fix paths in patches.

(christos)

Fix building with older compilers

(adam)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Fix dropped characters on landisk (sh4). Now the arrow keys work in the
installer.

(christos)

Updated multimedia/mpv to 0.25.0nb1

(leot)

Add stereo/mono fallback logic for `oss' audio output.

Previously playing files with more audio channels available than the ones
provided by audio device resulted in muted audio. A possible workaround to that
was forcing the `--audio-channels=2' or similar.

Thanks to <mrg> for kindly provided a reliable test (file|case) for that!

While here also get rid of a trailing whitespace in options.mk (spotted by
pkglint!)

Bump PKGREVISION.

(leot)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Fix DISTNAME.

(wiz)

Adopt ARM patches from devel/protobuf; makes firefox work on NetBSD/evbarm

(jmcneill)

Delete webkit24-gtk entry (it's already present as webkit-gtk).

(leot)

Updated multimedia/libass to 0.13.7

(adam)

Release 0.13.7
Fix invalid memory accesses with BorderStyle=4
Fix change detection bug on frame resizes
Fix cache bugs with border size
Reduce precision of border width in font outline caching
Don't treat :;<=>? as hexadecimal digits in color headers
Fix parsing of unusual Alignment values in ASS style definitions
Fix potential truncation in timestamp parsing
Treat negative PlayResX/PlayResY like VSFilter
Fixes to parsing of embedded fonts
Remove arbitrary bitmap limit (fixes issues with subtitle rendering at 4K)
Allow using shadow offset to adjust size of background with BorderStyle=4
Fix TrueType/OpenType font collection handling with the DirectWrite backend

(adam)

+ ImageMagick-7.0.6.1, afl-2.47b, bsdtar-3.3.2, calibre-3.4,
  evince-3.24.0, filezilla-3.26.2, gstreamer1-1.12.2, libarchive-3.3.2,
  libfilezilla-0.10.0, mpg123-1.25.2, ocaml-4.05.0,
  p5-Algorithm-Permute-0.15, p5-Exception-Class-1.43, p5-Image-Info-1.41,
  p5-Module-Runtime-0.015, p5-Mojolicious-7.36, p5-Tie-Cycle-1.225,
  py-decorator-4.1.1, py-setuptools-36.2.0, py-tortoisehg-4.2.2,
  screen-4.6.1, syncthing-0.14.32, vim-8.0.0717, vim-share-8.0.0717,
  webkit24-gtk-2.16.5.

(wiz)

Updated devel/py-decorator to 4.1.1, graphics/py-cairocffi to 0.8.0; Added databases/py-multidict version 3.1.3, www/py-yarl version 0.12.0

(adam)

The module provides handy URL class for url parsing and changing.

(adam)

Multidict is dict-like collection of key-value pairs where key might be
occurred more than once in the container.

HTTP Headers and URL query string require specific data structure: multidict.
It behaves mostly like a regular dict but it may have several values for the
same key and preserves insertion ordering.

(adam)

Version 0.8.0
* Follow semver
* Avoid implicit relative import
* Use utf-8 instead of utf8 in headers
* Keep cairo library loaded until all relevant objects are freed
* Add cairo_quartz_* functions for MacOS
* Use the default ReadTheDocs theme
* Fix implicit casts

(adam)

4.1.1:
Changed the documentation build system to sphinx and uploaded the docs on readthedocs.org.

4.1.0:
Support for Python 3.5 coroutines defined with async def, thanks to Victor-Nicolae Savu who raised the issue of iscoroutinefunction not giving the right answer for coroutines decorated with the decorator module.

(adam)

Add upstream bug report for previous.

(wiz)

LDFLAGS_DEFAULT, not LDFLAGS.

(wiz)

Honor LDFLAGS on NetBSD. Fixes RELRO build.

Every OPSYS has its own case for this. Please fix your
favorite operating system similarly.

(wiz)

Updated print/mupdf to 1.11nb2

(leot)

Do not possibly (re)initialize LDFLAGS and pass it also to AR_CMD.
This fixes RELRO build.

