doc: Added emulators/xm8 version 1.70

(tsutsui)

emulators/Makefile: + xm8

(tsutsui)

emulators/xm8: import xm8-1.70.

XM8 is "eXcellent Multi-platform emulator type 8", an emulator of
NEC PC-8801 series, based on "ePC-8801MA".

(tsutsui)

ruby-twitter-text-simpleidn: fix pasto in DEPEND line.

(tsutsui)

doc: Updated net/mikutter to 3.9.5

(tsutsui)

mikutter: update to 3.9.5.

pkgsrc changes:
Use ruby-twitter-text-simpleidn gem as upstream,
to avoild libidn dependencies.

Upstream changes:

mikutter 3.9.5

* fix a problem the Appimage version cannot invoke an external browser etc.
* make shibafu528 commiter
* fix a problem Mastodon Toots cannot be deleted
* thanks Shibafu Midorino
* remove dependency on libidn11
* thanks Shibafu Midorino

(tsutsui)

net: add ruby-twitter-text-simpleidn.

(tsutsui)

devel: add ruby-simpleidn.

(tsutsui)

doc: Added net/ruby-twitter-text-simpleidn version 3.0.0.0

(tsutsui)

net/ruby-twitter-text-simpleidn: added ruby-twitter-text-simpleidn-3.0.0.0.

This twitter-text-simpleidn gem is required by forthcoming mikutter 3.9.5.

Twitter-text-simpleidn gem is a forked version of Twitter-text gem
to avoid annoying dependency on idn-ruby gem which requires C bindings.
This allows JRuby support and makes installation of dependencies easier.

(tsutsui)

doc: Added devel/ruby-simpleidn version 0.0.9

(tsutsui)

devel/ruby-simpleidn: added simpleidn-0.0.9 gem as ruby-simpleidn-0.0.9.

This gem is required by forthcoming twitter-text-simpleidn-3.0.0.0 gem,
a forked version of twitter-text without libIDN dependency.

Simpleidn gem allows easy conversion from punycode ACE strings to
unicode UTF-8 strings and visa versa.
The implementation is heavily based on the RFC3492 C example
implementation but simplified since it does not preserve case.

(tsutsui)

doc: Updated net/mikutter to 3.9.4

(tsutsui)

mikutter: update to 3.9.4.

Upstream changes:

mikutter 3.9.4

* remove unnecessary debug outputs
* crash on opening an edit window of extract conditions when some
  extract conditions don't exist
* gtk2 3.3.7
* incorrect text range on copying selected region of tweet with URL
* refer to description on extracting texts
* thanks Shibafu Midorino

(tsutsui)

doc: Update ruby-gnome2 packages to 3.3.7

(tsutsui)

ruby-gnome2: update to 3.3.7.

Upstream changes (from NEWS):

== Ruby-GNOME2 3.3.7: 2019-08-17

This is the bug fix release of 3.3.6.

=== Changes

==== Ruby/Pango

  * Improvements

    * (({Pango::AttrList#each})): Added.

    * (({Pango::AttrType})): Added support for (({PANGO_ATTR_FONT_DESC})).

==== Ruby/GObjectIntrospection

  * Improvements

    * Added support for (({GHashTable<utf8, enum>})).

    * Added support for GObject Introspection 1.60.0.

==== Ruby/Pango

  * Improvements

    * Added support for Pango 1.44.
      [GitHub#1288][Reported by Toshiaki Asai]

==== Ruby/GTK3

  * Fixes

    * Fixed document markup.
      [GitHub#1280][GitHub#1281][GitHub#1282][Patch by 聴smail Ar脹l脹k]

==== Ruby/WNCK3

  * Added.
    [GitHub#1284][Reported by Christopher L. Ramsey]

==== Ruby/libsecret

  * Added.

=== Thanks

  * 聴smail Ar脹l脹k

  * Christopher L. Ramsey

  * Toshiaki Asai

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.238

(tsutsui)

adobe-flash-player: update to 32.0.0.238.

Upstream announcement:

https://helpx.adobe.com/flash-player/release-note/fp_32_air_32_release_notes.htm
l#fixed_issues

August 13, 2019
Flash Player
* Assorted functional fixes

(tsutsui)

firefox: fix ICE on NetBSD/i386 8.1 build. (PR pkg/54383)

Thanks to Santhosh Raju for information of the upstream fix.

(tsutsui)

doc: Updated textproc/ruby-nokogiri to 1.10.4

(tsutsui)

ruby-nokogiri: update to 1.10.4.

Upstream changelog:
https://github.com/sparklemotion/nokogiri/blob/v1.10.4/CHANGELOG.md

# 1.10.4 / 2019-08-07

### Security

#### Address CVE-2019-5477 (#1915)

A command injection vulnerability in Nokogiri v1.10.3 and earlier allows
commands to be executed in a subprocess by Ruby's `Kernel.open` method.
Processes are vulnerable only if the undocumented method
`Nokogiri::CSS::Tokenizer#load_file` is being passed untrusted user input.

This vulnerability appears in code generated by the Rexical gem
versions v1.0.6 and earlier. Rexical is used by Nokogiri to generate
lexical scanner code for parsing CSS queries. The underlying
vulnerability was addressed in Rexical v1.0.7 and Nokogiri upgraded
to this version of Rexical in Nokogiri v1.10.4.

This CVE's public notice is
https://github.com/sparklemotion/nokogiri/issues/1915

(tsutsui)

doc: Updated net/mikutter to 3.9.3

(tsutsui)

mikutter: update to 3.9.3.

Upstream changes:

mikutter 3.9.3

* avoid use of deperecated NUL separated strings for patterns
  passed to Dir.glob
* discard widgets when setting window is switched
* make it possible to define event listeners and filters in Setting DSL
  for this change

(tsutsui)

doc: Updated net/mikutter to 3.9.2

(tsutsui)

mikutter: update to 3.9.2.

Upstream changes:

mikutter 3.9.2

* possible crash on Mastodon custom posting
* compatibility issue of receive_user_screen_names
* thanks Shibafu Midorino
* possible crash on adding accounts
* thanks ahiru

(tsutsui)

doc: Updated net/mikutter to 3.9.1

(tsutsui)

mikutter: update to 3.9.1.

Upstream changes:

mikutter 3.9.1

* print Mastodon server domains with Numeronym shortening method
  as respect to iMast
* [mastodon] icon is not shown on Messages replied by user even if
  "Show lock icon on protected Tweets" is enabled in display preference
* [mastodon] create tabs for home timeline, mentions, and LTL on
  creating account
* make '=' etc. usable as implemented in Yukari
* [modelviewer] modelviewer_models filter, that enumerates specs of Models
  that have viewer definitions

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.223

(tsutsui)

adobe-flash-player: update to 32.0.0.223.

Upstream announcement:

https://helpx.adobe.com/flash-player/release-note/fp_32_air_32_release_notes.html#fixed_issues

July 9, 2019
Flash Player
* Assorted functional fixes

(tsutsui)

doc: Updated misc/libreoffice6-bin to 6.2.4

(tsutsui)

libreoffice6-bin: update to 6.2.4.

Upstream changes (not bother to quote for Linux bin):
https://wiki.documentfoundation.org/Releases/6.2.4/RC1#List_of_fixed_bugs
https://wiki.documentfoundation.org/Releases/6.2.4/RC2#List_of_fixed_bugs

(tsutsui)

doc: Updated net/mikutter to 3.9.0

(tsutsui)

mikutter: update to 3.9.0.

