Pullup ticket #3878 - requested by wen
www/moodle: security update

Revisions pulled up:
- www/moodle/Makefile                                          1.13
- www/moodle/PLIST                                              1.10
- www/moodle/distinfo                                          1.10

---
  Module Name:    pkgsrc
  Committed By:  wen
  Date:          Fri Jul 27 12:44:21 UTC 2012

  Modified Files:
          pkgsrc/www/moodle: Makefile PLIST distinfo

  Log Message:
  Update to 2.1.7
  Approved by: obache@

  Upstream changes:
  Highlights
    MDL-28557 Group event now appears to teachers, managers and administrators
    MDL-33398 MDL-27368 Cron works when course completion is enabled
  Functional changes
    MDL-24401 Lesson string changes
    MDL-33401 Managers can add blocks at the site level
  Security issues
    MSA-12-0042 File access issue in blocks
    MSA-12-0043 Early information access issue in forum
    MSA-12-0044 Capability check issue in forum subscriptions
    MSA-12-0045 Injection potential in admin for repositories
    MSA-12-0046 Insecure protocol redirection in LDAP authentication
    MSA-12-0047 SQL injection potential in Feedback module
    MSA-12-0048 Possible XSS in cohort administration
    MSA-12-0049 Group restricted activity displayed to all users
    MSA-12-0050 Potential DOS attack through database activity
  Fixes and improvements
    MDL-32866 Filemanager in private files now saves changes
    MDL-33583 "Keep all" automated backups now works
    MDL-33607 Add new wiki page no longer reports error writing to database
    MDL-33603 Database activity entries are linked correctly
    MDL-26892 Question images not lost during upgrade
    MDL-29924 Glossary attachments appear in filter popups

(tron)

copy security patch from xenkernel41 - it also applies to 3.3
(noticed by Daniel Horecki)
bump PKGREV

(drochner)

Updated graphics/pngcrush to 1.7.34

(adam)

Changes 1.7.34:
* Compute and report sum of critical chunk lengths IHDR, PLTE, IDAT, and IEND,
  plus the 8-byte PNG signature instead of just the total IDAT data length.
  Simplify finding the lengths from the trial compressions, by replacing
  the write function with one that simply counts the bytes that would have
  been written to a trial PNG, instead of actually writing a PNG, reading it
  back, and counting the IDAT bytes.  The savings, while measurable, are
  not very significant -- The "-brute" and default pngcrush runs that I
  tried are between one and five percent faster.  Most of the time is
  expended in zlib compression of the IDATs, which is not affected by
  the change.
* Removed comments about the system library having to be libpng14 or earlier.
  This restriction was fixed in version 1.7.20.

(adam)

Updated editors/medit to 1.1.1

(obache)

Update medit to 1.1.1.

2012-07-27  Yevgen Muntyan  <emuntyan@users.sourceforge.net>

    * === Released 1.1.1 ===

    Fixed some build errors:
        Check for sys/wait.h, so that HAVE_SYS_WAIT_H is defined when needed.
        Link with gmodule explicitly.

(obache)

pkglint.

(why does pkglint think .for variables shouldn't use uppercase letters?
that seems completely silly)

(dholland)

+ SDL_gfx-2.0.24, bison-2.6, botan-1.10.3, calibre-0.8.61,
  darktable-1.0.4, davical-1.1.1, dcraw-9.16 [pkg/46718],
  dos2unix-6.0.1, elm-me-2.5plalpha30, gama-1.12, gnucash-2.4.11,
  highlight-3.10, imapfilter-2.5.3, libXrandr-1.4.0, libchamplain08-0.12.3,
  libmicrohttpd-0.9.21, mathomatic-16.0.1, mc-4.8.1.4, mpg123-1.14.4,
  netcdf-4.2.1, nut-17.10, opendkim-2.6.7, p5-Config-General-2.51,
  p5-Perl-Tidy-20120714, parrot-4.6.0, pkg-config-0.27, sablecc-3.4,
  scummvm-1.5.0, skype-4.0.0.8, snort-2.9.3.0, squidclamav-6.8,
  taskjuggler-3.3.0, tea-33.2.0, tellico-2.3.6, texmaker-3.4.1,
  turba-3.0.15, wine-devel-1.5.9 [wait until NetBSD gains OSS 4 or
  bring OSS 3 support back], wireshark-1.8.1, x264-devel-20120714,
  xf86-input-keyboard-1.6.2, xf86-input-mouse-1.8.0 [needs
  modular-xorg-server-1.7+], xf86-video-apm-1.2.5, xf86-video-ark-0.7.5,
  xf86-video-ast-0.97.0, xf86-video-chips-1.2.5, xf86-video-cirrus-1.5.1,
  xf86-video-glint-1.2.8, xf86-video-i128-1.3.6, xf86-video-i740-1.3.4,
  xf86-video-intel-2.20.2, xf86-video-mach64-6.9.3, xf86-video-mga-1.6.1,
  xf86-video-neomagic-1.2.7, xf86-video-nv-2.1.20,
  xf86-video-openchrome-0.3.0, xf86-video-r128-6.8.4,
  xf86-video-rendition-4.2.5, xf86-video-s3-0.6.5,
  xf86-video-s3virge-1.10.6, xf86-video-savage-2.3.6,
  xf86-video-siliconmotion-1.7.7, xf86-video-sis-0.10.7,
  xf86-video-tdfx-1.4.5, xf86-video-tga-1.2.2, xf86-video-trident-1.3.6,
  xf86-video-tseng-1.2.5, xf86-video-vesa-2.3.2, zile-2.4.8.

(wiz)

Improve warning about gettext/msgfmt dependency.
In another part pkglint already knows that BUILD_USES_MSGFMT is deprecated,
so a second run would have provided the correct answer.

