI plugin to Apache. If SWAT has not been installed or enabled (which
  is the default install state for Samba) this advisory can be ignored.

o  CVE-2013-0214:
  All current released versions of Samba are vulnerable to a cross-site
  request forgery in the Samba Web Administration Tool (SWAT). By guessing a
  user's password and then tricking a user who is authenticated with SWAT into
  clicking a manipulated URL on a different web page, it is possible to manipulate
  SWAT.

  In order to be vulnerable, the attacker needs to know the victim's password.
  Additionally SWAT must have been installed and enabled either as a standalone
  server launched from inetd or xinetd, or as a CGI plugin to Apache. If SWAT has
  not been installed or enabled (which is the default install state for Samba)
  this advisory can be ignored.

Changes since 3.6.11:
--------------------

o  Kai Blin <kai@samba.org>
    * BUG 9576: CVE-2013-0213: Fix clickjacking issue in SWAT.
    * BUG 9577: CVE-2013-0214: Fix potential XSRF in SWAT.

(taca)

Update samba35 to 3.5.21.

                  ==============================
                  Release Notes for Samba 3.5.21
January 30, 2013
                  ==============================

This is a security release in order to address
CVE-2013-0213 (Clickjacking issue in SWAT) and
CVE-2013-0214 (Potential XSRF in SWAT).

o  CVE-2013-0213:
  All current released versions of Samba are vulnerable to clickjacking in the
  Samba Web Administration Tool (SWAT). When the SWAT pages are integrated into
  a malicious web page via a frame or iframe and then overlaid by other content,
  an attacker could trick an administrator to potentially change Samba settings.

  In order to be vulnerable, SWAT must have been installed and enabled
  either as a standalone server launched from inetd or xinetd, or as a
  CGI plugin to Apache. If SWAT has not been installed or enabled (which
  is the default install state for Samba) this advisory can be ignored.

o  CVE-2013-0214:
  All current released versions of Samba are vulnerable to a cross-site
  request forgery in the Samba Web Administration Tool (SWAT). By guessing a
  user's password and then tricking a user who is authenticated with SWAT into
  clicking a manipulated URL on a different web page, it is possible to manipulate
  SWAT.

  In order to be vulnerable, the attacker needs to know the victim's password.
  Additionally SWAT must have been installed and enabled either as a standalone
  server launched from inetd or xinetd, or as a CGI plugin to Apache. If SWAT has
  not been installed or enabled (which is the default install state for Samba)
  this advisory can be ignored.

Changes since 3.5.20:
---------------------

o  Kai Blin <kai@samba.org>
    * BUG 9576: CVE-2013-0213: Fix clickjacking issue in SWAT.
    * BUG 9577: CVE-2013-0214: Fix potential XSRF in SWAT.

(taca)

Set MAINTAINER as me.

(ryoon)

Fix PR pkg/47363.

Import 3.2 version of cvsps as devel/cvsps3.

>From README,
The 3.x versions have changed significantly.  In 2012, CVS use is declining
swiftly (GNU CVS hasn't been updated since 2004) and the original use case
for this tool - browsing change sets in a live CVS repository - is obsolete.
The 3.x versions are more focused on the --fast-export mode.

(ryoon)

+ glpk-4.48, libproxy-1.4.11, phpmyadmin-3.5.6, py-sip-4.14.3,
  qemu-1.3.1, wireshark-1.8.5.

(wiz)

Updated devel/doxygen to 1.8.3.1

(wiz)

Update to 1.8.3.1:

Changes

    Changed to way the search results for multiple projects can be
    linked together. A project is now no longer identified by the
    tag files name but via new option EXTERNAL_SEARCH_ID giving a
    bit more flexibility.
    Disabled the disk cache for member data. Allows removing quite
    some complexity in doxygen and is not really needed now that
    64bit systems with >4GB RAM are becoming more common. Let me
    know if you think you benefit from this caching.
    id 691607: Using $relpath$ in a custom footer could lead to
    ambiguities when followed by a name that could also be a marker,
    like 'search'. Now $relpath^ should be used instead. $relpath$
    is still supported for backward compatibility.

New features

    You can now use EXTENSION_MAPPING on files without any extension
    using no_extension as placeholder (thanks to Jason Majors for
    the patch).
    To make navindex section inside a layout file that links to a
    specific URL you can use usergroup with the url attribute.
    To make navindex section without any link inside a layout file
    you can use usergroup with special title [none].

And lots of bugfixes.

(wiz)

Updated x11/pixman to 0.28.2

(wiz)

Update to 0.28.2:

0.28.2:

This stable release in the 0.28 series contains fixes for 64 bit
Windows, clang, and PowerPC on MacOS and OpenBSD.