Bump PKGREVISION

(leot)

Pass LDFLAGS to build. Fixes RELRO build.

(wiz)

Updated mail/getmail to 5.1

(schmonz)

Update to 5.1. From the changelog:

- bugfix: if password_command parameter was used with a non-existent program,
  getmail would error out during the handling of that condition and not report
  the problem correctly.

(schmonz)

Updated mail/getmail to 5.0

(schmonz)

Update to 5.0. From the changelog:

- new release numbering scheme; previous version numbers were just getting
  too high.
- catch and ignore/exit cleanly after reset connection in IMAP IDLE mode.
  Thanks:  Stephan Schulz.
- allow specifying an expected SSL certificate hostname, for when the
  server's certificate does not match the domain name used to connect to
  it.  Thanks:  "Andre".
- fix error message not actually giving the header field name incorrectly
  specified as containing the envelope recipient address.  Thanks:  Hardy
  Braunsdorf.
- add new password_command configuration parameter for retrievers, allowing
  getmail to retrieve the account password from any arbitrary external
  command.  Suggestion:  "ng0".

(schmonz)

amath update

(bsiegert)

Update amath to 1.8.2. From Carsten Larsen in PR pkg/52407.

- Improved endianness detection
- MIPS support

(bsiegert)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Fix pkglint warnings.

(wiz)

Fix LDFLAGS handling. Fixes RELRO build.

Funny how LDFLAGS passed to ld(1) doesn't work.

(wiz)

Fix PLIST for python-2.x and python-3.x on NetBSD.

Neither installs ${PYSITELIB}/gevent/libev/_corecffi.abi3.so, so remove
it from PLIST, might need more magic for that.

(wiz)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Shorten.

(wiz)

Do not prescribe what should be in CFLAGS/CPPFLAGS.

While here, remove patch that does nothing since autoreconf is used.

(wiz)

Honor (CFLAGS and) LDFLAGS. Fixes RELRO build.

(wiz)

Updated net/youtube-dl to 20170715

(adam)

youtube-dl 2017.07.15

Core
[YoutubeDL] Don't expand environment variables in meta fields

Extractors
[spiegeltv] Delegate extraction to nexx extractor
[nexx] Add support for nexx.cloud
[generic] Fix rutube embeds extraction
[karrierevideos] Fix title extraction
[youtube] Don't capture YouTube Red ad for creator meta field
[slideshare] Fix extraction
[5tv] Add another video URL pattern
[drtv] Make HLS and HDS extraction non fatal
[ted] Fix subtitles extraction
[vine] Make sure the title won't be empty
[twitter] Support HLS streams in vmap URLs
[periscope] Support pscp.tv URLs in embedded frames
[twitter] Extract mp4 urls via mobile API
[niconico] Fix authentication error handling
[giantbomb] Extract m3u8 formats
[vlive:playlist] Add support for playlists

(adam)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Honor LDFLAGS. Fixes RELRO build.

(wiz)

Pass LDFLAGS to build. Fixes RELRO.

(wiz)

Added needed dependency on ocaml-oasis

(jaapb)

Updated devel/ocaml-yojson to 1.3.3nb1

(jaapb)

Updated package to install ydump if warranted

(jaapb)

Updated multimedia/adobe-flash-player to 26.0.0.137

(tsutsui)

Update adobe-flash-player to 26.0.0.137.

Upstream announcemnt:

https://helpx.adobe.com/security/products/flash-player/apsb17-21.html

Adobe Security Bulletin
Security updates available for Flash Player | APSB17-21

(tsutsui)

Updated games/ruby-squib to 0.13.3

(wiz)

Updated ruby23-squib to 0.13.3.

## v0.13.3 / 2017-07-15

Bugs:
* Fix `undefined method [] for nil:NilClass` error on `svg` (was a regression error in librsvg that we worked around.)
* Bump dependencies to latest stable versions. Pango et al. to 3.1.7 and Cairo to 1.15.9. This fixes some compatibility issues.

(wiz)

Updated sysutils/tarsnap to 1.0.38

(wiz)

Updated tarsnap to 1.0.38.