(wiz)

Remove I18N files from PLIST

(morr)

Update to newest version, including security fixes.

ChangeLog from last version:

SECURITY
========
* Close several XSS vulnerabilities in topic administration page.  This
  resolves CVE-2012-2768.
DOC
===
* Clarify that the only version incompatibility is 3.8.0; 3.8.x for
  values of x != 0 is fine.
* Note incompatibility with RT 4 and above, which already include RTFM
  functionality as "Articles"

XXX: for now disable copying of PO files, they conflict with RT ones.

(morr)

dovecot update

(drochner)

update to 2.1.8
changes:
-pop3c: Added pop3c_master_user setting
-bugfix: Mailbox names were accidentally sent as UTF-8 instead of mUTF-7
-more bugfixes

approved by The Maintainer

(drochner)

nmh update

(drochner)

update to 1.5
changes:
-a "From:" header is now required for outgoing mail, custom component
files may need to be adjusted
-support for filters in mhl
-more fixes and new features, see the share/doc/nmh/NEWS file for details
-dragonfly support patches were integrated

(drochner)

Update MASTER_SITES, from Brad Ely on pkgsrc-users.

(wiz)

add patch from upstream to fix bug in MMIO emulation which can cause
guest crashes by unprivileged users, only for HVM guests, and if
MMIO is granted to the user process (CVE-2012-3432)
bump PKGREV

(drochner)

enable reload in rc.d scripts

(jnemeth)

Updated emulators/b-em to 2.1anb1

(wiz)

Convert to modular xorg (by adding/changing dependencies).
Bump PKGREVISION.
NO pkglint cleanup, so if someone ...

(wiz)

Add curl tool on Darwin and Linux if it exists, as it is very common.

(jperkin)

Ensure that SSL support is completely disabled if the user has requested
that we prefer pkgsrc for OpenSSL.  While the latter doesn't actually work
yet, it's better that we are deterministic about this and do not pick up
the system OpenSSL regardless.

(jperkin)

Pull in the correct libraries when enabling SSL support in libfetch.

(jperkin)

Sync with net/libfetch/options.mk so that the bundled libfetch can be
correctly built without SSL support.

(jperkin)

Updated net/istgt to 20120726

(sborrill)

Update to version 20120726.

Major changes:
- Introduce SIGHUP reloading.
- The symlink device can be enabled by '--enable-symlink-device' configure
  option.
- Fix the unknown error under some mutex condition.
- Fix the wrong reservation key handling.
- Use Clang as first choice compiler.
- Use _GNU_SOURCE on linux platform.

Current Limitations of SIGHUP support:
- The parameters other than PG, IG, and LU are not reloaded by SIGHUP.
- PG and IG mapped to LU can't be deleted by SIGHUP.
- If you delete an active LU, all connections of the LU are closed by
  SIGHUP.
- Can't modify LU by SIGHUP.
- Updating IG is not affected until the next login.

(sborrill)

Use /usr/bin/true instead of : for true. The latter is incompatible with
the use of a colon as a separator, such as in
sed "s:@FOO@:${FOO}"

This unbreaks a variety of packages in MirBSD.

(bsiegert)

Update www/moodle to 2.1.7

(wen)

Update to 2.1.7
Approved by: obache@

Upstream changes:
Highlights
  MDL-28557 Group event now appears to teachers, managers and administrators
  MDL-33398 MDL-27368 Cron works when course completion is enabled
Functional changes
  MDL-24401 Lesson string changes
  MDL-33401 Managers can add blocks at the site level
Security issues
  MSA-12-0042 File access issue in blocks
  MSA-12-0043 Early information access issue in forum
  MSA-12-0044 Capability check issue in forum subscriptions
  MSA-12-0045 Injection potential in admin for repositories
  MSA-12-0046 Insecure protocol redirection in LDAP authentication
  MSA-12-0047 SQL injection potential in Feedback module
  MSA-12-0048 Possible XSS in cohort administration
  MSA-12-0049 Group restricted activity displayed to all users
  MSA-12-0050 Potential DOS attack through database activity
Fixes and improvements
  MDL-32866 Filemanager in private files now saves changes
  MDL-33583 "Keep all" automated backups now works
  MDL-33607 Add new wiki page no longer reports error writing to database
  MDL-33603 Database activity entries are linked correctly
  MDL-26892 Question images not lost during upgrade
  MDL-29924 Glossary attachments appear in filter popups

(wen)

Remove makeinfo requirement, it was added back in 2003 but doesn't appear
to be necessary any more.  Ordinarily it wouldn't hurt to leave it, but it
can cause cyclic dependencies if binutils is required by gcc, and this will
suffice in lieu of a proper fix for that problem.

(jperkin)

Make curl a tool.  Add support for /usr/bin/curl, if available, on Solaris.

SmartOS and OmniOS users can now set FETCH_USING=curl and no longer require
pkgsrc dependencies for downloading distfiles.

(jperkin)

Ensure LC_ALL=C is set when determining the gcc version.  Add a comment
explaining why we currently have to hardcode 'env' rather than use SETENV
or PKGSRC_SETENV.

(jperkin)

Set default ABI on Solaris for SPARC too.

(jperkin)

Pullup ticket #3876.

(tron)

Pullup ticket #3876 - requested by drochner
net/wireshark: security update

Revisions pulled up:
- net/wireshark/Makefile                                        1.80 via patch
- net/wireshark/distinfo                                        1.56

---
  Module Name:    pkgsrc
  Committed By:  drochner
  Date:          Tue Jul 24 17:24:55 UTC 2012

  Modified Files:
          pkgsrc/net/wireshark: Makefile distinfo

  Log Message:
  update to 1.6.9
  changes:
  -security fixes:
    -The PPP dissector could crash (CVE-2012-4048)
    -The NFS dissector could use excessive amounts of CPU (CVE-2012-4049)
  -more bugfixes, see
    http://www.wireshark.org/lists/wireshark-announce/201207/msg00002.html
    for details

  approved by The Maintainer

(tron)

No sqlite support in PHP-5.4 (only sqlite3).

