doc: note update of Ruby on Rails packagets to 6.0.3.3

devel/ruby-activesupport60
devel/ruby-activemodel60
devel/ruby-activejob60
www/ruby-actionview60
www/ruby-actionpack60
databases/ruby-activerecord60
mail/ruby-actionmailer60
mail/ruby-actionmailbox60
www/ruby-actioncable60
devel/ruby-railties60
devel/ruby-activestorage60
textproc/ruby-actiontext60
www/ruby-rails60

(taca)

www/ruby-rails60: update to 6.0.3.3

Update Ruby on Rails 60 to 6.0.3.3.

Security fix in ruby-actionview60.

## Rails 6.0.3.3 (September 09, 2020) ##

*  [CVE-2020-8185] Fix potential XSS vulnerability in the `translate`/`t` helper.

    *Jonathan Hefner*

(taca)

doc: note update of Ruby on rails pacakges to 5.2.4.4

devel/ruby-activesupport52
devel/ruby-activemodel52
devel/ruby-activejob52
www/ruby-actionview52
www/ruby-actionpack52
www/ruby-actioncable52
databases/ruby-activerecord52
devel/ruby-activestorage52
mail/ruby-actionmailer52
devel/ruby-railties52
www/ruby-rails52

(taca)

www/ruby-rails52: update to  5.2.4.4

Update Ruby on Rails 52 to 5.2.4.4.

Security fix in ruby-actionview52.

## Rails 5.2.4.4 (September 09, 2020) ##

*  [CVE-2020-15169] Fix potential XSS vulnerability in the `translate`/`t` helper

    *Jonathan Hefner*

(taca)

doc: Updated lang/php74 to 7.4.10

(taca)

lang/php74: udpate to 7.4.10

Update php74 to 7.4.10.

03 Sep 2020, PHP 7.4.10

- Core:
  . Fixed bug #79884 (PHP_CONFIG_FILE_PATH is meaningless). (cmb)
  . Fixed bug #77932 (File extensions are case-sensitive). (cmb)
  . Fixed bug #79806 (realpath() erroneously resolves link to link). (cmb)
  . Fixed bug #79895 (PHP_CHECK_GCC_ARG does not allow flags with equal sign).
    (Santiago M. Mola)
  . Fixed bug #79919 (Stack use-after-scope in define()). (cmb)
  . Fixed bug #79934 (CRLF-only line in heredoc causes parsing error).
    (Pieter van den Ham)
  . Fixed bug #79947 (Memory leak on invalid offset type in compound
    assignment). (Nikita)

- COM:
  . Fixed bug #48585 (com_load_typelib holds reference, fails on second call).
    (cmb)

- Exif:
  . Fixed bug #75785 (Many errors from exif_read_data).
    (N鱈ckolas Daniel da Silva)

- Gettext:
  . Fixed bug #70574 (Tests fail due to relying on Linux fallback behavior for
    gettext()). (Florian Engelhardt)

- LDAP:
  . Fixed memory leaks. (ptomulik)

- OPcache:
  . Fixed bug #73060 (php failed with error after temp folder cleaned up).
    (cmb)
  . Fixed bug #79917 (File cache segfault with a static variable in inherited
    method). (Nikita)

- PDO:
  . Fixed bug #64705 (errorInfo property of PDOException is null when
    PDO::__construct() fails). (Ahmed Abdou)

- Session:
  . Fixed bug #79724 (Return type does not match in ext/session/mod_mm.c).
    (Nikita)

- Standard:
  . Fixed bug #79930 (array_merge_recursive() crashes when called with array
    with single reference). (Nikita)
  . Fixed bug #79944 (getmxrr always returns true on Alpine linux). (Nikita)
  . Fixed bug #79951 (Memory leak in str_replace of empty string). (Nikita)

- XML:
  . Fixed bug #79922 (Crash after multiple calls to xml_parser_free()). (cmb)

(taca)

doc: Updated lang/php73 to 7.3.22

(taca)

lang/php73: update to 7.3.22

Update php73 to 7.3.22.

03 Sep 2020, PHP 7.3.22

- Core:
  . Fixed bug #79884 (PHP_CONFIG_FILE_PATH is meaningless). (cmb)
  . Fixed bug #77932 (File extensions are case-sensitive). (cmb)
  . Fixed bug #79806 (realpath() erroneously resolves link to link). (cmb)
  . Fixed bug #79895 (PHP_CHECK_GCC_ARG does not allow flags with equal sign).
    (Santiago M. Mola)
  . Fixed bug #79919 (Stack use-after-scope in define()). (cmb)
  . Fixed bug #79934 (CRLF-only line in heredoc causes parsing error).
    (Pieter van den Ham)

- COM:
  . Fixed bug #48585 (com_load_typelib holds reference, fails on second call).
    (cmb)

- Exif:
  . Fixed bug #75785 (Many errors from exif_read_data).
    (N鱈ckolas Daniel da Silva)

- Gettext:
  . Fixed bug #70574 (Tests fail due to relying on Linux fallback behavior for
    gettext()). (Florian Engelhardt)

- LDAP:
  . Fixed memory leaks. (ptomulik)

- OPcache:
  . Fixed bug #73060 (php failed with error after temp folder cleaned up).
    (cmb)

- PDO:
  . Fixed bug #64705 (errorInfo property of PDOException is null when
    PDO::__construct() fails). (Ahmed Abdou)

- Standard:
  . Fixed bug #79930 (array_merge_recursive() crashes when called with array
    with single reference). (Nikita)
  . Fixed bug #79944 (getmxrr always returns true on Alpine linux). (Nikita)
  . Fixed bug #79951 (Memory leak in str_replace of empty string). (Nikita)

- XML:
  . Fixed bug #79922 (Crash after multiple calls to xml_parser_free()). (cmb)

(taca)

doc: Removed net/bind941

(taca)

net/bind914: remove package

Remove bind914 package since it is EOL, May, 2020.

(taca)

net/Makefile: remove bind914

(taca)

doc: Updated meta-pkgs/bulk-medium to 20200901

(taca)

meta-pkgs/bulk-medium: update to 20200901

Replace bind914 to bind916.

(taca)

doc/TODO: -zkt + freetds

+ freetds-1.2.3
- zkt-1.1.3

(taca)

doc: Updated security/zkt to 1.1.4

(taca)

security/zkt: update to 1.1.4

* pkgsrc change: switch dependency from net/bind914 to net/bind916.

zkt 1.1.4 -- 9. May 2016

* misc Hint to mailinglist removed from README file

* bug pathname wasn't initialized in any case (dist_and_reload() in nscomm.c
Thanks Jeremy C. Reed

* bug move $(LIBS) at the end of the ggc link line in Makefile.in

* misc Exitcode of external command is now visible in log messages
stderr of each external command is redirected to stdin

* bug Fixed some potential memory leaks in ncparse.c dki.c zfparse.c
and zkt-soaserial.c (mostly a missing fclose() on error conditions).
Thanks to Jeremy C. Reed

* misc README file changed to Markdown syntax

* bug running zkt-keyman -3 didn't change anything on the key database
so a zkt-signer run afterwards didn't see anything to do.
Now the timestamp of the dnskey.db will be reset to a value less
than the timestamp of the (new) key signing key.
Thanks to Sven Strickroth for finding this.

* func New binary zkt-delegate added
Because it depends on the ldns library, it is located in
a separate directory and use a different Makefile

* func New Compile time option "--enable-ds-tracking" added.
Now dig is used on KSK rollover to check if the DS record
is announced in the parent zone.
Thanks to Sven Strickroth providing the patch.

zkt 1.1.3 -- 21. Nov 2014

* func New Config Parameter DependFiles added.
Contains a (comma separated) list of files which are
included into the ZoneFile. The timestamps of this files
are checked additional to the timestamp of the ZoneFile.
Based on a suggestion from Sven Strickroth

* misc Makefile changed to build tar file out of git repository

* misc Minimum supported BIND version is now 9.8

* bug Fixed bug in BIND version parsing (9.10.1 was parsed as 910
which is similar to 9.1.0)
Version 9.10.1 is parsed now as 091001

* misc Remove flag to request large exponent when creating keys
(BIND always creates keys with large exponents since BIND 9.5.0)

* misc Project moved to github
Thanks to Jakob Schlyter for doing the initial stuff

(taca)

doc: Updated benchmarks/dnsperf to 2.3.4

(taca)

benchmarks/dnsperf: update to 2.3.4

Update dnsperf to 2.3.4.

pkgsrc change: switch dependency from net/bind914 to net/bind916

2020-05-15 Jerry Lundstr旦m

    Release 2.3.4

    This release adds a workaround, thanks to patch from Petr Men邸鱈k, for
    building on systems with BIND 9.16. Also improves error handling by
    using thread-safe `strerror_r()` instead of `strerror()`.

    88c3ef4 strerror
    1917f67 openSUSE Tumbleweed
    fd39641 AS_VAR_APPEND
    aeeef74 bind 9.16
    07732cd BIND, libcrypto, clang format
    08146e3 Add crypto library to checks
    e4307c2 Add checks to pass with BIND 9.16
    3f9aed3 Prepare check for bind 9.11/9.16 return types

2020-05-06 Jerry Lundstr旦m

    Release 2.3.3

    This release changes the behavior of `dnsperf` and `resperf` when it
    comes to TCP and TLS connections, and updates package building using
    COPR (thanks to patch from Petr Men邸鱈k (Red Hat)).

    Connection reset or close are now treated as "try again" so that the
    run is finished and not aborted. As SIGPIPE might be received on usage
    of closed connections it's now blocked in `dnsperf` and handled as
    a fatal action in `resperf`.

    62885ad SIGPIPE
    106c50e connection
    3ef0899 README
    61a3b1c COPR
    35efa27 COPR
    46b37a1 COPR
    5c126ae COPR
    1c51b76 Provide full URL in spec
    2a4dd0e Allow recreation of source archive
    931d6cc Do not require root for archive creation

(taca)

doc: Updated net/bind916 to 9.16.6

(taca)

net/bind916: update to 9.16.5

Update bind916 to 9.16.5 (BIND 9.16.5).

