drop --fetch-cmd option and FETCH_CMD settings for default mk.conf.
fetch stuff was changed and it will not works as expected nowadays.

(obache)

games/sex bump (but no grind, sorry)

(dholland)

Fix build problem on Minix and a couple other minor C issues I noticed
while passing by. Closes PR 45048 from Thomas Cort.

(dholland)

Updated xbiff.

(dholland)

Update xbiff to 1.0.3. Changes seem to be mostly code cleanup and
autoconf churn.

(dholland)

Updated libXi. Also include bump of games/velena I did two weeks ago and
forgot to commit here.

(dholland)

Update to libXi-1.4.3: bug and doc fixes.

(dholland)

Note update of emacs-snapshot.

(minskim)

Update emacs-snapshot to 24.0.50.20110608.

Changes:
- New input method: ipa-paraat.
- url-future.el: Add general futures facility.

(minskim)

- Fix issue on PubSub preventing publication of items (EJAB-1457)

(mspo)

Updated lang/sbcl to 1.0.49

(asau)

Update to SBCL 1.0.49

changes in sbcl-1.0.49 relative to sbcl-1.0.48:
* minor incompatible change: WITH-LOCKED-HASH-TABLE no longer disables
  interrupts for its body.
* enhancement: source locations are now available for files loaded as
  source, compile-time-too evaluation, and initialization files.
  * enhancement: WITH-COMPILATION-UNIT :SOURCE-NAMESTRING allows providing
    virtual source-file information, eg. overriding input-file of COMPILE-FILE
    when a temporary file is used for compilation.
  * enhancement: ASDF has been updated to version 2.015.3.
  * enhancement: backtraces involving frames from the default evaluator are
    more readable.
  * enhancement: RUN-PROGRAM works with user-defined binary input and output
    streams.
  * enhancement: more informative compile-time warnings and runtime errors for
    type-errors detected at compile-time.
  * enhancement: deadlock detection for mutexes and spinlocks.
  * enhancement: dynamic-extent for &rest lists stack allocate only their
    spines, not their argumets. While portable code should not rely on this,
    particularly in combination with inlining, it should make dynamic-extent
    easier to use safely.
  * enhancement: SB-POSIX improvements:
    ** WNOHANG and WUNTRACED are exported.
    ** SYSCALL-ERROR now also provides the name of the failing system call.
  * enhancement: --script improvements:
    ** errors on standard input, output, and error streams are handled and
      cause scripts to exit silently, making them easier to use in shell
      pipelines.
    ** backtraces from scripts now go to standard error instead of the
      terminal even if one is available.
    ** --script can be an argument, causing the script to be loaded from
      standard input.
  * enhancement: MAKE-ALIEN-STRING provides an easy way to transport lisp
    strings to foreign memory.
  * enhancement: (SETF GC-LOGFILE) allows logging garbage collections to
    a file, making it easier to understand heap dynamics.
  * optimization: using a &REST argument only in APPLY or VALUES-LIST calls
    allows the compiler to automatically elide rest-list allocation so long as
    the call sites are in functions that the compiler knows cannot escape.
    (lp#504575)
  * optimization: CALL-NEXT-METHOD using explicit arguments is faster,
    especially in safe code when none of the required arguments have changed
    their identities.
  * bug fix: blocking reads from FIFOs created by RUN-PROGRAM were
    uninterruptible, as well as blocking reads from socket streams created
    with for which :SERVE-EVENTS NIL. (regression from 1.0.42.43)
  * bug fix: SET-SYNTAX-FROM-CHAR now removes dispatch-macro character syntax
    from the to-char if the from-char is not a dispatch-macro character.
  * bug fix: references to undefined variables in function calls that are
    optimized away now signal a runtime error. (lp#722734)
  * bug fix: miscompilation of MULTIPLE-VALUE-CALL when asserting derived
    types from a function defined in the same file. (regression from
    1.0.43.57)
  * bug fix: TRULY-THE forms are now macroexpandable and setf-expandable.
    (lp#771673)
  * bug fix: spurious errors during QUIT when standard streams were closed.

(asau)

Remove fotoxx

(ryoon)

Updated graphics/fotoxx to 11.06.1

(ryoon)

Update to 11.06.1

Changelog:
2011.06.09  v.11.06.1
Bugfix: A hole was closed that could cause a crash if an area is
deleted while an edit function is open and active.

2011.06.01  v.11.06
+ Smart Erase and Remove Dust were made slightly more effective.
+ Brightness/Color retouching and Tone Mapping were made 25-40% faster.
+ Retouching brightness/color by "painting" with the mouse (dodge and
  burn) was made much faster (instant response on a fast computer).
+ If at startup the previous image file is no longer present then a
  gallery of the 100 most recent files viewed is shown.
+ New function: Tools > Toolbar Style: set to text, icons, or both.
+ New function: Tools > Edit Translation: edit translations interactively
  as Fotoxx is being used, and the changes are immediately effective.
+ Several other small usability improvements were made.
+ Minor bugfix: paste area edge blending lost 1 pixel around the edge.

(ryoon)

PR/39663: enable 256 color support (only with ncurses and PDCurses).

(shattered)

Update MASTER_SITES.