(obache)

readline support require GNU readline.

(obache)

Move debug into separate options.
Requested by Matthew Mondor.

(asau)

Updated sysutils/dc-tools to 1.3

(abs)

Updated sysutils/dc-tools to 1.3

fix issue with non -r usage

(abs)

update COMMENT

(abs)

Updated sysutils/dc-tools to 1.2

Changes to dc-burn-netbsd
- If run as non root, call sudo where root is required
- Adjust -r to permit explicit list of tarfiles to extract
- Enumerate all possible tarfiles to avoid having to query NetBSD site
- Add -e option to tun emulator (gxemul) on result
- Fix rework of extracted files to create viable live image
- Implement -v '?' to list available versions (from main NetBSD site)
- Automatically check NetBSD-archive directory for older NetBSD versions

(abs)

Fake up a much more complete TOC based on real CD image.
Now works with NetBSD 4, 5 & 6 which would have previously failed.

Comment out some unusual sector subtractions which handled values in the
multigigabyte range.

Now allows all tested NetBSD versions (3, 4, 5 & 6) to mount ISO images

(abs)

Updated lang/ecl to 12.7.1

(asau)

Update to ECL 12.7.1

ECL 12.7.1:
===========

* Bugs fixed:

- The implementation of locks and condition variables based on POSIX threads
  was not safe under interrupts. It has all been reimplemented using atomic
  userspace operations plus a new wait queue.

- :CDECL was not accepted as an FFI declaration due to a typo.

- REMOVE-METHOD and FIND-METHOD were not generic functions.

- MAKE-LOAD-FORM's methods for standard-object, structure-object and
  condition did not signal an error).

* Visible changes:

- ECL builds with support for threads by default (where available).

- DIRECTORY no longer complains when it finds an inexistent directory
  component: it simply returns NIL as the list of pathnames.

- CASE now complains when the OTHERWISE/T clause is not the last one.

- Instead of issuing an error, LOOP now only produces a STYLE-WARNING
  when iteration forms appear at the wrong place, as in (LOOP WHILE ...)
  followed by some assignment.

- EXT:MKDIR no longer accepts pathnames as inputs to avoid problems with
  pathnames that contain name or type components.

- ENSURE-DIRECTORIES-EXIST accepts the keyword argument :MODE which is
  passed to MKDIR.

- In EXT:RUN-PROGRAM the child process is delayed until the parent has created
  the process structure and stored the process id in it. Formerly we had race
  conditions due to the child exiting before the parent was able to call
  sigwait().

- Where available, ECL now defines the constants EXT:+SIGRTMIN+ and
  EXT:+SIGRTMAX+, as well as EXT:+SIGRT0+ through EXT:+RTMINn+ where n =
  SIGRTMAX - SIGRTMIN Those signals can be then trapped.

- The interrupt handler for floating point exceptions does not care about
  the value of EXT:*INTERRUPTS-ENABLED* or similar mechanisms because such
  interrupt has to be treated as an error, not as something optional. The
  same applies to other evil signals, such as SIGSEGV or SIGBUS.

- New functions (EXT:GET-INTERRUPT-HANDLER code) and
  (EXT:SET-INTERRUPT-HANDLER code function-designator) allow the user to
  customize how these interrupts are caught. SET-INTERRUPT-HANDLER runs an
  implicit EXT:CATCH-SIGNAL.

- ECL now exports the symbols FFI:C-INT-MAX, FFI:C-INT-MIN, FFI:C-LONG-MAX,
  etc, which correspond to the POSIX C constants INT_MAX, INT_MIN, LONG_MAX,
  and similar ones.

- APROPOS-LIST no longer returns duplicate symbols.

- The ABORT restart is now bound on every new thread (except the main one,
  where either the user or the toplevel must take care of that).

* Windows:

- ECL guesses whether the input / output / error streams are consoles. If
  so, it sets up a special type of stream that copes with the deficiencies
  of read()/write() and similar functions on consoles -- namely that they
  may read or write a larger number of bytes than demanded because they
  translate the input/output to and from the corresponding codepage.
  (EXPERIMENTAL)

- ECL detects the codepage that the console is using and applies it as
  the appropriate external format (with :CRLF convention).

- ECL's console stream signals EOF when Ctrl-Z is detected.

* Metaobject protocol:

- Implemented CLOS:COMPUTE-APPLICABLE-METHODS-USING-CLASSES.

- COMPUTE-APPLICABLE-METHODS and CLOS:COMPUTE-EFFECTIVE-METHOD are now
  generic functions.

- Implemented and used in the core: VALIDATE-SUPERCLASSES

- UPDATE-DEPENDENT, MAP-DEPENDENTS and related functions have been fixed. They
  are now invoked by REMOVE-METHOD and REINITIALIZE-INSTANCE, when acting on
  generic functions, standard classes, etc.

- (SETF CLASS-NAME) is now implemented using REINITIALIZE-INSTANCE.

- ENSURE-CLASS-USING-CLASS now registers the class with
  FIND-CLASS. ENSURE-CLASS relies on E-C-U-C doing that.

- EXTRACT-LAMBDA-LIST and EXTRACT-SPECIALIZER-NAMES implemented.

- CLOS:GENERIC-FUNCTION-DECLARATIONS and slot CLOS:DECLARATIONS are now
  implemented (even if not used by ECL itself).