Upstream changes (including 3.9.0-alpha ones):

New features of mikutter 3.9

* Mastodon plugin
* Support for UI scaling
* World account can be assigned to shortcut key
* Reorder World accounts
* Non-PNG image support for Skin
* Generic Model viewer
* Quick Step
* PulseAudio
* Reorgenize gem dependencies
* and more..

(tsutsui)

doc: Updated net/mikutter to 3.9.0alpha3

(tsutsui)

mikutter: update to 3.9.0-alpha3.

Upstream changes:

* crash on click for adding shortcut keys
* start distribution using AppImage format (thanks: yuntan_t)

(tsutsui)

ricty-ttf: follow move of inconsolata-ttf installation path.

Also explicitly require moved version:
http://mail-index.netbsd.org/pkgsrc-changes/2019/04/06/msg190085.html
> inconsolata-ttf: update to 20090207nb2.
> Use fonts.mk: Fixes installation path.

(tsutsui)

doc: Updated devel/ruby-delayer-deferred to 2.1.1

(tsutsui)

ruby-delayer-deferred: update to 2.1.1.

No upstream changelog.

(tsutsui)

pulseaudio: fix missed distinfo.

(tsutsui)

pulseaudio: handle NetBSD's shm_open(3) path for pa_shm_cleanup().

Bump PKGREVISION.

(tsutsui)

mplayer: put back pulseaudio to SUGGESTED_OPTIONS.

- the default audio output driver (in case no -ao option is specified)
  on NetBSD is still oss even if pulseaudio is enabled
- users can change the audio output driver by "-ao pulse" option or
  "ao=pulse" in ~/.mplayer/config file, as they did on 1.3.0 packages
- SDL (which is in current SUGGESTED_OPTIONS) already depends on
  pulseaudio by default

Bump PKGREVISIONs.

(tsutsui)

doc: Updated net/mikutter to 3.9.0alpha2

(tsutsui)

mikutter: update to 3.9.0-alpha2.

Upstream changes:

* quickstep
* crash on a retweet tab in Tweet details tabs when non-Twitter World
  is selected
* pass application name to notify-send
* thanks Shibafu Midorino
* improve performance of toot cache
* crash on Fav'ed from Mastodon World when Current World is not
  fav'ed account

(tsutsui)

mlterm: apply upstream patch for 3.8.8.

Bump PKGREVISION.

(tsutsui)

doc: Updated textproc/ruby-nokogiri to 1.10.3

(tsutsui)

ruby-nokogiri: update to 1.10.3.

Upstream changelog (from CHANGELOG.md):

## 1.10.3 / 2019-04-22

### Security Notes

[MRI] Pulled in upstream patch from libxslt that addresses CVE-2019-11068. Full details are available in [#1892](https://github.com/sparklemotion/nokogiri/issues/1892). Note that this patch is not yet (as of 2019-04-22) in an upstream release of libxslt.

## 1.10.2 / 2019-03-24

### Security

* [MRI] Remove support from vendored libxml2 for future script macros. [#1871]
* [MRI] Remove support from vendored libxml2 for server-side includes within attributes. [#1877]

### Bug fixes

* [JRuby] Fix node ownership in duplicated documents. [#1060]
* [JRuby] Rethrow exceptions caught by Java SAX handler. [#1847, #1872] (Thanks, @adjam!)

(tsutsui)

nicovideo-dl: fix wrong version strings for -v option.

Reported in the upstream Ticket #39067:
https://osdn.net/projects/nicovideo-dl/ticket/39067

Also use https for HOMEPAGE and take maintainership.
Bump PKGREVISION.

(tsutsui)

doc: nicovideo-dl is restored.

(tsutsui)

net/Makefile: readd nicovideo-dl

(tsutsui)

nicovideo-dl: restore package. 0.0.20190216 version works fine.

(tsutsui)

doc: Updated net/ruby-tw to 1.3.1

(tsutsui)

ruby-tw: update to 1.3.1.

Upstream changes (from History.txt):

=== 1.3.1 2019-04-15

* use https (#79)
* thank you for contributing @sachin21

(tsutsui)

doc: Updated net/mikutter to 3.9.0alpha1

(tsutsui)

mikutter: update to 3.9.0-alpha1.

pkgsrc changes:
- remove patch for totoridipjp (removed in upstream too)
- remove patch for upstream ticket #1323 (integrated in 3.9)

Upstream changes (from "new features of mikutter 3.9"):

* Mastodon plugin
* Support for UI scaling
* World account can be assigned to shortcut key
* Reorder World accounts
* Non-PNG image support for Skin
* Generic Model viewer
* Quick Step
* PulseAudio
* Reorgenize gem dependencies

(tsutsui)

mikutter: update to 3.9.0-alpha1.

pkgsrc changes:
- remove patch for totoridipjp (removed in upstream too)
- remove patch for upstream ticket #1323 (integrated in 3.9)

Upstream changes (from "new features of mikutter 3.9"):

* Mastodon plugin
* Support for UI scaling
* World account can be assigned to shortcut key
* Reorder World accounts
* Non-PNG image support for Skin
* Generic Model viewer
* Quick Step
* PulseAudio
* Reorgenize gem dependencies

(tsutsui)

doc: Updated net/ruby-twitter-text to 3.0.0

(tsutsui)

ruby-twitter-text: update to 3.0.0.

Upstream pull request log:
https://github.com/twitter/twitter-text/pull/265

* New v3.json config file with emojiParsingEnabled config option. When
  true, twitter-text will parse and discount emoji supported by the
  twemoji library (see https://github.com/twitter/twemoji). The length
  of these emoji will be the default weight (200 or two characters) even
  if they contain multiple code points combined by zero-width
  joiners. This means that emoji with skin tone and gender modifiers no
  longer count as more characters than those without such modifiers.
  All 4 implementations updated to reflect this change in counting.
* Updates known gTLDs to recognize recent additions by IANA (#261)

(tsutsui)

doc: Updated net/ruby-pluggaloid to 1.2.0

(tsutsui)

ruby-pluggaloid: update to 1.2.0.

No upstream changelog.

(tsutsui)

doc: Updated devel/ruby-diva to 1.0.0

(tsutsui)

ruby-diva: update to 1.0.0.

No upstream changelog.

(tsutsui)

doc: Updated devel/ruby-delayer-deferred to 2.1.0

(tsutsui)

ruby-delayer-deferred: update to 2.1.0.

No upstream changelog.

(tsutsui)

doc: Updated devel/ruby-delayer to 1.0.0

(tsutsui)

ruby-delayer: update to 1.0.0.

No upstream changelog.

(tsutsui)

doc: Updated net/ruby-addressable to 2.6.0

(tsutsui)

ruby-addressable: update to 2.6.0.

Upstream changes (from CHANGELOG.md):

# Addressable 2.6.0
- added `tld=` method to allow assignment to the public suffix
- most `heuristic_parse` patterns are now case-insensitive
- `heuristic_parse` handles more `file://` URI variations
- fixes bug in `heuristic_parse` when uri starts with digit
- fixes bug in `request_uri=` with query strings
- fixes template issues with `nil` and `?` operator
- `frozen_string_literal` pragmas added
- minor performance improvements in regexps
- fixes to eliminate warnings

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.207

(tsutsui)

adobe-flash-player: update to 32.0.0.207.