Tarsnap 1.0.38 is now available.  This version brings several new features
compared to tarsnap 1.0.37:

* Tarsnap now supports OpenSSL 1.1.

* tarsnap accepts an --iso-dates option, which causes times to be printed in
YYYY-MM-DD HH:MM:SS format rather than the traditional unix "ls -l" style.

* tarsnap accepts a --force-resources option to proceed with decryption of a
passphrase-encrypted key file even if it is anticipated to use an excessive
amount of memory or CPU time.  (This may be useful if tarsnap inaccurately
estimates the amount of memory your system has available.)

* tarsnap accepts an --archive-names <file> option, which reads a list of
archive names to operate on when operating in -d and --print-stats modes.
(This should make some scripts simpler; no more need to construct a command
line which has '-f' inserted before each archive name.)

Potentially (but unlikely) breaking changes in this code compared to tarsnap
1.0.37:

* tarsnap now applies the --humanize-numbers option to the "progress" output
printed by SIGINFO / SIGUSR1.  If you have scripts which send signals to
tarsnap and parse its output, they may need to be updated.

* tarsnap -v now prints 'Deleting archive "foo"' even if only one archive is
being deleted.  If you have scripts which parse the output of tarsnap -v,
they may need to be updated.

* tarsnap now prints a warning if you pass '--configfile /nosuchfile'.  If you
have scripts which rely on being able to specify nonexistent configuration
files and not get any warnings from tarsnap, they may need to be updated.
(Also, if you were doing that, I *really* want to know why.)

There are also two changes which most users should not encounter:

* tarsnap now has an --initialize-cachedir mode; this is intended for use by
the GUI.  (The cache directory will be initialized automatically in normal
usage of the tarsnap command-line utility.)

* tarsnap's configure script takes a --with-conf-no-sample option which
results in the sample tarsnap configuration file being installed as
"tarsnap.conf" rather than "tarsnap.conf.sample".  This is intended for use in
some packaging systems which have mechanisms for managing configuration files,
and should probably not be used by hand (since it will overwrite your existing
tarsnap.conf).

(wiz)

Pass LDFLAGS when building using bjam. Fixes RELRO for at least boost-libs.

(wiz)

Pass CFLAGS and LDFLAGS to compiler. Fixes RELRO build.

(wiz)

Updated devel/snappy to 1.1.6

(adam)

Snappy v1.1.6:

This is a re-release of v1.1.5 with proper SONAME / SOVERSION values.

Snappy v1.1.5:

This release has broken SONAME / SOVERSION values. Users of snappy as a shared
library should avoid 1.1.5 and use 1.1.6 instead. SONAME / SOVERSION errors will
manifest as the dynamic library loader complaining that it cannot find snappy's
shared library file (libsnappy.so / libsnappy.dylib), or that the library it
found does not have the required version. 1.1.6 has the same code as 1.1.5, but
carries build configuration fixes for the issues above.

  * Add CMake build support. The autoconf build support is now deprecated, and
    will be removed in the next release.

  * Add AppVeyor configuration, for Windows CI coverage.

  * Small performance improvement on little-endian PowerPC.

  * Small performance improvement on LLVM with position-independent executables.

  * Fix a few issues with various build environments.

(adam)

Updated converters/py-cairosvg to 2.0.3, graphics/py-pygal to 2.4.0

(adam)

2.4.0
Generalized fix solidgauge squares algorithm
Fix secondary series ���stroke_style��� property
Fix wrong label colors when there are more series than colors
Show y guides in horizontal chart
Fix nomenclature of Taiwan
Better None values handling in logarithmic charts

(adam)

Version 2.0.3:
* Add ``python_requires`` in ``setup.py``

Version 2.0.2:
* Handle ``text-align`` in textPath tags
* Test with Python 3.6

Version 2.0.1:
* Don't crash on relative refs with no input URL

Version 2.0.0:
* Drop Python 2 support
* Drop pycairo support
* Rely on cairocffi, lxml, cssselect, pillow and tinycss
* Fix markers
* Fix URL/id handling
* Use bounding boxes for gradients
* Split deployment and development tests
* Add a scale option
* Add a parent size option
* Test with Travis