- Implemented the class CLOS:METAOBJECT

- Implemented SPECIALIZER and EQL-SPECIALIZER, together with
  ADD-DIRECT-METHOD, REMOVE-DIRECT-METHOD, SPECIALIZER-DIRECT-METHODS,
  SPECIALIZER-DIRECT-GENERIC-FUNCTIONS and EQL-SPECIALIZER-OBJECT. ECL now
  uses these objects internally for method dispatch.

- DEFMETHOD now relies on MAKE-METHOD-LAMBDA to create the appropriate
  function.

- Implemented COMPUTE-DISCRIMINATING-FUNCTION.

- ECL's discriminating functions use COMPUTE-APPLICABLE-METHODS-USING-CLASSES
  on those classes in which the user may redefine or extend the
  method. Elsewhere, ECL relies on the internal equivalent of
  COMPUTE-APPLICABLE-METHODS, which _always_ memoizes results.

- When reinitializing a class instance, ECL would not remove the class from
  its former superclasses.

- The method combination slot of a generic function is now precomputed by
  using FIND-METHOD-COMBINATION in SHARED-INITIALIZE.

- METHOD-COMBINATION is now a class with slots and it is used by ECL for
  computing effective methods.

- The MOP and CL classes and metaclasses do not contain any slot whose name
  is exported by any of the CL or CL-USER packages.

(asau)

Add support for --prefer-pkgsrc which will set PREFER_PKGSRC in the bootstrap
and target mk.conf.  Primarily useful to ensure pkgsrc zlib/bzip2 etc are used
for pkg_install.

(jperkin)

Note libtool-base revision bump.

(bsiegert)

Add a special case for f77 on MirBSD. This is what the wrapper scripts call
the f2c frontend. It is not recognized as GCC even though there is a gcc
underneath. Thus, use "-Wl," to introduce linker options.

This unbreaks the build of shared libraries written in Fortran on MirBSD
(exotic combination, yes I know) such as blas.

Bump PKGREVISION.

(bsiegert)

Note ilmbase bump

(bsiegert)

Do not try to use EOVERFLOW if it is equal to ERANGE, such as in MirBSD.
Fixes MirBSD build.

PKGREVISION++.

(bsiegert)

Pullup ticket #3875.

(tron)

Pullup ticket #3875 - requested by taca
www/contao211: security update

Revisions pulled up:
- www/contao/Makefile.common                                    1.19
- www/contao211/Makefile                                        1.4
- www/contao211/distinfo                                        1.9

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Jul 26 03:06:05 UTC 2012

  Modified Files:
  pkgsrc/www/contao: Makefile.common
  pkgsrc/www/contao211: Makefile distinfo

  Log Message:
  Update contao211 package to 2.11.5.

  It also fixes a little security problem of permission check about undo
  processing.

  Quote from release announce: http://www.contao.org/en/news/contao-2_11_5.html

  The bugfix release fixes a couple of issues, including the SOAP
  compression problem in PHP 5.4, the IDNA URL converting issue and
  the TinyMCE relative URLs problem.

(tron)

Note update of www/contao211-translations package to 201207250.

(taca)

Update contao211-translations to 201207250.

Czech, Dutch, Italian, Japanese and Portuguese language files are updated
to catch up to Contao 2.11.5.

(taca)

Note update of www/contao211 and www/contao211-example packages to 2.11.5.

(taca)

Update contao211 package to 2.11.5.

It also fixes a little security problem of permission check about undo
processing.

Quote from release announce: http://www.contao.org/en/news/contao-2_11_5.html

The bugfix release fixes a couple of issues, including the SOAP
compression problem in PHP 5.4, the IDNA URL converting issue and
the TinyMCE relative URLs problem.

(taca)

Update www/p5-Dancer to 1.3097

(wen)

Update to 1.3097

Upstream CHANGES:
1.3097      08.07.2012

    [ ENHANCEMENTS ]
    * New keywords 'register_hook' and 'execute_hooks' exported by Dancer::Plugin
      for providing a consistent way with Dancer 2 on how to declare and run hooks
      from within a plugin (Alexis Sukrieh, idea from David Precious).

1.3096      06.07.2012
    ** Codename: Chop Hooey // Neil Hooey **

    [ ENHANCEMENTS ]
    * Finally released, thanks to Neil Hooey bugging my sorry ass.

1.3095_02  03.07.2012

    [ BUG FIXES ]
    * fix exception tests in some cases (GH #734) (Damien Krotkine & katkad )

    [ ENHANCEMENTS ]
    * If YAML does not load, Dancer::Config now reports why (Ovid)

    [ DOCUMENTATION ]
    * Clarify serialization in introduction POD (Mark A. Stratman)
    * Typo fix (Sam Kington)

1.3095_01  22.06.2012

    [ BUG FIXES ]
    * Don't assume returned references are blessed when considering
      continuations (Neil Hooey, GH-778)
    * Malformed/missing cookies caused warnings
      (James Aitken/LoonyPandora, GH-782 and GH-783)
    * Avoid potential crash in t/14_serializer/06_api.t if tmp dir is replaced
      when %ENV gets cleared (Adam Kennedy)
    * Properly initialize %callbacks to default empty hashref  in _send_file if
      not provided (Greg Mullen)

    [ ENHANCEMENTS ]
    * Add UTC timestamp options for logger_format (Alex C - perlpong).
    * Tests can now run in parallel (Richard Sim.es).
    * dancer_version keyword added (Damien "dams" Krotkine).
    * New session_domain paramter allows you to set the domain of the default
      session cookie (William Wolf)

    [ DOCUMENTATION ]
    * Update Ubic service example (Vyacheslav Matyukhin)
    * Silly typo fixing (Paul Fenwick)
    * Typo in Dancer::Test file upload example (Jonathan "Duke" Leto)
    * UTF-8 fixes in POD (ambs)