Upstream announcement:

https://helpx.adobe.com/security/products/flash-player/apsb19-30.html

Adobe Security Bulletin
Security Bulletin for Adobe Flash Player | APSB19-30

Summary

  Adobe has released security updates for Adobe Flash Player for
  Windows, macOS, Linux and Chrome OS. These updates address
  a critical vulnerability in Adobe Flash Player. Successful
  exploitation could lead toarbitrary code executionin the context
  of the current user.

(tsutsui)

mencoder, mplayer, gmplayer: use /dev/audio for OSS on NetBSD/OpenBSD.

- See PR/54229 about misuse of NetBSD's /dev/sound for OSS.
- OpenBSD's /dev/sound seems removed since 6.1:
  https://man.openbsd.org/OpenBSD-6.1/audio.4

Bump PKGREVISIONs.

(tsutsui)

mpv: make alsa option usable on NetBSD.

(tsutsui)

firefox: fix wrong latency unit in stream_init() function.

Based on a patch in PR pkg/54206 from Y.Sugahara.
Bump PKGREVISION.

(tsutsui)

doc: Updated net/mikutter to 3.8.8

(tsutsui)

mikutter: update to 3.8.8.

pkgsrc changes:
- pull upstream patch for ticket #1323
  (insert newline to each attached image URL)

Upstream changelog:

mikutter 3.8.8

* <>& in Twitter messages are not converted from HTML entity references
* thanks cob odo
* keep world account settings even if restoring account fails
  on loading the world
* pluggaloid 1.1.2

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.192

(tsutsui)

adobe-flash-player: update to 32.0.0.192.

Upstream announcement:

https://helpx.adobe.com/security/products/flash-player/apsb19-26.html

Adobe Security Bulletin
Security Bulletin for Adobe Flash Player | APSB19-26

Summary

  Adobe has released security updates for Adobe Flash Player for
  Windows, macOS, Linux and Chrome OS. These updates address
  a critical vulnerability in Adobe Flash Player. Successful
  exploitation could lead toarbitrary code executionin the context
  of the current user.

(tsutsui)

doc: Updated misc/libreoffice6-bin to 6.2.3

(tsutsui)

misc/libreoffice6-bin: update to 6.2.3.

Upstream changes:
see changelog of misc/libreoffice to 6.2.3.2:
http://mail-index.netbsd.org/pkgsrc-changes/2019/04/23/msg190632.html

(tsutsui)

doc: Updated emulators/PC6001VX to 3.1.3

(tsutsui)

PC6001VX: update to 3.1.3.

Upstream changes:

3.1.3 2019/5/5
* Improved virtual keyboard(simple) operability.

(tsutsui)

doc: Updated net/ruby-pluggaloid to 1.1.2

(tsutsui)

ruby-pluggaloid: update to 1.1.2.

No upsatream changelog, but this should fix mikutter's issue #1328
(tutorial doesn't proceed after Twitter oauth is complete).

(tsutsui)

doc: Updated misc/ruby-parallel to 1.17.0

(tsutsui)

ruby-parallel: update to 1.17.0.

No upstream changelog.

(tsutsui)

doc: Updated net/mikutter to 3.8.7

(tsutsui)

mikutter: update to 3.8.7.

Upstream changelog:

mikutter 3.8.7

* a dead link in a message when Twitter authentication failed
* check quoted_status_permalink for quoted RT on Filterstream
* thanks Izumi Tsutsui
* [twitter] deal with the promised day
* Gtk2 3.3.2
* thanks Akira Ouchi
* [libnotify] notification was not shown when Diva::Model is received

(tsutsui)

doc: Updated x11/arandr to 0.1.10

(tsutsui)

arandr: update to 0.1.10.

Changelog:
https://gitlab.com/arandr/arandr/commit/43faec00c0feca3f00b0acbae048de14f02c6d21

Version 0.1.10

* Ported to Python 3 and PyGObject (by actionless)
* Metacity keybindings removed
* New translations
  - Finnish
  - Hebrew
  - Indonesian
  - Kurdish Sorani
  - Norwegian Bokmal
* Updated translations
  - Breton
  - Czech
  - French
  - Galego
  - Galician
  - Greek
  - Japanese
  - Kannada
  - Lithuanian
  - Romanian
  - Sardinian
  - Slovak
  - Swedish
  - Turkish
  - Chinese (Traditional)

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.171

(tsutsui)

adobe-flash-player: update to 32.0.0.171.

Upstream announcement:

https://helpx.adobe.com/security/products/flash-player/apsb19-19.html

Adobe Security Bulletin
Updates available for Adobe Flash Player | APSB19-19

Summary

  Adobe has released security updates for Adobe Flash Player for
  Windows, macOS, Linux and Chrome OS. These updates address a
  critical and animportantvulnerability in Adobe Flash Player.
  Successful exploitation could lead toarbitrary code execution
  in the context of the current user.

(tsutsui)

doc: Updated x11/mlterm to 3.8.8

(tsutsui)

mlterm: update to 3.8.8.

pkgsrc changes:
- handle utmp option properly
- remove a patch applied in the upstream

Upstream changes noted in doc/en/ReleaseNote:

ver 3.8.8
* Support Haiku OS. (Experimental)
  (Execute ./configure with --with-gui=beos option.) (See doc/en/README.beos)
* Support "[font family]:style=..." format in aafont or font-fb config file.
* Support mosh. (Experimental) (See doc/en/README.mosh)
  (Don't distribute libptymosh in binary format.)
* Clear a window and scroll out all lines if the size of a window decreases
  and some characters in it disappear.
* Support "%s" (replaced by selected strings) in "exesel:..." in ~/.mlterm/key.
* Add local_echo_wait / --lew option.
* Remove libind_tamil.so because it is very buggy.
* Change the default shortcut key of INSERT_SELECTION from Shift+Insert to
  Command+v on MacOSX and iOS.
* Skip \r in configuration files.
* Start scp by Shift+Drag&Drop on not only xlib and win32 but also wayland, sdl2
  and cocoa. (Command+Drag&Drop on cocoa.)
* Change the default value of "font_size_range" option from 6-30 to 1-100.
* Add vte 0.56.0 API symbols to libvte compatible library.
* Bug fixes:
  Fix https://sourceforge.net/p/mlterm/mailman/message/36472061/
  Fix https://sourceforge.net/p/mlterm/mailman/message/36513313/
  Fix https://sourceforge.net/p/mlterm/bugs/79/
  Fix segfault in processing illegal sixel sequence.
  Fix invalidation of DECDWL on cairo. (Enbugged at 3.8.6)
  Fix handling ISCII fonts on cairo and xft. (Improve showing bengali characters.)
  Fix screen corruption (http://twitter.com/Cj_bc_sd/status/1088111309223161857)
  on MacOSX 10.14. (Thanks to @Cj_bc_sd)
  Fix segfault in showing an input method window. (Thanks to @isaki68k)

(tsutsui)

libreoffice6-bin: fix distinfo for x86_64.

(tsutsui)

doc: Updated emulators/PC6001VX to 3.1.2

(tsutsui)

PC6001VX: update to 3.1.2.

Upstream changes:

3.1.2 2019/3/23
* Fixed issue related to replay recording on Windows.
* Fixed issue that wrong icon is shown when SR models are chosen.
* Some minor bug fixes.

(tsutsui)

nodejs: fix SIGABRT on NetBSD/i386 8.0 by pulling upstream PR #21848.