--- 9.16.5 released ---

5458. [bug] Prevent a theoretically possible NULL dereference caused
by a data race between zone_maintenance() and
dns_zone_setview_helper(). [GL #1627]

5455. [bug] named could crash when cleaning dead nodes in
lib/dns/rbtdb.c that were being reused. [GL #1968]

5454. [bug] Address a startup crash that occurred when the server
was under load and the root zone had not yet been
loaded. [GL #1862]

5453. [bug] named crashed on shutdown when a new rndc connection was
received during shutdown. [GL #1747]

5452. [bug] The "blackhole" ACL was accidentally disabled for client
queries. [GL #1936]

5451. [func] Add 'rndc dnssec -status' command. [GL #1612]

5449. [bug] Fix a socket shutdown race in netmgr udp. [GL #1938]

5448. [bug] Fix a race condition in isc__nm_tcpdns_send().
[GL #1937]

5447. [bug] IPv6 addresses ending in "::" could break YAML
parsing. A "0" is now appended to such addresses
in YAML output from dig, mdig, delv, and dnstap-read.
[GL #1952]

5446. [bug] The validator could fail to accept a properly signed
RRset if an unsupported algorithm appeared earlier in
the DNSKEY RRset than a supported algorithm. It could
also stop if it detected a malformed public key.
[GL #1689]

5444. [bug] 'rndc dnstap -roll <value>' did not limit the number of
saved files to <value>. [GL !3728]

5443. [bug] The "primary" and "secondary" keywords, when used
as parameters for "check-names", were not
processed correctly and were being ignored. [GL #1949]

5441. [bug] ${LMDB_CFLAGS} was missing from make/includes.in.
[GL #1955]

5440. [test] Properly handle missing kyua. [GL #1950]

5439. [bug] The DS RRset returned by dns_keynode_dsset() was used in
a non-thread-safe manner. [GL #1926]

(taca)

doc: Updated www/squid4 to 4.13

(taca)

www/squid4: update to 4.13

Update squid4 to 4.13 (Squid 4.13).

Here is release announce:

The Squid HTTP Proxy team is very pleased to announce the availability
of the Squid-4.13 release!

This release is a security release resolving several issues found in
the prior Squid releases.

The major changes to be aware of:

* SQUID-2020:8 HTTP(S) Request Splitting
  (CVE-2020-15811)

This problem is serious because it allows any client, including
browser scripts, to bypass local security and poison the browser
cache and any downstream caches with content from an arbitrary
source.

See the advisory for patches:
<https://github.com/squid-cache/squid/security/advisories/GHSA-c7p8-xqhm-49wv>

* SQUID-2020:9 Denial of Service processing Cache Digest Response
  (CVE pending allocation)

This problem allows a trusted peer to deliver to perform Denial
of Service by consuming all available CPU cycles on the machine
running Squid when handling a crafted Cache Digest response
message.

This attack is limited to Squid using cache_peer with cache
digests feature.

See the advisory for patches:
<https://github.com/squid-cache/squid/security/advisories/GHSA-vvj7-xjgq-g2jg>

* SQUID-2020:10 HTTP(S) Request Smuggling
  (CVE-2020-15810)

This problem is serious because it allows any client, including
browser scripts, to bypass local security and poison the proxy
cache and any downstream caches with content from an arbitrary
source.

See the advisory for patches:
<https://github.com/squid-cache/squid/security/advisories/GHSA-3365-q9qx-f98m>

* Bug 5051: Some collapsed revalidation responses never expire

This bug appears as a 4xx or 5xx status response becoming the only
response delivered by Squid to a URL when Collapsed Forwarding
feature is used.

It primarily affects Squid which are caching the 4xx/5xx status
object since Bug 5030 fix in Squid-4.11. But may have been
occurring for short times on any proxy with Collapsed Forwarding.

* SSL-Bump: Support parsing GREASEd (and future) TLS handshakes

Chrome Browser intentionally sends random garbage values in the
TLS handshake to force TLS implementations to cope with future TLS
extensions cleanly. The changes in Squid-4.12 to disable TLS/1.3
caused our parser to be extra strict and reject this TLS garbage.

This release adds explicit support for Chrome, or any other TLS
agent performing these "GREASE" behaviours.

* Honor on_unsupported_protocol for intercepted https_port

This behaviour was one of the intended use-cases for unsupported
protocol handling, but somehow was not enabled earlier.

Squid should now be able to perform the on_unsupported_protocol
selected action for any traffic handled by SSL-Bump.

  All users of Squid are urged to upgrade as soon as possible.

See the ChangeLog for the full list of changes in this and earlier
releases.

Please refer to the release notes at
http://www.squid-cache.org/Versions/v4/RELEASENOTES.html
when you are ready to make the switch to Squid-4

(taca)

doc: Updated net/bind911 to 9.11.22

(taca)

net/bind911: update to 9.11.22

Update bind911 to 9.11.22 (BIND 9.11.22).

--- 9.11.22 released ---

5481. [security] "update-policy" rules of type "subdomain" were
incorrectly treated as "zonesub" rules, which allowed
keys used in "subdomain" rules to update names outside
of the specified subdomains. The problem was fixed by
making sure "subdomain" rules are again processed as
described in the ARM. (CVE-2020-8624) [GL #2055]

5480. [security] When BIND 9 was compiled with native PKCS#11 support, it
was possible to trigger an assertion failure in code
determining the number of bits in the PKCS#11 RSA public
key with a specially crafted packet. (CVE-2020-8623)
[GL #2037]

5476. [security] It was possible to trigger an assertion failure when
verifying the response to a TSIG-signed request.
(CVE-2020-8622) [GL #2028]

5475. [bug] Wildcard RPZ passthru rules could incorrectly be
overridden by other rules that were loaded from RPZ
zones which appeared later in the "response-policy"
statement. This has been fixed. [GL #1619]

5474. [bug] dns_rdata_hip_next() failed to return ISC_R_NOMORE
when it should have. [GL !3880]

5465. [func] Added fallback to built-in trust-anchors, managed-keys,
or trusted-keys if the bindkeys-file (bind.keys) cannot
be parsed. [GL #1235]

5463. [bug] Address a potential NULL pointer dereference when out of
memory in dnstap.c. [GL #2010]

5462. [bug] Move LMDB locking from LMDB itself to named. [GL #1976]

(taca)

doc: Updated net/pear-Net_SMTP to 1.9.2

(taca)

net/pear-Net_SMTP: update to 1.9.2

Update pear-Net_SMTP to 1.9.2

1.9.2 (2020-08-12 21:27 UTC)

Changelog:

* Repackage documentation

(taca)

doc/TODO: two updates

- bind-9.16.3
+ sudo-1.9.2

(taca)

doc: Updated mail/dovecot2-pigeonhole to 0.5.11nb1

(taca)

mail/dovecot2-pigeonhole: distfile changes

Distfile changes.

1. Official annoucne says "The only change here is that the configure.ac
  file has correctly formatted version number."

2. Name of distfile is changed to match previous file naming scheme.
  Old distfile is still available.

3. automake 1.15.1 is used instead of previous 1.15.  So, generated files
  by it are changed.

4. Other files are not changed, so there is no functional change.

Bump PKGREVISION.

(taca)

doc: Updated mail/dovecot2-pigeonhole to 0.5.11

(taca)

mail/dovecot2-pigeonhole: update to 0.5.11

Update dovecot2-pigeonhole to 0.5.11.

v0.5.11 2020-08-12  Aki Tuomi <aki.tuomi@open-xchange.com>

* managesieve: managesieve_max_line_length setting is now a "size" type
  instead of just number of bytes. This allows using e.g. "64k" as the
  value.
- lib-sieve: When folding white space is used in the Message-ID header,
  it is not stripped away correctly before the message ID value is used,
  causing e.g. garbled log lines at delivery.

(taca)

doc: Update mail/dovecot2 and related packages to 2.3.11.3

mail/dovecot2
mail/dovecot2-gssapi
mail/dovecot2-ldap
mail/dovecot2-mysql
mail/dovecot2-pgsql
mail/dovecot2-sqlite

(taca)

mail/dovocot2: update to 2.3.11.3

Update dovecot2 and related packages to 2.3.11.3.

v2.3.11.3 2020-07-29 Aki Tuomi <aki.tuomi@open-xchange.com>

- pop3-login: Login didn't handle commands in multiple IP packets properly.
  This mainly affected large XCLIENT commands or a large SASL initial
  response parameter in the AUTH command.
- pop3: pop3_deleted_flag setting was broken, causing:
  Panic: file seq-range-array.c: line 472 (seq_range_array_invert):
  assertion failed: (range[count-1].seq2 <= max_seq)

v2.3.11.2 2020-07-13 Aki Tuomi <aki.tuomi@open-xchange.com>

- auth: Lua passdb/userdb leaks stack elements per call, eventually
  causing the stack to become too deep and crashing the auth or
  auth-worker process.
- lib-mail: v2.3.11 regression: MIME parts not returned correctly by
  Dovecot MIME parser.
- pop3-login: Login would fail with "Input buffer full" if the initial
  response for SASL was too long.

v2.3.11 2020-06-17  Aki Tuomi <aki.tuomi@open-xchange.com>

* CVE-2020-12100: Parsing mails with a large number of MIME parts could
  have resulted in excessive CPU usage or a crash due to running out of
  stack memory.
* CVE-2020-12673: Dovecot's NTLM implementation does not correctly check
  message buffer size, which leads to reading past allocation which can
  lead to crash.
* CVE-2020-12674: Dovecot's RPA mechanism implementation accepts
  zero-length message, which leads to assert-crash later on.
* Events: Fix inconsistency in events. See event documentation in
  https://doc.dovecot.org.
* imap_command_finished event's cmd_name field now contains "unknown"
  for unknown commands. A new "cmd_input_name" field contains the
  command name exactly as it was sent.
* lib-index: Renamed mail_cache_compress_* settings to mail_cache_purge_*.
  Note that these settings are mainly intended for testing and usually
  shouldn't be changed.
* events: Renamed "index" event category to "mail-index".
* events: service:<name> category is now using the name from
  configuration file.
* dns-client: service dns_client was renamed to dns-client.
* log: Prefixes generally use the service name from configuration file.
  For example dict-async service will now use
  "dict-async(pid): " log prefix instead of "dict(pid): "
* *-login: Changed logging done by proxying to use a consistent prefix
  containing the IP address and port.
* *-login: Changed disconnection log messages to be slightly clearer.
+ dict: Add events for dictionaries.
+ lib-index: Finish logging with events.
+ oauth2: Support local validation of JWT tokens.
+ stats: Add support for dynamic histograms and grouping. See
  https://doc.dovecot.org/configuration_manual/stats/.
+ imap: Implement RFC 8514: IMAP SAVEDATE
+ lib-index: If a long-running transaction (e.g. SORT/FETCH on a huge
  folder) adds a lot of data to dovecot.index.cache file, commit those
  changes periodically to make them visible to other concurrent sessions
  as well.
+ stats: Add OpenMetrics exporter for statistics. See
  https://doc.dovecot.org/configuration_manual/stats/openmetrics/.
+ stats: Support disabling stats-writer socket by setting
  stats_writer_socket_path="".
- auth-worker: Process keeps slowly increasing its memory usage and
  eventually dies with "out of memory" due to reaching vsz_limit.
- auth: Prevent potential timing attacks in authentication secret
  comparisons: OAUTH2 JWT-token HMAC, imap-urlauth token, crypt() result.
- auth: Several auth-mechanisms allowed input to be truncated by NUL
  which can potentially lead to unintentional issues or even successful
  logins which should have failed.
- auth: When auth policy returned a delay, auth_request_finished event
  had policy_result=ok field instead of policy_result=delayed.
- auth: auth process crash when auth_policy_server_url is set to an
  invalid URL.
- dict-ldap: Crash occurs if var_expand template expansion fails.
- dict: If dict client disconnected while iteration was still running,
  dict process could have started using 100% CPU, although it was still
  handling clients.
- doveadm: Running doveadm commands via proxying may hang, especially
  when doveadm is printing a lot of output.
- imap: "MOVE * destfolder" goes to a loop copying the last mail to the
  destination until the imap process dies due to running out of memory.
- imap: Running "UID MOVE 1:* Trash" on an empty folder goes to infinite
  loop.
- imap: SEARCH doesn't support $.
- lib-compress: Buffer over-read in zlib stream read.
- lib-dns: If DNS lookup times out, lib-dns can cause crash in calling
  process.
- lib-index: Fixed several bugs in dovecot.index.cache handling that
  could have caused cached data to be lost.
- lib-index: Writing to >=1 GB dovecot.index.cache files may cause
  assert-crashes:
  Panic: file mail-index-util.c: line 37 (mail_index_uint32_to_offset):
  assertion failed: (offset < 0x40000000)
- lib-ssl-iostream: Fix buggy OpenSSL error handling without
  assert-crashing. If there is no error available, log it as an error
 instead of crashing:
  Panic: file iostream-openssl.c: line 599 (openssl_iostream_handle_error):
  assertion failed: (errno != 0)
- lib-ssl-iostream: ssl_key_password setting did not work.
- submission: A segfault crash may occur when the client or server
  disconnects while a non-transaction command like NOOP or VRFY is still
  being processed.
- virtual: Copying/moving mails with IMAP into a virtual folder assert-crashes:
  Panic: file cmd-copy.c: line 152 (fetch_and_copy): assertion failed:
  (copy_ctx->copy_count == seq_range_count(&copy_ctx->saved_uids))

