Updated security/erlang-fast_tls to 1.0.15

(fhajny)

Update security/erlang-fast_tls to 1.0.15

Version 1.0.15
- Fix Hex packaging

Version 1.0.14
- Improve ECDH curve handling (thanks to user pitchum)
- Fix bug in handling protocol_options option

(fhajny)

Fix nagios unability to cleanup checkresults directory

From upstream https://github.com/NagiosEnterprises/nagioscore/pull/417

Once nagios is done with a file in the checkresults directory,
it deletes it. This was done with a relative file path, causing
failures if nagios working directory is not the checkresults
directory. As a consequence, old result file remained intact,
causing system slowdowns as the directory grew and nagios spent
more and more time attempting to clean it up.

The fix is just to use an absolute path, so that it works
regardeless of current directory setting.

(manu)

Updated net/nagios-plugin-dnsrbl to 0.3

(manu)

Update nagios-plugin-dnsrbl to 0.3
- multithreaded DNS lookups to reduce latency
- updated built-in DNSRBL list

(manu)

Updated www/p5-HTTP-Cache-Transparent to 1.4

(wen)

Update to 1.4

Upstream changes:
2017-04-07 Mattias Holmlund

  Version 1.4

    Fix tests when run without internet connectivity. Patch by Mike Parker.
    Fixes https://rt.cpan.org/Ticket/Display.html?id=120584

2017-03-11 Mattias Holmlund

  Version 1.3

    Added missing Changes entry for version 1.2. No other changes.

2017-03-07 Mattias Holmlund

  Version 1.2

    Add X-No-Server-Contact header when the content returned has been
      delivered without any contact with the external server

(wen)

Updated www/p5-HTML-Scrubber to 0.17

(wen)

Update to 0.17

Upstream changes:
0.17      2017-06-27 14:03:47+01:00 Europe/London

0.16      2017-06-25 20:30:15+01:00 Europe/London (TRIAL RELEASE)
    - Add missing testing prereqs  (github pr#9 paultcochrane)
    - Extend list of Perls in Travis config  (github pr#10 paultcochrane)
    - Avoid pod-spell test failure from ABSTRACT text  (github pr#11 paultcochrane)
    - Minor documentation fixes  (github pr#12 paultcochrane)
    - Purge trailing whitespace in Travis config    (github pr#13 paultcochrane)
    - Fix perlcritic issues  (github pr#14 paultcochrane)
    - Fix stale URLs  (github pr#15 paultcochrane)
    - Remove invalid end tags for empty elements (RT120384)
      (github pr#16 paultcochrane)
    - Rework Dist::Zilla config to be more portable

(wen)

Update to netqmail-1.06-qbiffutmpx-20170820.patch. Should fix EL7 bulk
build. No functional change elsewhere.

(schmonz)

Updated textproc/py-markdown to 2.6.9, archivers/lz4 to 1.8.0

(adam)

LZ4 v1.8.0
cli : fix : do not modify /dev/null permissions, reported by @Maokaman1
cli : added GNU separator -- specifying that all following arguments are files
cli : restored -BX command enabling block checksum
API : added LZ4_compress_HC_destSize(), by @remittor
API : added LZ4F_resetDecompressionContext()
API : lz4frame : negative compression levels trigger fast acceleration, request by @llchan
API : lz4frame : can control block checksum and dictionary ID
API : fix : expose obsolete decoding functions, reported by @cyfdecyf
API : experimental : lz4frame_static.h : new dictionary compression API
build : fix : static lib installation, by @ido
build : dragonFlyBSD, OpenBSD, NetBSD supported
build : LZ4_MEMORY_USAGE can be modified at compile time, through external define
doc : Updated LZ4 Frame format to v1.6.0, restoring Dictionary-ID field in header
doc : lz4's API manual in .html format, by @inikep

(adam)

version 2.6.9:
a bug-fix release

(adam)

Updated devel/py-hypothesis to 3.18.5, devel/py-typing to 3.6.2

(adam)

Sync with Python 3.6.2

(adam)

Depend on py-typing only for Python < 3.6

(adam)

Re-written backports.abc condition for Python < 3.5

(adam)

3.18.5:
This is a bugfix release for ~hypothesis.strategies.integers. Previously the strategy would hit an internal assertion if passed non-integer bounds for min_value and max_value that had no integers between them. The strategy now raises InvalidArgument instead.