(obache)

Updated mail/sendmail to 8.14.5

(jnemeth)

Update to 8.14.5, a general bugfix release:

8.14.5/8.14.5 2011/05/17
Do not cache SMTP extensions across connections as the cache
is based on hostname which may not be a unique identifier
for a server, i.e., different machines may have the
same hostname but provide different SMTP extensions.
Problem noted by Jim Hermann.
Avoid an out-of-bounds access in case a resolver reply for a DNS
map lookup returns a size larger than 1K.  Based on a
patch from Dr. Werner Fink of SuSE.
If a job is aborted using the interrupt signal (e.g., control-C from
the keyboard), perform minimal cleanup to avoid invoking
functions that are not signal-safe. Note: in previous
versions the mail might have been queued up already
and would be delivered subsequently, now an interrupt
will always remove the queue files and thus prevent
delivery.
Per RFC 6176, when operating as a TLS client, do not offer SSLv2.
Since TLS session resumption is never used as a client, disable
use of RFC 4507-style session tickets.
Work around gcc4 versions which reverse 25 years of history and
no longer align char buffers on the stack, breaking calls
to resolver functions on strict alignment platforms.
Found by Stuart Henderson of OpenBSD.
Read at most two AUTH lines from a server greeting (up to two
lines are read because servers may use "AUTH mechs" and
"AUTH=mechs"). Otherwise a malicious server may exhaust
the memory of the client.  Bug report by Nils of MWR
InfoSecurity.
Avoid triggering an assertion in the OpenLDAP code when the
connection to an LDAP server is lost while making a query.
Problem noted and patch provided by Andy Fiddaman.
If ConnectOnlyTo is set and sendmail is compiled with NETINET6
it would try to use an IPv6 address if an IPv4 (or
unparseable) address is specified.
If SASLv2 is used, make sure that the macro {auth_authen} is
stored in xtext format to avoid problems with parsing
it.  Problem noted by Christophe Wolfhugel.
CONFIG: FEATURE(`ldap_routing') in 8.14.4 tried to add a missing
-T<TMPF> that is required, but failed for some cases
that did not use LDAP.  This change has been undone
until a better solution can be implemented.  Problem
found by Andy Fiddaman.
CONFIG: Add cf/ostype/solaris11.m4 for Solaris11 support.
Contributed by Casper Dik of Oracle.
CONTRIB: qtool.pl: Deal with H entries that do not have a
letter between the question marks.  Patch from
Stefan Christensen.
DOC: Use a better description for the -i option in sendmail.
Patch from Mitchell Berger.
Portability:
Add support for Darwin 10.x (Mac OS X 10.6).
Enable HAVE_NANOSLEEP for FreeBSD 3 and later.  Patch
from John Marshall.
Enable HAVE_NANOSLEEP for OpenBSD 4.3 and later.
Use new directory "/system/volatile" for PidFile on
Solaris 11.  Patch from Casper Dik of Oracle.
Fix compilation on Solaris 11 (and maybe some other
OSs) when using OpenSSL 1.0.  Based on patch from
Jan Pechanec of Oracle.
Set SOCKADDR_LEN_T and SOCKOPT_LEN_T to socklen_t
for Solaris 11.  Patch from Roger Faulkner of Oracle.
New Files:
cf/ostype/solaris11.m4

(jnemeth)

Note update of Ruby on Rails 3.0.8 update:

devel/ruby-activesupport3 3.0.8
devel/ruby-activemodel 3.0.8
www/ruby-actionpack3 3.0.8
databases/ruby-activerecord3 3.0.8
www/ruby-activeresource3 3.0.8
mail/ruby-actionmailer3 3.0.8
devel/ruby-railties 3.0.8
www/ruby-rails3 3.0.8

(taca)

Update ruby-rails3 package 3.0.8.

Version only change.

(taca)

Update ruby-railties package to 3.0.8.

*Rails 3.0.8 (unreleased)*

* Fix Rake 0.9.0 support.

(taca)

Update actionmailer3 pacakge to 3.0.8.

*Rails 3.0.8 (unreleased)*

* Mail dependency increased to 2.2.19

(taca)

Update ruby-activeresource3 package to 3.0.8.

Changed version only.

(taca)

Update ruby-activerecord3 pacakge to 3.0.8.

*Rails 3.0.8 (unreleased)*

* Fix various problems with using :primary_key and :foreign_key options in conjunction with
  :through associations. [Jon Leighton]

* Correctly handle inner joins on polymorphic relationships.

* Fixed infinity and negative infinity cases in PG date columns.

* Creating records with invalid associations via `create` or `save` will no
  longer raise exceptions.

(taca)

Update ruby-actionpack3 package to 3.0.8.

*Rails 3.0.8 (unreleased)*

* Fixed github issue #342 with asset paths and relative roots.

(taca)

Updae ruby-activemodel package to 3.0.8.

Changed version only.

(taca)

Update devel/ruby-activesupport3 package to 3.0.8.

Verson only change.

(taca)

Note update of Ruby on Rails package to 2.3.12.

devel/ruby-activesupport 2.3.12
www/ruby-actionpack 2.3.12
mail/ruby-actionmailer 2.3.12
databases/ruby-activerecord 2.3.12
www/ruby-activeresource 2.3.12
www/ruby-rails 2.3.12

(taca)

Update ruby-rails package to 2.3.12.

Exact changes are unknown but some bug fixes.

* pkgsrc change: remove one extra file.