(adam)

4.2.15 - hotfix release
IMPORTANT NOTE: This will be the last release with Python 2.6 support, subsequent releases will be 2.7+ only
- Fixed certain one line imports not being successfully wrapped

(adam)

Added graphics/py-seaborn version 0.8; Updated graphics/py-dot to 1.2.3

(adam)

1.2.3:
- support Python 2.6
- several corrections
- quote empty strings to avoid graphviz errors

(adam)

Seaborn is a library for making attractive and informative statistical graphics
in Python. It is built on top of matplotlib and tightly integrated with the
PyData stack, including support for numpy and pandas data structures and
statistical routines from scipy and statsmodels.

Some of the features that seaborn offers are
* Several built-in themes that improve on the default matplotlib aesthetics
* Tools for choosing color palettes to make beautiful plots that reveal
  patterns in your data
* Functions for visualizing univariate and bivariate distributions or for
  comparing them between subsets of data
* Tools that fit and visualize linear regression models for different kinds
  of independent and dependent variables
* Functions that visualize matrices of data and use clustering algorithms to
  discover structure in those matrices
* A function to plot statistical timeseries data with flexible estimation and
  representation of uncertainty around the estimate
* High-level abstractions for structuring grids of plots that let you easily
  build complex visualizations

(adam)

Remove chatzilla option

* chatzilla is not shipped with seamonkey anymore

(ryoon)

When a compiler complains about a missing prototype for a libc
function, just inserting one for what you think the interface might be
is probably not a good idea. (Same patch as for netatalk22, btw.)

(hauke)

Merge Ocaml compatibility fix from newer Unison.

(joerg)

Not MAKE_JOBS safe, mark as such.

(joerg)

Deal with libtre without tre.h.

(joerg)

Add missing header.

(joerg)

Needs -lcompat on NetBSD, but also include the right header.

(joerg)

Collect patches for xapian in a common subdirectory. Put distinfo for
modules into a separate file as well. Don't hard-code -lstdc++ for
broken ancient OpenBSD versions of GCC. Sync p5-Xapian PLIST with
reality.

(joerg)

Fix unused function to at least compile on NetBSD. Fix C99 inline use.

(joerg)

Renamed databases/py-redis-py to databases/py-redis

(adam)

Renamed databases/py-redis-py to databases/py-redis; Updated databases/py-redis to 2.10.5

(adam)

PkgSrc:
renamed py-redis-py to py-redis

2.10.5
    * Allow URL encoded parameters in Redis URLs. Characters like a "/" can
      now be URL encoded and redis-py will correctly decode them.
    * Added support for the WAIT command.
    * Better shutdown support for the PubSub Worker Thread. It now properly
      cleans up the connection, unsubscribes from any channels and patterns
      previously subscribed to and consumes any waiting messages on the socket.
    * Added the ability to sleep for a brief period in the event of a
      WatchError occuring.
    * Fixed a bug with pipeline error reporting when dealing with characters
      in error messages that could not be encoded to the connection's
      character set.
    * Fixed a bug in Sentinel connections that would inadvertantly connect
      to the master when the connection pool resets.
    * Better timeout support in Pubsub get_message.
    * Fixed a bug with the HiredisParser that would cause the parser to
      get stuck in an endless loop if a specific number of bytes were
      delivered from the socket. This fix also increases performance of
      parsing large responses from the Redis server.
    * Added support for ZREVRANGEBYLEX.
    * ConnectionErrors are now raised if Redis refuses a connection due to
      the maxclients limit being exceeded.
    * max_connections can now be set when instantiating client instances.