1.3095      01.04.2012

    [ BUG FIXES ]
    * Small fix to skip tests when YAML is not available.
      (Sawyer X)

    [ ENHANCEMENTS ]
    * Added 'info' log level for messages that should always go to the logs
      but aren't really debug, warning or error messages (Ovid)

1.3094      31.03.2012

    [ BUG FIXES ]
    * GH #763: Fix exceptions in ajax routes clobbering layout (ilmari)
    * GH #748 & GH 647: Don't force override environment from PLACK_ENV (jwittkoski)
    * GH #762: fix param parsing lacking limit on split (leejo)
    * GH #758: Fix Dancer::Test: make sure the request is properly converted to
      a response. (Ovid)
    * GH #729: Fix dancer exception composition, and message pattern application
      (Damien Krotkine)
    * GH #752: Exceptions raised in hooks were not propagated back to the route
      code, but instead canceleld and replaced by a Dancer halt exception. That
      was wrong. Now it is fixed, exceptions raised in hooks can be properly
      caught in route code.
      (Damien Krotkine)
    * Be more flexible in single vs. mutliple values in key hiding.
      (Sam Kington)
    * Use isa() for checking relationships instead of ref() in Dancer::Test.
      (Ovid)

    [ ENHANCEMENTS ]
    * Added 'strict_config' option to have the config return an object instead
      of a hashref. (Ovid)
    * GH #708: Added support for query strings in dancer_request (Jacob Rideout)
    * It's possible for the user to set the environments directory using a new
      environment variable (DANCER_ENVDIR) or using `set envdir => $path`
    * Sort hash keys when serializing references in log messages (Ovid).

    [ DOCUMENTATION ]
    * Explain in POD that if there are multiple fields with the same name,
      params('fieldname') returns an arrayref of them (alexrj).
    * GH #750: Fix in Dancer::Deployment: appdir needs to be set before calling
      load_app (Paul Johnson)
    * Update 'before' hook document (David Cantrell).

1.3093      29.02.2012

    [ BUG FIXES ]
    * GH #738: Define exception type ::Core::Request, to avoid things blowing
      up when Dancer::Request raises exceptions of that type
      (David Precious, thanks to damog for reporting)
    * GH #671: Fix Dancer::Plugin::Ajax with Plack::Builders.
      (Activeg, Sawyer X)
    * Auto-page feature cleanup and fixup. (David Precious)
    * Remove uninitialized warnings. (Sawyer X, David Precious)

    [ ENHANCEMENTS ]
    * Winning release race to Catalyst (nice try rafl++!)
    * Add exception type ::Core::Request. (David Precious)
    * JSON decode from UTF8. (Sam Kington)
    * Provide the method when a route crashes to help debug. (Sam Kington)
    * More helpful log messages. (David Precious)

    [ DOCUMENTATION ]
    * Fix examples for multi-app deployment under Plack::Builder in deployment.
    * Deployment docs. (c0bra)
    * Update tutorial. (David Precious)
    * Clean up EXPORTS. (David Precious)
    * Keyword documentation fixups. (Kirk Kimmel)
    * Clarify forward docs with better examples. (David Precious)

1.3092      27.01.2012

    [ BUG FIXES ]
    * Don't call isa() on unblessed refs in Dancer::Exception. (Sam Kington)
    * Assume UTF-8 by default when serialising JSON. (Sam Kington)
    * GH #725: If a cookie is set multiple times, last value wins.
      (David Precious)
    * More intuitive, backwards compatible appending of default template
      extension. (GH #716, David Precious)
    * Prevent recursion in censoring. (Yanick Champoux, Damien dams Krotkine)
    * GH #734: More tests flexibility (Sawyer X, reported by @birdy-)

    [ ENHANCEMENTS ]
    * Return the current set prefix using prefix(). (Michal Wojciechowski)
    * More intuitive appending of default template extension. Makes for cleaner
      more DWIM code. (David Precious, reported by Nick Knutov)
    * Allow any options to JSON serializer. (Lee Johnson)
    * Support complex views with multiple document roots. (Pedro Melo)

    [ DOCUMENTATION ]
    * Document how to work with Dotcloud. (Oliver Gorwits)
    * Clean ups and fix ups. (David Precious, Sawyer X, Michal Wojciechowski)

(wen)

Forced commit to get correct commit message (prior commit was accidental)

Update information on Solaris to include Solaris 10 & gcc46

(tez)

update nfdump to 1.6.6

(tez)

Update to 1.6.6

2011-03-12 1.6.6
- Minor IPFIX bug.
- IPFIX implement template withdraw
- For IPFIX, check packet sequence per template and observation domain
- Fix time window, when no flows collected or no flows matched
  while processing
- Fixed typos
- Fix seg fault bug - test for EMPTY_LIST was missing at several places.

2011-02-19 1.6.6b1
- Fix bps/pps. make it uint64_t, as bps/pps > 4Gb/s overflows.
- In record raw print mode: decode ICMP instead of src/dst ports
- sflow use announced exporter IP instead of sending IP for router ID
- sflow: Ignore extra fill bytes. Do not complain.
- sflow: fix packet length issue.
- Add IPFIX protokoll support

2011-12-31 1.6.5
- Fix 64bit bug when using byte/packet limits
- for v5 and sampling use 64bit counters to prevent overflow for large sampled flows.
- Fixed Ident printig bug

2011-07-11 1.6.4
- some code restructuring - prepare for IPFIX module
- Add netflow v1 module. Some routers still use that
- Add %sn, %dn output tags for src/dst networks
- Fix buffer length check in v5.
- Fix export bug: include last flow cache bucket, when exporting
- number in all filter expressions accept hex values
- fix an sflow colletor bug. Missing extension maps in rotated files
- implement extended statistics. Currently ports and bpp distribution
  vectors can be collected automatically be nfcapd. Still experimental

2011-02-26 1.6.3p1
- Fix timebug fix :(, make it a compile time option
- fix v7 sequence errors

2011-02-15
- Zero out unused fields after aggregation

2011-02-05
- Fix SysUptime 32bit overflow in v5 header
- Add fix for strange first/last swap reported by some users.