(adam)

- stow 2.2.2 (updated by <markd> on 2017-01-19)

(leot)

Add LICENSE (GNU GPL 2)

While here also indent some definitions (NFC).

(leot)

Add xmlto build dependency to i3 since it is used to build the docs.
While here sort the buildlink3 entries.

(nros)

Updated emulators/PC6001VX to 2.31.0

(tsutsui)

Update PC6001VX to 2.31.0.

Upstream changes:

2.31.0 2017/08/19

* make file dialog and setting dialog fullscreen for low resolution devices
  when the ALWAYSFULLSCREEN flag is specified on build
* fix sound call method which was not thread safe
* rewrite documents with asciidoc
* (Windows) update build procedure
  make 64 bit version buildable
  recommend to use fixed MSYS2 version
  PATH setting no longer necessary
* (UNIX) fix pro file to build on non-Linux UNIX systems
* (non Windows) use absolute path for config files etc.
* (Android) temporary workaround for access issue of file access on a SD card

(tsutsui)

Fix xine detection from disabling PaX MPROTECT for conftest test program
during configure stage

* Fix packageing on NetBSD/i386 (8.99.1)
  Original problem is reported by mlh

(ryoon)

Updated multimedia/ffmpeg2 to 2.8.12nb1

(ryoon)

Disable Pax MPROTECT for bin/ffmpeg2 on NetBSD/i386 (8.99.1)

* Bump PKGREVISION

(ryoon)

Updated shells/fish to 2.6.0

(fhajny)

Update shells/fish to 2.6.0.

Notable fixes and improvements:

- Jobs running in the background can now be removed from the list
  of jobs with the new disown builtin, which behaves like the same
  command in other shells.
- Command substitutions now have access to the terminal, like in
  other shells. This allows tools like fzf to work properly.
- In cases where the operating system does not report the size of
  the terminal, the COLUMNS and LINES environment variables are
  used; if they are unset, a default of 80x24 is assumed.
- New French and improved German translations.
- fish no longer depends on the which external command.

For full release notes see:

  http://www.fishshell.com/release_notes.html

(fhajny)

Updated mail/thunderbird-l10n to 52.3.0

(ryoon)

Update to 52.3.0

* Sync with mail/thunderbird-52.3.0

(ryoon)

Updated mail/thunderbird to 52.3.0

(ryoon)

Update to 52.3.0

Changelog:
    Fixed
    Unwanted inline images shown in rogue SPAM messages

    Fixed
    Deleting message from the POP3 server not working when maildir storage was used

    Fixed
    Message disposition flag (replied / forwarded) lost when reply or forwarded message was stored as draft and draft was sent later

    Fixed
    Inline images not scaled to fit when printing

    Fixed
    Selected text from another message sometimes included in a reply

    Fixed
    No authorisation prompt displayed when inserting image into email body although image URL requires authentication

    Fixed
    Large attachments taking a long time to open under some circumstances

    Fixed
    Various security fixes

(ryoon)

Updated www/firefox52-l10n to 52.3.0

(ryoon)

Update to 52.3.0

* Sync with www/firefox-52.3.0

(ryoon)

Updated www/firefox52 to 52.3.0

(ryoon)

Update to 52.3.0

Changelog:
#CVE-2017-7798: XUL injection in the style editor in devtools

Reporter
    Frederik Braun
Impact
    critical

Description

The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page with the style editor tool.
References

    Bug 1371586, 1372112

#CVE-2017-7800: Use-after-free in WebSockets during disconnection

Reporter
    Looben Yang
Impact
    critical

Description

A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection operation is finished. This results in an exploitable crash.
References

    Bug 1374047

#CVE-2017-7801: Use-after-free with marquee during window resizing

Reporter
    Nils
Impact
    critical

Description

A use-after-free vulnerability can occur while re-computing layout for a marquee element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash.
References

    Bug 1371259

#CVE-2017-7809: Use-after-free while deleting attached editor DOM node

Reporter
    Nils
Impact
    high

Description

A use-after-free vulnerability can occur when an editor DOM node is deleted prematurely during tree traversal while still bound to the document. This results in a potentially exploitable crash.
References