(adam)

Added net/py-geventhttpclient version 1.3.1; Updated devel/py-dulwich to 0.17.3, time/py-icalendar to 3.11.5, net/py-xandikos to 0.0.6

(adam)

0.0.6:
Bug fixes

(adam)

3.11.5:

Bug fixes:
- added an assertion that VTIMEZONE sub-components' DTSTART must be of type
  DATETIME
- Fix handling of VTIMEZONEs with subcomponents with the same DTSTARTs and
  OFFSETs but which are of different types

(adam)

0.17.3:

PLATFORM SUPPORT
* List Python 3.3 as supported.

BUG FIXES
* Fix compatibility with pypy 3.

(adam)

A high performance, concurrent HTTP client library for python using gevent.

gevent.httplib support was removed in gevent 1.0, geventhttpclient now provides
that missing functionality.

geventhttpclient uses a fast http parser, written in C, originating from nginx,
extracted and modified by Joyent.

geventhttpclient has been specifically designed for high concurrency, streaming
and support HTTP 1.1 persistent connections. More generally it is designed for
efficiently pulling from REST APIs and streaming APIs like Twitter's.

Safe SSL support is provided by default. geventhttpclient depends on the
certifi CA Bundle. This is the same CA Bundle which ships with the Requests
codebase, and is derived from Mozilla Firefox's canonical set.

(adam)

Updated devel/libev to 4.24, math/py-pandas to 0.20.3, devel/py-fastimport to 0.9.6, net/py-gevent to 1.2.2

(adam)

0.9.6:
* Add python3.4 support

0.9.5:
* Add python3.5 support.

(adam)

1.2.2:
- Testing on Python 3.5 now uses Python 3.5.3 due to SSL changes. See
  :issue:`943`.
- Linux CI has been updated from Ubuntu 12.04 to Ubuntu 14.04 since
  the former has reached EOL.
- Linux CI now tests on PyPy2 5.7.1, updated from PyPy2 5.6.0.
- Linux CI now tests on PyPy3 3.5-5.7.1-beta, updated from PyPy3
  3.3-5.5-alpha.
- Python 2 sockets are compatible with the ``SOCK_CLOEXEC`` flag found
  on Linux. They no longer pass the socket type or protocol to
  ``getaddrinfo`` when ``connect`` is called. Reported in :issue:`944`
  by Bernie Hackett.
- Replace ``optparse`` module with ``argparse``. See :issue:`947`.
- Update to version 1.3.1 of ``tblib`` to fix :issue:`954`,
  reported by ml31415.
- Fix the name of the ``type`` parameter to
  :func:`gevent.socket.getaddrinfo` to be correct on Python 3. This
  would cause callers using keyword arguments to raise a :exc:`TypeError`.
  Reported in :issue:`960` by js6626069. Likewise, correct the
  argument names for ``fromfd`` and ``socketpair`` on Python 2,
  although they cannot be called with keyword arguments under CPython.

  .. note:: The ``gethost*`` functions take different argument names
            under CPython and PyPy. gevent follows the CPython
            convention, although these functions cannot be called with
            keyword arguments on CPython.
- The previously-singleton exception objects ``FileObjectClosed`` and
  ``cancel_wait_ex`` were converted to classes. On Python 3, an
  exception object is stateful, including references to its context
  and possibly traceback, which could lead to objects remaining alive
  longer than intended.
- Make sure that ``python -m gevent.monkey <script>`` runs code in the
  global scope, not the scope of the ``main`` function.

(adam)

0.20.3

Bug Fixes
* Fixed a bug in failing to compute rolling computations of a column-MultiIndexed DataFrame
* Fixed a pytest marker failing downstream packages��� tests suites

Conversion
* Bug in pickle compat prior to the v0.20.x series, when UTC is a timezone in a Series/DataFrame/Index
* Bug in Series construction when passing a Series with dtype='category'.
* Bug in DataFrame.astype() when passing a Series as the dtype kwarg..