Also apply similar ifdefs for NetBSD as FreeBSD and OpenBSD.
Now nodejs binary won't fail during lang/npm and www/firefox builds
on NetBSD/i386 8.0.

Bump PKGREVISION.

No particular comments on pkgsrc-bug@:
http://mail-index.netbsd.org/pkgsrc-bugs/2019/03/19/msg066102.html
Should close PR pkg/53497, PR pkg/53758, PR pkg/53792, and PR pkg/53794.

(tsutsui)

misc/Makefile: add libreoffice6-bin

(tsutsui)

doc: Added misc/libreoffice6-bin version 6.2.2

(tsutsui)

misc/libreoffice6-bin: import libreoffice6-bin-6.2.2.

LibreOffice is the free power-packed Open Source personal productivity
suite for Windows, Macintosh and Linux, that gives you six feature-rich
applications for all your document production and data processing
needs: Writer, Calc, Impress, Draw, Math and Base.

This package tracks libreoffice-6.x branch of official Linux binary.

"Looks fine to me" by dholland@ in PR pkg/54066.

(tsutsui)

doc: Updated ruby-gnome2 packages to 3.3.6

(tsutsui)

ruby-gnome2: update to 3.3.6.

Upstream changes:

== Ruby-GNOME2 3.3.6: 2019-03-21

This is a follow-up release of 3.3.5.

=== Changes

==== Ruby/GIO2

  * Improvements

    * (({Gio::File#read})): Added support for block.

    * (({Gio::File.open})): Added support for (({Pathname})).

    * (({Gio::InputStream.open})): Added support for block.

==== Ruby/CairoGObject

  * Fixes

    * Fixed a bug that old cairo may be used.

==== Ruby/GObjectIntrospection

  * Fixes

    * Fixed a bug that 64bit integer conversion may be failed for
      large integer.

    * Fixed typos.

(tsutsui)

firefox: 66.0 requires libwebp>=1.0.2. Bump PKGREVISION.

(tsutsui)

doc: Added emulators/suse131_avahi version 13.1

(tsutsui)

meta-pkgs/suse131: add suse131_avahi.  Bump PKGREVISION.

(tsutsui)

mk/emulator/linux.mk: add avahi as a module.

(tsutsui)

emulators/Makefile: + suse131_avahi

(tsutsui)

emulators/suse131_avahi: import suse_avahi-13.1.

Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.

This package supports running ELF binaries linked with glibc2 that
require Avahi shared libraries.

Required by forthcoming libreoffice6-bin, ok'ed by wiz@ in PR pkg/54063.

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.156

(tsutsui)

adobe-flash-player: 32.0.0.156.

Upstream announcement:

https://helpx.adobe.com/security/products/flash-player/apsb19-12.html

Adobe Security Bulletin
Updates available for Flash Player | APSB19-12

  Summary

  Adobe has released updates for Adobe Flash Player for Windows, macOS,
  Linux and Chrome OS. These updates address feature and performance
  bugs, and do not include security fixes.

(tsutsui)

doc: Updated textproc/ruby-nokogiri to 1.10.1

(tsutsui)

ruby-nokogiri: update to 1.10.1.

Upstream changes (from CHANGELOG.md):

# 1.10.1 / 2019-01-13

### Features

* [MRI] During installation, handle Xcode 10's new library path.
  [#1801, #1851] (Thanks, @mlj and @deepj!)
* Avoid unnecessary creation of `Proc`s in many methods. [#1776]
  (Thanks, @chopraanmol1!)

### Bug fixes

* CSS selector `:has()` now correctly matches against any descendant.
  Previously this selector matched against only direct children).
  [#350] (Thanks, @Phrogz!)
* `NodeSet#attr` now returns `nil` if it's empty. Previously this
  raised a NoMethodError.
* [MRI] XPath errors are no longer suppressed during
  `XSLT::Stylesheet#transform`. Previously these errors were suppressed
  which led to silent failures and a subsequent segfault. [#1802]

(tsutsui)

doc: Updated ruby-gnome2 packages to 3.3.5

(tsutsui)

ruby-gnome2: update to 3.3.5.

Upstream changes:

== Ruby-GNOME2 3.3.5: 2019-03-10

This is a follow-up release of 3.3.4.

=== Changes

==== Ruby/GObjectIntrospection

  * Improvements

    * Ignored no (({GType})) interface.

(tsutsui)

doc: Updated ruby-gnome2 packages to 3.3.4

(tsutsui)

ruby-gnome2: update to 3.3.4.

Upstream changes:

== Ruby-GNOME2 3.3.4: 2019-03-09

This is a real release to support GLib 2.60.

=== Changes

==== Ruby/GObjectIntrospection

  * Improvements

    * Ignored no (({GType})) interface.

== Ruby-GNOME2 3.3.3: 2019-03-09

This is a release to support GLib 2.60.

=== Changes

==== Ruby/GLib2

  * Improvements

    * Made tests more robust.
      [GitHub#1272][Reported by Jeremy Bicha]

    * Required pkg-config 1.3.5 or later.

    * Added support for GLib 2.60.

    * Windows: Removed support for static compilation.

  * Fixes

    * (({GLib::PollFD#fd=})): Fixed wrong conversion.

==== Ruby/GObjectIntrospection

  * Improvements

    * Improved auto (({#==}))/(({#!=})) implementations.
      They returns (({true}))/(({false})) for invalid argument instead
      of raising an error.

==== Ruby/GTK2

  * Improvements

    * Made tests more robust.
      [GitHub#1275][Reported by Jeremy Bicha]

==== Ruby/RSVG2

  * Improvements

    * Made tests more robust.
      [GitHub#1273][Reported by Mamoru TASAKA]

==== Ruby/Poppler

  * Improvements

    * (({Poppler::Document.new(data:)})):
      Added support for (({Encoding.default_internal})).

    * (({Poppler::Document.new})):
      Added support for (({#to_path})) objects as path.

=== Thanks

  * Jeremy Bicha

  * Mamoru TASAKA

(tsutsui)

doc: Updated graphics/ruby-cairo to 1.16.4

(tsutsui)

ruby-cairo: update to 1.16.4.

Upstream changes (from NEWS):

Release 1.16.4 (2019-03-09) Kouhei Sutou <kou@cozmixng.org>
============================================================

Fixes
-----

  * Removed Skia related code entirely.

Release 1.16.3 (2019-03-09) Kouhei Sutou <kou@cozmixng.org>
============================================================

Improvements
------------

  * Improved Cairo::Poinst#distance performance.
    [GitHub#53][Patch by scivola]

  * Added support for building with cairo and GLib 2.60 installed by
    Homebrew.

  * Updated colors. There are some backward incompatibility. Sorry.

Fixes
-----

  * Fixed Cairo::Color::RGB#to_s.
    [GitHub#55][Patch by spoolkitamura]

Thanks
------

  * scivola

  * spoolkitamura.

(tsutsui)

doc: Updated devel/ruby-pkg-config to 1.3.6

(tsutsui)

ruby-pkg-config: update to 1.3.6.

Upstream changes (from NEWS):

== 1.3.6 - 2019-03-09

=== Improvements

  * Added support for Homebrew environment without pkg-config formula.

