adplug: Update to 2.3.2

Changes for version 2.3.2:
--------------------------
- Bug fixes:
  - FMOPL: Fix global variable pointer double-free (CVE-2018-17825)
  - HERAD: Fix compilation on GCC 4.2.1
  - ADL: Calling rewind() before update() causes access violation
  - Move OPL reset/init code to rewind() for some players

(nia)

doc: Updated www/gitea to 1.11.5nb1

(jperkin)

gitea: Bump PKGREVISION for previous.

Apologies for the double commit, accidentally specified filename to cvs ci.

(jperkin)

gitea: Various fixes.

Add a target to generate the frontend artefacts that are required at
runtime, but do not build them by default as they require nodejs/npm which
will download node modules during the build.  Instead use a pre-built copy
stored in LOCAL_PORTS.  The web interface should now look correct.

Use the supplied Makefile to simplify some of the targets.

Remove unnecessary MAKE_DIRS (shadows an OWN_DIRS_PERMS), and fix
permissions on some of the installed files.

Based on joyent/pkgsrc#263 from GitHub user teutat3s.

(jperkin)

gitea: Various fixes.

Add a target to generate the frontend artefacts that are required at
runtime, but do not build them by default as they require nodejs/npm which
will download node modules during the build.  Instead use a pre-built copy
stored in LOCAL_PORTS.  The web interface should now look correct.

Use the supplied Makefile to simplify some of the targets.

Remove unnecessary MAKE_DIRS (shadows an OWN_DIRS_PERMS), and fix
permissions on some of the installed files.

Based on joyent/pkgsrc#263 from GitHub user teutat3s.

(jperkin)

regress/tools-platform: add test for "$@" and ksh

(rillig)

(mail/courier-imap) Remove (one more) no-op files from SUBST block

(mef)

py-jedi: add TEST_DEPENDS

(adam)

(x11/antiright) +SUBST_NOOP_OK.hpath= yes, sometimes ${PREFIX} == /usr/pkg, or NOT, tks leot@

(mef)

(comms/obexapp) Build fix: Remove obexapp.1 obexapp.h from SUBST_FILES.paths

(mef)

bind*: Require pkg-config.

(jperkin)

texlive-collection-plaingeneric: missed tex-ruler in last.

(markd)

doc: Updated net/knot to 2.9.4

(ryoon)

texlive-collection-plaingeneric: add tex-genmisc replacement packages

(markd)

Update to 2.9.4

Changelog:
Version 2.9.4
Tuesday, May 5, 2020

Improvements:

        ANY query over UDP is always answered with one RRSet + possible RRSIG instead of truncated reply
        Server tries to resolve CNAME record generated by geoip module (Thanks to Conrad Hoffmann)
        Earlier OCSP validity check in kdig certificate verification (Thanks to Alexander Schultz)
        Module onlinesign allows KSK + ZSK mode
        Server control listen backlog limit was increased to 5
        Zone signing event is always re-scheduled even after a signing error
        Extended error checks and tiny enhancements in kjournalprint
        kdig logs a more detailed error message when failed to acquire a remote address
        Some documentation improvements

Bugfixes:
        Server can crash when zone update fails due to exceeded zone size limit
        keymgr 'share' command doesn't work
        Shared KSK doesn't work with an initial key
        Self-created RRSIGs are still cryptographically verified in some unnecessary cases
        Changed NSEC3PARAM not correctly detected during zone update
        NSEC(3) chain not fixed if affected by zone udpate
        knotc orphan purge doesn't work on journal
        Online signing configured along with DNSSEC signing can cause MDB_BAD_RSLOT error during server reload
        Zone journal access can stuck if mismanaged zone serial
        Concurrently added and removed same records in a DDNS message are not properly handled
        Zone check logs error instead of warning after a first error occured

(ryoon)

tex-genmisc removal and its (partial) replacements

(markd)

print: remove tex-genmisc add its (partial) replacements

(markd)

tex-genmisc: removed in texlive 2020

replaced by:
tex-compare version 2020
tex-letterspacing version 2020
tex-nth version 2020
tex-outerhbox version 1.2
tex-random version 0.2
tex-ruler version 1.1
tex-swrule version 2020

(markd)

powermanga: drop noop subst

(nia)

(math/octave) build fix: Remove configure.ac from SUBST_FILES.qt5-pkg-config

(mef)

freeciv: sprinkle SUBST_NOOP_OK

being extremely unopinionated about whether autoconf files are pregenerated
or not, especially when the subst is transcluded

(nia)

openssl: Pass explicit libdir

Some linuxes have /lib64. pkgsrc should never use /lib64.

