py-ephem: fix for python 2.7

(wiz)

py-dicttoxml: convert to egg.mk

(wiz)

py-cups: convert to egg.mk

(wiz)

py-crcmod: fix for python 2.7

(wiz)

py-constants: convert to egg.mk

(wiz)

py-chart: convert to egg.mk

(wiz)

py-cdb: convert to egg.mk

(wiz)

py-bitcoinrpc: fix for python 2.7

(wiz)

py-backports.ssl_match_hostname: convert to egg.mk

(wiz)

py-ansi: convert to egg.mk

(wiz)

py-aes: fix for python 2.7

(wiz)

py-socksipy-branch: fix for python 2.7

(wiz)

py-PDF2: fix for python 2.7

(wiz)

polysh: convert to egg.mk

(wiz)

nuitka: convert to egg.mk

(wiz)

getmail: convert to egg.mk

(wiz)

calypso: convert to egg.mk

(wiz)

Radicale: convert to egg.mk

(wiz)

py-google: convert to egg.mk

(wiz)

Added devel/py-distlib; Updated net/py-lexicon

(adam)

py-lexicon: updated to 3.9.0

3.9.0:
Drop Python 3.6 support

(adam)

py-jsonlib: convert to egg.mk

(wiz)

py-zinnia: convert to egg.mk

(wiz)

py-unitgui: convert to egg.mk

(wiz)

py-tlslite: convert to egg.mk

(wiz)

py-distlib: PLIST fix for Python 2.7

(adam)

py-distlib: added version 0.3.4

Distlib is a library which implements low-level functions that relate to
packaging and distribution of Python software. It is intended to be used as the
basis for third-party packaging tools.

(adam)

Added textproc/py-tomli_w; Updated devel/py-flit_core, devel/py-flit

(adam)

py-flit_core: add setup.py

(adam)

py-flit_core: add missing files

(adam)

py-flit_core py-flit: updated o 3.6.0

Version 3.6

flit_core now bundles the tomli TOML parser library (version 1.2.3) to avoid a circular dependency between flit_core and tomli

Version 3.5.1

Fix development installs with flit install --symlink and --pth-file, which were broken in 3.5.0, especially for packages using a src folder

Version 3.5

You can now use Flit to distribute a module or package inside a namespace package (as defined by PEP 420). To do this, specify the import name of the concrete, inner module you are packaging - e.g. name = "sphinxcontrib.foo" - either in the [project] table, or under [tool.flit.module] if you want to use a different name on PyPI
Flit no longer generates a setup.py file in sdists (.tar.gz packages) by default
Fixed how flit init handles authors' names with non-ASCII characters
When flit init generates a LICENSE file, the new pyproject.toml now references it

Version 3.4

Python 3.6 or above is now required, both for flit and flit_core.
Add a --setup-py option to flit build and flit publish, and a warning when neither this nor --no-setup-py are specified
Add support for standardised editable installs - pip install -e - according to PEP 660
Add a --pypirc option for flit publish to specify an alternative path to a .pypirc config file describing package indexes
Fix installing dependencies specified in a [project] table
Fix building wheels when SOURCE_DATE_EPOCH (see :doc:`reproducible`) is set to a date before 1980
Switch to using the tomli TOML parser, in common with other packaging projects
Add a document on :doc:`bootstrap`

Version 3.3

PKG-INFO files in sdists are now generated the same way as METADATA in wheels, fixing some issues with sdists
flit publish now sends SHA-256 hashes, fixing uploads to GitLab package repositories
The [project] metadata table from PEP 621 is now fully supported and :ref:`documented <pyproject_toml_project>`. Projects using this can now specify requires = ["flit_core >=3.2,<4"] in the [build-system] table.

Version 3.2

Experimental support for specifying metadata in a [project] table in pyproject.toml as specified by PEP 621
Fix writing METADATA file with multi-line information in certain fields such as Author
Fix building wheel when a directory such as LICENSES appears in the project root directory

Version 3.1

Update handling of names & version numbers in wheel filenames and .dist-info folders in line with changes in the specs
Switch from the deprecated pytoml package to toml
Fix specifying backend-path in pyproject.toml for flit-core (as a list instead of a string).