    Bug 1380284

#CVE-2017-7784: Use-after-free with image observers

Reporter
    Nils
Impact
    high

Description

A use-after-free vulnerability can occur when reading an image observer during frame reconstruction after the observer has been freed. This results in a potentially exploitable crash.
References

    Bug 1376087

#CVE-2017-7802: Use-after-free resizing image elements

Reporter
    Nils
Impact
    high

Description

A use-after-free vulnerability can occur when manipulating the DOM during the resize event of an image element. If these elements have been freed due to a lack of strong references, a potentially exploitable crash may occur when the freed elements are accessed.
References

    Bug 1378147

#CVE-2017-7785: Buffer overflow manipulating ARIA attributes in DOM

Reporter
    Nils
Impact
    high

Description

A buffer overflow can occur when manipulating Accessible Rich Internet Applications (ARIA) attributes within the DOM. This results in a potentially exploitable crash.
References

    Bug 1356985

#CVE-2017-7786: Buffer overflow while painting non-displayable SVG

Reporter
    Nils
Impact
    high

Description

A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash.
References

    Bug 1365189

#CVE-2017-7753: Out-of-bounds read with cached style data and pseudo-elements

Reporter
    SkyLined
Impact
    high

Description

An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data.
References

    Bug 1353312

#CVE-2017-7787: Same-origin policy bypass with iframes through page reloads

Reporter
    Oliver Wagner
Impact
    high

Description

Same-origin policy protections can be bypassed on pages with embedded iframes during page reloads, allowing the iframes to access content on the top level page, leading to information disclosure.
References

    Bug 1322896

#CVE-2017-7807: Domain hijacking through AppCache fallback

Reporter
    Mathias Karlsson
Impact
    high

Description

A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files from a sub-path on the domain. This has been addressed by requiring fallback files be inside the manifest directory.
References

    Bug 1376459

#CVE-2017-7792: Buffer overflow viewing certificates with an extremely long OID

Reporter
    Fraser Tweedale
Impact
    high

Description

A buffer overflow will occur when viewing a certificate in the certificate manager if the certificate has an extremely long object identifier (OID). This results in a potentially exploitable crash.
References

    Bug 1368652

#CVE-2017-7804: Memory protection bypass through WindowsDllDetourPatcher

Reporter
    Stephen Fewer
Impact
    high

Description

The destructor function for the WindowsDllDetourPatcher class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location in memory. This can be used to bypass existing memory protections in this situation.
Note: This attack only affects Windows operating systems. Other operating systems are not affected.
References

    Bug 1372849

#CVE-2017-7791: Spoofing following page navigation with data: protocol and modal alerts

Reporter
    Jose Mar鱈a Acu単a
Impact
    moderate

Description

On pages containing an iframe, the data: protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content.
References

    Bug 1365875

#CVE-2017-7782: WindowsDllDetourPatcher allocates memory without DEP protections

Reporter
    Arthur Edelstein
Impact
    moderate

Description

An error in the WindowsDllDetourPatcher where a RWX ("Read/Write/Execute") 4k block is allocated but never protected, violating DEP his attack only affects Windows operating systems. Other operating systems are not affected.
References

    Bug 1344034

#CVE-2017-7803: CSP containing 'sandbox' improperly applied

Reporter
    Rhys Enniks
Impact
    moderate

Description

When a page��er directives are ignored. This results in the incorrect enforcement of CSP.
References

    Bug 1377426

#CVE-2017-7779: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3

Reporter
    Mozilla developers and community
Impact
    critical

Descrlla developers and community members Masayuki Nakano, Gary Kwong, Ronald Crane, Andrew McCreight, Tyson Smith, Bevis Tseng, Christian Holler, Bryce Van Dyk, Dragana Damjanovic, Kartikaya Gupta, Philipp, Tristan Bourvon, and Andi-Bogdan Postelnicu reported presume that with enough effort that some of these could be exploited to run arbitrary code.
References

    Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3

(ryoon)

Fix TEXLIVE_REV

(markd)

Updated pkgtools/pkgtasks to 1.14.

(jlam)

mk/pkgtasks: Fix postinstall check to not skip last set of files.