0.28.0:
A new major release 0.28.0 of the pixman rendering library is now
available. Highlights of this release:

  * Support for sRGB coded images [Antti Lankila]

  * New API for fast glyph rendering [Soren Sandmann]

  * Faster bilinear scaling on iwMMX, Loongson and MMX [Matt Turner]

  * More fast paths in the MIPS DSPr2 backend [Nemanja Lukic]

  * Faster scaling in general and on SSE2 in particular [Siarhei
    Siamashka]

(wiz)

Updated x11/xkeyboard-config to 2.8

(wiz)

Update to 2.8:

Khaled Hosny (1):
      Allow Alt R to be used for next group again

Mathieu Boespflug (1):
      Add altwin:swap_alt_win option.

Michal Nazarewicz (1):
      Remove redundant definition in pl(dvp).

Parag Nemade (3):
      Correct the eurosign group to currencysign group
      Align keymappings in Jhelum keymap with m17n pa-jhelum keymap
      Add Rupee Sign default on some Indic xkb maps

Peter Hutterer (1):
      =?UTF-8?q?rules:=20remove=20ml=20=E2=86=92=20in(mal)=20ma?=
=?UTF-8?q?pping?=

Sergey V. Udaltsov (22):
      Added euro to Polish layout
      Added Silesian
      configuration for IBM 142 Italian variant
      il(lyx) should have proper mapping of numeric keys
      Added us(workman)
      More polish on us(workman)
      Cleanup for descriptions
      added de(legacy)
      A couple of missing chars in gr(polytonic), added on levels 3, 4
      fixed comment
      Fixed Congolese layout, 2 missing symbols
      Removed invalid layout
      Updated typography symbols
      Using configure.ac
      Added pl(colemak)
      Bumping version before freese - 2.7.99
      Forgot to remove the actual ad layout
      Fixed 2 minor typos (thanks to Alex Shopov)
      Missing hyphen
      SunOpen -> XF86Open
      Updated translations before release                                                                                                                                            Preparing 2.8

Stephan Hilb (1):
      Always use fake keycode bindings for level3 and level5

javier (8):
      Update keycodes and geometry for Sun Keyboards
      Update XKB symbols specific for Sun Keyboards
      Fix compat for Japanese Sun keyboards
      Update XKB rules specific for Sun Keyboards
      Remove tuv layout for Sun Keyboards
      Add Models and one option for Sun Keyboards
      Add Sun keyboard layout variants
      Add sun_type layout variants into base.extras

(wiz)

Updated x11/xev to 1.2.1

(wiz)

Update to 1.2.1:

This release adds a "-event" option that can be used to filter which events are
printed.  For example, to listen only for RandR events, use "xev -event randr".
The -event parameter can be specified multiple times.  Please see the manual
page for the list of available event filters.

This release also contains a few code fixes.

Aaron Plattner (2):
      Add a -event parameter to control the event mask
      xev 1.2.1

Alan Coopersmith (2):
      Fix clang warnings about converting size_t to int and back again
      Use strncasecmp instead of a tolower loop & strncmp

(wiz)

Fix the VARBASE propagation to all utilities. Without this, we tried
to log to /spool/fax/Faxlog.

(is)

libupnp update

(drochner)

update to 1.6.18
changes:
-fix multiple buffer overflows (CVE-2012-5958..65)
-more bugfixes, Compilation optimisation

(drochner)

Note update of mail/fml package to 20121230.

(taca)

Update fml to 7.98.18-20121230.

7.98.18 hack base to catch up perl 5.16 changes, cpan modules ..
7.98.17 update modules: cpan modules, IM et.al (to be planned).
7.98.16 FML::Install is enhanced.

(taca)

Note update of mail/fml4 package to 4.0.3.20040215nb4.

(taca)

Allow '+' character in local-part.

Bump PKGREVISION.

(taca)

Note update of Ruby on Rails 3.0.20.

devel/ruby-activesupport3 3.0.20
devel/ruby-activemodel 3.0.20
www/ruby-activeresource3 3.0.20
databases/ruby-activerecord3 3.0.20
www/ruby-actionpack3 3.0.20
mail/ruby-actionmailer3 3.0.20
devel/ruby-railties 3.0.20
www/ruby-rails3 3.0.20

(taca)

Update ruby-rails3 to 3.0.20.

No change except version.

(taca)

Update ruby-railties to 3.0.20.

No change except version.

(taca)

Update ruby-actionmailer3 to 3.0.20.

No change except version.

(taca)

Update ruby-actionpack3 to 3.0.20.

No change except version.

(taca)

Update ruby-activerecord3 to 3.0.20.

No change except version.

(taca)

Update ruby-activeresource3 to 3.0.20.

No change except version.

(taca)

Update ruby-activemodel to 3.0.20.

Fix CVE-2013-0333.

There is a vulnerability in the JSON  code for Ruby on Rails which
allows attackers to bypass authentication systems, inject arbitrary
SQL, inject and execute arbitrary code, or perform a DoS attack on a
Rails application.

## Rails 3.0.20 (unreleased)

* Fix XML serialization of methods that return nil to not be
  considered as YAML (GH #8853 and GH #492)

(taca)

Update ruby-activesupport3 to 3.0.20.