(taca)

Update Ruby on Rails supporting packages to 2.3.12.

Exact changes are unknown but some bug fixes.

(taca)

Start update of Ruby on Rails 2.3.12/3.0.8.

(taca)

Note update of ruby-mail package to 2.2.19.

(taca)

Update ruby-mail package 2.2.19, latest 2.2.x series.

== Tue Apr 26 09:49:54 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Update activesupport require to use inflector - closes #217

== Tue Apr 26 06:18:19 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Fixed charset warning issue with multipart messages - https://github.com/arvindsv
* Version bump to 2.2.18 and gem release

== Wed 20 Apr 2011 15:16:20 UTC Mikel Lindsaar <mikel@rubyx.com>

* Mail::Field.new("Subject: foobar", 'iso-2022-jp') does not set charset - https://github.com/yalab

== Tue Apr 19 00:20:54 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Fixed an exception with nil in Reply-To and References field - https://github.com/dcormier
* Version bump to 2.2.17 and gem release

== Sat Apr 16 12:57:27 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>

* Added support for open SMTP connections and returning the Mail server's response - https://github.com/spiegela
* RE: not appended to subject when replying to a reply - https://github.com/prateekdayal
* Support not ascii compatible charset mail send - https://github.com/yalab
* Fix for issue 208 "mail.body after mail.add_file truncates message body" - https://github.com/glongman
* Handle bad subject encoding (or ":invalid => :replace" is ineffective for utf-8 to utf-8 encoding) - https://github.com/choonkeat
* Handle blank Received header field - https://github.com/bcantin
* Handle part with missing content type - https://github.com/bcantin
* Handle a "<>" Return field - https://github.com/bcantin
* Performance improvements for 1.9 - https://github.com/nobu
* Fix heavy CPU issues when messages are missing a space - https://github.com/scsmith
* Tighten up allowed encodings - https://github.com/scsmith
* Added to_yaml & from_yaml (as well as to_hash & from_hash) - https://github.com/srushti
* Fix up some comments - https://github.com/takahashim
* Version bump to 2.2.16 and gem release

(taca)

Note update of ruby-rack and ruby-rack-mount package:

www/ruby-rack 1.2.3
www/ruby-rack-mount 0.6.14

(taca)

Add a note in comment to keep this package to 0.5.x series.

(taca)

Update ruby-rack-mount pacakge to 0.6.14, latest 0.6.x series.

Changes are unknown.

(taca)

Update ruby-rack package to 1.2.3, latest 1.2.x series.

Changes are unknown.

(taca)

Note update of these packages:

databases/ruby-arel 2.0.10
misc/ruby-bundler 1.0.15

(taca)

Update ruby-bundler package to 1.0.15.

## 1.0.15 (June 9, 2011)

Features:

  - Improved Rubygems integration, removed many deprecation notices

Bugfixes:

  - Escape URL arguments to git correctly on Windows (1.0.14 regression)

## 1.0.14 (May 27, 2011)

Features:

  - Rubinius platform :rbx (@rkbodenner)
  - Include gem rake tasks with "require 'bundler/gem_tasks" (@indirect)
  - Include user name and email from git config in new gemspec (@ognevsky)

Bugfixes:

  - Set file permissions after checking out git repos (@tissak)
  - Remove deprecated call to Gem::SourceIndex#all_gems (@mpj)
  - Require the version file in new gemspecs (@rubiii)
  - Allow relative paths from the Gemfile in gems with no gemspec (@mbirk)
  - Install gems that contain 'bundler', e.g. guard-bundler (@hone)
  - Display installed path correctly on Windows (@tadman)
  - Escape quotes in git URIs (@mheffner)
  - Improve Rake 0.9 support (@quix)
  - Handle certain directories already existing (@raggi)
  - Escape filenames containing regex characters (@indirect)

## 1.0.13 (May 4, 2011)

Features:

  - Compatibility with Rubygems master (soon to be v1.8) (@evanphx)
  - Informative error when --path points to a broken symlink
  - Support Rake 0.9 and greater (@e2)
  - Output full errors for non-TTYs e.g. pow (@josh)

Bugfixes:

  - Allow spaces in gem path names for gem tasks (@rslifka)
  - Have cap run bundle install from release_path (@martinjagusch)
  - Quote git refspec so zsh doesn't expand it (@goneflyin)

## 1.0.12 (April 8, 2011)

Features:

  - Add --no-deployment option to `install` for disabling it on dev machines
  - Better error message when git fails and cache is present (@parndt)
  - Honor :bundle_cmd in cap `rake` command (@voidlock, @cgriego)

Bugfixes:

  - Compatibility with Rubygems 1.7 and Rails 2.3 and vendored gems (@evanphx)
  - Fix changing gem order in lock (@gucki)
  - Remove color escape sequences when displaying man pages (@bgreenlee)
  - Fix creating GEM_HOME on both JRuby 1.5 and 1.6 (@nickseiger)
  - Fix gems without a gemspec and directories in bin/ (@epall)
  - Fix --no-prune option for `bundle install` (@cmeiklejohn)

## 1.0.11 (April 1, 2011)

Features:

  - Compatibility with Rubygems 1.6 and 1.7
  - Better error messages when a git command fails

Bugfixes:

  - Don't always update gemspec gems (@carllerche)
  - Remove ivar warnings (@jackdempsey)
  - Fix occasional git failures in zsh (@jonah-carbonfive)
  - Consistent lock for gems with double deps like Cap (@akahn)

## 1.0.10 (February 1, 2011)

Bugfixes:

  - Fix a regression loading YAML gemspecs from :git and :path gems
  - Requires, namespaces, etc. to work with changes in Rubygems 1.5

(taca)

Update ruby-arel package to 2.0.10, latest 2.0.x series.