The postinstall check was improperly skipping the last N items
listed in CONF_FILES (and related) variables when verifying that
there is a multiple of N items listed.  Fix the bounds check.

(jlam)

mk/pkgtasks: Sometimes avoid error if source files don't exist.

The shell code used to check for the existence of the source files
listed in the various CONF_FILES (and related) variables has been
refactored out into a separate macro variable.  In addition, the
macro has been modified to only emit a warning if the source file
is not in ${PREFIX} and can't be found on the host system.

This supports using /dev/null as a source file, which is a common
idiom for creating an empty target file, even if ${DESTDIR} is
non-empty.

(jlam)

Bump dependency on pkgtasks to version that supports TASK_VERBOSE.

Pass TASK_VERBOSE=all to the install and deinstall scripts if
PKG_VERBOSE is defined by the user.

(jlam)

Run pkg_add(1) and pkg_delete(1) using ${SETENV} ${PKGTOOLS_ENV}.

PKGTOOLS_ENV allows for passing environment variables to the
package install and deinstall scripts.

(jlam)

Update pkgtools/pkgtasks to 1.14.

Use TASK_VERBOSE environment variable to select which tasks should
emit output when invoked.

(jlam)

mk/pkgtasks: Substitute for variables unconditionally in scripts.

Replace @VAR@ with ${VAR} unconditionally in scripts, even if they
values are empty.  This will allow for fall-through to using the
pkgtasks hard-coded defaults, usually found by searching the PATH
contents, and it avoids having ugly "@VAR@" in the generated
scripts.

(jlam)

Substitute the correct string for GTK3_UPDATE_ICON_CACHE.

(jlam)

lang/guile20: Mirror changes to lang/guile22/Makefile.

These changes aren't necessary, but on the day when guile-2.0.x is
no longer the primary, then the switch to using a non-default
installation prefix should be seamless.

(jlam)

lang/guile22: Fix PLIST errors for non-default PKG{INFO,MAN}DIR.

If Guile installs into a non-default installation prefix, then
use ${GUILE_PREFIX}/info and ${GUILE_PREFIX}/man as the locations
for the installed GNU info files and manpages.  This avoids needing
to do a lot of fixes to the PLISTs.

(jlam)

net/ccrtp: Install GNU info files into ${PKGINFODIR}.

This project uses CMake to configure the software.  Force the GNU
info files to be installed into ${CMAKE_INSTALL_INFODIR}, which is
defined by the GNUInstallDirs CMake module included by the
top-level CMakeLists.txt file.  The corrct environment variables
are passed so that ${CMAKE_INSTALL_INFODIR} points into
${PKGINFODIR}.

Remove the subst.mk section that tried to force GNU info files to
be always installed under "info".

(jlam)

devel/xsd: Install manpages into ${PKGMANDIR}.

Pass the correct location for the installed manpages via
"install_man_dir=..." to "build.sh install".

(jlam)

net/xl2tpd: Install manpages under ${PKGMANDIR}.

Modify the Makefile patch to set MANDIR to the correct location for
installed manpages under ${PKGMANDIR}.

(jlam)

www/wml: Install manpages into ${PKGMANDIR}.

Modify Makefile.in so that the GNU configure scirpt can replace
@mandir@ with the correct location for the installed manpages under
${PKGMANDIR}.

(jlam)

net/wistumbler2: Install manpages into ${PKGMANDIR}.

Complete the support for installing manpages into ${PKGMANDIR}
that was previously started -- also copy the manpage into the
correct directory under ${PKGMANDIR}.

(jlam)

misc/vfu: Install manpages into ${PKGMANDIR}.

Modify the install script to copy manpages into the correct
location under ${PKGMANDIR}.

(jlam)

net/tcl-scotty: Install manpages into ${PKGMANDIR}.

Modify unix/Makefile.in so that the GNU configure script can
replace @mandir@ with the correct location for the installed
manpages under ${PKGMANDIR}.

(jlam)

net/ssmping: Install manpages into ${PKGMANDIR}.

Modify the Makefile patch to copy manpages to the correct location
under ${PKGMANDIR}.

(jlam)

net/spegla: Install manpages into ${PKGMANDIR}.

Pass "MANDIR=..." when running "make install" to pass the correct
location for installed manpages under ${PKGMANDIR}.