(adam)

py-tomli: switch to setup.py generated with flit

(adam)

py-tomli_w: added version 1.0.0

Tomli-W is a Python library for writing TOML. It is a write-only counterpart to
Tomli, which is a read-only TOML parser. Tomli-W is fully compatible with TOML
v1.0.0.

(adam)

py-tlsh: convert to egg.mk

(wiz)

py-sqlite2: convert to egg.mk

(wiz)

py-smartypants: convert to egg.mk

(wiz)

py-simplesoap: convert to egg.mk

(wiz)

py-pytemplate: convert to egg.mk

(wiz)

py-numarray: convert to egg.mk

(wiz)

py-notify: convert to egg.mk

(wiz)

py-mulpyplexer: convert to egg.mk

(wiz)

py-mol: convert to egg.mk

(wiz)

py-moin: convert to egg.mk

(wiz)

py-medusa: convert to egg.mk

(wiz)

py-lupa: convert to egg.mk

Remove TODO

(wiz)

py-libdnet: convert to egg.mk

(wiz)

py-kiwi: convert to egg.mk

(wiz)

py-kenosis: convert to egg.mk

(wiz)

py-jpCodecs: convert to egg.mk

(wiz)

py-iowait: fix for python 2.7

(wiz)

py-id3lib: convert to egg.mk

(wiz)

py-id3: convert to egg.mk

(wiz)

py-generate: fix for python 2.7

(wiz)

py-filechunkio: fix for python 2.7

(wiz)

py-eradicate: convert to egg.mk

(wiz)

py-cryptkit: convert to egg.mk

(wiz)

py-cooldict: fix for python 2.7

(wiz)

py-bonjour: convert to egg.mk

(wiz)

py-bitarray: convert to egg.mk

(wiz)

py-SimpleTAL: convert to egg.mk

(wiz)

py-Pdf: convert to egg.mk

(wiz)

py-Optik: convert to egg.mk

(wiz)

py-IP: fix for python 2.7

(wiz)

py-Excelerator: convert to egg.mk

(wiz)

hellanzb: convert to egg.mk

(wiz)

doc: Updated net/exabgp to 4.2.17

(wiz)

exabgp: update to 4.2.17.

Version 4.2.17
* Feature: add flags ECE, CW and NS to TCP, (not sure if any flowspec implementation uses them) #1053
  reported by: enag11
* Fix: bug with IGP Metric #1056
  patch by: hkml2000

Version 4.2.16
* Fix: bacckport of fix for #1051 tcp-flag operators != and &!= return syntax error
  reported by: enag11

Version 4.2.15
* Fix: #1035 Socket remains in CLOSED state after the interface goes down
  patch: borjam
* Fix: #1041 backport

Version 4.2.14
* Fix: issue reading data from the peer
  reported by: isjerryxiao
* Feature: allow IPv6 redirect
  patch by: rzalamena
* Fix: fix decoding of path information (inbound vs outbound)
  reported by: isjerryxiao

Version 4.2.13
* Fix: issue when there is no route to the peer and the connection looked like it established with the API
  reported by: iddq
* Fix: healthcheck was not ending if/when exabgp did
  reported by: mzealey
* Fix: issue with poller
  reported by: emilstahl97

Version 4.2.12
* Fix: issue with flow fragment (issue #1027)

Version 4.2.11
* Feature: new release code allowing the creation of zipapp

Version 4.2.10:
* Fix: cache invalidation on clear command
patch by: Boris Murashov

Version 4.2.9
* Fix: healthcheck --sudo, --debug and --no-ack are not exclusive
  reported by: sincerywaing

Version 4.2.8:
* Fix: restore python -m exabgp

Version 4.2.7:
* Feature: logging parsing in debug mode will now print the JSON of updates
* Fix: issue during restart
* Fix: add ipv6 mpls to add-path
  patch by: adrian62
* Fix: aggregator parsing when no space are used around ()
  reported by: thomas955
* Fix: high CPU load to do sleeptime in second and not ms
  reported by: Gary Buhrmaster
* Change: BGP-LS TE-RIDs are now reported as a list (as Arista reports more than one)
  patch: tomjshine
* reported: the RIB code so withdraw message before any announce are sent
        this does change the RIB behaviour sending withdrawal when it was not previously
* Fix: bad parsing in some case when capability next-hop was used
  reported: alexejli

Version 4.2.6:
* Fix: prevent the deletion of IP addresses not added by the healthchecker