Pointed out by sobukus on freenode

(nia)

I lack caffeine and it shows

(nia)

texlive package updates

(markd)

json-c: api/abi bump

(nia)

ImageMagick6: abi bump

(nia)

tex-pst-ovl{,-doc}: update to 0.07b

minor changes

(markd)

*: Revbump for ImageMagick6 update

this unexpectedly increased the major version of a shared object.
not sure if anything in pkgsrc actually uses that shared object, but
being safe (and leot requested this (:)

(nia)

tex-mfware: update to 2020

changes unknown

(markd)

tex-fonts-tlwg{,-doc}: update to 0.7.2

- Garuda has been fine-tuned by hand for balanced cubic splines
  and optimal quadratic splines.

- All families now use OS/2 Typo metrics instead of just Win/Hhea metrics.

- The OS/2 Typo metrics of each family have been normalized for equal
  line spacing on all faces, esp. regular and bold.

(markd)

tex-context-vim{,-doc}: update to 2020

changes unknown

(markd)

tex-context-filter{,-doc}: update to 2020

changes unknown

(markd)

tex-boxedminipage{,-doc}: update to 1.1

Version 1.1 merely renames the package from boxedminipage2e to
boxedminipage, replacing the LaTeX 2.09 package of that name.

(markd)

irssi-xmpp: non-op subst

(nia)

freerdp2: Missing patch

(nia)

libetpan: Missing tools

(nia)

(textproc/xmlrpc-c) Remove xmlrpc-c-config.test.* from SUBST_FILES.pthread

(mef)

(emulators/fs-uae-arcade) Update SUBST.FILES for [subst.mk:prefix]

(mef)

npm: Remove bogus @pkgdir.

(jperkin)

doc: Updated games/openhexagon to 2.0

(plunky)

doc: Updated multimedia/sfml to 2.5.1

(plunky)

Added openhexagon-2.0-preview from pkgsrc-wip

            "You are a triangle."

Fast paced, challenging, free to play, open source game.

You control a little triangle, which can be rotated clockwise or
counterclockwise. Your goal is to suvive as long as possible by
dodging polygons that move towards the center. Things get more
difficult as time passes!

Features a lot of variety and full customization: users can
create/modify/share levels, patterns, music, sounds, scripts,
and more.

Play in Official Mode and submit your highscores to the
server. Be the first in the leaderboards!

Clone of the game "Super Hexagon" by Terry Cavanagh.
Please check it out and consider buying it if you like Open Hexagon!

(plunky)

Added SFML-2.5.1 from pkgsrc-wip

SFML is a free multimedia C++ API that provides you low and high level access to
graphics, input, audio, etc.

This package contains the C++ language bindings of SFML.

(plunky)

net/aria2: remove unknown configure options

(rillig)

sort

(jnemeth)

www/ap-auth-kerb: remove unknown configure option

This allows the package to be built with GNU_CONFIGURE_STRICT=yes.

Since other Apache modules may still need this option, use an opt-out
here.

(rillig)

doc: Updated editors/xvile to 9.8u

(wiz)

doc: Updated editors/vile to 9.8u

(wiz)

vile, xvile: update to 9.8u.

Provided by Thomas Dickey in private mail.

Changes:

20200517 (u)
> Brendan O'Dea:
+ add smartcase mode (prompted by suggestion by Marc Simpson).
> Michael von der Heide
+ modify vile-spell-filt to allow for umlauts in UTF-8
> Tom Dickey:
+ add "install-keywords" and "uninstall-keywords" targets to the
  top-level and filters makefiles.
+ prove separate a "nmake" highlighter from "make", to color
  conditional directives and handle special cases of trailing "\".
+ modify winvile.iss to make the 64-bit installers more distinct from
  the 32-bit installers.
+ enable registry-lookup as getenv fallback for WinVile64
+ modify nmakemode:
  + allow for whitespace after "!" in conditional lines
  + ignore case when matching keywords
+ fix some issues found with Coverity.
+ quiet a few gcc9 warnings
+ correct size-parameter of ZeroMemory calls in ntwinio.c
+ resave SVG-files with Inkscape 0.92.4 (5da689c313, 2019-01-14), to
  accommodate version-creep.
+ improved configure macros to lessen unused-variable warnings in
  config.log
+ workaround in configure checks for ncurses vs xcode's c99 "-W" option
+ fix - python filter should recognize triple single-quoted string
  (report/patch by Marc Simpson).
+ fix typos reported by codespell.
+ add null-pointer checks for continue-search and reverse-search to
  handle the case where a pattern string was given, but it failed to
  compile (report by Marc Simpson).
+ improve configure script for MacOS port:
  + check for X11 headers in /usr/X11, reflecting Apple's removal of
    of /usr/include and /usr/include/X11
  + suppress -Winline
  + cleanup *.dSYM directories
  + don't add gcc/clang options for c89/c99 wrappers which cannot tell
    what version of gcc/clang they hide.
+ add tpumode, separating it from dclmode because the keywords differ.
  also add tpu syntax filter, since syntax differs.
+ modified a configure-macro to appease autoheader-252.
+ switch back to the original buffer after displaying result of the
  show-marks command in "[Named Marks]" (report/patch by Marc Simpson).
+ modify message when setting a mark in "[Named Marks]" to show that it
  is ignored (report by Marc Simpson).
+ regenerate the doc-files from html, using links2 2.14 in Debian 9.
  also reformat the html files.
+ trim some unwanted blanks in vile.hlp, overlooked in converting
  to html (report by Marc Simpson).
+ add "go" and "typescript" majormodes.
+ fix a loop-limit in manfilt.c for ANSI CUP.
+ clone pl-filt.c as pl6filt.c to support perl6, added corresponding
  "perl6" mode (discussion with Steve Lembark).
+ add a limit-check in reallyEditMiniBuffer to handle a case where
  mini-edits clear the working buffer, including the padding (Savannah
  #56627).
+ fix no-return warnings from libXt 1.2.0 headers
+ updated "rev=made" to "rel=author" in html-files.
+ add configure check for handling of "const" with X Toolkit library
+ improved configure macros:
  CF_GNU_SOURCE, CF_INSTALL_OPTS, CF_INSTALL_OPT_S, CF_LD_RPATH_OPT,
  CF_POSIX_C_SOURCE, CF_VA_COPY, CF_XOPEN_SOURCE, mainly to solve
  two problems:
  + non-POSIX use of predefined symbols on BSD platforms
  + an install option was needed to preserve timestamps
+ add html meta tags to atr2html for generator and charset.
+ update gnreight.h from Debian/testing libc6 2.28-6
+ add FreeBSD package-files to help with maintaining (FreeBSD #234527,
  FreeBSD #234528).  Note that because of the distinfo files, those
  will always be one patch behind.
+ update config.guess, config.sub

(wiz)

actually mark coilmq as broken

(jnemeth)

Revert most of 1.561 which deleted language directories while adding
a package.

(jnemeth)

mail/amavisd-milter: remove unknown configure options

(rillig)

lang/algol68g: fix outdated configure options

Found by GNU_CONFIGURE_STRICT.

(rillig)

graphics/Coin: fix typo in configure option

The option --enable-pthreads was unknown, as a build with
GNU_CONFIGURE_STRICT=yes showed.  Fixing the typo showed exactly the same
configure output as before, which is probably due to the autodetection.

(rillig)

Updated devel/py-cython, www/py-httplib2

(adam)

py-httplib2: updated to 0.18.1

0.18.1
explicit build-backend workaround for pip build isolation bug
"AttributeError: 'module' object has no attribute '__legacy__'" on pip install

(adam)

py-cython: updated to 0.29.19

0.29.19:
Bugs fixed
* A typo in Windows specific code in 0.29.18 was fixed that broke "libc.math".
* A platform specific test failure in 0.29.18 was fixed.