(taca)

doc: note update of mail/roundcube t 1.4.8

Update roundcube packages to 1.4.8.

mail/roundcube
mail/roundcube-plugin-enigma
mail/roundcube-plugin-password
mail/roundcube-plugin-zipdownload

(taca)

mail/roundcube: update to 1.4.8

Update roundcube to 1.4.8, security release.

RELEASE 1.4.8
-------------
- Security: Fix potential XSS issue in HTML editor of the identity signature input (#7507)
- Managesieve: Fix too-small input field in Elastic when using custom headers (#7498)
- Fix support for an error as a string in message_before_send hook (#7475)
- Elastic: Fix redundant scrollbar in plain text editor on mail reply (#7500)
- Elastic: Fix deleted and replied+forwarded icons on messages list (#7503)
- Managesieve: Allow angle brackets in out-of-office message body (#7518)
- Fix bug in conversion of email addresses to mailto links in plain text messages (#7526)
- Fix format=flowed formatting on plain text part derived from the HTML content (#7504)
- Fix incorrect rewriting of internal links in HTML content (#7512)
- Fix handling links without defined protocol (#7454)
- Fix paging of search results on IMAP servers with no SORT capability (#7462)
- Fix detecting special folders on servers with both SPECIAL-USE and LIST-STATUS (#7525)
- Security: Fix cross-site scripting (XSS) via HTML messages with malicious svg content [CVE-2020-16145]
- Security: Fix cross-site scripting (XSS) via HTML messages with malicious math content

(taca)

net/bind916: fix PLIST

Fix PLIST when lmdb option is not enabled (case of default).

Noted by Marc Baudoin via private e-mail.

(taca)

doc: Updated devel/ruby-gettext to 3.3.6

(taca)

devel/ruby-gettext: update to 3.3.6

Update ruby-gettext to 3.3.6.

## 3.3.6: 2020-08-04 {#version-3-3-6}

### Improvements

  * erb: Added support for `-%>`.
    [GitHub#77][Reported by lremes]

  * Removed ChangeLog.
    [GitHub#76][Reported by Will Stephenson]

  * Don't assume `RbConfig::CONFIG["datadir"]` is available. For
    example, TruffleRuby doesn't provide it.

### Thanks

  * lremes

  * Will Stephenson

(taca)

doc: Added net/bind916 version 9.16.5

(taca)

net/Makefile: add and enable bind916

(taca)

net/bind916: add version 9.16.5 package

Add bind916 version 9.16.5 package (BIND 9.16.5).

BIND, the Berkeley Internet Name Daemon.  This package contains the BIND
9.16 release.

  * New dnssec-policy statement to configure a key and signing policy for
    zones, enabling automatic key regeneration and rollover.
  * New network manager based on libuv.
  * Added support for the new GeoIP2 geolocation API, libmaxminddb.
  * Improved DNSSEC trust anchor configuration using the trust-anchors
    statement, permitting configuration of trust anchors in DS as well as
    DNSKEY format.
  * YAML output for dig, mdig, and delv.

(taca)

doc: Updated devel/ruby-bindata to 2.4.8

(taca)

devel/ruby-bindata: update to 2.4.8

Update ruby-bindata to 2.4.8.

== Version 2.4.8 (2020-07-21)

* Bug fix array self assignment.  Thanks to Spencer McIntyre.
* Bug fix Stringz max_length.  Thanks to cdelafuente-r7.

(taca)

doc: Updated devel/ruby-backports to 3.18.1

(taca)

devel/ruby-backports: update to 3.18.1

Update ruby-backports to 3.18.1.

3.18.1 - 2020-06-23

* Update dependency

3.18.0 - 2020-06-22

* Require per ruby version / all requires now check RUBY_VERSION to be
  more efficient [#149]

(taca)

doc: Updated databases/ruby-sequel to 5.35.0

(taca)

databases/ruby-sequel: update to 5.35.0

Update ruby-sequel to 5.35.0.

=== 5.35.0 (2020-08-01)

* Recognize another disconnect error in the oracle adapter (sterlzbd) (#1705)

* Consider all associations with :dataset options as instance-specific associations (jeremyevans)

* Make Model.finalize_associations not break with instance-specific associations (jeremyevans)

* Make association placeholder loader consider block if instance_specific: false association option is used (jeremyevans)

* Copy composite unique constraints when emulating alter table operations on SQLite (jeremyevans) (#1704)

* Add instance_specific_default plugin for setting default association :instance_specific value, or warning/raising for cases where it is not specified (jeremyevans)

* Make Model.plugin issue deprecation warning if loading plugin with arguments and block if plugin does not accept arguments/block (jeremyevans)

* Make validation_class_methods consider all :if, :allow_missing, :allow_nil, and :allow_blank settings, instead of just the first (jeremyevans)

* Include hash entries with nil keys in Dataset#to_dot output in to_dot extension (jeremyevans)

* Remove unneeded conditionals from plugins and extensions (jeremyevans)

* Fix exception class in run_transaction_hooks extension if calling run_after_{commit,rollback}_hooks outside of a transaction (jeremyevans)

=== 5.34.0 (2020-07-01)

* Make eager_graph work correctly if called with no associations (jeremyevans)

* Make :ruby eager limit strategy handle cases where there is no limit or
  offset (jeremyevans)

* Do not keep a reference to a Sequel::Database instance that raises an
  exception during initialization (jeremyevans)

* Make Database#pool.all_connections not yield for a single connection pool
  in disconnected state (jeremyevans)

* Raise an exception if trying to disconnect a server that doesn't exist in
  the sharded connection pools (jeremyevans)

* Support :refresh option when calling *_pks getter method in the
  association_pks plugin (jeremyevans)

* Support caching of repeated calls to *_pks getter method in the association_pks plugin using :cache_pks association option (jeremyevans)

* Add *_pks_dataset methods for one_to_many and many_to_many associations
  when using the association_pks plugin (jeremyevans)

(taca)

doc: Updated databases/ruby-awesome_nested_set to 3.2.1

(taca)

databases/ruby-awesome_nested_set: update to 3.2.1

Update ruby-awesome_nested_set to 3.2.1.

3.2.1
* Don't reload in after_save callback. [Petrik de Heus](https://github.com/p8)
* Fix deprecation warning "Passing a range to `#in` is deprecated". [Konstantin Mochalov](https://github.com/kolen)
* [Compare to 3.2.0](https://github.com/collectiveidea/awesome_nested_set/compare/v3.2.0...v3.2.1)

(taca)

doc: Updated archivers/ruby-ffi-libarchive to 1.0.3

(taca)

archivers/ruby-ffi-libarchive: update to 1.0.3

Update ruby-ffi-libarchive to 1.0.3.

1.0.3 (2020-06-26)

* Optionally clone entries when iterating through an archive #30 (jatoben)
* Replace specific types with more generic equivalents. #32 (phiggins)
* Modern expeditor / buildkite setup #33 (tas50)

(taca)

doc: Updated www/apache24 to 2.4.46

(taca)

www/apache24: update to 2.4.46

Update apache24 to 2.4.46 (Apache HTTPD 2.4.46).  It fixes several
security problems:

CVE-2020-9490: Push Diary Crash on Specifically Crafted HTTP/2 Header
CVE-2020-11984: mod_uwsgi buffer overlow
CVE-2020-11985: CWE-345: Insufficient verification of data authenticity
CVE-2020-11993: Push Diary Crash on Specifically Crafted HTTP/2 Header

pkgsrc changes: reduce warnings by SUBST_* processing.

Changes with Apache 2.4.46
  *) mod_proxy_fcgi: Fix build warnings for Windows platform
    [Eric Covener, Christophe Jaillet]

Changes with Apache 2.4.45

  *) mod_http2: remove support for abandoned http-wg draft
    <https://datatracker.ietf.org/doc/draft-kazuho-h2-cache-digest/>.
    [Stefan Eissing]

Changes with Apache 2.4.44

  *) mod_proxy_uwsgi: Error out on HTTP header larger than 16K (hard
    protocol limit).  [Yann Ylavic]

  *) mod_http2:
    Fixes <https://github.com/icing/mod_h2/issues/200>:
    "LimitRequestFields 0" now disables the limit, as documented.
    Fixes <https://github.com/icing/mod_h2/issues/201>:
    Do not count repeated headers with same name against the field
    count limit. The are merged internally, as if sent in a single HTTP/1 line.
    [Stefan Eissing]

  *) mod_http2: Avoid segfaults in case of handling certain responses for
    already aborted connections.  [Stefan Eissing, Ruediger Pluem]

  *) mod_http2: The module now handles master/secondary connections and has marked
    methods according to use. [Stefan Eissing]

  *) core: Drop an invalid Last-Modified header value coming
    from a FCGI/CGI script instead of replacing it with Unix epoch.
    [Yann Ylavic, Luca Toscano]

  *) Add support for strict content-length parsing through addition of
    ap_parse_strict_length() [Yann Ylavic]

  *) mod_proxy_fcgi: ProxyFCGISetEnvIf unsets variables when expression
    evaluates to false.  PR64365. [Michael K旦nig <mail ikoenig.net>]

  *) mod_proxy_http: flush spooled request body in one go to avoid
    leaking (or long lived) temporary file. PR 64452. [Yann Ylavic]

  *) mod_ssl: Fix a race condition and possible crash when using a proxy client
    certificate (SSLProxyMachineCertificateFile).
    [Armin Abfalterer <a.abfalterer gmail.com>]

  *) mod_ssl: Fix memory leak in stapling code. PR63687. [Stefan Eissing]

  *) mod_http2: Fixed regression that no longer set H2_STREAM_ID and H2_STREAM_TAG.
    PR64330 [Stefan Eissing]

  *) mod_http2: Fixed regression that caused connections to close when mod_reqtimeout
    was configured with a handshake timeout. Fixes gitub issue #196.
    [Stefan Eissing]

  *) mod_proxy_http2: the "ping" proxy parameter
    (see <https://httpd.apache.org/docs/2.4/mod/mod_proxy.html>) is now used
    when checking the liveliness of a new or reused h2 connection to the backend.
    With short durations, this makes load-balancing more responsive. The module
    will hold back requests until ping conditions are met, using features of the
    HTTP/2 protocol alone. [Ruediger Pluem, Stefan Eissing]

  *) core: httpd is no longer linked against -lsystemd if mod_systemd
    is enabled (and built as a DSO).  [Rainer Jung]

  *) mod_proxy_http2: respect ProxyTimeout settings on backend connections
    while waiting on incoming data. [Ruediger Pluem, Stefan Eissing]

(taca)

doc: Updated lang/php72 to 7.2.33

(taca)

lang/php72: update to 7.2.33

Update php72 to 7.2.33 (PHP 7.2.33).