Indexing
* Bug in Float64Index causing an empty array instead of None to be returned from .get(np.nan) on a Series whose index did not contain any NaN s
* Bug in MultiIndex.isin causing an error when passing an empty iterable
* Fixed a bug in a slicing DataFrame/Series that have a TimedeltaIndex

I/O
* Bug in read_csv() in which files weren���t opened as binary files by the C engine on Windows, causing EOF characters mid-field, which would fail
* Bug in read_hdf() in which reading a Series saved to an HDF file in ���fixed��� format fails when an explicit mode='r' argument is supplied
* Bug in DataFrame.to_latex() where bold_rows was wrongly specified to be True by default, whereas in reality row labels remained non-bold whatever parameter provided.
* Fixed an issue with DataFrame.style() where generated element ids were not unique
* Fixed loading a DataFrame with a PeriodIndex, from a format='fixed' HDFStore, in Python 3, that was written in Python 2

Plotting
* Fixed regression that prevented RGB and RGBA tuples from being used as color arguments
* Fixed an issue with DataFrame.plot.scatter() that incorrectly raised a KeyError when categorical data is used for plotting

Reshaping
* PeriodIndex / TimedeltaIndex.join was missing the sort= kwarg
* Bug in joining on a MultiIndex with a category dtype for a level.
* Bug in merge() when merging/joining with multiple categorical columns

Categorical
* Bug in DataFrame.sort_values not respecting the kind parameter with categorical data

(adam)

I forgot to add a patch file - here it is.

(hauke)

Updated graphics/darktable to 2.2.5

(hauke)

update graphics/darktable to 2.2.5.

From the changelog against 2.2.4:

## New features:

- When appending EXIF data to an exported image, do not fail if reading of EXIF from the original file fails
- Support XYZ as proofing profile
- Clear DerivedFrom from XMP before writing it
- bauhaus: when using soft bounds, keep slider step constant

## Bugfixes:

- Some GCC7 build fixes
- cmstest: fix crash when missing XRandR extension.
- Fix crash in Lua libs when collapsing libs
- Mac packaging: some fixes
- RawSpeed: TiffIFD: avoid double-free
- Fix a few alloc-dealloc mismatches

## Base Support:

- Canon EOS 77D
- Canon EOS 9000D
- Nikon D500 (14bit-uncompressed, 12bit-uncompressed)
- Nikon D5600 (12bit-compressed, 12bit-uncompressed, 14bit-compressed, 14bit-uncompressed)
- Panasonic DC-FZ82 (4:3)
- Panasonic DMC-FZ80 (4:3)
- Panasonic DMC-FZ85 (4:3)
- Panasonic DC-GH5 (4:3)

## White Balance Presets:

- Pentax K-3 II

## Noise Profiles:

- Nikon D500
- Panasonic DMC-FZ300
- Panasonic DMC-LX100
- Pentax K-70
- Sony ILCE-5000

(hauke)

4.24:
- bump version to 4.24, as the release tarball inexplicably
  didn't have the right version in ev.h, even though the cvs-tagged
  version did have the right one

4.23:
- move some declarations at the beginning to help certain retarded
  microsoft compilers, even though their documentation claims
  otherwise

(adam)

Updated net/py-amqp to 2.2.1, multimedia/x265 to 2.5, net/py-botocore to 1.5.82, net/py-awscli to 1.11.119, multimedia/x264-devel to 20170712

(adam)

20170712:
x86: AVX-512 pixel_avg_weight_w8
x86: AVX-512 pixel_avg_weight_w16
x86: AVX-512 sub8x16_dct_dc
x86: AVX-512 sub8x8_dct_dc
x86: AVX-512 add8x8_idct
x86: AVX-512 sub16x16_dct
x86: AVX-512 sub8x8_dct
x86: AVX-512 sub4x4_dct
x86: AVX-512 mbtree_propagate_list
x86inc: Add aesni cpuflag define

(adam)

1.11.119:
api-change:apigateway: Update apigateway command to latest version
api-change:ec2: Update ec2 command to latest version
api-change:lex-models: Update lex-models command to latest version

(adam)

1.5.82:
api-change:ec2: Update ec2 client to latest version
api-change:apigateway: Update apigateway client to latest version
api-change:lex-models: Update lex-models client to latest version

(adam)