2011-01-09 v1.6.3
- Fix extension size bug
- Move IP anonymisation to separate binary nfanon
- Fix initialise bug of -o fmt: and not available fields

2010-09-09 v1.6.2
- released
- fixes some sflow bugs in sfcapd
2010-04-28 v1.6.1p0
- Update flow tools converter to build with Google-Code version 0.68.5
- Fix sflow bugs

2010-03-05 v1.6.1
- Fix bug in man page for -t
- Test sampler infos before using them ( nfcapd startup )
- Add sampling tags #34, #35 used by JunOS
- nfexpire: Fix empty .nfsat, when setting limits on an empty directory
- Fix coredump for -B -m (-w) combination
- Optimise some extension map code

2009-12-28 stable v1.6
- Few bug fixes in release candidates rc1, rc2 and rc3

2009-11-16 snapshot-1.6b-20091116
- Update sflow collector with new tags
- Add router IP extension
- Add router ID (engine type/ID) extension

2009-09-30 snapshot-1.6b-20090930
- snapshot bugfix release

2009-11-0801 snapshot-1.6b-20090806
- Add srcmask and dstmask aggregation
- Add csv output mode. -o csv
- Fix some bugs of previous beta
- Add bidirectional aggregation of flows ( -b, -B )
- Add possibility to save aggregated flows into file ( -w )
  Note: This results in a behaviour change for -w in combination
  with aggragation )
- Extend -N ( do not scale numbers ) to all text output not just summary
- Make extension handling more robust for some moody IOSes.
- Remove header lines of -s stat, when using -q ( quiet )
  Note: This results in a behaviour change for -N
- Remove -S option from nfdump ( legacy 1.4 compatibility )
- Make use of log (syslog) functions for nfprofile.
- Move log functions to util.c

2009-06-19 snapshot-1.6b-20090717
- Flow-tools converter updated - supports more common elements.
- Sflow collector updated. Supports more common elements.
- Add sampling to nfdump. Sampling is automatically recognised
  in v5 undocumented header fields and in v9 option templates.
  see nfcapd.1(1)
- Add @include option for filter to include more filter files.
- Add flexible aggregation comparable to Flexible Netflow (FNF)
- All new tags can be selected in -o fmt:... see nfdump(1)
- topN stat for all new tags is implemented
- Integrate developer code to read from pcap files into stable
- Update filter syntax for new tags
- Added more v9 tags for netflow v9.
  The detailed tags are listed in nfcapd(1)
  Adding new tags also extended the binary file format with
  data block format 2, which is extension based. File format
  for version <= 1.5.* ( Data block format 1 ) is read
  transparently. Data block 2 are skipped by nfdump 1.5.7.
  32bit but AS and interface numbers are supported.
- Add flexible storage option for nfcapd. To save disk space, the
  data extensions to be stored in the data file are user selectable.
- Added option for multiple netflow stream to same port.
  -n <Ident,IP,base_directory>
  Example: -n router1,192.168.100.1,/var/nfdump/router1
  So multiple -n options may be given at the command line
  Old style syntax still works for compatibility, ( -I .. -l ... )
  but then only one source is supported.
- Move to automake for building nfdump
- Switch scaling factor ( k, M, G ) from 1024 to 1000.
- Make nfdump fully 64bit compliant. ( 8bit data alignments and access )

2009-04-17 stable 1.5.8
- Fix daylight summer time bug, when guessing sub dirs. file access ( -M, -r )
- Bug fixes for 64bits CPUs

(tez)

MirBSD support here, too

(bsiegert)

Updated graphics/pngcrush to 1.7.33

(adam)

Changes 1.7.33:
* Ignore all ancillary chunks except during the final trial.  This can be
  significantly faster when large ancillary chunks such as iCCP are present.

Changes 1.7.32:
* Fixed bug introduced in 1.7.30: Do not call png_set_check_for_invalid_index()
  when nosave != 0 (otherwise pngcrush crashes with the "-n" option).

(adam)

Updated textproc/xmlrpc-c to 1.16.42

(adam)

Changes 1.16.42:
Fix crash due to bogus memory free when xmlrpc_parse_value() fails.
Broken in 1.07

(adam)

MirBSD support, like ruby193-base.

This one needs two additional fixes to configure.

(bsiegert)

use py-distribute for Python3 rather than py-setuptools
(The former might be used for Python2 as well, but it needs more
testing.)

(drochner)

+py-distribute

(drochner)

add py-distribute-0.6.28, a replacement for py-setuptools which
also works with Python3

(drochner)

Added print/foo2zjs version 20120516

(imil)

Updated print/foo2zjs to 20120516

(imil)

add & enable foo2zjs

(imil)

Initial import of foo2zjs, version 20120516, into the NetBSD Packages
Collection.

foo2zjs is an open source printer driver for printers that use the Zenographics
ZjStream wire protocol for their print data, such as the  Minolta/QMS magicolor
2300 DL or Konica Minolta magicolor 2430 DL or HP LaserJet 1020 or HP LaserJet
Pro P1102 or HP LaserJet Pro P1102w or HP LaserJet Pro CP1025nw. These printers
are often erroneously referred to as winprinters or GDI printers. However,
Microsoft GDI only mandates the API between an application and the printer
driver, not the protocol on the wire between the printer driver and the printer.
In fact, ZjStream printers are raster printers which happen to use a very
efficient wire protocol which was developed by Zenographics and licensed by
most major printer manufacturers for at least some of their product lines.
ZjStream is just one of many wire protocols that are in use today, such as
Postscript, PCL, Epson, etc.