== 1.3.5 - 2019-03-08

=== Fixes

  * Fixed MSYS2 detection installed at non standard folder.
    [GitHub:ruby-gnome2/ruby-gnome2#1271][Reported by Simon Arnaud]

=== Thanks

* Simon Arnaud

(tsutsui)

doc: Updated inputmethod/ibus and inputmethd/ibus-python to 1.5.20

(tsutsui)

ibus, ibus-python: update to 1.5.20.

pkgsrc changes:

- remove patches already applied to the release
- workaround upstream issue #2082
- explicitly require cldr-emoji-annotation >34.0.0.0
  to sync emoji dict files in ibus/PLIST
- remove GConf dependencies as mentioned in 1.5.20 changes

Upstream changes:
https://github.com/ibus/ibus/releases/tag/1.5.20

1.5.20

* Support Shift-Space to insert a Space on Emojier preedit e6badb4
* Do not add emojis in compose category to emoji variants 8375f39
* Implement mouse click with Hangul in ibus side a40631e 4c40afb c7d8771
  9ae2d46 0fd043c
* Delete Gconf dependencies and migrate intltool to gettext a8e8b69
  74a00cc a671081 aa24a52 3914d3a b608666 a78e7f8 7b9c034 b30eb5d
* Do not delete IBUS_CAP_SURROUNDING_TEXT 7b3b8c8
* Show compose preedit with custom compose file ba41173 28b0744
* Fix Atom and Slack for Flatpak be7fb81 60e246e
* Delete Super-space notification 4d3a8ff
* Fix misc build issues aa0f425 6e31597 c1b5543 3172c3b 4d7c1e0
* Fix misc bugs 7edaefd 28d2217 809d880 1c6565e 0f5084e 6aab10f
* Fix typos in comment lines (ZhaoQiang) 639960a
* use iso 639-3 to have names for more languages (glasseyes) 1cd5254
* introspection: Tell the GI scanner to include the C headers
  (Mathieu Bridon) 4ef976a
* Add Uzbek layouts (bmansurov) 4592ce5
* Allow using non-abstract UNIX domain sockets (Anton Mikhalev) 7a38e4d
* typo: sevrer to server (scootergrisen) 64f4e41

(tsutsui)

doc: Updated textproc/cldr-emoji-annotation to 34.0.0.0

(tsutsui)

cldr-emoji-annotation: update to 34.0.0.0.

Upstream changes:
http://cldr.unicode.org/index/downloads/cldr-34

Unicode CLDR 34 provides an update to the key building blocks for
software supporting the world's languages. CLDR data is used by
all major software systems for their software internationalization
and localization, adapting software to the conventions of different
languages for such common software tasks.

CLDR 34 included a full Survey Tool data collection phase, adding
approximately 6M of data overall, resulting in the following
language support:

Count Support Target
85 full UI and document content
4 general-purpose document content
NEW: Somali (so), Javanese (jv)
18 basic application requirements
NEW: Tongan (to), Konkani (kok), Maori (mi), Dzongkha (dz),
    Tatar (tt), Kurdish (ku), Xhosa (xh)
~100 languages with >500 data fields, but that don't satisfy the
level definitions

NEW is for languages reaching the level in this release. Tongan (to),
Konkani (kok), Dzongkha (dz), Tatar (tt) were already in ICU, while
Sindhi (sd), Maori (mi), Turkmen (tk), Javanese (jv), Interlingua (ia),
Kurdish (ku), Xhosa (xh) are being included for the first time in the
upcoming ICU 63. The above counts are just for the languages (with
multiple entries for multi-script languages such as Serbian or Chinese)
-- there are many additional regional locales.

(tsutsui)

doc: Updated net/mikutter to 3.8.6

(tsutsui)

mikutter: update to 3.8.6.

Upstream changes:

mikutter 3.8.6

* backport yield_self for Ruby 2.4 and prior
* possible crash on too fast reply as @seibe
* extract pixiv images from OGP
* thanks Shibafu Midorino

(tsutsui)

xv: rename patches for maintainability, and also fix pkglint warnings.

(tsutsui)

xv: add a missed options.mk file in the previous commit.

> xv: make ghostscript support optional and disable it by default.

(tsutsui)

doc: Updated misc/libreoffice5-bin to 5.4.7

(tsutsui)

libreoffice5-bin: update to 5.4.7.

LibreOffice 5.x is already EOFed and newer 6.x Linux binaries
seems almost working with several changes (avahi packages etc.),
but it's still worth to update this to the latest 5.x version
to test COMPAT_LINUX(8) and emulators/suse_* packages.

Upstream changes (not bother to quote into commit log):
https://wiki.documentfoundation.org/ReleaseNotes/5.2
https://wiki.documentfoundation.org/ReleaseNotes/5.3
https://wiki.documentfoundation.org/ReleaseNotes/5.4

(tsutsui)

suse131_gstreamer: add more packages required by recent libreoffice.

Bump PKGREVISION.

(tsutsui)

meta-pkgs/suse131: add some missed individual suse131 packages.

Also split EMUL_MODULES.linux lines for maintainability.
Bump PKGREVISION.

(tsutsui)

mk/emulators/linux.mk: add missed modules and sort entries.

(tsutsui)

suse131_gtk2: add gtk2-immodule-xim. It has been separated since suse113.

Based on a report from @hiroseyuuji.
Bump PKGREVISION.

(tsutsui)

xv: make ghostscript support optional and disable it by default.

Building ghostscript on 1990's ancient machines is a bit pain
and postscript support on the old viewer is rarely necessary.

Bumps PKGREVISION. Also take maintainership as a user.

(tsutsui)

mlterm: pull upstream fix for "Segfault in showing an input method window."

Bump PKGREVISION.

(tsutsui)

mikutter: fix build (a missed patch in previous).

(tsutsui)

wpa_gui: switch to Qt5.

Ok'ed by wiz@ in PR pkg/53973.

(tsutsui)

arandr: py-docutils is required only on build to generate man pages.

Bump PKGREVISION.

(tsutsui)

doc: Updated net/mikutter to 3.8.5

(tsutsui)

mikutter: update to 3.8.5.

Upstream changes:

mikutter 3.8.5

* update URLs of mikutter Web
* [photo-support] reddit
* thanks cob odo
* possible crash on receiving notifications
* thanks ncaq net
* happy new year
* use oEmbed API to get Gyazo images
* thanks Shibuya Rin

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.142

(tsutsui)

adobe-flash-player: update to 32.0.0.142.

Upstream announcement:

https://helpx.adobe.com/security/products/flash-player/apsb19-06.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB19-06

  Summary

  Adobe has released security updates for Adobe Flash Player for Windows,
  macOS, Linux and Chrome OS. These updates address one important
  vulnerability in Adobe Flash Player. Successful exploitation could
  lead toinformation disclosurein the context of the current user.

(tsutsui)

ruby-gnome2: update to 3.3.2. (missed file in previous)

(tsutsui)

doc: Updated ruby-gnome2 packages to 3.3.2

(tsutsui)

ruby-gnome2: update to 3.3.2.

Upstream changes (from NEWS):

== Ruby-GNOME2 3.3.2: 2019-02-03

This is a bug fix release of 3.3.1.

=== Changes

==== Ruby/GObjectIntrospection

  * Fixed

    * Fixed wrong nil check.
      [GitHub#1270][Patch by moveccr]

    * Fixed a memory leak when module function is used with block.
      [GitHub#1270][Reported by Izumi Tsutsui]

==== Ruby/GTK3

  * Improvements

    * Add backward compatibility APIs:

      * (({Gtk::Screen#add_style_provider}))

      * (({Gtk::Screen#remove_style_provider}))

      * (({Gtk::StyleContext.add_provider_for_screen}))

      * (({Gtk::StyleContext#add_provider}))

=== Thanks

  * moveccr

  * Izumi Tsutsui

(tsutsui)

doc: Updated net/nicovideo-dl to 0.0.20190126

(tsutsui)

nicovideo-dl: update to 0.0.20190126.