== 2.0.10 / 2011/05/14

* Bug Fixes

  * Fix thread safety issue in ToSql visitor.  Thanks Damon McCormick and
    Cameron Walters!

(taca)

recursive bump from icu shlib major bump.

(obache)

Note update of the "sqlite3" package to version 3.7.6.3.

(tron)

Bump the revision number so it matches the version number required by
the buildlink file.

(tron)

add a patch from Gnome bugzille to fix a bug where the terminal could
be sent into an endless loop allocating memory by a simple escape sequence
bump PKGREV

(drochner)

add a hint for gnupg2 users (as claws-mail with the s/mime plugin)

(drochner)

Updated www/nginx to 1.0.4

(joerg)

Exactly pass OpenSP header and library locations to configure.
PR#45033.

(obache)

remove bpf_dump() definition from sf-gencode.h.
Its signature is changed at libpcap-1.0, not DragonFly specific,
and it should be defined by include of pcap.h, no need to define here.

fixes PR#45035.

(obache)

Update to nginx-1.0.4 on the release branch. Many bug fixes, improvements
for dealing with many clients under load, support for in-unmodified-since
and a shiny new manual page.

(joerg)

Fix interpreter path

(joerg)

Add missing version number to PKGNAME.

(obache)

fixes PKGNAME.

(obache)

Note update of the "automake14" package to version 1.4.6nb1.

(tron)

Add fix for the vulnerability reported in CVE-2009-4029 taken from the
automake GIT repository.

(tron)

recursive bump from textproc/icu shlib major bump.

(obache)

needs libsoup24>=2.34, noticed ny obache

(drochner)

update to 2.34.2
This switches to the new release branch.

(drochner)

Support gcc-4.5 and gcc-4.6. Some testing by J旦rn Clausen.

(wiz)

mono & mono-xsp updated to 2.10.2

(kefren)

Update to xsp-2.10.2, part of mono-2.10.2

(kefren)

Update to mono-2.10.2, a bugfix release on 2.10 branch. Full bugfixes list
at http://www.mono-project.com/Release_Notes_Mono_2.10.2

(kefren)

Add a note to be careful for updating this package.

(taca)

Add a note to be careful for updating this package.

(taca)

Updated security/ruby-roauth to 0.0.7

(obache)

Update ruby-roauth to 0.0.7.

bug fixes.

(obache)

Disable openexr, so it doesn't break the build when it's installed
and cmake finds it, but buildlink3 hides it. Reported by Aymeric.

XXX: should be made an option instead

(wiz)

mention updates

(drochner)

update to 1.0.16
changes: improvements to gameplay (tetromino sequence)

(drochner)

update to 2.6.3
changes:
-added level selection dialog
-fixes
-translation update

(drochner)

update to 1.3.3
changes:
-UI improvements
-bugfixes

(drochner)

update to 0.9.12
changes:
-added IPv6 support
-more statistics, can be exported as XML
-minor feature additions
-bugfixes

(drochner)

update to 4.4.15
changes: bugfixes

(drochner)

sync w/ base pkg

(drochner)

update to 23.3
Emacs 23.3 is primarily a bugfix release.  Also included are a number of
enhancements to VC and Rmail, and a new indentation library, smie.el.
For details, see the file etc/NEWS.

(drochner)

Update SIEVE_VERSION to 0.1.19
Update MANAGESIEVE_VERSION to 0.11.13, for dovecot-1.2.17.
rest part of PR#44970.

Sieve:
v0.1.19 19-05-2011 Stephan Bosch <stephan@rename-it.nl>

- Enotify extension: fixed inappropriate return type in mailto URI parse
  function, also fixing ARM compiler warning.
- Vacation extension: fixed handling of sendmail errors. It produced an
  additional confusing success message in case of error.
- Removed header MIME-decoding to fix erroneous address parsing. Applies to
  address test and vacation command.

ManageSieve:
v0.11.13:
- ManageSieve: fixed bug in UTF-8 checking of string values.

(obache)

Updated games/onscripter to 20110528

(obache)

Update onscripter to 20110528.
PR#45025 by ISIHARA Takanori.

some bug fixes.

(obache)

reset PKGREV for base pkg update

(drochner)

update to 5.14
changes:
-Optionally enabled full-scene OpenGL antialiasing. Set the resource
*multiSample to true if doing so doesn't kill performance with
your video hardware.
-New version of glhanoi.
-Image-loading hacks that display the file name now also display the
sub-directory (xscreensaver-getimage now returns relative paths
under imageDirectory).
-Passwords that contain UTF-8 non-Latin1 chars are now typeable.
-Added ``Quick Power-off in Blank Only Mode'' option.
-BSOD GLaDOS.
+bugfixes

(drochner)

update to 4.12.3
This is a minor bug fix release.