06 Aug 2020, PHP 7.2.33

- Core:
  . Fixed bug #79877 (getimagesize function silently truncates after a null
    byte) (cmb)

- Phar:
  . Fixed bug #79797 (Use of freed hash key in the phar_parse_zipfile
    function). (CVE-2020-7068) (cmb)

(taca)

doc: Updated lang/php74 to 7.4.9

(taca)

lang/php74: update to 7.4.9

Update php74 to 7.4.9 (PHP 7.4.9).

06 Aug 2020, PHP 7.4.9

- Apache:
  . Fixed bug #79030 (Upgrade apache2handler's php_apache_sapi_get_request_time
    to return usec). (Herbert256)

- COM:
  . Fixed bug #63208 (BSTR to PHP string conversion not binary safe). (cmb)
  . Fixed bug #63527 (DCOM does not work with Username, Password parameter).
    (cmb)

- Core:
  . Fixed bug #79740 (serialize() and unserialize() methods can not be called
    statically). (Nikita)
  . Fixed bug #79783 (Segfault in php_str_replace_common). (Nikita)
  . Fixed bug #79778 (Assertion failure if dumping closure with unresolved
    static variable). (Nikita)
  . Fixed bug #79779 (Assertion failure when assigning property of string
    offset by reference). (Nikita)
  . Fixed bug #79792 (HT iterators not removed if empty array is destroyed).
    (Nikita)
  . Fixed bug #78598 (Changing array during undef index RW error segfaults).
    (Nikita)
  . Fixed bug #79784 (Use after free if changing array during undef var during
    array write fetch). (Nikita)
  . Fixed bug #79793 (Use after free if string used in undefined index warning
    is changed). (Nikita)
  . Fixed bug #79862 (Public non-static property in child should take priority
    over private static). (Nikita)
  . Fixed bug #79877 (getimagesize function silently truncates after a null
    byte) (cmb)

- Fileinfo:
  . Fixed bug #79756 (finfo_file crash (FILEINFO_MIME)). (cmb)

- FTP:
  . Fixed bug #55857 (ftp_size on large files). (cmb)

- Mbstring:
  . Fixed bug #79787 (mb_strimwidth does not trim string). (XXiang)

- Phar:
  . Fixed bug #79797 (Use of freed hash key in the phar_parse_zipfile
    function). (CVE-2020-7068) (cmb)

- Reflection:
  . Fixed bug #79487 (::getStaticProperties() ignores property modifications).
    (cmb, Nikita)
  . Fixed bug #69804 (::getStaticPropertyValue() throws on protected props).
    (cmb, Nikita)
  . Fixed bug #79820 (Use after free when type duplicated into
    ReflectionProperty gets resolved). (Christopher Broadbent)

- Standard:
  . Fixed bug #70362 (Can't copy() large 'data://' with open_basedir). (cmb)
  . Fixed bug #78008 (dns_check_record() always return true on Alpine).
    (Andy Postnikov)
  . Fixed bug #79839 (array_walk() does not respect property types). (Nikita)

(taca)

doc: Updated lang/php73 to 7.3.21

(taca)

lang/php73: update to 7.3.21

Update php73 to 7.3.21 (PHP 7.3.21).

06 Aug 2020, PHP 7.3.21

- Apache:
  . Fixed bug #79030 (Upgrade apache2handler's php_apache_sapi_get_request_time
    to return usec). (Herbert256)

- Core:
  . Fixed bug #79877 (getimagesize function silently truncates after a null
    byte) (cmb)
  . Fixed bug #79778 (Assertion failure if dumping closure with unresolved
    static variable). (Nikita)
  . Fixed bug #79792 (HT iterators not removed if empty array is destroyed).
    (Nikita)

- COM:
  . Fixed bug #63208 (BSTR to PHP string conversion not binary safe). (cmb)
  . Fixed bug #63527 (DCOM does not work with Username, Password parameter).
    (cmb)

- Curl:
  . Fixed bug #79741 (curl_setopt CURLOPT_POSTFIELDS asserts on object with
    declared properties). (Nikita)

- Fileinfo:
  . Fixed bug #79756 (finfo_file crash (FILEINFO_MIME)). (cmb)

- FTP:
  . Fixed bug #55857 (ftp_size on large files). (cmb)

- Mbstring:
  . Fixed bug #79787 (mb_strimwidth does not trim string). (XXiang)

- Phar:
  . Fixed bug #79797 (Use of freed hash key in the phar_parse_zipfile
    function). (CVE-2020-7068) (cmb)

- Standard:
  . Fixed bug #70362 (Can't copy() large 'data://' with open_basedir). (cmb)
  . Fixed bug #79817 (str_replace() does not handle INDIRECT elements). (Nikita)
  . Fixed bug #78008 (dns_check_record() always return true on Alpine).
    (Andy Postnikov)

(taca)

doc: Updated security/clamav to 0.102.4

(taca)

security/clamav: update to 0.102.4

Update clamav to 0.102.4.

## 0.102.4

ClamAV 0.102.4 is a bug patch release to address the following issues.

- [CVE-2020-3350](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3350):
  Fix a vulnerability wherein a malicious user could replace a scan target's
  directory with a symlink to another path to trick clamscan, clamdscan, or
  clamonacc into removing or moving a different file (eg. a critical system
  file). The issue would affect users that use the --move or --remove options
  for clamscan, clamdscan, and clamonacc.

  For more information about AV quarantine attacks using links, see the
  [RACK911 Lab's report](https://www.rack911labs.com/research/exploiting-almost-every-antivirus-software).

- [CVE-2020-3327](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3327):
  Fix a vulnerability in the ARJ archive parsing module in ClamAV 0.102.3 that
  could cause a Denial-of-Service (DoS) condition. Improper bounds checking
  results in an out-of-bounds read which could cause a crash.
  The previous fix for this CVE in 0.102.3 was incomplete. This fix correctly
  resolves the issue.

- [CVE-2020-3481](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3481):
  Fix a vulnerability in the EGG archive module in ClamAV 0.102.0 - 0.102.3
  could cause a Denial-of-Service (DoS) condition. Improper error handling
  may result in a crash due to a NULL pointer dereference.
  This vulnerability is mitigated for those using the official ClamAV
  signature databases because the file type signatures in daily.cvd
  will not enable the EGG archive parser in versions affected by the
  vulnerability.

(taca)

doc: Updated lang/php72 to 7.2.32

(taca)

lang/php72: update to 7.2.

Update php72 to 7.2

09 Jul 2020, PHP 7.2.32

- Core:
  . No source changes to this release.
    Vesion number added for reproduction of Windows builds. (cmb)

14 May 2020, PHP 7.2.31

- Core:
  . Fixed bug #78875 (Long filenames cause OOM and temp files are not cleaned).
    (CVE-2019-11048) (cmb)
  . Fixed bug #78876 (Long variables in multipart/form-data cause OOM and temp
    files are not cleaned). (CVE-2019-11048) (cmb)

(taca)

doc: Updated lang/php74 to 7.4.8

(taca)

lang/php74: update to 7.4.8

Update php74 to 7.4.8.

09 Jul 2020, PHP 7.4.8

- Core:
  . Fixed bug #79649 (Altering disable_functions from module init corrupts
    memory). (Laruence)
  . Fixed bug #79595 (zend_init_fpu() alters FPU precision). (cmb, Nikita)
  . Fixed bug #79650 (php-win.exe 100% cpu lockup). (cmb)
  . Fixed bug #79668 (get_defined_functions(true) may miss functions). (cmb,
    Nikita)
  . Fixed bug #79657 ("yield from" hangs when invalid value encountered).
    (Nikita)
  . Fixed bug #79683 (Fake reflection scope affects __toString()). (Nikita)
  . Fixed possibly unsupported timercmp() usage. (cmb)

- Exif:
  . Fixed bug #79687 (Sony picture - PHP Warning - Make, Model, MakerNotes).
    (cmb)

- Fileinfo:
  . Fixed bug #79681 (mime_content_type/finfo returning incorrect mimetype).
    (cmb)

- Filter:
  . Fixed bug #73527 (Invalid memory access in php_filter_strip). (cmb)

- GD:
  . Fixed bug #79676 (imagescale adds black border with IMG_BICUBIC). (cmb)

- OpenSSL:
  . Fixed bug #62890 (default_socket_timeout=-1 causes connection to timeout).
    (cmb)

- PDO SQLite:
  . Fixed bug #79664 (PDOStatement::getColumnMeta fails on empty result set).
    (cmb)

- phpdbg:
  . Fixed bug #73926 (phpdbg will not accept input on restart execution). (cmb)
  . Fixed bug #73927 (phpdbg fails with windows error prompt at "watch array").
    (cmb)
  . Fixed several mostly Windows related phpdbg bugs. (cmb)

- SPL:
  . Fixed bug #79710 (Reproducible segfault in error_handler during GC
    involved an SplFileObject). (Nikita)

- Standard:
  . Fixed bug #74267 (segfault with streams and invalid data). (cmb)
  . Fixed bug #79579 (ZTS build of PHP 7.3.17 doesn't handle ERANGE for
    posix_getgrgid and others). (B旦sz旦rm辿nyi Zolt叩n)

(taca)

doc: Updated lang/php73 to 7.3.20

(taca)

lang/php73: update to 7.3.20

Update php73 to 7.3.20.