Upstream subversion changelog just says "move to python3"
but it seems to support recent https changes.

(tsutsui)

mikutter: remove RUBY_VERSIONS_INCOMPATIBLE.

Ruby 2.2 is no longer enabled in RUBY_VERSIONS_ACCEPTED by default.

(tsutsui)

doc: Updated ruby-gnome2 packages to 3.3.1

(tsutsui)

ruby-gnome2: update to 3.3.1.

Upstream changes (from NEWS):

== Ruby-GNOME2 3.3.1: 2019-01-09

This is a release that improves GObject Introspection support.

=== Changes

==== Ruby/GLib2

  * Improvements

    * (({rbgobj_remove_relative()})): Added support for removing a
      relative added by (({rbgobj_add_relative()})).

    * Stopped to use raw (({Hash})) to guard objects from GC.

    * (({GLib::Idle.remove})): Deprecated. Use
      (({GLib::Source.remove})) instead.

  * Fixes

    * Fixed typos in samples.
      [GitHub#1267][Patch by kojix2]

==== Ruby/CairoGObject

  * Improvements

    * Started to require cairo gem 1.16.2 or later.

==== Ruby/GObjectIntrospection

  * Improvements

    * Added support for input object validation.

    * Added support for callback with module function such as
      (({Gdk.threads_add_idle})).
      [GitHub#1256][Reported by xetum]

    * Added support for converting (({GHash<utf8, GObject>})).

    * Added support for transfer full (({GHash})).

    * Added support for freeing array of primitive types.
      [GitHub#1266][Patch by Yosuke Shiro]

    * Improved suitable method detection for array and list.

    * Added support for converting an array of (({GObject})).

    * Added support for renaming compare operations:

      * (({not_equal})): (({!=}))

      * (({less_than})): (({<}))

      * (({less_than_or_equal})): (({<=}))

      * (({greater_than})): (({>}))

      * (({greater_than_or_equal})): (({>=}))

==== Ruby/GdkPixbuf2

  * Fixes

    * Fixed markup.
      [GitHub#1250][Patch by kojix2]

    * Fixed a bug that data passed to (({GdkPixbuf::Pixbuf.new(data:
      array)})) is corrupt by GC.

==== Ruby/Pango

  * Improvements

    * (({Pango::Layout#get_pixel_extents})): Added for backward
      compatibility.

    * (({Pango::Rectangle#ascent})): Added for backward
      compatibility.

    * (({Pango::Rectangle#descent})): Added for backward
      compatibility.

    * (({Pango::Rectangle#lbearing})): Added for backward
      compatibility.

    * (({Pango::Rectangle#rbearing})): Added for backward
      compatibility.

    * (({Pango::Rectangle#left_bearing})): Added.

    * (({Pango::Rectangle#right_bearing})): Added.

==== Ruby/GTK2

  * Fixes

    * Fixed typos in samples.
      [GitHub#1268][Patch by kojix2]

==== Ruby/GTK3

  * Improvements

    * Updated sample to work on HiDPI environment.
      [GitHub#1246][Patch by noanoa07]

    * Updated samples.
      [GitHub#1258][GitHub#1259][GitHub#1260][Patch by kojix2]

==== Ruby/RSVG2

  * Fixes

    * Fixed typos.
      [GitHub#1253][Patch by kojix2]

    * Removed needless rsvg2 gem dependency for Windows.
      [GitHub#1261][Reported by noanoa07]

==== Ruby/GEGL

  * Fixes

    * Fixed a typo in README.
      [GitHub#1263][Patch by kojix2]

=== Thanks

  * noanoa07

  * kojix2

  * xetum

  * Yosuke Shiro

(tsutsui)

mencoder, mplayer, gmplayer: restore text relocation fix for NetBSD/i386.

It seems lost in the previous patch-aa -> patch-configure rename.
Bump PKGREVISION to rebuild binaries.

(tsutsui)

doc: Updated textproc/ruby-nokogiri to 1.10.0

(tsutsui)

ruby-nokogiri: update to 1.10.0.

Upstream changes (from CHANGELOG.md):

## 1.10.0 / 2019-01-04

### Features

* [MRI] Cross-built Windows gems now support Ruby 2.6 [#1842, #1850]

### Backwards incompatibilities

This release ends support for:

* Ruby 2.2, for which [official support ended on 2018-03-31](https://www.ruby-lang.org/en/news/2018/06/20/support-of-ruby-2-2-has-ended/) [#1841]
* JRuby 1.7, for which [official support ended on 2017-11-21](https://github.com/jruby/jruby/issues/4112) [#1741]

### Dependencies

* [MRI] libxml2 is updated from 2.9.8 to 2.9.9
* [MRI] libxslt is updated from 1.1.32 to 1.1.33

## 1.9.1 / 2018-12-17

### Bug fixes

* Fix a bug introduced in v1.9.0 where `XML::DocumentFragment#dup` no longer returned an instance of the callee's class, instead always returning an `XML::DocumentFragment`. This notably broke any subclass of `XML::DocumentFragment` including `HTML::DocumentFragment` as well as the Loofah gem's `Loofah::HTML::DocumentFragment`. [#1846]

## 1.9.0 / 2018-12-17

### Security Notes

* [JRuby] Upgrade Xerces dependency from 2.11.0 to 2.12.0 to address upstream vulnerability CVE-2012-0881 [#1831] (Thanks @grajagandev for reporting.)

### Notable non-functional changes

* Decrease installation size by removing many unneeded files (e.g., `/test`) from the packaged gems. [#1719] (Thanks, @stevecrozz!)

### Features

* `XML::Attr#value=` allows HTML node attribute values to be set to either a blank string or an empty boolean attribute. [#1800]
* Introduce `XML::Node#wrap` which does what `XML::NodeSet#wrap` has always done, but for a single node. [#1531] (Thanks, @ethirajsrinivasan!)
* [MRI] Improve installation experience on macOS High Sierra (Darwin). [#1812, #1813] (Thanks, @gpakosz and @nurse!)
* [MRI] Node#dup supports copying a node directly to a new document. See the method documentation for details.
* [MRI] DocumentFragment#dup is now more memory-efficient, avoiding making unnecessary copies. [#1063]
* [JRuby] NodeSet has been rewritten to improve performance! [#1795]

### Bug fixes

* `NodeSet#each` now returns `self` instead of zero. [#1822] (Thanks, @olehif!)
* [MRI] Address a memory leak when using XML::Builder to create nodes with namespaces. [#1810]
* [MRI] Address a memory leak when unparenting a DTD. [#1784] (Thanks, @stevecheckoway!)
* [MRI] Use RbConfig::CONFIG instead of ::MAKEFILE_CONFIG to fix installations that use Makefile macros. [#1820] (Thanks, @nobu!)
* [JRuby] Decrease large memory usage when making nested XPath queries. [#1749]
* [JRuby] Fix failing tests on JRuby 9.2.x
* [JRuby] Fix default namespaces in nodes reparented into a different document [#1774]
* [JRuby] Fix support for Java 9. [#1759] (Thanks, @Taywee!)