(drochner)

update to 3.2.6
changes:
-import speed improvements
-bugfixes
-translation updates

(drochner)

Updated mail/fetchmailconf to 6.3.20

(obache)

Updated mail/fetchmail to 6.3.20

(obache)

Update fetchmail to 6.3.20.
Requested by PR#45030.

fetchmail-6.3.20 (released 2011-06-06, 26005 LoC):

# SECURITY BUG FIXES
* CVE-2011-1947:
  STARTTLS: Fetchmail runs the IMAP STARTTLS or POP3 STLS negotiation with the
  set timeout (default five minutes) now. This was reported missing, with
  observed fetchmail freezes beyond a week, by Thomas Jarosch.
    SSL-wrapped connections were unaffected by this timeout, so users of older
  versions can force ssl-wrapped connections -- if supported by the server --
  with the --ssl command line or ssl rcfile option.
  See fetchmail-SA-2011-01.txt for further details.

# BUG FIXES
* IMAP: Do not search for UNSEEN messages in ranges. Usually, there are very few
  new messages and most of the range searches result in nothing. Instead, split
  the long response to make the IMAP driver think that there are multiple lines
  of response. (Sunil Shetye)
* Do not print "skipping message" for old messages even in verbose mode. If
  there are too many old messages, the logs just get filled without any real
  activity. (Sunil Shetye) (suggested by Yunfan Jiang)
* Build: fetchmail now always uses its own MD5 implementation rather than trying
  to find a system library with matched header. The library and header variants
  found on systems are too diverse, and the code size saving is not worth any
  more wasted user or programmer time.

# CHANGES
* Call strlen() only once when removing CRLF from a line. (Sunil Shetye)
* fetchmail sets Internet domain sockets to "keepalive" mode now. Note that
  there is no portable way to configure actual timeouts for this mode, and some
  systems only support a system-wide timeout setting. fetchmail does not
  attempt to tune the time spans of keepalive mode.

# TRANSLATION UPDATES
  [cs]    Chech (Petr Pisar)
  [nl]    Dutch (Erwin Poeze)
  [fr]    French (Fr辿d辿ric Marchal)
  [de]    German (Matthias Andree)
  [ja]    Japanese (Takeshi Hamasaki)
  [pl]    Polish (Jakub Bogusz)
  [sk]    Slovak (Marcel Telka)

# KNOWN BUGS AND WORKAROUNDS
  (this section floats upwards through the NEWS file so it stays with the
  current release information - however, it was stuck with 6.3.8 for a while)
* fetchmail does not handle messages without Message-ID header well
  (See sourceforge.net bug #780933)
* BSMTP is mostly untested and errors can cause corrupt output.
* Sun Workshop 6 (SPARC) is known to miscompile the configuration file lexer in
  64-bit mode.  Either compile 32-bit code or use GCC to compile 64-bit
  fetchmail.  Note that fetchmail doesn't take advantage of 64-bit code,
  so compiling 32-bit SPARC code should not cause any difficulties.
* fetchmail does not track pending deletes over crashes.
* the command line interface is sometimes a bit stubborn, for instance,
  fetchmail -s doesn't work with a daemon running.
* Linux systems may return duplicates of an IP address in some circumstances if
  no or no global IPv6 addresses are configured.
  (No workaround. Ubuntu Bug#582585, Novell Bug#606980.)
* Kerberos 5 may be broken, particularly on Heimdal, and provide bogus error
  messages. This will not be fixed, because the maintainer has no Kerberos 5
  server to test against. Use GSSAPI.

fetchmail-6.3.19 (released 2010-12-10, 25945 LoC):

# ERRATUM NOTICE ISSUED
* fetchmail 6.3.18 contains several bug fixes that were considered sufficiently
  grave to warrant the issue of an erratum notice, fetchmail-EN-2010-03.txt.

# BUG FIXES
* When specifying multiple local multidrop lists, do not lose wildcard flag.
  (Affects "user foo is bar baz * is joe here")
* In multidrop configurations, an asterisk can now appear anywhere in the list
  of local users, not just at the end.
* In multidrop mode, header parsing is now more verbose in -vv mode, so that it
  becomes possible to see which header is used.
* Make --antispam work from command line (these used to work in rcfiles).
  Reported by Kees Bakker, BerliOS Bug #17599. (Sunil Shetye)
* Smoke test XHTML 1.1 validation, and if it fails, skip validating HTML
  documents.  Skip validating Mailbox-Names-UTF7.html. Several systems have
  broken XHTML 1.1 DTD installations that jeopardize the build.
  Reported by Mihail Nechkin against FreeBSD port.
  Workaround for 6.3.18: build in a separate directory, i. e:
  mkdir build && cd build && ../configure --options-go-here
* Send a NOOP only after a failed STARTTLS in IMAP. (Sunil Shetye)
* Demote GSSAPI verbose/debug syslog to INFO severity. Requested by Carlos E. R.
  and Derek Simkowiak via the fetchmail-users@ mailing list.
* Do STARTTLS/STLS negotiation in IMAP/POP3 if it is mandatory even if the
  server capabilities do not show support for upgradation to TLS.
  To use this, configure --sslproto tls1. (Sunil Shetye)
* IMAP: Understand empty strings as FETCH response, seen on Yahoo. Reported by
  Yasin Malli to fetchmail-users@ 2010-12-10.
  Note that fetchmail continues to expect literals as FETCH response for now.