09 Jul 2020, PHP 7.3.20

- Core:
  . Fixed bug #79650 (php-win.exe 100% cpu lockup). (cmb)
  . Fixed bug #79668 (get_defined_functions(true) may miss functions). (cmb,
    Nikita)
  . Fixed possibly unsupported timercmp() usage. (cmb)

- Exif:
  . Fixed bug #79687 (Sony picture - PHP Warning - Make, Model, MakerNotes).
    (cmb)

- Filter:
  . Fixed bug #73527 (Invalid memory access in php_filter_strip). (cmb)

- GD:
  . Fixed bug #79676 (imagescale adds black border with IMG_BICUBIC). (cmb)

- OpenSSL:
  . Fixed bug #62890 (default_socket_timeout=-1 causes connection to timeout).
    (cmb)

- PDO SQLite:
  . Fixed bug #79664 (PDOStatement::getColumnMeta fails on empty result set).
    (cmb)

- SPL:
  . Fixed bug #79710 (Reproducible segfault in error_handler during GC
    involved an SplFileObject). (Nikita)

- Standard:
  . Fixed bug #74267 (segfault with streams and invalid data). (cmb)
  . Fixed bug #79579 (ZTS build of PHP 7.3.17 doesn't handle ERANGE for
    posix_getgrgid and others). (B旦sz旦rm辿nyi Zolt叩n)
09 Jul 2020, PHP 7.3.20

- Core:
  . Fixed bug #79650 (php-win.exe 100% cpu lockup). (cmb)
  . Fixed bug #79668 (get_defined_functions(true) may miss functions). (cmb,
    Nikita)
  . Fixed possibly unsupported timercmp() usage. (cmb)

- Exif:
  . Fixed bug #79687 (Sony picture - PHP Warning - Make, Model, MakerNotes).
    (cmb)

- Filter:
  . Fixed bug #73527 (Invalid memory access in php_filter_strip). (cmb)

- GD:
  . Fixed bug #79676 (imagescale adds black border with IMG_BICUBIC). (cmb)

- OpenSSL:
  . Fixed bug #62890 (default_socket_timeout=-1 causes connection to timeout).
    (cmb)

- PDO SQLite:
  . Fixed bug #79664 (PDOStatement::getColumnMeta fails on empty result set).
    (cmb)

- SPL:
  . Fixed bug #79710 (Reproducible segfault in error_handler during GC
    involved an SplFileObject). (Nikita)

- Standard:
  . Fixed bug #74267 (segfault with streams and invalid data). (cmb)
  . Fixed bug #79579 (ZTS build of PHP 7.3.17 doesn't handle ERANGE for
    posix_getgrgid and others). (B旦sz旦rm辿nyi Zolt叩n)

(taca)

doc: update to mail/roundcube and plugin packages to 1.4.7

mail/roundcube
mail/roundcube-plugin-enigma
mail/roundcube-plugin-password
mail/roundcube-plugin-zipdownload

(taca)

mail/roundcube: update to 1.4.7

Update roundcube to 1.4.7.

RELEASE 1.4.7
-------------
- Fix bug where subfolders of special folders could have been duplicated on folder list
- Increase maximum size of contact jobtitle and department fields to 128 characters
- Fix missing newline after the logged line when writing to stdout (#7418)
- Elastic: Fix context menu (paste) on the recipient input (#7431)
- Fix problem with forwarding inline images attached to messages with no HTML part (#7414)
- Fix problem with handling attached images with same name when using database_attachments/redundant_attachments (#7455)
- Security: Fix cross-site scripting (XSS) via HTML messages with malicious svg/namespace

(taca)

doc: Updated mail/pear-Mail_Mime to 1.10.9

(taca)

mail/pear-Mail_Mime: update to 1.10.9

Update pear-Mail_Mime to 1.10.9.

1.10.9 (2020-06-27 04:37 UTC)

Changelog:

* Added a workaround for an opcache bug on OpenSuse 15.1 [alec]

(taca)

doc: note update of mail/postfix* packages to 3.5.4

mail/postfix
mail/postfix-cdb
mail/postfix-ldap
mail/postfix-lmdb
mail/postfix-mysql
mail/postfix-pcre
mail/postfix-pgsql
mail/postfix-sqlite

(taca)

mail/postfix: update to 3.5.4

Update postfix to 3.5.4.

Fixed in Postfix 3.5.4, 3.4.14:

  * The connection_reuse attribute in smtp_tls_policy_maps always
    resulted in an "invalid attribute name" error. Fix by Thorsten
    Habich.

  * SMTP over TLS connection reuse always failed for Postfix SMTP
    client configurations that specify explicit trust anchors (remote
    SMTP server certificates or public keys). Reported by Thorsten
    Habich.

Fixed in Postfix versions 3.5.4, 3.4.14, 3.3.12, 3.2.17:

  * The Postfix SMTP client's DANE implementation would always send
    an SNI option with the name in a destination's MX record, even
    if the MX record pointed to a CNAME record. MX records that
    point to CNAME records are not conformant with RFC5321, and so
    are rare.

    Based on the DANE survey of ~2 million hosts it was found that
    with the corrected SMTP client behavior, sending SNI with the
    CNAME-expanded name, the SMTP server would not send a different
    certificate. This fix should therefore be safe.

(taca)

doc: Updated security/ruby-metasploit-model to 3.0.0

(taca)

security/ruby-metasploit-model: update to 3.0.0

Update ruby-metasploit-model to 3.0.0, this is a leaf package and is
curently marked as broken.

3.0.0

* Switch to use Ruby on Rails 5.2.

(taca)

doc: Updated devel/ruby-redmine to 4.0.7nb4

(taca)

devel/ruby-redmine: fix build problem

Fix build problem with PKG_DEVELOPER=yes.

Bump PKGREVISION.

(taca)

misc/ruby-ohai: fix PLIST

Fix PLIST to build success.

(taca)

devel/ruby-regexp_parser: fix PLIST

Fix PLIST to build success.

(taca)

doc: Updated www/drupal8 to 8.9.1

(taca)

www/drupal8: update to 8.9.1

Update durpal8 to latest 8.x release, 8.9.1.

pkgsrc change: update PHP support to 7.3.x and 7.4.x.

Changes from 8.7.14 are too many to write here.
Please refer <https://www.drupal.org/project/drupal/releases/> for
each release.

(taca)

doc: Updated www/php-ja-wordpress to 5.4.2

(taca)

www/php-ja-wordpress: update to 5.4.2

Update php-ja-wordpress to 5.4.2

pkgsrc changes: clean up Makefile a little.

Quote from release document but omit maintenance updates for 5.4.1 and
later.

5.3.2 (2019-12-18)

Maintenance updates

- Date/Time: Ensure that get_feed_build_date() correctly handles a modified
  post object with invalid date.
- Uploads: Fix file name collision in wp_unique_filename() when uploading a
  file with upper case extension on non case-sensitive file systems.
- Media: Fix PHP warnings in wp_unique_filename() when the destination
  directory is unreadable.
- Administration: Fix the colors in all color schemes for buttons with the
  .active class.
- Tests/build tools: In wp_insert_post(), when checking the post date to set
  future or publish status, use a proper delta comparison.

5.4 (2020-03-31)

Too much to include here, visit
https://wordpress.org/support/wordpress-version/version-5-4/

5.4.1 (2020-04-29)5.4

Six security issues affect WordPress versions 5.4 and earlier; version 5.4.1
fixes them, so you'll want to upgrade. If you haven't yet updated to 5.4,
there are also updated versions of 5.3 and earlier that fix the security
issues.

- Props to Muaz Bin Abdus Sattar and Jannes who both independently reported
  an issue where password reset tokens were not properly invalidated
- Props to ka1n4t for finding an issue where certain private posts can be
  viewed unauthenticated
- Props to Evan Ricafort for discovering an XSS issue in the Customizer
- Props to Ben Bidner from the WordPress Security Team who discovered an XSS
  issue in the search block
- Props to Nick Daugherty from WPVIP.com / WordPress Security Team who
  discovered an XSS issue in wp-object-cache
- Props to Ronnie Goodrich (Kahoots) and Jason Medeiros who independently
  reported an XSS issue in file uploads.
- Additionally, an authenticated XSS issue in the block editor was
  discovered by Nguyen the Duc in WordPress 5.4 RC1 and RC2. It was fixed in
  5.4 RC5. We wanted to be sure to give credit and thank them for all of
  their work in making WordPress more secure.

5.4.2 (2020-06-10)

Security Updates

WordPress versions 5.4 and earlier are affected by the following bugs, which
are fixed in version 5.4.2. If you haven't yet updated to 5.4, there are
also updated versions of 5.3 and earlier that fix the security issues.

- Props to Sam Thomas (jazzy2fives) for finding an XSS issue where
  authenticated users with low privileges are able to add JavaScript to
  posts in the block editor.
- Props to Luigi - (gubello.me) for discovering an XSS issue where
  authenticated users with upload permissions are able to add JavaScript to
  media files.
- Props to Ben Bidner of the WordPress Security Team for finding an open
  redirect issue in wp_validate_redirect().
- Props to Nrimo Ing Pandum for finding an authenticated XSS issue via theme
  uploads.
- Props to Simon Scannell of RIPS Technologies for finding an issue where
  set-screen-option can be misused by plugins leading to privilege
  escalation.
- Props to Carolina Nymark for discovering an issue where comments from
  password-protected posts and pages could be displayed under certain
  conditions.

(taca)

mk/defaults/options.description: rename two options

Rename ecap and esi to squid-ecap and squid-esi.

(taca)

www/squid4: rename two PKG_OPTIONS

Rename two PKG_OPTIONS.

ecap -> squid-ecap
esi -> squid-esi

Suggested by wiz@ via private mail.

(taca)

doc: Updated security/ruby-sshkey to 2.0.0

(taca)

security/ruby-sshkey: update to 2.0.0

Update ruby-sshkey to 2.0.0.

pkgsrc change: add "USE_LANGUAGES= # none".

2.0.0 (2019-02-11)

* Breaking Change: Drop support for Ruby 1.9
* Feature: Accept valid ed25519 keys with leading zero byte (#37)
* Feature: Support sshfp (#30)

(taca)

net/ruby-addressable: add "USE_LANGUAGES= # none"

Add "USE_LANGUAGES= # none" for a pure ruby package.

(taca)

doc: remove update of sysutils/ruby-childprocess to 4.0.0

(taca)

sysutils/ruby-childprocess: revert udpate to 4.0.0

Revert update to 4.0.0.  Changes are only related to Windows and
selenium-webdriver gem (ruby-selenium-webdriver) require <4.0 version.

(taca)

doc: Updated net/ruby-twitter to 7.0.0

(taca)

net/ruby-twitter: update to 7.0.0

Update ruby-twitter to 7.0.0.

7.0.0
* Add Twitter::DirectMessageEvent (@FabienChaynes)
* Create Twitter::DirectMessageEvent with media (@FabienChaynes)
* Support for DM welcome messages (@FabienChaynes)
* Support for closing Twitter::Streaming::Connection (@okkez)
* Add Twitter::REST::Client#create_direct_message_event (@cyu)
* Add Twitter::REST::Client#premium_search
* Add Twitter::REST::AccountActivity
* Update all direct message methods to return Twitter::DirectMessageEvent
  (@flikglick)
* Correctly handle different Twitter::Error::AlreadyRetweeted error messages
  (@knu)
* Fix proxy setting sample (@nicklegr)
* Add Active Support presence methods on Twitter::NullObject (@davebrace)
* Upload GIFs over 5MB in chunks (@wild_dmitry)
* Track rate limit when searching tweets (@dsalahutdinov1)
* Add quote_count and reply_count attributes to Twitter::Tweet
* Drop support for Ruby 2.0, 2.1, and 2.2

(taca)

doc: Updated net/ruby-twitter-text to 3.1.0

(taca)

net/ruby-twitter-text: update to 3.1.0

Update ruby-twitter-text to 3.1.0.