(jlam)

net/socks4: Install manpages into ${PKGMANDIR}.

Modify the Makefile patch to set MAN_DEST_DIR to the correct
location for installed manpages under ${PKGMANDIR}.

(jlam)

lang/siod: Install manpages into ${PKGMANDIR}.

Modify project makefile patch to set MANDIR to point to the correct
location for installed manpages under ${PKGMANDIR}.

(jlam)

sysutils/sformat: Install manpages into ${PKGMANDIR}.

Override MANDIR=man settings in project Makefiles by passing an
explicit MANDIR=${PKGMANDIR} on the make(1) command line so that
manpages are installed into the correct location under
${PKGMANDIR}.

(jlam)

sysutils/rconfig: Install manpages into ${PKGMANDIR}.

Patch the project Makefile to copy manpages to the correct location
under ${PKGMANDIR}.

(jlam)

mail/prayer: Install manpages into ${PKGMANDIR}.

Patch the project's man/Makefile to use the correct location for
installed manpages under ${PKGMANDIR}.

(jlam)

net/pppd: Install manpages into ${PKGMANDIR}.

Patch the project makefiles to set MANDIR to the point to the
correct location for installed manpages under ${PKGMANDIR}.

(jlam)

print/pnm2ppa: Install manpages into ${PKGMANDIR}.

Set MANDIR in the project Makefile to the correct location for
installed manpages under ${PKGMANDIR}.

(jlam)

pkgtools/pkg: Install manpages into ${PKGMANDIR}.

Pass "mandir=..." when running "make install" to pass the correct
location for installed manpages under ${PKGMANDIR}.

(jlam)

lang/parrot: Install manpages into ${PKGMANDIR}.

Pass "--mandir=<dir>" to the configure script to set the correct
location for installed manpages.

(jlam)

net/ocsync: Install manpages into ${PKGMANDIR}.

This project uses CMake to configure the software.  Force the
manpages to be installed into ${CMAKE_INSTALL_MANDIR}, which is
defined by the included GNUInstallDirs CMake module.  The correct
environment variables are passed so that ${CMAKE_INSTALL_MANDIR}
points into ${PKGMANDIR}.

(jlam)

net/netcat-openbsd: Install manpages into ${PKGMANDIR}.

Fix the project Makefile -- it was using ${PKGMANDIR} in a
different way than how pkgsrc uses it.

(jlam)

net/netcat-openbsd: Remove unnecessary bsd.prefs.mk inclusion.

(jlam)

net/mrstat: Install manpages into ${PKGMANDIR}.

Patch the project Makefile "install" target to install manpages
under ${PKGMANDIR}.

(jlam)

comms/modemd: Install manpages into ${PKGMANDIR}.

Set MANDIR in Makefile.inc to point to ${PKGMANDIR} so that
the BSD makefiles that include Makefile.inc will install manpages
into the correct location.

(jlam)

textproc/lowdown: Install manpages into ${PKGMANDIR}.

Use mk/subst.mk to replace the MANDIR definition in the configure
script to point into ${PKGMANDIR}.

(jlam)

devel/libstash: Install manpages in ${PKGMANDIR}.

Modify the Makefile patch to install manpages under
"${PREFIX}/${PKGMANDIR}" instead of "${PREFIX}/man".

(jlam)

pkgtools/libkver: Install manpages into ${PKGMANDIR}.

This project uses BSD makefiles to build and install the binaries
and manpages.  Add "MANDIR=..." to the flags passed to
"make install" so that the manpages are installed in the correct
location under ${PKGMANDIR}.

(jlam)

games/lgogdownloader: Install manpages into ${PKGMANDIR}.

This package uses CMake to configure the software.  Include the
GNUInstallDirs CMake module to define CMAKE_INSTALL_<dir> macros,
and use CMAKE_INSTALL_MANDIR as the location for the installed
manpages.  The correct environment variables are passed so that
${CMAKE_INSTALL_MANDIR} points into ${PKGMANDIR}.

(jlam)

lang/inform: Install manpages into ${PKGMANDIR}.

Modify the Makefile patch to set MANDIR, the location of the
installed manpages, to point to ${PKGMANDIR}.