# DOCUMENTATION
* The manual page now links to IANA for GSSAPI service names.

# TRANSLATION UPDATES
  [cs]    Czech (Petr Pisar)
  [fr]    French (Fr辿d辿ric Marchal)
  [de]    German
  [it]    Italian (Vincenzo Campanella)
  [pl]    Polish (Jakub Bogusz)

fetchmail-6.3.18 (released 2010-10-09, 25936 LoC):

# SECURITY IMPROVEMENTS TO DEFANG X.509 CERTIFICATE ABUSE
* Fetchmail now only accepts wildcard certificate common names and subject
  alternative names if they start with "*.". Previous versions would accept
  wildcards even if no period followed immediately.
* Fetchmail now disallows wildcards in certificates to match domain literals
  (such as 10.9.8.7), or wildcards in domain literals ("*.168.23.23").
  The test is overly picky and triggers if the pattern (after skipping the
  initial wildcard "*") or domain consists solely of digits and dots, and thus
  matches more than needed.
* Fetchmail now disallows wildcarding top-level domains.

# CRITICAL BUG FIXES AND REGRESSION FIXES
* Fetchmail 6.3.15, 6.3.16, and 6.3.17 would pick up libmd5 to obtain MD5*
  functions, as an effect of an undocumented Solaris MD5 fix.
  This caused all MD5-related functions to malfunction if, for instance,
  libmd5.so was installed on other operating systems as part of libwww on
  machines where long isn't 32-bits, i. e. usually on 64-bit computers.
  Fixes Gentoo Bug #319283, reported, including libwww hint, by Karl Hakimian.
  Side effect: fetchmail will now use -lmd on Solaris rather than -lmd5.
* Fetchmail 6.3.17 warned about insecure SSL/TLS connections even if a matching
  --sslfingerprint was specified. This is an omission from an SSL usability
  change made in 6.3.17.
  Fixes Debian Bug#580796 reported by Roland Stigge.
* Fetchmail will now apply timeouts to the authentication stage.
  This stage encompasses STARTTLS/STLS negotiation in IMAP/POP3.
  Reported missing by Thomas Jarosch.
* Fetchmail now cancels GSSAPI authentication properly when encountering GSS
  errors, such as no or unsuitable credentials.
  It now sends an asterisk on a line by its own, as required in SASL.
    This fixes protocol synchronization issues that cause Authentication
  failures, often observed with kerberized MS Exchange servers.
  Fixes Debian Bug #568455 reported by Patrick Rynhart, and Alan Murrell, to the
  fetchmail-users list. Fix verified by Thomas Voigtmann and Patrick Rynhart.

# BUG FIXES
* Fetchmail will no longer print connection attempts and errors for one host
  in "silent" and "normal" logging modes, unless all connections fail. This
  should reduce irritation around refused-connection logging if services are
  only on an IPv4 socket if the host also supports IPv6. Often observed as
  connections refused to ::1/25 when the subsequent connection to 127.0.0.1/25
  then - silently - succeeds.  Fetchmail, unless in verbose mode, will collect
  all connect errors and only report them if all of them fail.
* Fetchmail will not try GSSAPI authentication automatically, unless it has GSS
  credentials. However, if GSSAPI authentication is requested explicitly,
  fetchmail will always try it.
* Fetchmail now parses response to "FETCH n:m RFC822.SIZE" and "FETCH n
  RFC822.HEADER" in a more flexible manner. (Sunil Shetye)
* The manual page clearly states that --principal is for Kerberos 4 only, not
  for Kerberos 5 or GSSAPI. Found by Thomas Voigtmann.

# CHANGES
* When encountering incorrect headers, fetchmail will refer to the bad-header
  option in the manpage.
  Fixes BerliOS Bug #17272, change suggested by Bj旦rn Voigt.
* Fetchmail now decodes and reports GSSAPI status codes upon errors.
* Fetchmail now autoprobes NTLM also for POP3.
* The Fetchmail FAQ has a new item #R15 on authentication failures.

# INTERNAL CHANGES
* The common NTLM authentication code was factored out from pop3.c and imap.c.

# TRANSLATION UPDATES
  [zh_CN] Chinese/simplified (Ji Zheng-Yu)
  [cs]    Czech (Petr Pisar)
  [nl]    Dutch (Erwin Poeze)
  [fr]    French (Fr辿d辿ric Marchal)
  [de]    German
  [it]    Italian (Vincenzo Campanella)
  [ja]    Japanese (Takeshi Hamasaki)
  [pl]    Polish (Jakub Bogusz)
  [sk]    Slovak (Marcel Telka)

(obache)

update to 2.12a
changes: bugfixes, minor feature improvements

(drochner)

update to 3.3.22
changes: speed improvement, bugfixes, UI improvements

(drochner)

Updated net/quvi to 0.2.16

(wiz)

Update to 0.2.16:

0.2.16  Sat May 21 2011  Toni Gundogdu

Changes: quvi
    - Rename '-s,--no-shortened' -> '-r,--no-resolve'
    - Add support for reading input from files