3.1.0

Changed

* Bump nokogiri version (#302)
* Fix auto-link emoji parsing (#304)
* Updates known gTLDs to recognize recent additions by IANA (#308)
* Fix warning about has_rdoc usage (#309)

(taca)

doc: Updated net/ntp4 to 4.2.8p14

(taca)

net/ntp4: update to 4.2.8p14

Updaet ntp4 to 4.2.8p14.

pkgsrc changes:
* Incorporate several changes from NetBSD base.
* few pkglint fixes.

Quote from release announce:

NTP 4.2.8p14 (Harlan Stenn <stenn@ntp.org>, 2020 Mar 03)

Focus: Security, Bug fixes, enhancements.

Severity: MEDIUM

This release fixes three vulnerabilities: a bug that causes causes an ntpd
instance that is explicitly configured to override the default and allow
ntpdc (mode 7) connections to be made to a server to read some uninitialized
memory; fixes the case where an unmonitored ntpd using an unauthenticated
association to its servers may be susceptible to a forged packet DoS attack;
and fixes an attack against a client instance that uses a single
unauthenticated time source.  It also fixes 46 other bugs and addresses
4 other issues.

(taca)

Add "USE_LANGUAGES= # noen"

Add "USE_LANGUAGES= # noen" for pure Ruby packages.

(taca)

doc: Updated security/ruby-metasploit_payloads-mettle to 1.0.1

(taca)

security/ruby-metasploit_payloads-mettle: update to 1.0.1

Update ruby-metasploit_payloads-mettle to 1.0.1.

No releasenote nor changelog is available.  Quote from
<https://github.com/rapid7/mettle/compare/v1.0.0...v1.0.1>:

1.0.1 (2020-06-18)

* Use DER instead of PEM for TLV encryption.

(taca)

doc: Updated security/ruby-metasploit-payloads to 2.0.5

(taca)

security/ruby-metasploit-payloads: update to 2.0.5

Update ruby-metasploit-payloads to 2.0.5.

No releasenote nor changelog is available.  Please refer commit log
in details:
<https://github.com/rapid7/metasploit-payloads/compare/v2.0.3...v2.0.5>.

(taca)

doc: Updated sysutils/ruby-childprocess to 4.0.0

(taca)

sysutils/ruby-childprocess: update to 4.0.0

Update ruby-childprocess to 4.0.0.

### Version 4.0.0 / 2020-06-18

* #167: Fix detach behavior on Windows.

(taca)

doc: Updated time/ruby-iso8601 to 0.12.2

(taca)

time/ruby-iso8601: update to 0.12.2

Update ruby-iso8601 to 0.12.2.

0.12.2 (2020-06-19)

* Fix DateTime#to_s (thanks @nbeyer).

(taca)

doc: Updated net/ruby-ruby_smb to 2.0.1

(taca)

net/ruby-ruby_smb: update to 2.0.1

Update ruby-ruby_smb to 2.0.1.

* store server time values and GUDI

* Fix issues with Mac OS X SMB server

  - Set the unicode flag on the Negotiate SMB Header request
  - Check if the Socket is closed before calling IO.select
  - Improve Socket#recv_packet exception handling

* Update related to Win8 errors

  - Change :encryption_required parameter name to a more meaningful name
    according to the context: :session_encrypt_data and
    :tree_connect_encrypt_data.
  - #can_be_encrypted? now returns false with SMB1 packet.
  - Improve exception handling in #recv_encrypt in case an encryption error
    occurs on the server (this will help in detecting the unpatched Win8
    bug).
  - Only enable session encryption if the server supports it. This only
    applies if session_encrypt_data was originally set (forced). If it is
    not set, session encryption will stay disabled even if the server
    supports encryption.

* More fixes
  - Remove the `OEM` flag when initializing the `Net::NTLM::Client`.
    Unicode is the default now and `Net::NTLM::Client` does not handle OEM
    string correctly.
  - Improve error message when an SMB1 `NtCreateAndxResponse` is received
    without extended information.

(taca)

doc: Updated misc/ruby-parallel to 1.19.2

(taca)

misc/ruby-parallel: update to 1.19.2

Update ruby-parallel to 1.19.2.

1.19.2 (2020-06-17)

* docs: Improve notes about ActiveRecord.
* Allow timeout usage inside of thread.

(taca)

doc: Updated www/squid4 to 4.12

(taca)

www/squid4: update to 4.12

Update squid4 to 4.12 (Squid 4.12).  This release includes fix for
CVE-2020-14058:  <http://www.squid-cache.org/Advisories/SQUID-2020_6.txt>.

Changes to squid-4.12 (05 Jun 2020):

- Regression Fix: Revert to slow search for new SMP shm pages
- Bug 5045: ext_edirectory_userip_acl is missing include files
- Bug 5041: Missing Debug::Extra breaks build on hosts with systemd
- Bug 5030: Negative responses are never cached
- HTTP: validate Content-Length value prefix
- HTTP: add flexible RFC 3986 URI encoder
- SslBump: disable OpenSSL TLSv1.3 support for older TLS traffic
- Tests: Support passing a custom config.cache to test builds
- Fix IPFilter IPv6 detection, especially on NetBSD
- Fix stall if transaction overwrites a recently active cache entry
- ... and some compile fixes

(taca)

lang/ruby27-base: generic fix for path to power_assert/console

(taca)

inputmethod/mozc-server: fix build problem

Fix build problem applying from https://github.com/google/mozc/issues/460.

(taca)

doc: Updated net/pear-Net_SMTP to 1.9.1

(taca)

net/pear-Net_SMTP: update to 1.9.1

Update pear-Net_SMTP to 1.9.1.

1.9.1 (Release date: 2020-06-06 18:48 UTC)

Changelog:

* Added .gitattributes for nicer packaging

(taca)

www/ruby-jekyll-seo-tag: trivial fixes

* Add "USE_LANGUAGES= # none".
* Update dependency in comment.

(taca)

Add "USE_LANGUAGES= # none".

(taca)

doc: Updated net/ruby-net-ping to 2.0.8

(taca)

net/ruby-net-ping: update to 2.0.8

Update ruby-net-ping to 2.0.8.

2.0.8 (2020-06-17)

Changes

* Fix gem metadata on rubygems (#29)

(taca)

doc: Updated www/ruby-loofah to 2.6.0

(taca)

www/ruby-loofah: update to 2.6.0

Update ruby-loofah to 2.6.0.

2.6.0 / 2020-06-16

Features

* Allow CSS border-style keywords. [#188] (Thanks, @tarcisiozf!)

(taca)

doc: Updated www/drupal7 to 7.72

(taca)

www/drupal7: update to 7.72

Update durpal7 to 7.72 (Drupal 7.72).

Drupal 7.72, 2020-06-17
-----------------------
- Fixed security issues:
  - SA-CORE-2020-004

Drupal 7.71, 2020-06-03
-----------------------
- Fix for jQuery Form bug in Chromium-based browsers
- Full support for PHP 7.4

(taca)

doc: Updated net/bind911 to 9.11.20

(taca)

net/bind911: update to 9.11.20

Update bind911 to 9.11.20, fixing CVE-2020-8619.

--- 9.11.20 released ---

5437. [bug] Fix a data race in lib/dns/resolver.c:log_formerr().
[GL #1808]

5434. [security] It was possible to trigger an INSIST in
lib/dns/rbtdb.c:new_reference() with a particular zone
content and query patterns. (CVE-2020-8619) [GL #1111]
[GL #1718]

5433. [test] Prevent the resolver system test for change #5395
(max-recursion-queries) from failing on systems without
IPv6 support. [GL #1873]

5428. [bug] Clean up GSSAPI resources in nsupdate only after taskmgr
has been destroyed. Thanks to Petr Men邸鱈k. [GL !3316]

5427. [bug] Fix a regression in address/prefix length checking that
should have been a warning instead of an error.
[GL #1849]

5415. [test] Address race in dnssec system test that led to
test failures. [GL #1852]

5413. [test] Address race in autosign system test that led to
test failures. [GL #1852]

5412. [bug] 'provide-ixfr no;' failed to return up-to-date responses
when the serial was greater than or equal to the
current serial. [GL #1714]

5409. [performance] When looking up NSEC3 data in a zone database, skip the
check for empty non-terminal nodes; the NSEC3 tree does
not have any. [GL #1834]

5408. [protocol] Print Extended DNS Errors if present in OPT record.
[GL #1835]

5405. [bug] 'named-checkconf -p' could include spurious text in
server-addresses statements due to an uninitialized DSCP
value. [GL #1812]

(taca)

doc: note update of Ruby on Rails 6.0 packages:

devel/ruby-activesupport60
devel/ruby-activemodel60
databases/ruby-activerecord60
devel/ruby-activejob60
devel/ruby-activestorage60
devel/ruby-railties60
mail/ruby-actionmailbox60
mail/ruby-actionmailer60
textproc/ruby-actiontext60
www/ruby-actioncable60
www/ruby-actionpack60
www/ruby-actionview60
www/ruby-rails60

(taca)

lang/rails60: update to 6.0.3.2

Update Ruby on Rails to 6.0.3.2.

www/ruby-actionpack60 is the really updated package and other packages
have no change except version.

CHANGELOG of www/ruby-actionpack60 is here:

## Rails 6.0.3.2 (June 17, 2020) ##

* [CVE-2020-8185] Only allow ActionableErrors if
  show_detailed_exceptions is enabled

(taca)

doc: Updated www/ruby-rack to 2.2.3

(taca)

www/ruby-rack: update to 2.2.3

Update ruby-rack to 2.2.3.

## [2.2.3] - 2020-02-11

- [CVE-2020-8184] Only decode cookie values

(taca)

doc: note update of mail/postfix* packages to 3.5.3

mail/postfix
mail/postfix-cdb
mail/postfix-ldap
mail/postfix-lmdb
mail/postfix-mysql
mail/postfix-pcre
mail/postfix-pgsql
mail/postfix-sqlite

(taca)

mail/postfix: update to 3.5.3

Update postfix and related pacakges to 3.5.3.

Quote freom release announce.

Postfix 3.5.3, 3.4.13:

  * TLS handshake failure in the Postfix SMTP server during SNI
    processing, after the server-side TLS engine sent a TLSv1.3
    HelloRetryRequest (HRR) to a remote SMTP client. Reported by
    J??n M??t??, fixed by Viktor Dukhovni.

Postfix versions 3.5.3, 3.4.13, 3.3.11, 3.2.16:

  * The command "postfix tls deploy-server-cert" did not handle a
    missing optional argument. This bug was introduced in Postfix
    3.1.

(taca)

doc: Updated textproc/ruby-builder to 3.2.4

(taca)

textproc/ruby-builder: update to 3.2.4

Update ruby-builder to 3.2.4.