Version 4.2.5:
* Fix: Fix loopback detection without label issue
  patch by: Ruben Herold

Version 4.2.4:
* Change: display next-hop in flow redirect (fixes a bug with route generation too)
  reported by: Cathal Mooney

Version 4.2.3:
* Fix: issue with sending data toward API
  reported by: jkldgoefgkljefogeg
* Fix: bug in spin prevention (true vs True)
* Fix: peer and local ID for show neighbor commands

Version 4.2.2:
* Fix: issue with new respawn feature breaking the API

Version 4.2.1:
* Feature: use vendored ip_address module for healthcheck
* Feature: respawn option under the process (disable re-starting the api program on failure)
* Feature: support for single announcement for the healthcheck

Version 4.2.0:
* Feature: Support additional sub-type of BGP-Prefix-SID for SRv6-VPN
  patch by: Hiroki SHIROKURA
* Fix: issue with pypi release (can not pip install)
  reported by: Thomas Faivre
* Fix: on 'restart' config could improperly interference with current config which leads to inconsystent state and crash
  patch by: Alexander Petrovsky
* Feature: "rate-limit" (per neighbor) limit the number of BGP message(s) handled per second
* Feature: support draft-ietf-idr-flowspec-redirect-02 (previously only simpson was supported)
  patch by: Eli Lindsey
* Feature: BGP LS IPv6 parsing support
  patch by: Tinus Flagstad
* Feature: healthcheck handle loopback for non-Linux machines
* Fix: use local IP for router-id when the peer is auto-deteted (and not the remote IP)
* Fix: potential python3/python2 bytes vs string issues when generating updates
* Fix: label is mandatory when using RD, force it, and perform better checks on the configuration
* Fix: sending route-refresh message via the API was broken
  reported by: Konrad Zemek
* Fix: make sure exabgpcli does not hang when exabgp.api.ack is set to False
  patch by: basyron
* Fix: not correctly recording AFI for next-hop self use
* Fix: removal of ip address by healthcheck
  patch by: wavezhang
* Fix: healthcheck on ^C during time.sleep, exit gracefully
* Fix: healthcheck do not fail if the IP address exist when we are trying to add it
* Fix: healthcheck correctly remove the IP address on going down if it was added
* Fix: bug when parsing passive keyword alone (was false not true)
* Fix: was not always terminating with error code 0 when all was good
  patch by: badrabubker
* CHANGE: large change to the configuration code (should not have any effect but the devil is in the details)
* CHANGE: using next-hop self could lead to route generated with a IPv6 next-hop in the IPv4 next-hop
  This COULD have been accepted by peers. This version does prevent such generation.
* CHANGE: resolve symlink when reading the file and not when parsing the configuration
  reported by: juise (with alternative patch - thank you)
* CHANGE: the reactor was changed from using select to poll (removing the 1024 limit on connections)
* CHANGE: rewrote setup.py, moving release code into another file

Version 4.1.5:
* Deleted: could not install via pip install

Version 4.1.4:
* Deleted: could not install via pip install

Version 4.1.3:
* Deleted: could not install via pip install

Version 4.1.2
* Feature: exabgpcli autocomplete
* Fix: exabgpcli was not correctly removing data on the pipe in case of issues

Version 4.1.1
* CHANGE: some message are now printed using the log routes option and not parser anymore
* Fix: bug with functional testing code when using python3
  patch by: Cooper Lees
* Fix: bug with ExaBGP cli not working
  reported by: jlixfeld (thank you to Cooper Lees for providing time and a test env. to reproduce)

Version 4.1.0
* CHANGE: when redifining a single parameter option using inheritence the value will be replaced
* CHANGE: FlowSpec TRUE and FALSE value have been updated to use the latest RFC and are therefore inverted from previous versions
* CHANGE: an invalid netmask for a network will now cause ExaBGP to fail the parsing of the route (it can stop ExaBGP from starting with bad routes)
* Feature: support for extended next-hop (RFC 5549)
* Feature: implemented API for "clear adj-rib out" and "flush adj-rib out"
* Fix: regression pointed in #873
  patch: Malcolm Dodds
* Fix: do not crash when trying to be helpful in presenting notification message
  reported by: Adam Jacob Muller
* Fix: issue while handling ranged neighbors
  patch: Wenxin Wang
* Fix: accumulating families when using multiple peers
  patch: Martin Topholm (reviewed)
* Fix: could not reload configuration
  reported by: gbock
* Feature: better RFC5575bis support, better treat as withdraw
  patch: Christoph Loibl
* Fix: Fix issue when using peer ASN discovery
  patch: Zac Medico
* Fix: MD5 encoding
  reported by: Adam Jacob Muller (with an initial idea for a patch)
* Fix: ignore unknown BGP-LS SID
  reported by: MosesN
* Fix: badly deciding when to send or not AddPath from parsing the Capability
  reported by: ivan-balan