(jlam)

sysutils/i810switch: Install manpages into ${PKGMANDIR}.

Modify the Makefile patch to properly install manpages under
${PKGMANDIR}.  The previous rules were inconsistent -- some places
referred to "man/" and others to "${PKGMANDIR}/".

(jlam)

games/gnuchess4: Install manpages into ${PKGMANDIR}.

Modify the project Makefile to set MANDIR, the location of the
installed manpages, to point to ${PKGMANDIR}.

(jlam)

filesystems/fuse-unionfs: Install manpages into ${PKGMANDIR}.

This package uses a custom "do-install" target to install all of
the package's files.  Change the command to install the manpage to
put it under ${PKGMANDIR}.

(jlam)

shells/es: Install manpages into ${PKGMANDIR}.

Modify the Makefile patch to install manpages under
"${PREFIX}/${PKGMANDIR}" instead of "${PREFIX}/man".

(jlam)

mail/elm: Install manpages into ${PKGMANDIR}.

This project uses a Perl-style Configure script that can use a
custom config.sh to provide default answers to questions that it
asks as part of the configuration process.  Modify the custom
${FILESDIR}/config.sh to allow substituting for @PKGMANDIR@ in the
default location for unformatted manpages.

(jlam)

mail/distribute: Install manpages into ${PKGMANDIR}.

Patch the project Makefile to direct manpages into ${PKGMANDIR}
instead of ${PREFIX}/man.

(jlam)

sysutils/bkpupsd: Install manpages into ${PKGMANDIR}.

This project uses BSD makefiles to build and install the binaries
and manpages.  Add "MANDIR=..." to the flags passed to
"make install" so that the manpages are installed in the correct
location under ${PKGMANDIR}.

(jlam)

textproc/bibparse: Install manpages into ${PKGMANDIR}.

Patch the project Makefile to honor @mandir@ which is substituted
for by the GNU configure script.  @mandir@ will properly expand
to point inside ${PKGMANDIR}.

(jlam)

graphics/autopano-sift-C: Install manpages into ${PKGMANDIR}.

This package uses CMake to configure the software.  Include the
GNUInstallDirs CMake module to define CMAKE_INSTALL_<dir> macros,
and use CMAKE_INSTALL_MANDIR as the location for the installed
manpages.  The correct environment variables are passed so that
${CMAKE_INSTALL_MANDIR} points into ${PKGMANDIR}.

(jlam)

net/autonet: Install manpages into ${PKGMANDIR}.

Patch the project Makefile to install manpages into ${PKGMANDIR}
under ${PREFIX}.

(jlam)

Updated www/seamonkey-l10n to 2.48

(ryoon)

Update to 2.48

* Sync with www/seamonkey-2.48
* Some locales are removed

(ryoon)

Updated www/seamonkey to 2.48

(ryoon)

Update to 2.48

* Based on Gecko 51.0.2

(ryoon)

Updated math/glpk to 4.63, textproc/grep to 3.1, security/libtasn1 to 4.12, www/cgicc to 3.2.19, games/gnuchess to 6.2.5

(adam)

Version 6.2.5:
- Command history based on readline.
- New commands: coords/nocoords to enable/disable coordinates
when printing the board.
- Command pgnsave will prompt the user to overwrite or not an existing
file instead of appending the current game to the file.
- New languages.
- Bug fixes.

(adam)

3.2.19:
* Correction of bugs

(adam)

release 4.12:
- Corrected so-name version

release 4.11:
- Introduced the ASN1_TIME_ENCODING_ERROR error code to indicate
  an invalid encoding in the DER time fields.
- Introduced flag ASN1_DECODE_FLAG_ALLOW_INCORRECT_TIME. This flag
  allows decoding errors in time fields even when in strict DER mode.
  That is introduced in order to allow toleration of invalid times in
  X.509 certificates (which are common) even though strict DER adherence
  is enforced in other fields.
- Added safety check in asn1_find_node(). That prevents a crash
  when a very long variable name is provided by the developer.
  Note that this to be exploited requires controlling the ASN.1
  definitions used by the developer, i.e., the 'name' parameter of
  asn1_write_value() or asn1_read_value(). The library is
  not designed to protect against malicious manipulation of the
  developer assigned variable names.