(adam)

web2c: Identify as TeXLive 2020/pkgsrc

(markd)

mail/elm-me: document harmless array[char]

(rillig)

devel/ExmanIDE: remove no-op file from SUBST_FILES

(rillig)

(emulators/fs-uae-launcher) Remove Ignoring nonexistent file [subst.mk:prefix]

(mef)

(math/py-scipy12) regen distinfo

(mef)

(devel/kservice) revert the previous commit. But dropped CMakeList.txt

(mef)

Pullup tickets up to #6209

(bsiegert)

Pullup ticket #6209 - requested by taca
net/bind914: security fix

Revisions pulled up:
- net/bind914/Makefile                                          1.21
- net/bind914/distinfo                                          1.15

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Tue May 19 10:23:04 UTC 2020

  Modified Files:
  pkgsrc/net/bind914: Makefile distinfo

  Log Message:
  net/bind914: update to 9.14.12

  Update bind914 to 9.14.12 (BIND 9.14.12).

  Note from release announce:

  BIND 9.14.12 is the final planned release in the now End-of-Life (EOL)
  9.14 branch.

  --- 9.14.12 released ---

  5395. [security] Further limit the number of queries that can be
  triggered from a request.  Root and TLD servers
  are no longer exempt from max-recursion-queries.
  Fetches for missing name server address records
  are limited to 4 for any domain. (CVE-2020-8616)
  [GL #1388]

  5390. [security] Replaying a TSIG BADTIME response as a request could
  trigger an assertion failure. (CVE-2020-8617)
  [GL #1703]

  5376. [bug] Fix ineffective DNS rebinding protection when BIND is
  configured as a forwarding DNS server. Thanks to Tobias
  Klein. [GL #1574]

  5358. [bug] Inline master zones whose master files were touched
  but otherwise unchanged and were subsequently reloaded
  may have stopped re-signing. [GL !3135]

  5357. [bug] Newly added RRSIG records with expiry times before
  the previous earliest expiry times might not be
  re-signed in time.  This was a side effect of 5315.
  [GL !3137]

(bsiegert)

Pullup ticket #6208 - requested by taca
net/bind911: security fix

Revisions pulled up:
- net/bind911/Makefile                                          1.23-1.24
- net/bind911/PLIST                                            1.3
- net/bind911/distinfo                                          1.17-1.18

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Sat Apr 18 06:12:28 UTC 2020

  Modified Files:
  pkgsrc/net/bind911: Makefile PLIST distinfo

  Log Message:
  net/bind911: update to 9.11.18

  Update bind911 to 9.11.18 (BIND 9.11.18).

  --- 9.11.18 released ---

  5380. [contrib] Fix building MySQL DLZ modules against MySQL 8
  libraries. [GL #1678]

  5379. [doc] Clean up serve-stale related options that leaked into
  the BIND 9.11 release. [GL !3265]

  5378. [bug] Receiving invalid DNS data was triggering an assertion
  failure in nslookup. [GL #1652]

  5377. [feature] Detect atomic operations support on ppc64le. Thanks to
  Petr Men=A8=EDk. [GL !3295]

  5376. [bug] Fix ineffective DNS rebinding protection when BIND is
  configured as a forwarding DNS server. Thanks to Tobias
  Klein. [GL #1574]

  5368. [bug] Named failed to restart if 'rndc addzone' names
  contained special characters (e.g. '/'). [GL #1655]

  --- 9.11.17 released ---

  5358. [bug] Inline master zones whose master files were touched
  but otherwise unchanged and were subsequently reloaded
  may have stopped re-signing. [GL !3135]

  5357. [bug] Newly added RRSIG records with expiry times before
  the previous earliest expiry times might not be
  re-signed in time.  The was a side effect of 5315.
  [GL !3137]

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Tue May 19 10:21:25 UTC 2020

  Modified Files:
  pkgsrc/net/bind911: Makefile distinfo

  Log Message:
  net/bind911: update to 9.11.19

  Update bind911 to 9.11.19 (BIND 9.11.19).

  --- 9.11.19 released ---

  5404. [bug] 'named-checkconf -z' could incorrectly indicate
  success if errors were found in one view but not in a
  subsequent one. [GL #1807]

  5398. [bug] Named could fail to restart if a zone with a double
  quote (") in its name was added with 'rndc addzone'.
  [GL #1695]

  5395. [security] Further limit the number of queries that can be
  triggered from a request.  Root and TLD servers
  are no longer exempt from max-recursion-queries.
  Fetches for missing name server address records
  are limited to 4 for any domain. (CVE-2020-8616)
  [GL #1388]