(wiz)

doc/NEWS: Adjust checksum change to reality

(The previous news item captured an intermediate state.)

(gdt)

Added devel/py-deprecated; databases/py-redis

(adam)

py-redis: updated to 4.1.0

Version 4.1.0

�泅� New Features

OCSP stapling support
Support for SELECT
Support for specifying error types with retry
Support for RESET command since Redis 6.2.0
Support CLIENT TRACKING
Support WRITE in CLIENT PAUSE
JSON set_file and set_path support
Allow ssl_ca_path with rediss:// urls
Support for password-encrypted SSL private keys
Support SYNC and PSYNC

�汾� Bug Fixes

Retry on error exception and timeout fixes
Fixing read race condition during pubsub
Fixing exception in listen
Fixed MovedError, and stopped iterating through startup nodes when slots are fully covered
Socket not closing after server disconnect
Single sourcing the package version
Ensure redis_connect_func is set on uds connection

�洫ｰ Maintenance

SRTALGO - Skip for redis versions greater than 7.0.0
Documentation updates
Add CI action to install package from repository commit hash
Fix link in lmove docstring
Disabling JSON.DEBUG tests

Version 4.0.2

�汾� Bug Fixes

Restoring Sentinel commands to redis client
Better removal of hiredis warning

�洫ｰ Maintenance

Adding links to redis documents in function calls

Version 4.0.1

�汾� Bug Fixes

Removing command on initial connections
Removing hiredis warning when not installed

Version 4.0.0

�泅� New Features

FT.EXPLAINCLI intentionally raising NotImplementedError

�汾� Bug Fixes

Restoring ZRANGE desc for Redis < 6.2.0
Response parsing occasionally fails to parse floats
Re-enabling read-the-docs

�洫ｰ Maintenance

Call HSET after FT.CREATE to avoid keyspace scan
Unit tests fixes for compatibility
Improve documentation about Locks
Fixes to allow --redis-url to pass through all tests
Fix unit tests running against Redis 4.0.0
Search alias test fix
Adding RediSearch/RedisJSON tests
Updating codecov rules
Tests to validate custom JSON decoders
Added breaking icon to release drafter

(adam)

py-deprecated: added version 1.2.13

Python @deprecated decorator to deprecate old python classes, functions or
methods.

(adam)

doc: Updated devel/byacc to 20220109

(fcambus)

byacc: update to 20220109.

2022-01-09  Thomas E. Dickey  <dickey@invisible-island.net>

* package/debian/changelog, package/debian/watch, package/debian/control:
update to use oldstable-compatible rules/config, for testing version upgrade

* package/byacc.spec, package/mingw-byacc.spec:
use rpmlint, etc., to "update" these to follow Redhat7 and later.
due to incompatbilities in that route, this package will not build with #6.

* reader.c, output.c:
change a few malloc's to calloc's so clang analyzer can see initialized data

* closure.c:
modify address computation in closure.c to avoid undefined behavior on
machines which do not support large offsets (analysis/patch by Jessica Clarke,
cf: 2014-09-17)

* VERSION, package/byacc.spec, package/debian/changelog,
  package/pkgsrc/Makefile:
bump

2022-01-08  Thomas E. Dickey  <dickey@invisible-island.net>

* package/debian/copyright, package/debian/rules:
update to use oldstable-compatible rules/config, for testing version upgrade

2022-01-02  Thomas E. Dickey  <dickey@invisible-island.net>

* package/debian/control: minor fixes adapted from btyacc package

* package/debian/byacc.docs, package/debian/byacc2.prerm,
  package/debian/byacc2.postinst, package/debian/byacc.postinst,
  package/debian/byacc.prerm:
RCS_BASE