(adam)

release 3.1:

** Improvements

  grep '[0-9]' is now just as fast as grep '[[:digit:]]' when run
  in a multi-byte locale.  Before, it was several times slower.

** Changes in behavior

  Context no longer excludes selected lines omitted because of -m.
  For example, 'grep "^" -m1 -A1' now outputs the first two input
  lines, not just the first line.  This fixes a glitch that has been
  present since -m was added in grep 2.5.

  The following changes affect only MS-Windows platforms.  First, the
  --binary (-U) option now governs whether binary I/O is used, instead
  of a heuristic that was sometimes incorrect.  Second, the
  --unix-byte-offsets (-u) option now has no effect on MS-Windows too.

(adam)

GLPK 4.63:

A "smart" LP perturbation was implemented in the primal and
dual simplex solvers. Now LP is perturbed only if it is
necessary, and by default perturbation is not activated.
The sum of primal infeasibilites that appears in the terminal
output of the primal simplex solver (as "inf = ...") now
corresponds to the original bounds of variables. This allows to
see how much perturbed solution violates the original bounds.

The long-step technique was implemented for phase I of the
primal simplex solver. This feature can be enabled by
specifying --flip option for glpsol or by specifying
glp_smcp.r_test = GLP_RT_FLIP on api level. For many LP
instances the long-step technique allows reducing the number
of simplex iterations to 30-70%. Please note that unlike the
dual simplex, where this technique can be used on both phase I
and II, for the primal simplex it can be used only on phase I,
where the sum of primal infeasibilities (which is a convex
piecewise linear function) is minimized.

An internal objective scaling was included in both primal and
dual simplex solvers. For many LP/MIP instances this feature
improves numerical stability (for the dual solver) and prevents
cycling near the optimum (for the primal solver).

The Posix version of glp_time (glpk/src/env/time.c) was changed
to resolve time_t issue on msys2.

Three new example models in MathProg were added:
life_goe.mod (Conway's Game of Life garden of eden checker);
tiling.mod (Rectifiable polyomino tilings generator);
toto.mod (Covering code generator).

(adam)

Fix crash on macOS 10.13 (Darwin 7).

(adam)

Fix crash on macOS 10.13 (Darwin 7).

(adam)

Requires devel/gettext-lib

(adam)

Updated archivers/lzip to 1.19, archivers/lziprecover to 1.19, devel/libidn2 to 2.0.3

(adam)

Version 2.0.3 (released 2017-07-24) [beta]

** %IDN2_USE_STD3_ASCII_RULES disabled by default.
Previously we were eliminating non-STD3 characters from domain strings
such as _443._tcp.example.com, or IPs 1.2.3.4/24 provided to libidn2
functions. That was an unexpected regression for applications switching
from libidn and thus it is no longer applied by default.
Use %IDN2_USE_STD3_ASCII_RULES to enable that behavior again.

** Fix several documentation issues

** Fix build issues

** Modernize gtk-doc build infrastructure.

(adam)

Changes in version 1.19:

'--merge' is now able to fix files with thousands of scattered errors
per member by grouping the errors into clusters and then merging the
files as if each cluster were a single error.

The option '-a, --trailing-error' now works with '-l, --list' and
'-D, --range-decompress'.

The output of option '-l, --list' has been simplified to make it easier
to read.

In test mode, lziprecover now continues checking the rest of the files
if any input file is a terminal.

Trailing data are now shown both in hexadecimal and as a string of
printable ASCII characters.

(adam)

Changes in version 1.19:

The option '-l, --list' has been ported from lziprecover.

It is now an error to specify two or more different operations in the
command line (--decompress, --list or --test).

Compression time of option '-0' has been slightly reduced.

Decompression time has been reduced by 2%.

In test mode, lzip now continues checking the rest of the files if any
input file is a terminal.

Trailing data are now shown both in hexadecimal and as a string of
printable ASCII characters.

(adam)

Tidy Makefile.common (no functional change)

- Move PKGREVISION (unchanged) to Makefiles.
- Fix used-by annotation.
- Add PATCHDIR so clamav-doc has consistent distinfo/patches (even
  though clamav-doc just copies files that aren't patched).

(gdt)

Updated ruby-gnome2 packages to 3.1.8

(tsutsui)