  5394. [cleanup] Named formerly attempted to change the effective UID an=
  d
  GID in named_os_openfile(), which could trigger a
  spurious log message if they were already set to the
  desired values. This has been fixed. [GL #1042]
  [GL #1090]

  5390. [security] Replaying a TSIG BADTIME response as a request could
  trigger an assertion failure. (CVE-2020-8617)
  [GL #1703]

  5387. [func] Warn about AXFR streams with inconsistent message IDs.
  [GL #1674]

(bsiegert)

Pullup ticket #6206 - requested by nia
games/teeworlds: security fix

Revisions pulled up:
- games/teeworlds/Makefile                                      1.16
- games/teeworlds/PLIST                                        1.4
- games/teeworlds/distinfo                                      1.5

---
  Module Name: pkgsrc
  Committed By: nia
  Date: Tue May 19 11:46:26 UTC 2020

  Modified Files:
  pkgsrc/games/teeworlds: Makefile PLIST distinfo

  Log Message:
  teeworlds: Update to 0.7.5

  An exploit was discovered, that allows to crash any 0.7 Teeworlds server.
  Though it does not compromise the security of the host (e.g. no arbitrary
  accesses in memory) it lets an attacker force a server to repetitively shut
  down (CVE-2020-12066).

  The 0.7.5 release is a security update that aims to patch this server
  exploit. As such, it is very light in features, and is mostly made of fixes.

(bsiegert)

Pullup ticket #6205 - requested by nia
graphics/libexif: security fix

Revisions pulled up:
- graphics/libexif/Makefile                                    1.48
- graphics/libexif/PLIST                                        1.22
- graphics/libexif/distinfo                                    1.32
- graphics/libexif/patches/patch-libexif_exif-data.c            deleted

---
  Module Name: pkgsrc
  Committed By: nia
  Date: Tue May 19 11:20:01 UTC 2020

  Modified Files:
  pkgsrc/graphics/libexif: Makefile PLIST distinfo
  Removed Files:
  pkgsrc/graphics/libexif/patches: patch-libexif_exif-data.c

  Log Message:
  libexif: Update to 0.6.22

  libexif-0.6.22 (2020-05-18):
    * New translations: ms
    * Updated translations for most languages
    * Fixed C89 compatibility
    * Fixed warnings on recent versions of autoconf
    * Some useful EXIF 2.3 tag added:
      * EXIF_TAG_GAMMA
      * EXIF_TAG_COMPOSITE_IMAGE
      * EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE
      * EXIF_TAG_SOURCE_EXPOSURE_TIMES_OF_COMPOSITE_IMAGE
      * EXIF_TAG_GPS_H_POSITIONING_ERROR
      * EXIF_TAG_CAMERA_OWNER_NAME
      * EXIF_TAG_BODY_SERIAL_NUMBER
      * EXIF_TAG_LENS_SPECIFICATION
      * EXIF_TAG_LENS_MAKE
      * EXIF_TAG_LENS_MODEL
      * EXIF_TAG_LENS_SERIAL_NUMBER
    * Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others.
      * CVE-2018-20030: Fix for recursion DoS
      * CVE-2020-13114: Time consumption DoS when parsing canon array markers
      * CVE-2020-13113: Potential use of uninitialized memory
      * CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes
      * CVE-2020-0093: read overflow
      * CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs
      * CVE-2020-12767: fixed division by zero
      * CVE-2016-6328: fixed integer overflow when parsing maker notes
      * CVE-2017-7544: fixed buffer overread

(bsiegert)

Pullup ticket #6204 - requested by he
net/unbound: security fix

Revisions pulled up:
- net/unbound/Makefile                                          1.78
- net/unbound/distinfo                                          1.58

---
  Module Name: pkgsrc
  Committed By: he
  Date: Tue May 19 08:39:31 UTC 2020

  Modified Files:
  pkgsrc/net/unbound: Makefile distinfo

  Log Message:
  Update unbound to version 1.10.1.

  Pkgsrc changes:
    * None.

  Upstream changes:

  This release fixes CVE-2020-12662 and CVE-2020-12663.

  Bug Fixes:
  - CVE-2020-12662 Unbound can be tricked into amplifying an incoming
    query into a large number of queries directed to a target.
  - CVE-2020-12663 Malformed answers from upstream name servers can be
    used to make Unbound unresponsive.