Changes: API
    - Add "Network interface" (quvi_net_*, QUVI_NET_*, quvi/net.h)
        - Add examples/callback_libsoup.c
    - Make LUA errors more informative (e.g. fname, func, etc.)
    - Add "Linked list interface" (quvi_llst_*, quvi/llst.h)
    - Add quvi_supported_ident (#44)
        - Add quvi_supported_ident_close
        - Add quvi_ident_getprop
    - Deprecate remaining symbols that use 'video' and 'link' in names
    - Rename (&depr.) QUVISTATUS_SHORTENED -> QUVISTATUS_RESOLVE
    - Rename (&depr.) QUVIOPT_NOSHORTENED -> QUVIOPT_NORESOLVE
    - Deprecate QUVIINFO_HTTPCODE, QUVIPROP_HTTPCODE

Changes: Webscripts
    - Pass _quvi_media_t to quvi object functions in LUA reg. index
    - collegehumor.lua: Add 'best' ('hq') format
    - LUA: Add resolve function to quvi object
    - Add bikeradar.lua (#50)
    - Add guardian.lua (#51)
    - Add more NSFW scripts
    - Add blip.lua (#39)

Changes: Build system
    - Add --with-soup (see INSTALL)

Changes: Documentation
    - INSTALL: Remove list of (obsolete) env. variables
    - Add doc/WebsiteScriptGuideLines
    - API: Reorganize "Modules"

Bugfixes: Webscripts
    - collegehumor.lua:51: server response code 404 (#35)
    - vimeo.lua:62: no match: hd button (#48)
    - liveleak.lua:48: no match: config (#47)

(wiz)

update to 3.0.11
changes:
-Modernize custom paper size dialog look
-Add an app chooser to the gtk-demo 'Pickers' example
-bugfixes
-translation updates

(drochner)

update to 2.28.8
changes:
-bugfixes
-translation updates

(drochner)

update to 0.12.1
changes: Many bug fixes and binding updates

(drochner)

bump PKGREV for webkit-gtk shlib change

(drochner)

update to 0.3.6
changes: speed improvements, bugfixes

(drochner)

update to 1.4.1
this switches to the new stable branch
(shlib major changed -> PKGREV bumps needed)

(drochner)

Updated comms/asterisk16 to 1.6.2.18

(jnemeth)

Updated comms/asterisk18 to 1.8.4.2

(jnemeth)

Upgrade to 1.8.4.2.  This fixes several security issues including:
AST-2011-002, AST-2011-003, AST-2011-004, AST-2011-005, AST-2011-006,
and AST-2011-007.

pkgsrc changes:
- add patch for autosupport script; == -> =
- patch configure to not unconditionally set PBX_LAUNCHD=1
  - this allows res_timing_kqueue.so to build

This last change brings a timing source to NetBSD which allows IAX
trunking and allows the bridging modules to work, a rather major
piece that was missing.  Note that I haven't extensively tested
it.  But, have at it...

===========================================================================
1.8.4.2:

The Asterisk Development Team has announced the release of Asterisk
version 1.8.4.2, which is a security release for Asterisk 1.8.

The release of Asterisk 1.8.4.2 resolves an issue with SIP URI parsing
which can lead to a remotely exploitable crash:

    Remote Crash Vulnerability in SIP channel driver (AST-2011-007)

The issue and resolution is described in the AST-2011-007 security
advisory.

For more information about the details of this vulnerability, please
read the security advisory AST-2011-007, which was released at the same
time as this announcement.

For a full list of changes in the current release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2

Security advisory AST-2011-007 is available at:

http://downloads.asterisk.org/pub/security/AST-2011-007.pdf

===========================================================================
1.8.4.1:

The Asterisk Development Team has announced the release of Asterisk 1.8.4.1.

The release of Asterisk 1.8.4.1 resolves several issues reported by the
community. Without your help this release would not have been possible.
Thank you!

Below is a list of issues resolved in this release:

* Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix)

* Resolve a change in IPv6 header parsing due to the Cisco phone fix issue.
  This issue was found and reported by the Asterisk test suite.

* Resolve potential crash when using SIP TLS support.

* Improve reliability when using SIP TLS.

For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1

===========================================================================
1.8.4:

The Asterisk Development Team has announced the release of Asterisk 1.8.4.

The release of Asterisk 1.8.4 resolves several issues reported by the community.
Without your help this release would not have been possible. Thank you!

Below is a sample of the issues resolved in this release:

* Use SSLv23_client_method instead of old SSLv2 only.

* Resolve crash in ast_mutex_init()

* Resolution of several DTMF based attended transfer issues.

  NOTE: Be sure to read the ChangeLog for more information about these changes.

* Resolve deadlocks related to device states in chan_sip

* Resolve an issue with the Asterisk manager interface leaking memory when
  disabled.

* Support greetingsfolder as documented in voicemail.conf.sample.

* Fix channel redirect out of MeetMe() and other issues with channel softhangup

* Fix voicemail sequencing for file based storage.

* Set hangup cause in local_hangup so the proper return code of 486 instead of
  503 when using Local channels when the far sides returns a busy. Also affects
  CCSS in Asterisk 1.8+.

* Fix issues with verbose messages not being output to the console.

* Fix Deadlock with attended transfer of SIP call

Includes changes per AST-2011-005 and AST-2011-006
For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4

Information about the security releases are available at:

http://downloads.asterisk.org/pub/security/AST-2011-005.pdf
http://downloads.asterisk.org/pub/security/AST-2011-006.pdf

===========================================================================
1.8.3.3:

The Asterisk Development Team has announced security releases for Asterisk
branches 1.4, 1.6.1, 1.6.2, and 1.8. The available security releases are
released as versions 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3.