* VERSION, package/byacc.spec, package/debian/changelog,
  package/pkgsrc/Makefile:
bump

(fcambus)

Updated devel/py-sure, sysutils/py-psutil

(adam)

py-psutil: updated to 5.9.0

5.9.0
=====

**Enhancements**

- 1851_, [Linux]: `cpu_freq()`_ is slow on systems with many CPUs. Read current
  frequency values for all CPUs from ``/proc/cpuinfo`` instead of opening many
  files in ``/sys`` fs.  (patch by marxin)
- 1992_: `NoSuchProcess`_ message now specifies if the PID has been reused.
- 1992_: error classes (`NoSuchProcess`_, `AccessDenied`_, etc.) now have a better
  formatted and separated ``__repr__`` and ``__str__`` implementations.
- 1996_, [BSD]: add support for MidnightBSD.  (patch by Saeed Rasooli)
- 1999_, [Linux]: `disk_partitions()`_: convert ``/dev/root`` device (an alias
  used on some Linux distros) to real root device path.
- 2005_: ``PSUTIL_DEBUG`` mode now prints file name and line number of the debug
  messages coming from C extension modules.
- 2042_: rewrite HISTORY.rst to use hyperlinks pointing to psutil API doc.

**Bug fixes**

- 1456_, [macOS], **[critical]**: `cpu_freq()`_ ``min`` and ``max`` are set to
  0 if can't be determined (instead of crashing).
- 1512_, [macOS]: sometimes `Process.connections()`_ will crash with
  ``EOPNOTSUPP`` for one connection; this is now ignored.
- 1598_, [Windows]: `disk_partitions()`_ only returns mountpoints on drives
  where it first finds one.
- 1874_, [SunOS]: swap output error due to incorrect range.
- 1892_, [macOS]: `cpu_freq()`_ broken on Apple M1.
- 1901_, [macOS]: different functions, especially `Process.open_files()`_ and
  `Process.connections()`_, could randomly raise `AccessDenied`_ because the
  internal buffer of ``proc_pidinfo(PROC_PIDLISTFDS)`` syscall was not big enough.
  We now dynamically increase the buffer size until it's big enough instead of
  giving up and raising `AccessDenied`_, which was a fallback to avoid crashing.
- 1904_, [Windows]: ``OpenProcess`` fails with ``ERROR_SUCCESS`` due to
  ``GetLastError()`` called after ``sprintf()``.  (patch by alxchk)
- 1913_, [Linux]: `wait_procs()`_ should catch ``subprocess.TimeoutExpired``
  exception.
- 1919_, [Linux]: `sensors_battery()`_ can raise ``TypeError`` on PureOS.
- 1921_, [Windows]: `swap_memory()`_ shows committed memory instead of swap.
- 1940_, [Linux]: psutil does not handle ``ENAMETOOLONG`` when accessing process
  file descriptors in procfs.  (patch by Nikita Radchenko)
- 1948_, **[critical]**: ``memoize_when_activated`` decorator is not thread-safe.
  (patch by Xuehai Pan)
- 1953_, [Windows], **[critical]**: `disk_partitions()`_ crashes due to
  insufficient buffer len. (patch by MaWe2019)
- 1965_, [Windows], **[critical]**: fix "Fatal Python error: deallocating None"
  when calling `users()`_ multiple times.
- 1980_, [Windows]: 32bit / WoW64 processes fails to read `Process.name()`_ longer
  than 128 characters resulting in `AccessDenied`_. This is now fixed.  (patch
  by PetrPospisil)
- 1991_, **[critical]**: `process_iter()`_ is not thread safe and can raise
  ``TypeError`` if invoked from multiple threads.
- 1956_, [macOS]: `Process.cpu_times()`_ reports incorrect timings on M1 machines.
  (patch by Olivier Dormond)
- 2023_, [Linux]: `cpu_freq()`_ return order is wrong on systems with more than
  9 CPUs.

(adam)

py-sure: updated to 2.0.0

2.0.0:
Fixed
No longer patch the builtin dir() function, which fixes pytest in some cases such as projects using gevent.