### Dependencies

* [MRI] Upgrade mini_portile2 dependency from `~> 2.3.0` to `~> 2.4.0`

(tsutsui)

doc: Updated misc/ruby-mini_portile2 to 2.4.0

(tsutsui)

ruby-mini_portile2: update to 2.4.0.

Upstream changes (from CHANGELOG.md):

### 2.4.0 / 2018-12-02

#### Enhancements

* Skip progress report when Content-Length is unavailable. [#85] (Thanks, @eagletmt!)

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.114

(tsutsui)

adobe-flash-player: update to 32.0.0.114.

Upstream announcement:

https://helpx.adobe.com/security/products/flash-player/apsb19-01.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB19-01

  Summary

  Adobe has released updates for Adobe Flash Player for Windows, macOS,
  Linux and Chrome OS. These updates address feature and performance bugs,
  and do not include security fixes.

(tsutsui)

jwm: update HOMEPAGE.

(tsutsui)

doc: Updated net/mikutter to 3.8.4

(tsutsui)

mikutter: update to 3.8.4.

Upstream changes:

mikutter 3.8.4

* gtk2 3.3.0
* photo_support: support for Amazon product images
* thanks cob odo

(tsutsui)

doc: Updated emulators/PC6001VX to 3.1.1

(tsutsui)

PC6001VX: update to 3.1.1.

pkgsrc changes:

* remove a patch fixed in upstream

Upstream changelog:

* Changed context menu touch gesture from long tap to single tap.
* Some minor bug fixes.

(tsutsui)

vala: apply the same hack as PR pkg/53743 for gcc 6.5.0 for NetBSD/evbarm.

Reported by bouyer@:
http://mail-index.netbsd.org/pkgsrc-changes/2018/12/24/msg185017.html
Bump PKGREVISION again.

(tsutsui)

raspberrypi-userland: make libvchostif SHARED to avoid undefined refs.

Fixes PR pkg/53746 for pkgsrc/devel/SDL2 with "rpi" option.
Bump PKGREVISION again for PLIST change.
Ok'ed by wiz@

(tsutsui)

raspberrypi-userland: actually bump PKGREVISION for the previous

(tsutsui)

raspberrypi-userland: fix build errors on PKG_DEVELOPER=yes. PR pkg/53745

Bump PKGREVISION for the changed files and dependency change.
Ok'ed by wiz@

(tsutsui)

vala: add hacks.mk to avoid SEGV of vala binaries on NetBSD/earmv6hf 8.0.

Bump PKGREVISION to denote visible binary changes on arm.
Fixes PR pkg/53743.  Ok'ed by wiz@

(tsutsui)

protobuf: fix build failure on NetBSD/i386 8.0.  PR pkg/53659

Assume and specify -march=i586 for 64 bit atomic ops, as firefox does.
"Looks ok" by wiz@.

(tsutsui)

doc: Updated emulators/PC6001VX to 3.1.0

(tsutsui)

PC6001VX: update to 3.1.0.

pkgsrc changes:

* make debug monitor, ffmpeg4 for video capture, and SDL2 for joystick
  support optional (for low performance machines; enabled by default)
* fix a URL for online help (already fixed in upstream)

Upstream changelog:

* Better virtual keyboard display size.
* Virtual Keyboard is now mouse operable.
* Assigned "reset emulation speed" to middle mouse button.
* Added "Convert replay to movie" menu.
* Now audio is muted during encoding movie.

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 32.0.0.101

(tsutsui)

adobe-flash-player: update to 32.0.0.101.

Upstream announcemnet:

https://helpx.adobe.com/security/products/flash-player/apsb18-42.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB18-42

  Summary

  Adobe has released security updates for Adobe Flash Player for Windows,
  macOS, Linux and Chrome OS. These updates address one critical
  vulnerability in Adobe Flash Player and one important vulnerability in
  Adobe Flash Player installer. Successful exploitation could lead to
  Arbitrary Code Execution and privilege escalation in the context of
  the current user respectively.

  Adobe is aware of reports that an exploit for CVE-2018-15982 exists in
  the wild.

(tsutsui)

ffmpeg4: add pulseaudio option to enable libpulse support.

With this option and xcb option (for x11grab) I can capture X11 applications
that use pulseaudio by the following ffmpeg4 command options:
% ffmpeg4 -y -f x11grab -video_size 800x600 -r 24 -i :0.0+0,0 \
  -f pulse -i oss_output.audio.monitor -pix_fmt yuv420p capture.mp4

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 31.0.0.153

(tsutsui)

adobe-flash-player: update to 31.0.0.153.

Upstream announcemnet:

https://helpx.adobe.com/security/products/flash-player/apsb18-44.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB18-44

  Summary

  Adobe has released security updates for Adobe Flash Player for Windows,
  macOS, Linux and Chrome OS. These updates address a critical vulnerability
  in Adobe Flash Player 31.0.0.148 and earlier versions.  Successful
  exploitation could lead to arbitrary code execution in the context of
  the current user.

  Technical details about this vulnerability are publicly available.

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 31.0.0.148

(tsutsui)

adobe-flash-player: update to 31.0.0.148.

Upstream announcemnet:

https://helpx.adobe.com/security/products/flash-player/apsb18-39.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB18-39

  Summary

  Adobe has released security updates for Adobe Flash Player for Windows,
  macOS, Linux and Chrome OS. These updates address an important
  vulnerability in Adobe Flash Player 31.0.0.122 and earlier versions.
  Successful exploitation could lead to information disclosure.

(tsutsui)

doc: Updated net/mikutter to 3.8.3

(tsutsui)

mikutter: update to 3.8.3.

Upstream changes:

mikutter 3.8.3

* fix use of an unintended function that should have been removed
  but accidentally released in the Diva gem
* insufficient file dependencies
* thanks @ahiru3net
* remove dependencies on Photo plugin from the twitter, gui, and skin plugins
* add missed dependencies in the intent plugin
* thanks @ahiru3net

(tsutsui)

doc: Updated x11/mlterm to 3.8.7

(tsutsui)

mlterm: update to 3.8.7.

Changes noted in doc/en/ReleaseNote:

ver 3.8.7
* Support sixel graphics extension and option1 of
  https://github.com/kmiya-culti/RLogin/issues/22#issue-341758598
* Support Cygwin/x86_64.
* Support PS2 mouse and PC98 bus mouse on FreeBSD 4.x or before.
* Support iOS/Cocoa Touch. (see doc/en/README.cocoatouch)
* Support scrolling by flick on Android and iOS.
* Update unicode property table (generated from UnicodeData.txt and
  EastAsianWidth.txt) to version 11.0.0.
* Add "autoscroll" to OSC 5379.
* Long press at the lower right corner instead of the entire screen shows
  context menu.
* Change the maximum number of sixel graphics palette colors from 256 to 1024.
* Bug fixes:
  Fix segfault of mlconfig when GTK_IM_MODULE=uim.
  Fix wrong XSizeHints which causes unexpected resizing.

(tsutsui)

doc: Updated textproc/ruby-nokogiri to 1.8.5

(tsutsui)

ruby-nokogiri: update to 1.8.5.

Upstream changes (from CHANGELOG.md):

# 1.8.5 / 2018-10-04

## Security Notes

[MRI] Pulled in upstream patches from libxml2 that address CVE-2018-14404
and CVE-2018-14567. Full details are available in [#1785]
(https://github.com/sparklemotion/nokogiri/issues/1785).
Note that these patches are not yet (as of 2018-10-04) in an upstream
release of libxml2.