Version 2.5

Encoder enhancements
--------------------
1. Improved grain handling with :option:`--tune` grain option by throttling VBV operations to limit QP jumps.
2. Frame threads are now decided based on number of threads specified in the :option:`--pools`, as opposed to the number of hardware threads available. The mapping was also adjusted to improve quality of the encodes with minimal impact to performance.
3. CSV logging feature (enabled by :option:`--csv`) is now part of the library; it was previously part of the x265 application. Applications that integrate libx265 can now extract frame level statistics for their encodes by exercising this option in the library.
4.  Globals that track min and max CU sizes, number of slices, and other parameters have now been moved into instance-specific variables. Consequently, applications that invoke multiple instances of x265 library are no longer restricted to use the same settings for these parameter options across the multiple instances.
5. x265 can now generate a seprate library that exports the HDR10+ parsing API. Other libraries that wish to use this API may do so by linking against this library. Enable ENABLE_HDR10_PLUS in CMake options and build to generate this library.
6. SEA motion search receives a 10% performance boost from AVX2 optimization of its kernels.
7. The CSV log is now more elaborate with additional fields such as PU statistics, average-min-max luma and chroma values, etc. Refer to documentation of :option:`--csv` for details of all fields.
8. x86inc.asm cleaned-up for improved instruction handling.

API changes
-----------
1. New API x265_encoder_ctu_info() introduced to specify suggested partition sizes for various CTUs in a frame. To be used in conjunction with :option:`--ctu-info` to react to the specified partitions appropriately.
2. Rate-control statistics passed through the x265_picture object for an incoming frame are now used by the encoder.
3. Options to scale, reuse, and refine analysis for incoming analysis shared through the x265_analysis_data field in x265_picture for runs that use :option:`--analysis-reuse-mode` load; use options :option:`--scale`, :option:`--refine-mv`, :option:`--refine-inter`, and :option:`--refine-intra` to explore.
4. VBV now has a deterministic mode. Use :option:`--const-vbv` to exercise.

Bug fixes
---------
1. Several fixes for HDR10+ parsing code including incompatibility with user-specific SEI, removal of warnings, linking issues in linux, etc.
2. SEI messages for HDR10 repeated every keyint when HDR options (:option:`--hdr-opt`, :option:`--master-display`) specified.

(adam)

2.2.1:
- Fix implicit conversion from bytes to string on the connection object.
  This issue has caused Celery to crash on connection to RabbitMQ.

(adam)

mpg123

(maya)

mpg123: update to 1.25.2

1.25.2
------

- libmpg123:
-- Extend pow tables for layer III to properly handle files with i-stereo and
  5-bit scalefactors. Never observed them for real, just as fuzzed input to
  trigger the read overflow. Note: This one goes on record as CVE-2017-11126,
  calling remote denial of service. While the accesses are out of bounds for
  the pow tables, they still are safely within libmpg123's memory (other
  static tables). Just wrong values are used for computation, no actual crash
  unless you use something like GCC's AddressSanitizer, nor any information
  disclosure.
-- Avoid left-shifts of negative integers in layer I decoding.

1.25.1: Hot Fuzz
-------
- libmpg123:
-- Avoid memset(NULL, 0, 0) to calm down the paranoid.
-- Fix bug 252, invalid read of size 1 in ID3v2 parser due to forgotten
  offset from the frame flag bytes (unnoticed in practice for a long
  time). Fuzzers are in the house again. This one got CVE-2017-10683.
-- Avoid a mostly harmless conditional jump depending on uninitialised
  fr->lay in compute_bpf() (mpg123_position()) when track is not ready yet.
-- Fix undefined shifts on signed long mask in layer3.c (worked in practice,
  never right in theory). Code might be a bit faster now, even.
  Thanks to Agostino Sarubbo for reporting.