(adam)

Updated security/pcsc-lite, devel/py-scard

(adam)

py-scard: updated to 2.0.2

2.0.2 (September 2021)
======================
* Fix an issue in ReaderMonitor() that failed to enumerate readers
  on macOS
* getReaderNames(): handle SCARD_E_SERVICE_STOPPED on Windows
  generated on last reader removal
* Restrict MAX_BUFFER_SIZE_EXTENDED to 65535 and fix an issue on
  Lenovo laptops with NXP NFC readers
* SmartcardException: display a positive PCSC error code

2.0.1 (June 2021)
=================
* Add .reconnect() method to high-level API
* Handle removal of the last reader on Windows
* Fix support of macOS Big Sur
* Use Python3 by default
* Handle bogus ACS ACR122U PICC reader

2.0.0 (September 2020)
======================
* SCardStatus(): Fix a crash in case of PC/SC error
* toASCIIString(): replace non-ASCII char by '.'
* remove i386 (32-bits) support on macOS

(adam)

doc: Updated mail/notmuch to 0.34.3

(ryoon)

notmuch: Update to 0.34.3

Changelog:
What's new in notmuch 0.34.3
=========================

Library
-------

Do not crash when presented with a .notmuch directory without a
xapian/ subdirectory.

Python Bindings (notmuch2)
--------------------------

Database constructor now searches for configuration by default. Pass
`config=Database.CONFIG.EMPTY` to disable.

The `Message.replies()` method now returns OwnedMessage objects, to
prevent certain memory de-allocation errors.

Fix for importing `notmuch2` module when building bindings
documentation.

(ryoon)

pcsc-lite: updated to 1.9.5

1.9.5: Ludovic Rousseau
4 December 2021
- pcscd: autoexit even if no client connects
- Fix variable substitution in systemd units
- fix potential race conditions with powerState handling
- Add and use tag TAG_IFD_DEVICE_REMOVED
- UnitaryTests: port code to Python 3

1.9.4: Ludovic Rousseau
1 October 2021
- fix a memory leak when libusb is used for hotplug (i.e. non-Linux
  systems)

1.9.3: Ludovic Rousseau
6 August 2021
- fix a stupid regression with systemd introduced in the previous version

1.9.2: Ludovic Rousseau
3 August 2021
- improve NetBSD support
- pcsc-spy: version 1.1
  . add option -t|--thread
  . x10 speed increase
  . correctly exit at end-of-file
  . remove, now useless, support of macOS
- systemd:
  . use /etc/default/pcscd as EnvironmentFile
  . use $PCSCD_ARGS to specify more arguments
- SetProtocol: Handle IFD_NOT_SUPPORTED from the driver
- hotplug_libudev.c: sanitize interface name
- pcsc_demo: change licence from GPLv3 to BSD
- use Python 3 for Python scripts (psc-spy, UnitaryTests)
- Some other minor improvements

(adam)

doc: Updated www/pear-HTTP_Request2 to 2.5.1

(taca)

www/pear-HTTP_Request2: update to 2.5.1

2.5.0 (2020-07-12)

Fixed

* Socket adapter will now retry writing to socket rather than throw an
  exception if `fwrite()` call returns zero written bytes
  https://github.com/pear/HTTP_Request2/issues/23

Changed

* Socket adapter will use only TLS 1.2 and TLS 1.3 (the latter is
  available on PHP 7.4+)
* Upgraded tests for PHPUnit 9 compatibility, PHPUnit Polyfills
  package is used to run them on PHP 5.6 to PHP 8
* Test suite now runs on Github Actions rather than on Travis
* Updated Public Suffix List

2.5.1 (2021-01-06)

* The package runs under PHP 8.1 without `E_DEPRECATED` messages
  https://github.com/pear/HTTP_Request2/issues/25
* Updated Public Suffix List

(taca)

doc: Updated security/php-gnupg to 1.5.1

(taca)

security/php-gnupg: update to 1.5.1

1.5.1 (2021-12-31)

* Fixed compilation with PHP 8.1
* Fixed build with gpgme 1.4

(taca)

doc: Updated net/samba4 to 4.13.16

(taca)

net/samba4: update to 4.13.16

                  ===============================
                  Release Notes for Samba 4.13.16
                          January 10, 2022
                  ===============================

This is a security release in order to address the following defects:

o CVE-2021-43566:  mkdir race condition allows share escape in Samba 4.x.
                  https://www.samba.org/samba/security/CVE-2021-43566.html

=======
Details
=======

o  CVE-2021-43566:
  All versions of Samba prior to 4.13.16 are vulnerable to a malicious
  client using an SMB1 or NFS symlink race to allow a directory to be
  created in an area of the server file system not exported under the
  share definition. Note that SMB1 has to be enabled, or the share
  also available via NFS in order for this attack to succeed.