Fix CVE-2013-0333.

There is a vulnerability in the JSON  code for Ruby on Rails which
allows attackers to bypass authentication systems, inject arbitrary
SQL, inject and execute arbitrary code, or perform a DoS attack on a
Rails application.

## Rails 3.0.20 (unreleased)

* Fix XML serialization of methods that return nil to not be
  considered as YAML (GH #8853 and GH #492)

(taca)

Start update of Ruby on Rails 3.0.20.

(taca)

Whitespace cleanup for pkglint.

(wiz)

regen

(wiz)

Add comment.

(wiz)

Always use atomic_ops(3) on NetBSD even on arm, i.e. kill Linux-ARM'ism.
Fixes configure failure on NetBSD/arm 6.0.

Also add patch comment.

(tsutsui)

Updated naxsi, the Web Application Firewall module to version 0.49

* Added support for runtime modifiers
* Minor bugfixes

(imil)

Added fonts/courier-prime version 1.203

(wiz)

+ courier-prime.

(wiz)

Import courier-prime-1.203 as fonts/courier-prime.

It's Courier, just better.

Since the beginning, screenplays have been written in Courier. Its
uniformity allows filmmakers to make handy comparisons and estimates,
such as 1 page = 1 minute of screen time.

But there's no reason Courier has to look terrible. We set out to
make the best damn Courier ever.

We call it Courier Prime.

(wiz)

Updated textproc/rasqal to 0.9.30

(wiz)

Update to 0.9.30:

2013-01-22 Rasqal Version 0.9.30 Released

  Removed RDQL support as promised. So long and thanks for all the
  queries. Use SPARQL instead.
  Improved floating equality, comparison and promotion rules
  Made other fixes and improvements including fixing reported issues:
  0000506, 0000511 and 0000523.

(wiz)

- zim, already updated.

(wiz)

+ dd_rescue-1.30, dos2unix-6.0.3, libmp3splt-0.8.1,
  modular-xorg-server-1.13.2, mp3splt-2.5.1, pkg-config-0.28,
  rasqal-0.9.30, tea-34.0.0, tellico-2.3.7, x264-devel-20130126,
  yabause-0.9.12, zim-0.59.

(wiz)

Updated print/diffpdf to 2.1.2

(wiz)

Update to 2.1.2:

2.1.2

- Minor GUI bug fixes.

- Minor translation fixes.

- Updated copyright year.

(wiz)

Updated fonts/t1utils to 1.37

(wiz)

Update to 1.37:

Version 1.37  29.Jun.2011

* t1asm: Use a dynamically allocated buffer to handle huge characters
  (reported by Werner Lemberg).

(wiz)

Updated devel/py-distribute to 0.6.34

(wiz)

Update to 0.6.34. Replace some interpreter paths.

Changes:
+ Issue #341: 0.6.33 fails to build under python 2.4

(wiz)

Updated devel/py-cython to 0.17.4

(wiz)

Update to 0.17.4:

0.17.4 (2013-01-03)
===================

Bugs fixed
----------

* Garbage collection triggered during deallocation of container classes could lead to a double-deallocation.

(wiz)

Updated devel/pkg-config to 0.28

(wiz)

Update to 0.28:

pkg-config 0.28
===
- Fixed a pair of long-standing and intertwined bugs involving unwanted
  removal of flags. The first is that other Libs flags like -Wl are now
  kept in context order with -l flags. The second is that aggressive
  removal of all duplicate arguments has been scaled back so that just
  consecutive duplicate arguments are removed. One result of this change
  is that some flags could be repeated in the final output, especially
  flags from non-pkg-config packages like -lm. Since pkg-config rarely
  has enough knowledge here about the right thing to do, we throw the
  duplicate arguments at the compiler/linker and trust it will do the
  right thing.
- Fixed an old bug to allow circular Requires. This fix brings along a
  small behavior change in that pkg-config resolves requires depth
  first, causing some lower level flags to show up earlier in the output
  than previously.
- Cleaned up many corner-case bugs and ambiguous behavior in
  pkg-config's interface. Thanks to Michał Górny for finding so many of
  these.
- New autoconf macro PKG_CHECK_VAR for reading variables from .pc files.
- Default to suppressing -L/lib and/or -L/lib64 like their /usr
  counterparts.
- To help support multiarch scenarios out of the box, $host-pkg-config
  is now installed unless --disable-host-tool is passed to configure.
***disabled in pkgsrc***
- Added optional gcov usage through the --with-gcov configure option. As
  a result, many more tests were added to greatly increase the coverage
  of the code to 86% of executed lines on a Fedora 18 machine.
- Bugs fixed: 130, 7331, 16101, 17053, 19950, 34504, 48098, 54231,
  54271, 54379, 54384, 54386, 54388, 54389, 54390, 54391, 54427, 54463,
  54716, 57078, 58363, 59435.

(wiz)

Updated meta-pkgs/modular-xorg-apps to 1.11

(wiz)