(bsiegert)

Pullup ticket #6203 - requested by taca
mail/dovecot2: security fix

Revisions pulled up:
- mail/dovecot2/Makefile.common                                1.40
- mail/dovecot2/distinfo                                        1.104

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Mon May 18 14:20:47 UTC 2020

  Modified Files:
  pkgsrc/mail/dovecot2: Makefile.common distinfo
  pkgsrc/mail/dovecot2-sqlite: Makefile

  Log Message:
  mail/dovecot2: update to 2.3.10.1

  Update dovecot2 to 2.3.10.1.

  v2.3.10.1  2020-05-18  Aki Tuomi <aki.tuomi@open-xchange.com>

  - CVE-2020-10957: lmtp/submission: A client can crash the server by
    sending a NOOP command with an invalid string parameter. This occurs
    particularly for a parameter that doesn't start with a double quote.
    This applies to all SMTP services, including submission-login, which
    makes it possible to crash the submission service without
    authentication.
  - CVE-2020-10958: lmtp/submission: Sending many invalid or unknown
    commands can cause the server to access freed memory, which can lead
    to a server crash. This happens when the server closes the connection
    with a "421 Too many invalid commands" error. The bad command limit
    depends on the service (lmtp or submission) and varies between 10 to
    20 bad commands.
  - CVE-2020-10967: lmtp/submission: Issuing the RCPT command with an
    address that has the empty quoted string as local-part causes the lmtp
    service to crash.

(bsiegert)

doc: Removed wm/amaterus

(nia)

wm: Remove amaterus

PR pkg/55275

(nia)

doc: Updated math/gnumeric112 to 1.12.47nb1

(wiz)

gnumeric112: disable python function plugin by default

It uses python 2.x and gnumeric upstream has turned off the plugin by
default as well.

Add a "python" option for those who really need it.

Update some outdated comments.

Bump PKGREVISION.

(wiz)

doc: Added games/doom2-pwad-lost-civilization version 15

(micha)

games/Makefile: +doom2-pwad-lost-civilization

(micha)

doc: Updated www/drupal8 to 8.7.14

(taca)

www/drupal8: update to 8.7.14

Update drupal8 to 8.7.14.

8.7.14 (2020-05-20) -- Security update

    View usage statistics for this release

Release notes

Maintenance and security release of the Drupal 8 series.

This release fixes security vulnerabilities. Sites are urged to upgrade
immediately after reading the notes below and the security announcement:

* Drupal core - Moderately critical - Third-party library - SA-CORE-2020-002

No other fixes are included.

(taca)

games/doom2-pwad-lost-civilization: import doom2-pwad-lost-civilization-15

Story: A civilization was collapsed as people got into religion of
"ignorant egoistic idiotism". Genetically modified cattle and food
turned the people and animals to agressive zombies. But there were
few survivors. How they weren't affected?

(micha)

doc: Updated www/drupal7 to 7.70

(taca)

www/drupal7: update to 7.70

Update drupal7 to 7.70.

Drupal 7.70, 2020-05-19
-----------------------
- Fixed security issues:
  - SA-CORE-2020-002
  - SA-CORE-2020-003

(taca)

py-jedi: fix PLIST for python != 3.7

(wiz)

games/doomlegacy: Add link to upstream ticket in patches

(micha)

Updated www/py-httplib2, net/py-smbc

(adam)

py-smbc: updated to 1.0.22

New in 1.0.22:
* Add File_seekable
* Rework some routines to fix holes in error checking and potential mem…
* Fix File_read when the current location is not zero
* Add File_flush
* Add File_tell

(adam)

news/libcanlock: Add libcanlock-3.pc to PLIST

pkg-config is supported since version 3.2.0.

(micha)

py-httplib2: updated to 0.18.0

0.18.0
IMPORTANT security vulnerability CWE-93 CRLF injection
Force %xx quote of space, CR, LF characters in uri.
Special thanks to Recar https://github.com/Ciyfly for discrete notification.
https://cwe.mitre.org/data/definitions/93.html

0.17.4
Ship test suite in source dist
https://github.com/httplib2/httplib2/pull/168

(adam)

doc: Added math/gappa version 1.3.5

(riastradh)

doc: Added math/sollya version 7.0

(riastradh)

doc: Added math/fplll version 5.3.2

(riastradh)

doc: Added math/mpfi version 1.5.4

(riastradh)

doc/TODO: +vte3-0.60.2

(nia)

qt5-qtbase: Switch to libcups. Enable cups. Bump PKGREVISION

(nia)

recode: Drop maintainership.