== Version 3.2.3 (2017-01-13)

* Support for Ruby 2.4

== Version 3.2.2 (2013-06-01

* Misc minor fixes

== Version 3.2.1 (2013-05-30)

* Travis & Rdoc fixes

== Version 3.2.0 (2013-02-23)

* Ruby 2.0 compatibility changes.

* Allow single quoted attributes.

(taca)

doc: Updated security/ruby-metasploit_payloads-mettle to 1.0.0

(taca)

security/ruby-metasploit_payloads-mettel: update to 1.0.0

Update ruby-metasploit_payloads-mettel to 1.0.0.

No releasenote nor changelog is available.  Please refer commit log
in details: <https://github.com/rapid7/mettle/compare/v0.5.20...v1.0.0>.

(taca)

doc: Updated security/ruby-metasploit-payloads to 2.0.3

(taca)

security/ruby-metasploit-payloads: update to 2.0.3

Update ruby-metasploit-payloads to 2.0.3.

No releasenote nor changelog is available.  Please refer commit log
in details:
<https://github.com/rapid7/metasploit-payloads/compare/v1.4.3...v2.0.3>.

(taca)

doc: Updated sysutils/ruby-specinfra to 2.82.17

(taca)

sysutils/ruby-specinfra: update to 2.82.17

Update ruby-specinfra to 2.82.17.

2.82.17 (2020-06-14)

* Add get_size(file) for darwin

(taca)

doc: Updated www/ruby-faraday_middleware to 1.0.0

(taca)

www/ruby-faraday_middleware: update to 1.0.0

Update ruby-faraday_middleware to 1.0.0.

pkgsrc change: add "USE_LANGUAGES= # none".

1.0.0 (2020-03-29)
This is FaradayMiddleware 1.0 official release!

This release officially supports Faraday 1.0.
It contains all changes included in the 1.0.0.rc1 release, plus:

* Increase minimum rake version to 12.3.3 for security reasons

Special thanks to contributors who helped us push this over the line:
@BobbyMcWho, @onk and @d-m-u

1.0.0.rc1 (2020-02-28)

This is a prerelease. See #200 for details on the shipping plans for 1.0.0.

Changes

* Support Ruby 2.3+.
* Drop support for Faraday v0.7

Bugs fixed

* #198 Autoload an exception class correctly

Chores and misc

* Lint the codebase with RuboCop
* Closed the Wiki and turned it into Markdown files in docs/

0.14.0 (2020-01-10)

NOTE: This is the last minor release in the v0.x series, next release will
be 1.0 to match Faraday v1.0 release and from then on only fixes will be
applied to v0.14.x!

* Fix support for empty bodies having Content-Encoding Gzip (#192)
* RSpec: disable_monkey_patching (#191)
* Add ResponseMiddleware.define_parser unit test (#190)
* Use full URL (url.host + url.request_uri) as cache key (#195)

0.13.1 (2019-02-04)

* Clear Authorization header when redirecting cross-site (#183)
* Brotli is an optional dependency for Gzip (#186)

0.13.0 (2019-01-22)

* Adds support for Brotli decompression of responses (#134)
* Adds support for JSON 2 (#169)
* Hash request URIs before using them as a cache key (#181)
* Remove Addressable::URI query hack (#184)

(taca)

doc: Updated www/ruby-faraday to 1.0.1

(taca)

www/ruby-faraday: update to 1.0.1

Update ruby-faraday to 1.0.1.

## v1.0

Features:

* Add #trace support to Faraday::Connection #861 (@technoweenie)
* Add the log formatter that is easy to override and safe to inherit #889 (@prikha)
* Support standalone adapters #941 (@iMacTia)
* Introduce Faraday::ConflictError for 409 response code #979 (@lucasmoreno)
* Add support for setting `read_timeout` option separately #1003 (@springerigor)
* Refactor and cleanup timeout settings across adapters #1022 (@technoweenie)
* Create ParamPart class to allow multipart posts with JSON content and file upload at the same time #1017 (@jeremy-israel)
* Copy UploadIO const -> FilePart for consistency with ParamPart #1018, #1021 (@technoweenie)
* Implement streaming responses in the Excon adapter #1026 (@technoweenie)
* Add default implementation of `Middleware#close`. #1069 (@ioquatix)
* Add `Adapter#close` so that derived classes can call super. #1091 (@ioquatix)
* Add log_level option to logger default formatter #1079 (@amrrbakry)
* Fix empty array for FlatParamsEncoder `{key: []} -> "key="` #1084 (@mrexox)

Bugs:

* Explicitly require date for DateTime library in Retry middleware #844 (@nickpresta)
* Refactor Adapter as final endpoints #846 (@iMacTia)
* Separate Request and Response bodies in Faraday::Env #847 (@iMacTia)
* Implement Faraday::Connection#options to make HTTP requests with the OPTIONS verb. #857 (@technoweenie)
* Multipart: Drop Ruby 1.8 String behavior compat #892 (@olleolleolle)
* Fix Ruby warnings in Faraday::Options.memoized #962 (@technoweenie)
* Allow setting min/max SSL version for a Net::HTTP::Persistent connection #972, #973 (@bdewater, @olleolleolle)
* Fix instances of frozen empty string literals #1040 (@BobbyMcWho)
* remove temp_proxy and improve proxy tests #1063 (@technoweenie)
* improve error initializer consistency #1095 (@technoweenie)

Misc:

* Convert minitest suite to RSpec #832 (@iMacTia, with help from @gaynetdinov, @Insti, @technoweenie)
* Major effort to update code to RuboCop standards. #854 (@olleolleolle, @iMacTia, @technoweenie, @htwroclau, @jherdman, @Drenmi, @Insti)
* Rubocop #1044, #1047 (@BobbyMcWho, @olleolleolle)
* Documentation tweaks (@adsteel, @Hubro, @iMacTia, @olleolleolle, @technoweenie)
* Update license year #981 (@Kevin-Kawai)
* Configure Jekyll plugin jekyll-remote-theme to support Docker usage #999 (@Lewiscowles1986)
* Fix Ruby 2.7 warnings #1009 (@tenderlove)
* Cleanup adapter connections #1023 (@technoweenie)
* Describe clearing cached stubs #1045 (@viraptor)
* Add project metadata to the gemspec #1046 (@orien)

(taca)

doc: Updated www/ruby-faye-websocket to 0.10.9

(taca)

www/ruby-faye-websocket: update to 0.10.9

Update ruby-faye-websocket to 0.10.9.

pkgsrc changes:
* Add "USE_LANGUAGES= # none".
* Update LICENSE to apache-2.0.

### 0.10.9 / 2019-06-13

- Use the EventMachine API rather than `IO#write` to write data; this uses the
  event loop and avoids getting blocked by slow clients

### 0.10.8 / 2019-06-10

- In the case of a close timeout, don't block on waiting for writing to the
  socket to complete
- Fix a race condition that caused a timeout not to be cancelled immediately
  when the WebSocket is closed
- Change license from MIT to Apache 2.0

(taca)

devel/hoe: add USE_LANGUAGES

Add "USE_LANGUAGES= # none".

(taca)

doc: Updated www/ruby-websocket-extensions to 0.1.5

(taca)

devel/ruby-websocket-extensions: update to 0.1.5

Update ruby-websocket-extensions to 0.1.5.

pkgsrc change:
* Add "USE_LANGUAGES= # none".
* Change LICENSE to apache-2.0.

### 0.1.5 / 2020-06-02

- Remove a ReDoS vulnerability in the header parser (CVE-2020-7663)

### 0.1.4 / 2019-06-10

- Fix a deprecation warning for using the `=~` operator on `true`
- Change license from MIT to Apache 2.0

(taca)

doc: Updated www/ruby-websocket-driver to 0.7.2

(taca)

devel/ruby-websocket-driver: update to 0.7.2

Update ruby-websocket-driver to 0.7.2.

0.7.2 / 2020-05-22

* Emit ping and pong events from the Server driver
* Handle draft-76 handshakes correctly if the request's body is a frozen string

(taca)

doc: Updated devel/ruby-thrift_client to 0.11.0

(taca)

devel/ruby-thrift_client: update to 0.11.0

Update ruby-thrift_client to 0.11.0.

pkgsrc changes:

* Add "USE_LANGUAGES= # none".
* Do not include libthrift/buildlink3.mk.

v0.11.0 Update thrift dep to 0.11.0

v0.10.0 Update thrift dep to 0.10.0 and fix broken tests

v0.9.3 Remove dependency on Mongrel
Allow users to create wrapped exceptions eagerly

v0.9.2 simply show the connection string on NoServersAvailable

v0.9.1 fix infinite connection retry

v0.9.0 upgrade to thrift 0.9.0

v0.8.3 reduce object churn
guard against socket misalignment errors

v0.8.2 Connect errors now mark servers down for _server_retry_period_.
Added support for cached connections to amortize connection costs.

v0.8.1 Fixed permissions?

v0.8.0 Update to thrift 0.8.0

(taca)

doc: Updated misc/ruby-parallel to 1.19.1

(taca)

devel/ruby-parallel: update to 1.19.1

Update ruby-parallel to 1.19.1.

1.19.1 (2019-11-22)

No changes are available please refer in detail:

<https://github.com/grosser/parallel/compare/v1.17.0...v1.19.1>

(taca)

doc: Updated devel/ruby-simpleidn to 0.1.1

(taca)

devel/ruby-simpleidn: update to 0.1.1

Update ruby-simpleidn to 0.1.1.

pkgrc change: add "USE_LANGUAGES= # none".

0.1.1 (2018-01-24)

No changes are available please refer in detail:

<https://github.com/mmriis/simpleidn/compare/v0.0.9...1b3accb>

(taca)

doc: Updated devel/ruby-delayer-deferred to 2.2.0

(taca)

devel/ruby-delayer-deferred: update to 2.2.0

Update ruby-delayer-deferred to 2.2.0.

pkgsrc changes: add "USE_LANGUAGES= # none".

2.2.0 (2020-03-13)

* Add sleep method to Delayer::Deferred::Tools module.

(taca)

doc: Updated meta-pkgs/ruby-shoulda to 4.0.0

(taca)

meta-pkgs/ruby-shoulda: udpate to 4.0.0

Update ruby-shoulda to 4.0.0.

## 4.0.0 (2020-06-13)

* `shoulda` now brings in `shoulda-context` 2.0.0, which adds compatibility for
  Ruby 2.7, Rails 6.0, and shoulda-matchers 4.0! Note that there are some
  backward incompatible changes, so please see the [changelog
  entry][shoulda-context-2-0-0] for this release to learn more.

(taca)

doc: Updated devel/ruby-shoulda-matchers to 4.3.0

(taca)

devel/ruby-shoulda-matchers: update to 4.3.0

Update ruby-shoulda-matchers to 4.3.0.

Changes are too many to write here, please refer
<https://github.com/thoughtbot/shoulda-matchers/blob/master/CHANGELOG.md>.

(taca)

doc: Updated devel/ruby-shoulda-context to 2.0.0

(taca)

devel/ruby-shoulda-context: add ALTERNATIVES

Add ALTERNATIVES file, I forgot to commit previous commit.

(taca)

devel/ruby-shoulda-context: update to 2.0.0

Update ruby-shoulda-context to 2.0.0.