(imil)

Updated textproc/xmlrpc-c to 1.16.41nb1

(jperkin)

Use correct linker flags on Solaris with GCC.  Fixes relocation issues.

Bump PKGREVISION.

(jperkin)

Update net/p5-Test-TCP to 1.16

(wen)

Update to 1.16

Upstream ChangeLog:
1.16
    [TEST FIX]
    - 1.15 breaks AIX fix on 1.14.
      t/05_sigint.t skips on perl <= 5.8.8.

1.15

    [TEST FIX]
    ${^CHILD_ERROR_NATIVE} is only available in perl 5.8.9 and later.
    (kazeburo++)

1.14
    - Fixed testing issue on AIX.
      https://rt.cpan.org/Public/Bug/Display.html?id=72779
      (w.phillip.moore)
    - depend to Test::SharedFork 0.19 for better TB2 support
      (tokuhirom)

(wen)

Update devel/p5-Test-SharedFork to 0.20

(wen)

Update to 0.20

Upstream ChangeLog:
0.20
    - test_requires Time::HiRes for redhat.
      (berekuk++)
0.19
    - fixed TB2 support(tokuhirom)

(wen)

Update www/p5-HTTP-Lite to 2.4

(wen)

Update to 2.4

Upstream ChangLog:
2.4 2012-07-20
    - Fixed RT #13791, which meant you couldn't request http://foobar.com --
      had to have to trailing slash on the URL.
    - Don't add request header if value passed is undef (RT #4546).
    - Fixed bug where writing the request can get stuck in a loop.
      Bug reported by Florian Kirchmeir. Fix based on Florian's patch.
    - RT #35360 fixed (fix included in report).
    - Documentation tidy-up
    - Neil Bowers (NEILB) granted co-maint by Adam (thanks)

(wen)

Update databases/p5-Data-Table to 1.65

(wen)

Update to 1.65

Upstream ChangLog:
1.65 Mon Jul 23 20:16:08 PDT 2012
  Finish the "Perl Data::Table Cookbook", should be a good learning material.
  To download, visit https://sites.google.com/site/easydatabase/

  Polish Data::Table::Excel for CPAN upload.

  Minor patches to the code.

1.64 Sun Jul  8 22:01:17 PDT 2012
  Add $keepRestCols to Data::Table::group();
  We introduce new constants for fromCSV/fromTSV/fromFile/csv/tsv.
    Data::Table::OS_UNIX = 0;
    Data::Table::OS_PC = 1;
    Data::Table::OS_MAC = 2;
  Add method reorder(), redefine column orders
  Add method melt() and cast(), concept borrowed from Reshape package in R
  Add method each_group(), so one can apply a custom method to rows sharing the same key

  Made a seemingly backward incompatible change to pivot()
    pivot($colToSplit, $colToSplitIsNumeric, ...) is changed to
    pivot($colToSplit, $colToSplitIsStringOrNumber, ...)
  What is now pivot($colToSplit, $Data::Table::STRING, ...), where Data::Table::STRING has a value of 1,
  was equivalent to pivot($colToSplit, 0, ...) in <= 1.63.
  However, the $colToSplitIsStringOrNumber is now auto-guessed within the code, so the change is not very relevant.
  Most existing code should run fine, without change.

  Patch group(), piviot() to distinguish keys between empty string and undef.

  Patch subTable() to take row mask array when {useRowMask=>1} is provided.

1.63 Tue Jun 12 17:05:43 PDT 2012
  In this release, we patch addCol, delCol, addRow, rowMerge, colMerge to for an empty table
  We introduce new methods isEmpty(), hasCol(), moveCol($colID, $newColIdx)
  We introduce new constants for Data::Table::new()
    Data::Table::ROW_BASED
    Data::Table::COL_BASED

1.62 Fri May 25 11:40:09 PDT 2012
  In this release, we address a few pain points

  Data::Table::colMerge, update to support new options
    { renameCol => 1}
    If specified, duplicate column names in the second table is automatically renamed (by appending _2) to avoid conflict

  We introduce some constants, so we have fewer numbers to remember.
    Data::Table::NUMBER
    Data::Table::STRING
    Data::Table::ASC
    Data::Table::DESC

  for sort(), you can use $t->sort('col2', Data::Table::NUMBER, Data::Table::DESC); it is equivalent to $t->sort('col2', 0, 1);

    Data::Table::INNER_JOIN
    Data::Table::LEFT_JOIN
    Data::Table::RIGHT_JOIN
    Data::Table::FULL_JOIN

  for join(), you may use $t->sort($t2, Data::Table::FULL_JOIN, ['col1'], ['col1']);
  it is equivalent to $t->sort($t2, 3, ['col1'], ['col1']).

  match_string, match_pattern have been generating @Data::Table::OK, which is a class-level array.
  $t->match_pattern() will now also store the results (array ref) in $t->{OK}, that should be used in the future.
  However, @Data::Table::OK is still supported for compatibility reasons.
  This is not a pain point, but conceptually nicer to be localized.

  match_pattern_hash() is added. The difference is each row is fed to the pattern as a hash %_.  In the case of
  match_pattern, each row is fed as an array ref $_.  The pattern for match_pattern_hash() becomes much cleaner.
  If a table has two columns: Col_A as the 1st column and Col_B as the 2nd column, a filter "Col_A>2 AND Col_B<2"
  is written before as
    $t->match_pattern('$_->[0] > 2 && $_->[1] <2');
  where we need to figure out $t->colIndex('Col_A') is 0 and $t->colIndex('Col_B') is 1, in order to build the pattern.
  Now you can use column name directly in the pattern:
    $t->match_pattern_hash('$_{Col_A} >2 && $_{Col_B} <2');
  This method creates $t->{OK}, as well as @Data::Table::OK, same as match_pattern().