(kleink)

doc: Updated audio/schismtracker to 20200412

(nia)

schismtracker: Update to 20200412

Summary of changes since 20190805 release:

    Fix problem with switching tabs on the Instrument List page using the keyboard, introduced in 20190722 release.
    Implement incremental search on Load Instrument page, like on the Load Sample and Load Module pages.
    Correctly display size of exported mono files before exporting.
    Add "AudioVideo" category to Linux desktop entry.

(nia)

doc: Updated lang/janet to 1.9.1

(nia)

janet: Update to 1.9.1

## 1.9.1 - 2020-05-12
- Add :prefix option to declare-source
- Re-enable minimal builds with the debugger.
- Add several flags for configuring Janet on different platforms.
- Fix broken meson build from 1.9.0 and add meson to CI.
- Fix compilation issue when nanboxing is disabled.

## 1.9.0 - 2020-05-10
- Add `:ldflags` option to many jpm declare functions.
- Add `errorf` to core.
- Add `lenprefix` combinator to PEGs.
- Add `%M`, `%m`, `%N`, and `%n` formatters to formatting functions. These are the
  same as `%Q`, `%q`, `%P`, and `%p`, but will not truncate long values.
- Add `fiber/root`.
- Add beta `net/` module to core for socket based networking.
- Add the `parse` function to parse strings of source code more conveniently.
- Add `jpm rule-tree` subcommand.
- Add `--offline` flag to jpm to force use of the cache.
- Allow sending pointers and C functions across threads via `thread/send`.
- Fix bug in `getline`.
- Add `sh-rule` and `sh-phony` to jpm's dialect of Janet.
- Change C api's `janet_formatb` -> `janet_formatbv`, and add new function `janet_formatb` to C api.
- Add `edefer` macro to core.
- A struct/table literal/constructor with duplicate keys will use the last value given.
  Previously, this was inconsistent between tables and structs, literals and constructor functions.
- Add debugger to core. The debugger functions are only available
  in a debug repl, and are prefixed by a `.`.
- Add `sort-by` and `sorted-by` to core.
- Support UTF-8 escapes in strings via `\uXXXX` or `\UXXXXXX`.
- Add `math/erf`
- Add `math/erfc`
- Add `math/log1p`
- Add `math/next`
- Add os/umask
- Add os/perm-int
- Add os/perm-string
- Add :int-permissions option for os/stat.
- Add `jpm repl` subcommand, as well as `post-deps` macro in project.janet files.
- Various bug fixes.

(nia)

eyeD3: mark as python 3.x only due to py-faker via py-factory_boy

(wiz)

py-factory_boy: mark as for python 3.x only due to py-faker

(wiz)

Updated net/wireshark, lang/nodejs

(adam)

nodejs: updated to 14.3.0

Version 14.3.0 (Current)

Notable Changes
REPL previews improvements with autocompletion

The output preview is changed to generate previews for autocompleted input instead of the actual input.

Pressing <enter> during a preview is now going to evaluate the whole string including the autocompleted part. Pressing <escape> cancels that behavior.

Support for Top-Level Await

It's now possible to use the await keyword outside of async functions.

(adam)

wireshark: updated to 3.2.4

Wireshark 3.2.4 Release Notes

What���s New

  The Windows installers now ship with Qt 5.12.8. They previously
  shipped with Qt 5.12.6.

  Bug Fixes

  The following vulnerabilities have been fixed:

    ��� wnpa-sec-2020-08[1] A dissector went awry.

  The following bugs have been fixed:

  New and Updated Features

  There are no new features in this release.

  New Protocol Support

  There are no new protocols in this release.

  Updated Protocol Support

  New and Updated Capture File Support

  There is no new or updated capture file support in this release.

(adam)

mark packages that fail with -Werror=char-subscripts

These packages are susceptible to bugs when confronted with non-ASCII
characters.

See https://gcc.gnu.org/bugzilla/show_bug.cgi?id=94182.

It takes some time to analyze and fix these individually, therefore they
are only marked as "needs work".

(rillig)

Updated devel/meson, x11/gtk3

(adam)