## 2.0.0 (2020-06-13)

### Backward-incompatible changes

* Drop support for RSpec 2 matchers. Matchers passed to `should` must conform
  to RSpec 3's API (`failure_message` and `failure_message_when_negated`).
* Drop support for older versions of Rails. Rails 4.x-6.x are the
  only versions supported now.
* Drop support for older versions of Ruby. Ruby 2.4.x-2.7.x are the only
  versions supported now.

### Bug fixes

* Fix how test names are generated so that when including the name of the
  outermost test class, "Test" is not removed from the class name if it does not
  fall at the end.
* Remove warning from Ruby about `context` not being used when using the gem
  with warnings enabled.
* Fix macro autoloading code. Files intended to hold custom macros which are
  located in either `test/shoulda_macros`, `vendor/gems/*/shoulda_macros`, or
  `vendor/plugins/*/shoulda_macros` are now loaded and mixed into your test
  framework's automatically.
* Restore compatibility with Shoulda Matchers, starting from 3.0.
* Fix some compatibility issues with Minitest 5.
* Fix running tests within a Rails < 5.2 environment so that when tests fail, an
  error is not produced claiming that Minitest::Result cannot find a test
  method.

(taca)

doc: Updated lang/php74 to 7.4.7

(taca)

lang/php74: update to 7.4.7

Update update to 7.4.7.

11 Jun 2020, PHP 7.4.7

- Core:
  . Fixed bug #79599 (coredump in set_error_handler). (Laruence)
  . Fixed bug #79566 (Private SHM is not private on Windows). (cmb)
  . Fixed bug #79489 (.user.ini does not inherit). (cmb)
  . Fixed bug #79600 (Regression in 7.4.6 when yielding an array based
    generator). (Nikita)
  . Fixed bug #79657 ("yield from" hangs when invalid value encountered).
    (Nikita)

- FFI:
  . Fixed bug #79571 (FFI: var_dumping unions may segfault). (cmb)

- GD:
  . Fixed bug #79615 (Wrong GIF header written in GD GIFEncode). (sageptr, cmb)

- Opcache:
  . Fixed bug #79588 (Boolean opcache settings ignore on/off values). (cmb)
  . Fixed bug #79548 (Preloading segfault with inherited method using static
    variable). (Nikita)
  . Fixed bug #79603 (RTD collision with opcache). (Nikita)

- Standard:
  . Fixed bug #79561 (dns_get_record() fails with DNS_ALL). (cmb)

(taca)

doc: Updated lang/php73 to 7.3.19

(taca)

lang/php73: update to 7.3.19

Update php73 to 7.3.19.

11 Jun 2020, PHP 7.3.19

- Core:
  . Fixed bug #79566 (Private SHM is not private on Windows). (cmb)
  . Fixed bug #79489 (.user.ini does not inherit). (cmb)

- GD:
  . Fixed bug #79615 (Wrong GIF header written in GD GIFEncode). (sageptr, cmb)

- MySQLnd:
  . Fixed bug #79596 (MySQL FLOAT truncates to int some locales). (cmb)

- Opcache:
  . Fixed bug #79535 (PHP crashes with specific opcache.optimization_level).
    (Nikita)
  . Fixed bug #79588 (Boolean opcache settings ignore on/off values). (cmb)

- Standard:
  . Fixed bug #79561 (dns_get_record() fails with DNS_ALL). (cmb)

(taca)

doc: Updated archivers/php-pecl-zip to 1.19.0

(taca)

archivers/php-pecl-zip: update to 1.19.0

Update php-pecl-zip to 1.19.0.

1.19.0 (2020-06-05)

- add ZipArchive::EM_TRAD_PKWARE and ZipArchive::EM_UNKNOWN constants
- Fix #79424 don't use gl_pathc after call to globfree (Max Rees)
- add ZipArchive::isCompressionMethodSupported() method (libzip 1.7.0)
- add ZipArchive::isEncryptionMethodSupported() method (libzip 1.7.0)
- initial PHP 8 support

(taca)

doc: Updated devel/php-xdebug to 2.9.6

(taca)

devel/php-xdebug: update to 2.9.6

Update php-xdebug to 2.9.6.

Fri, May 29, 2020 - xdebug 2.9.6

Fixed bugs:

- Fixed issue #1782: Cookie "XDEBUG_SESSION" will be soon rejected because
  it has the "sameSite" attribute set to none
- Fixed issue #1787: Branch coverage data does not always follow the
  lines/functions format
- Fixed issue #1790: Segfault in var_dump() or while debugging with protobuf
  extension

(taca)

doc: Updated mail/pear-Mail_Mime to 1.10.8

(taca)

mail/pear-Mail_Mime: update to 1.10.8

Update pear-Mail_Mime to 1.10.8.

1.10.8 (2020-06-13 03:00 UTC)

Changelog:

* Fix encoding issues with ISO-2022-JP-MS input labelled with ISO-2022-JP
  [shirosaki]

(taca)

doc: Updated sysutils/ruby-facter to 4.0.26

(taca)

sysutils/ruby-facter: update to 4.0.26

Update ruby-facter to 4.0.26.

4.0.26 (2020-06-11)

Added

* (FACT-2608) Add is_virtual fact #535 (oanatmaria)
* (FACT-2609) Add lspci resolver #534 (oanatmaria)
* (FACT-2245) Add xen resolver #532 (oanatmaria)
* (FACT-2607) Add Openvz detector #531 (oanatmaria)
* (FACT-2600) Run acceptance tests on Windows #519 (Filipovici-Andrei)

Fixed

* (FACT-2651) Fix --list-cache-groups when there are multiple arguments
  before it #545 (IrimieBogdan)
* FACT-2650 Fix bug when loading external facts #543 (Filipovici-Andrei)
* Use proper encoding #539 (faucct)
* (FACT-2635) Incorrect output for non existing fact #536 (IrimieBogdan)

(taca)

doc: Updated sysutils/capistrano to 3.14.1

(taca)

sysutils/capistrano: update to 3.14.1

Update capistrano to 3.14.1.

3.14.1 (2020-06-10)

Bug Fixes

* #2046 Fix Ruby 2.7 keyword parameters warnings and add Ruby 2.7
  to CI (#2060) @Eric-Guo

(taca)

doc: Updated net/ruby-xdr to 3.0.1

(taca)

net/ruby-xdr: update to 3.0.1

Update ruby-xdr to 3.0.1.

3.0.1

Added

* Add encoding parameter to Union#to_xdr
  ((#7)[https://github.com/stellar/ruby-xdr/pull/7]).

Fixed

* Padding bytes are now properly validated when reading xdr values.
  According to the XDR spec, padding must be zeros.

(taca)

doc: Updated net/ruby-train-core to 3.3.1

(taca)

net/ruby-train-core: update to 3.3.1

Update ruby-train-core to 3.3.1.

3.3.1 (2020-06-10)

* Update chefstyle requirement from 1.0.5 to 1.1.0 #608
  (dependabot-preview[bot])
* Update to net-ssh 6 and allow older algorithms #603 (james-stocks)
* Update ffi dependency #610 (james-stocks)

(taca)

doc: Updated security/ruby-net-ssh to 6.1.0

(taca)

security/ruby-net-ssh: update to 6.1.0

Update to ruby-net-ssh 6.1.0.

=== 6.1.0

  * adapt to ssh's default bahaviors when no username is provided.
    When Net::SSH.start user is nil and config has no entry
    we default to Etc.getpwuid.name() instead of Etc.getlogin(). [#749]

=== 6.1.0.rc1

  * Make sha2-{256,512}-etm@openssh.com MAC default again [#761]
  * Support algorithm subtraction syntax from ssh_config [#751]

(taca)

doc: Updated net/ruby-ruby_smb to 2.0.0

(taca)

net/ruby-ruby_smb: udpate to 2.0.0

Update ruby-ruby_smb to 2.0.0.

No release note nor changelog.

(taca)

doc: Added security/ruby-openssl-cmac version 2.0.1

(taca)

security/Makefile: ad and enable ruby-openssl-cmac

(taca)

security/ruby-openssl-cmac: add package version 2.0.1

Add openssl-cmac package version 2.0.1.

Ruby Gem for
* RFC 4493 - The AES-CMAC Algorithm (http://tools.ietf.org/html/rfc4493)
* RFC 4494 - The AES-CMAC-96 Algorithm and Its Use with IPsec
  (http://tools.ietf.org/html/rfc4494)

* RFC 4615 - The Advanced Encryption Standard-Cipher-based Message
  Authentication Code-Pseudo-Random Function-128 (AES-CMAC-PRF-128)
  Algorithm for the Internet Key Exchange Protocol (IKE)
  (http://tools.ietf.org/html/rfc4615)

(taca)

doc: Updated devel/ruby-test-unit to 3.3.6

(taca)

devel/ruby-test-unit: update to 3.3.6

Update ruby-test-unit to 3.3.6.

# News

## 3.3.6 - 2020-06-10 {#version-3-3-6}

### Improvements

  * `name`, `--ignore-name`:

    * Added support for regular expression options.

    * Added support for matching with class name in exact match mode.
      [Reported by Jun Aruga]

  * Updated ruby-talk mailing list information
    [GitHub#168][Patch by Chris Kampmeier]

### Thanks

  * Chris Kampmeier

  * Jun Aruga

(taca)

doc: Updated devel/ruby-sexp-processor to 4.15.0

(taca)

devel/ruby-sexp-processor: update to 4.15.0

Update ruby-sexp-processorto 4.15.0.

=== 4.15.0 / 2020-06-09

* 1 minor enhancement:

  * Added `child` and `include` to Sexp::Matcher.parse language.

(taca)

doc: Updated devel/ruby-ffi to 1.13.1

(taca)

devel/ruby-ffi: update to 1.13.1

Update ruby-ffi to 1.13.1.

1.13.1 / 2020-06-09
-------------------

Changed:
* Revert use of `ucrtbase.dll` as default C library on Windows-MINGW.
  `ucrtbase.dll` is still used on MSWIN target. #790
* Test for `ffi_prep_closure_loc()` to make sure we can use this function.
  This fixes incorrect use of system libffi on MacOS Mojave (10.14). #787
* Update types.conf on x86_64-dragonflybsd

(taca)

doc: Update mail/roundcube packages to 1.4.6

mail/roundcube
mail/roundcube-plugin-enigma
mail/roundcube-plugin-password
mail/roundcube-plugin-zipdownload

(taca)

mail/roundcube: update to 1.14.6

Update roundcube to 1.14.6.

RELEASE 1.4.6
-------------
- Installer: Fix regression in SMTP test section (#7417)

(taca)

doc: Updated devel/ruby-regexp_parser to 1.7.1

(taca)

devel/ruby-regexp_parser: update to 1.7.1

Update ruby-regexp_parser to 1.7.1

### [1.7.1] - 2020-06-07 - [Ammar Ali](mailto:ammarabuali@gmail.com)

### Fixed

- Support for literals that include the unescaped delimiters `{`, `}`, and `]`. These
  delimiters are informally supported by various regexp engines.

(taca)