1.25.0: MP3 now patent-free worldwide!
-------
- Silence test for artsc-config if it is not there.
- Make sure -static-libgcc from LDFLAGS gets through libtool,
  fixing 32 bit Windows builds (depend on libgcc DLL otherwise).
- Fix build with non-GNU make by using plain rm -f instead of silly $(RM)
  in libout123/modules makefile fragment.
- Make build work on iOS, including coreaudio backend.
- libmpg123:
-- Finally provide position-independent code for x86 with assembly
  optimisations.The textrels are gone thanks to Won Kyu Park and Taihei Momma.
-- Clarify some license language in files descending from the original MMX
  optimisation.
-- Fix return value overflow check for MPG123_BUFFERFILL.
-- Introduced mpg123_getformat2() to enable the FORMAT command
  for the generic control not stealing MPG123_NEW_FORMAT from the main
  playback loop. The sequence LOADPAUSED-FORMAT-PAUSE (play) is supposed
  to work now.
-- Enable aarch64 optimisations on *BSD by default, too. You can always
  override that stupid OS whitelist using --with-optimization, anyway.
-- Use of the i486 decoder is now discouraged more prominently, in configure
  output.
- out123: Fix stupid crash with verbose mode and tone generation (print
  the string if the pointer is non-null, not if it is null).
- libout123: More consistent error messages for dynamic and legacy
  (built-in) modules. Namely, you get a hint how if you choose a different
  module than the built-in ones for a static libout123.

(maya)

evince

(maya)

Patch CVE-2017-1000083

From 717df38fd8509bf883b70d680c9b1b3cf36732ee Mon Sep 17 00:00:00 2001
From: Bastien Nocera <hadess@hadess.net>
Date: Thu, 6 Jul 2017 20:02:00 +0200
Subject: [PATCH] comics: Remove support for tar and tar-like commands

When handling tar files, or using a command with tar-compatible syntax,
to open comic-book archives, both the archive name (the name of the
comics file) and the filename (the name of a page within the archive)
are quoted to not be interpreted by the shell.

But the filename is completely with the attacker's control and can start
with "--" which leads to tar interpreting it as a command line flag.

This can be exploited by creating a CBT file (a tar archive with the
.cbt suffix) with an embedded file named something like this:
"--checkpoint-action=exec=bash -c 'touch ~/hacked;'.jpg"

CBT files are infinitely rare (CBZ is usually used for DRM-free
commercial releases, CBR for those from more dubious provenance), so
removing support is the easiest way to avoid the bug triggering. All
this code was rewritten in the development release for GNOME 3.26 to not
shell out to any command, closing off this particular attack vector.

This also removes the ability to use libarchive's bsdtar-compatible
binary for CBZ (ZIP), CB7 (7zip), and CBR (RAR) formats. The first two
are already supported by unzip and 7zip respectively. libarchive's RAR
support is limited, so unrar is a requirement anyway.

Discovered by Felix Wilhelm from the Google Security Team.

https://bugzilla.gnome.org/show_bug.cgi?id=784630

Bump PKGREVISION

(maya)

wiz says we bump revision when binary packages change.

(hauke)

Note update of devel/ruby-test-unit package to 3.2.5.

(taca)

Update ruby-test-unit to 3.2.5.

## 3.2.5 - 2017-06-24 {#version-3-2-5}

### Improvements

  * Supported `--enable-frozen-string-literal` `ruby` option.
    [GitHub#149][Reported by Pat Allan]

### Thanks

  * Pat Allan

(taca)

Note update of devel/ruby-iniparse package to 1.4.4.

(taca)

Update ruby-iniparse to 1.4.4.

1.4.4 2017/07/04

* Fix handling files with DOS line endings
* Improve error message with unparseable lines

(taca)

Note update of devel/ruby-i18n package to 0.8.6.

(taca)

Update ruby-i18n to 0.8.6.

v0.8.5 2017/07/10

* Improved error message for MissingPluralizationKey error - See #371
* Fixed a thread issue when calling translate when fallbacks were enabled -
  See #369

v0.8.6 2017/07/10

* Fixed a small regression introduced in v0.8.5 when using fallbacks - See
  #378

(taca)

Note update of devel/ruby-gettext-setup package to 0.26.

(taca)

Update ruby-gettext-setup to 0.26.

* When negotiating locale, only consider language, but not country variant.
* Fix ordering of language var assignment from env.

(taca)