  Clients that have write access to the exported part of the file system
  under a share via SMB1 unix extensions or NFS can create symlinks that
  can race the server by renaming an existing path and then replacing it
  with a symlink. If the client wins the race it can cause the server to
  create a directory under the new symlink target after the exported
  share path check has been done. This new symlink target can point to
  anywhere on the server file system. The authenticated user must have
  permissions to create a directory under the target directory of the
  symlink.

  This is a difficult race to win, but theoretically possible. Note that
  the proof of concept code supplied wins the race only when the server
  is slowed down and put under heavy load. Exploitation of this bug has
  not been seen in the wild.

Changes since 4.13.15
---------------------

o  Jeremy Allison <jra@samba.org>
  * BUG 13979: CVE-2021-43566: mkdir race condition allows share escape in Samba 4.x

(taca)

doc: Updated news/flnews to 1.0.1

(micha)

news/flnews: Update to 1.0.1

Bug fixes:
- ENC: Off-by-one read from uninitialized data in MIME encoded-word
  decoder fixed.
- GUI: Clickable references are now restored after ROT13 was applied
  twice.
- GUI: Click on "Cancel" button in server configuration window no
  longer creates an error message in the status bar.
- GUI: "Group->Mark subthread read" now redraws the widget and closes
  the processed subthread (reported by Christian Schumacher)
- GUI: Server configuration: Automatically modify service name when TLS
  is enabled/disabled (suggested by Julien ��lie)
- References to legacy configuration path "~/.flnews" fixed in man page

New features and improvements:
- Unicode database updated to version 14.0.0

(micha)

Updated devel/py-filelock, devel/py-astroid

(adam)

py-astroid: updated to 2.9.3

What's New in astroid 2.9.3?
* Fixed regression where packages without a ``__init__.py`` file were
  not recognized or imported correctly.

(adam)

py-filelock: updated to 3.2.1

v3.2.1 (2021-10-02)

Improve documentation
Changed logger name from filelock._api to filelock :pr:`97` - by :user:`hkennyv`

v3.2.0 (2021-09-30)

Raise when trying to acquire in R/O or missing folder :pr:`96` - by :user:`gaborbernat`
Move lock acquire/release log from INFO to DEBUG :pr:`95` - by :user:`gaborbernat`
Fix spelling and remove ignored flake8 checks - by :user:`gaborbernat`
Split main module :pr:`94` - by :user:`gaborbernat`
Move test suite to pytest :pr:`93` - by :user:`gaborbernat`

v3.1.0 (2021-09-27)

Update links for new home at tox-dev :pr:`88` - by :user:`hugovk`
Fixed link to LICENSE file :pr:`63` - by :user:`sharkwouter`
Adopt tox-dev organization best practices :pr:`87` - by :user:`gaborbernat`
Ownership moved from :user:`benediktschmitt` to the tox-dev organization (new primary maintainer :user:`gaborbernat`)

(adam)

doc: Updated devel/guile-gcrypt to 0.3.0

(nikita)

guile-gcrypt: Update to 0.3.0

No ChangeLog provided by upstream.

(nikita)

py-jonpy: convert to egg.mk

(wiz)

py-ipaddr: convert to egg.mk

(wiz)

py-iowait: convert to egg.mk

(wiz)

py-gnupg: convert to egg.mk

(wiz)

py-gnosis-utils: convert to egg.mk

(wiz)

py-generate: convert to egg.mk

(wiz)

yp-gdmodule: convert to egg.mk

(wiz)

py-filechunkio: convert to egg.mk

(wiz)

py-fftw: convert to egg.mk

(wiz)

py-ephem: convert to egg.mk

(wiz)

py-elementtree: convert to egg.mk

(wiz)

py-django14: convert to egg.mk

(wiz)

py-daap: convert to egg.mk

(wiz)

py-crcmod: convert to egg.mk

(wiz)

py-crack: convert to egg.mk

(wiz)

py-cooldict: convert to egg.mk

(wiz)

py-checker: convert to egg.mk

(wiz)

py-cdecimal: convert to egg.mk

(wiz)