The releases of Asterisk 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3 resolve two
issues:

* File Descriptor Resource Exhaustion (AST-2011-005)
* Asterisk Manager User Shell Access (AST-2011-006)

The issues and resolutions are described in the AST-2011-005 and AST-2011-006
security advisories.

For more information about the details of these vulnerabilities, please read the
security advisories AST-2011-005 and AST-2011-006, which were released at the
same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.3

Security advisory AST-2011-005 and AST-2011-006 are available at:

http://downloads.asterisk.org/pub/security/AST-2011-005.pdf
http://downloads.asterisk.org/pub/security/AST-2011-006.pdf

===========================================================================
1.8.3.2:

he Asterisk Development Team has announced security releases for Asterisk
branches 1.6.1, 1.6.2, and 1.8. The available security releases are
released as versions 1.6.1.24, 1.6.2.17.2, and 1.8.3.2.

** This is a re-release of Asterisk 1.6.1.23, 1.6.2.17.1 and 1.8.3.1 which
    contained a bug which caused duplicate manager entries (issue #18987).

The releases of Asterisk 1.6.1.24, 1.6.2.17.2, and 1.8.3.2 resolve two issues:

  * Resource exhaustion in Asterisk Manager Interface (AST-2011-003)
  * Remote crash vulnerability in TCP/TLS server (AST-2011-004)

The issues and resolutions are described in the AST-2011-003 and AST-2011-004
security advisories.

For more information about the details of these vulnerabilities, please read the
security advisories AST-2011-003 and AST-2011-004, which were released at the
same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.2

Security advisory AST-2011-003 and AST-2011-004 are available at:

http://downloads.asterisk.org/pub/security/AST-2011-003.pdf
http://downloads.asterisk.org/pub/security/AST-2011-004.pdf

===========================================================================
1.8.3.1:

The Asterisk Development Team has announced security releases for Asterisk
branches 1.6.1, 1.6.2, and 1.8. The available security releases are
released as versions 1.6.1.23, 1.6.2.17.1, and 1.8.3.1.

The releases of Asterisk 1.6.1.23, 1.6.2.17.1, and 1.8.3.1 resolve two issues:

  * Resource exhaustion in Asterisk Manager Interface (AST-2011-003)
  * Remote crash vulnerability in TCP/TLS server (AST-2011-004)

The issues and resolutions are described in the AST-2011-003 and AST-2011-004
security advisories.

For more information about the details of these vulnerabilities, please read the
security advisories AST-2011-003 and AST-2011-004, which were released at the
same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.1

Security advisory AST-2011-003 and AST-2011-004 are available at:

http://downloads.asterisk.org/pub/security/AST-2011-003.pdf
http://downloads.asterisk.org/pub/security/AST-2011-004.pdf

===========================================================================
1.8.3:

The Asterisk Development Team has announced the release of Asterisk 1.8.3.

The release of Asterisk 1.8.3 resolves several issues reported by the community
and would have not been possible without your participation. Thank you!

The following is a sample of the issues resolved in this release:

* Resolve duplicated data in the AstDB when using DIALGROUP()

* Ensure the ipaddr field in realtime is large enough to handle IPv6 addresses.

* Reworking parsing of mwi => lines to resolve a segfault. Also add a set of
  unit tests for the function that does the parsing.

* When using cdr_pgsql the billsec field was not populated correctly on
  unanswered calls.

* Resolve memory leak in iCalendar and Exchange calendaring modules.

* This version of Asterisk includes the new Compiler Flags option
  BETTER_BACKTRACES which uses libbfd to search for better symbol information
  within both the Asterisk binary, as well as loaded modules, to assist when
  using inline backtraces to track down problems.

* Resolve issue where no Music On Hold may be triggered when using
  res_timing_dahdi.

* Resolve a memory leak when the Asterisk Manager Interface is disabled.

* Reimplemented fax session reservation to reverse the ABI breakage introduced
  in r297486.

* Fix regression that changed behavior of queues when ringing a queue member.

* Resolve deadlock involving REFER.

Additionally, this release has the changes related to security bulletin
AST-2011-002 which can be found at
http://downloads.asterisk.org/pub/security/AST-2011-002.pdf

For a full list of changes in this release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3

===========================================================================
1.8.2.4:

The Asterisk Development Team has announced security releases for Asterisk
branches 1.4, 1.6.1, 1.6.2, and 1.8. The available security releases are
released as versions 1.4.39.2, 1.6.1.22, 1.6.2.16.2, and 1.8.2.4.

The releases of Asterisk 1.4.39.2, 1.6.1.22, 1.6.2.16.2, and 1.8.2.4 resolve an
issue that when decoding UDPTL packets, multiple stack and heap based arrays can
be made to overflow by specially crafted packets. Systems configured for
T.38 pass through or termination are vulnerable. The issue and resolution are
described in the AST-2011-002 security advisory.

For more information about the details of this vulnerability, please read the
security advisory AST-2011-002, which was released at the same time as this
announcement.

For a full list of changes in the current release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.2.4

Security advisory AST-2011-002 is available at:

http://downloads.asterisk.org/pub/security/AST-2011-002.pdf

(jnemeth)