## Bug fixes

* [MRI] Fix regression in installation when building against system
  libraries, where some systems would not be able to find libxml2 or
  libxslt when present. (Regression introduced in v1.8.3.) [#1722]
* [JRuby] Fix node reparenting when the destination doc is empty. [#1773]

(tsutsui)

doc: Updated ruby-gnome2 packages to 3.3.0

(tsutsui)

ruby-gnome2: update to 3.3.0.

Upstream changes (from NEWS):

== Ruby-GNOME2 3.3.0: 2018-10-31

This is a release for fixing memory leak bugs of cairo-gobject,
improving macOS support and adding support for GEGL.

=== Changes

==== Ruby/GLib2

  * Improvements

    * Added support for the same constant name and class name for error.

  * Fixes

    * Fixed wrong constant values:

      * (({GLib2::MINLONG}))

      * (({GLib2::MAXLONG}))

      * (({GLib2::MAXULONG}))

      * (({GLib2::MINUINT64}))

      * (({GLib2::MAXSIZE}))

      * (({GLib2::MINFLOAT}))

      * (({GLib2::MINDOUBLE}))

      [GitHub#1244][Reported by cobodo]

==== Ruby/CairoGObject

  * Fixes

    * Fixed a memory leak.
      [GitHub#1232][Reported by Jean-Christophe Le Lann]

    * Stopped to increase needless reference.
      [GitHub#1079][Reported by noanoa07]

==== Ruby/GObjectIntrospection

  * Improvements

    * Added support for transfer full output parameter.

  * Fixes

    * Fixed a bug that class method closure doesn't work.
      [GitHub#1245][Reported by kojix2]

==== Ruby/GdkPixbuf2

  * Improvements

    * (({GdkPixbuf::Pixbuf.new})): Added support for auto row stride
      detection for (({[Integer]})) data.

==== Ruby/Pango

  * Improvements

    * Made test more robust.
      [GitHub#1239][Reported by Michael Hudson-Doyle]

==== Ruby/GTK3

  * Improvements

    * Improved backward compatibility for (({Gtk::ListStore#set_column_types})).
      [GitHub#1240][Reported by Edward Hennessy]

  * Fixes

    * Fixed wrong size used bug on HiDPI.
      [GitHub#1079][Reported by noanoa07]

==== Ruby/Poppler

  * Improvements

    * Added support for Popper 0.70.0.

==== Ruby/GEGL

  * Improvements

    * Added.

=== Thanks

  * Jean-Christophe Le Lann

  * Michael Hudson-Doyle

  * Edward Hennessy

  * cobodo

  * kojix2

  * noanoa07

(tsutsui)

doc: Updated graphics/ruby-cairo to 1.16.2

(tsutsui)

ruby-cairo: update to 1.16.2.

pkgsrc changes:
* Take maintainership.

Upstream changelog:
(from https://github.com/rcairo/rcairo/blob/v1.16.2/NEWS)

Release 1.16.2 (2018-10-31) Kouhei Sutou <kou@cozmixng.org>
============================================================

Improvements
------------

  * Stopped to provide fat gem for Windows. Windows users should use
    MSYS2 packages.

Release 1.16.1 (2018-10-31) Kouhei Sutou <kou@cozmixng.org>
============================================================

Improvements
------------

  * Added Cairo::Context#destroyed?.

Release 1.16.0 (2018-10-28) Kouhei Sutou <kou@cozmixng.org>
============================================================

Improvements
------------

  * Added support for cairo 1.16.0.

  * Removed Cairo::SkiaSurface.

(tsutsui)

doc: Updated net/mikutter to 3.8.2

(tsutsui)

mikutter: update to 3.8.2.

Upstream changes:

mikutter 3.8.2

* support Github image view
* thanks cob odo
* make display_requirements plugin depend on twitter
* thanks cob odo
* fix typo
* thanks cob odo
* explicitly miquire TypedArray used by activity settings
* thanks cob odo
* resolve deprecated font properties in console plugin
* thanks Akira Ouchi

Thanks for all visitors to OSC Tokyo!

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 31.0.0.122

(tsutsui)

adobe-flash-player: update to 31.0.0.122.

Upstream announcemnet:

https://helpx.adobe.com/security/products/flash-player/apsb18-35.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB18-35

  Summary

  Adobe has released updates for Adobe Flash Player for Windows, macOS,
  Linux and Chrome OS.  These updates address feature and performance
  bugs, and do not include security fixes.

(tsutsui)

doc: Updated net/mikutter to 3.8.1

(tsutsui)

mikutter: update to 3.8.1.

Upstream changes:

mikutter 3.8.1

* fix to explicitly make api_request_file_cache plugin depend on twitter plugin
* thanks Kazuki Y.
* use gtk2 3.2.9
* thanks Akira Ouchi
* extract images from niconico-saiga OGP
* thanks Shibafu Midorino
* remove an extra debug message
* thanks Izumi Tsutsui
* suppress error messages of findbyid when twitter accounts are not registered
* thanks cob od

(tsutsui)

doc: Updated multimedia/adobe-flash-player to 31.0.0.108

(tsutsui)

adobe-flash-player: update to 31.0.0.108.

Upstream announcement:

https://helpx.adobe.com/security/products/flash-player/apsb18-31.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB18-31

Summary

  Adobe has released security updates for Adobe Flash Player for Windows,
  macOS, Linux and Chrome OS. These updates address an important
  vulnerability in Adobe Flash Player 30.0.0.154 and earlier versions.
  Successful exploitation could lead to information disclosure.

(tsutsui)

doc: Updated graphics/ruby-cairo to 1.15.14

(tsutsui)

ruby-cairo: update to 1.15.14.

Upstream changelog:
(from https://github.com/rcairo/rcairo/blob/v1.15.14/NEWS)

Release 1.15.14 (2018-08-20) Kouhei Sutou <kou@cozmixng.org>
============================================================

Improvements
------------

  * Added Cairo::Surface.create {}. Cairo::Surface.new {} is deprecated.

  * Added Cairo::Context.create {}. Cairo::Context.new {} is deprecated.

  * Windows: Added support for installing a normal gem (not fat gem)
    by "gem install --platform ruby". If you use Bundler, use "bundle
    config --local force_ruby_platform true" and "bundle exec ruby -rdevkit".

  * Changed to use SPDX license ID in gemspec.

Fixes
-----

  * Fixed a bug that CRFONTOPTIOSN2RVAL() doesn't copy the target
    options.
    * Other CR*2RVAL() copy or refer the target objects. So
      CRFONTOPTIONS2RVAL() must copy for consistency.

(tsutsui)

doc: Updated net/mikutter to 3.8.0

(tsutsui)

mikutter: updated to 3.8.0.

Upstream changes:

mikutter 3.8.0

* create a search tab if at least one search spell is defined
* explicitly specify Addressable 2.5.2 or later
* twitter: warn if User Stream API is used
* update a default message of the status bar for 3.8
* thanks @4pk
* streaming: change file layout since UserStream gone
* remove UserStream settings
* remove UserStream code
* remove unexpected executable bits in some files
* thanks Izumi Tsutsui
* remove unused devel directory

(tsutsui)

doc: Updated emulators/PC6001VX to 3.0.0

(tsutsui)