  Data::Table::rowMerge, update to support new options
    { byName =>1, addNewCol => 1}
    If byName is 1, rows in the second table are appended by matching their column names, so that the second table
      can have columns in a different order.
    If addNewCol is 1, columns not exist in the first table will be automatically added.
      addNewCol is best used with byName. If used alone, addNewCol will just patch the two tables so that they have
      the same number of columns.
  Data::Table::subTable, update internal to remove side effect on column header array
  Data::join add support for an option {renameCol => 1}.
    If specified, duplicate column names in the second table is automatically renamed (by appending _2) to avoid conflict

1.61 Mon Feb 27 21:07:55 PST 2012
  Data::Table::fromSQL now can take DBI::st instead of a SQL string. This is introduced, so that
  variable binding (such as CLOB/BLOB) can be done outside the method.

1.60 Sat Feb 25 19:26:46 PST 2012
  Data::Table::addRow now also can take a hash reference. Hash keys are column names,
  undef will be the value, if a column name is not found in the hash.
  Suggested by Federico

1.59 Sun Feb  5 00:20:00 PST 2012
  I have never checked those CPAN ticket, happened to discover them and address them in this version.
  Update document, explain Data::Table::fromCSV(\*STDIN, 1) can be used to read table from STDIN.
  Add tbody and thead to Data::Table::html, if it's portrait.
  Suggested by Ken Rosenberry.
  Modify Data::Table::html and Data::Table::html2, so that it can accept coloring via CSS
  The color now can be either specified as an array as before, or as three CSS class names
  Suggested by Xavier Robin

1.58 Thu Feb  2 20:33:03 PST 2012
  Patch join(), prior version of join considers two NULL keys to be equal
  update document, clarify that rowMerge assumes table columns in the same order
  Thanks to Ulrik Stervbo.

1.57 Thu Apr 23 15:22:36 PDT 2009
  Patch pivot(), it throws warning before, when colToFill is undef.

1.56 Fri Aug 22 15:53:29 PDT 2008
  When the first line in a TSV is not a header, but contains strings such as \t.
  The program will not transform \t to a tab.
  Modify fromTSV, so that \t, \N (etc) transformation is optional.
  Add transform_element flag to fromTSV method to turn on/off the transformation.
  Thanks to Bin Zhou.

1.55 Mon May  5 10:29:44 PDT 2008
  Patch parseCSV. fromFile guesses the wrong delimiter if some ending columns are empty.

(wen)

Updated graphics/netpbm to 10.35.80nb3

(jperkin)

Remove SunOS patch, the ld(1) options are actively harmful and cause
R_AMD64_32 relocation errors in 64-bit mode.  The default options should
work fine.

Bump PKGREVISION.

(jperkin)

MirBSD support.

This adds shlib version handling to rubyversion.mk, a fix to configure
(include <sys/time.h> when checking for struct timespec) and a workaround
for broken code if getgrnam_r is available.

(bsiegert)

pullups 3867, 3868 and 3869

(spz)

Pullup ticket #3868 - requested by obache
emulators/suse121_gtk2: security update

Revisions pulled up:
- emulators/suse121_gtk2/Makefile                              1.3
- emulators/suse121_gtk2/distinfo                              1.3

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: obache
  Date: Tue Jul 24 10:02:27 UTC 2012

  Modified Files:
  pkgsrc/emulators/suse121_gtk2: Makefile distinfo

  Log Message:
  Update gdk-pixbuf-query-loaders and libgdk_pixbuf-2_0-0 rpm to 2.24.0-2.4.1
  for CVE-2012-2370.

  Bump PKGREVISION.

  To generate a diff of this commit:
  cvs rdiff -u -r1.2 -r1.3 pkgsrc/emulators/suse121_gtk2/Makefile \
        pkgsrc/emulators/suse121_gtk2/distinfo

(spz)

Pullup ticket #3867 - requested by obache
emulators/suse121_base: security update

Revisions pulled up:
- emulators/suse121_base/Makefile                              1.4
- emulators/suse121_base/distinfo                              1.4

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: obache
  Date: Tue Jul 24 09:59:48 UTC 2012

  Modified Files:
  pkgsrc/emulators/suse121_base: Makefile distinfo

  Log Message:
  Update bash-4.2/libreadline6-6.2 rpm to 1.14.1 for CVE-2012-3410.

  Bump PKGREVISION.

  To generate a diff of this commit:
  cvs rdiff -u -r1.3 -r1.4 pkgsrc/emulators/suse121_base/Makefile \
        pkgsrc/emulators/suse121_base/distinfo

(spz)

Pullup ticket #3874.

(tron)

Pullup ticket #3874 - requested by taca
lang/php: fix PHP version numbers in dependencies after recent update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.20

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Wed Jul 25 10:50:12 UTC 2012

  Modified Files:
  pkgsrc/lang/php: phpversion.mk

  Log Message:
  Update PHP53_VERSION and PHP54_VERSION noted by Uwe Klaus.

(tron)

Fix file descriptor leak on SunOS. Bump PKGREVISION.
See https://bugs.php.net/bug.php?id=47675

(fhajny)

Add support for readline (for interactive PHP CLI).

(fhajny)

darwin-iconv hack is only required for the case using native libiconv.
PR 46720.

(obache)

Fix file descriptor leak on SunOS.
See https://bugs.php.net/bug.php?id=47675

(fhajny)

Switch to usual manner instead of buildlink jail break.

(obache)