Import FiraCode-1.102 as fonts/FiraCode.

Fira Code is a Fira Mono font extended with a set of ligatures for
common programming multi-character combinations. This is just a
font rendering feature: underlying code remains ASCII-compatible.
This helps to read and understand code faster. For some frequent
sequences like .. or // ligatures allow us to correct spacing.

(wiz)

Import Office-Code-Pro-1.004 as fonts/Office-Code-Pro.

Office Code Pro is a customized version of Source Code Pro, the
monospaced sans serif originally created by Paul D. Hunt for Adobe
Systems Incorporated. The customizations were made specifically
for text editors and coding environments, but are still very usable
in other applications.

(wiz)

Updated misc/yelp3 to 3.18.1

(prlw1)

Update yelp3 to 3.18.1

Highlights:
* Updated translations
* Fix accessibility regression for caret navigation, #754912 (Carlos Garcia
  Campos)
* Use XDG_CURRENT_DESKTOP, when available, to set platform conditionals (Shaun
  McCance)
* Fix crash after page title change bugfix (Shaun McCance)
* Fix page title changes when going backward and forward, #753448 (Carlos
  Garcia Campos)
* Improve subtitle to only be shown when it differs from the page title,
  #753444 (Michael Catanzaro)
* Fix startup activation, #753084 (Cosimo Cecchi)
* Use the correct background color, #749947 (Lars Uebernickel)
* Port to WebKit2 API, #686376 (Marcos Chavarr�a Teijeiro, Carlos Garcia
  Campos, David King)
* Use a header bar as a toolbar in Unity, #749903 (Iain Lane)
* Support for platform conditional tokens from os-release (Shaun McCance)

(prlw1)

Updated textproc/yelp-xsl to 3.18.1

(prlw1)

Update yelp-xsl to 3.18.1

3.18.1
======
* Fixed broken selector entity in DocBook chunker (Robert Harris)
* Fixed various translations (Piotr Drag)

3.18.0
======
* Updated translations:
  zh_TW (Chao-Hsiung Liao)
  pl    (Piotr Drag)

3.17.90
=======
* Updated localization templates, removing unused code
* Dropped db.chunk.chunks parameter in favor of selector entity
* Improvements to API docs

3.17.4
======
* Updated translations:
  pt    (Pedro Albuquerque)

3.17.3
======
* Support external info links topic, guide, and seealso
* Support for Mallard Sites in cache generator
* Drop P. prefix for parameter pages in docs

3.17.2
======
* Embed Mallard+SVG directly in HTML5 instead of using <object>
* Added a top-level dita2html XSLT driver file
* Fixed a few XSLT validity errors
* Correctly handle image-only links in Mallard
* Set HTML5 DOCTYPE for non-XHTML output
* Make sure TTML spans are displayed inline, #746550
* Updated translations:
  oc    (Cedric Valmary)

(prlw1)

Updated www/p5-HTML-Parser to 3.72

(wiz)

Update p5-HTML-Parser to 3.72:

2016-01-19  Release 3.72

Gisle Aas (3):
      Avoid more clang casting warnings
      Remove trailing whitespace
      Ensure entities expand to utf8 sequences under 'utf8_mode' [RT#99755]

David Steinbrunner (2):
      typo fix
      typo fixes

Jacques Germishuys (1):
      Silence clang warning

bulk88 (1):
      const+static-ing

(wiz)

Note update of BIND packages:

net/bind910 9.10.3pl3
net/bind99 9.9.8pl3

(taca)

Update bind99 to 9.9.8pl3 (BIND 9.9.8-P3).

Security Fixes

    * Specific APL data could trigger an INSIST. This flaw was discovered
      by Brian Mitchell and is disclosed in CVE-2015-8704. [RT #41396]
    * Named is potentially vulnerable to the OpenSSL vulnerabilty
      described in CVE-2015-3193.
    * Insufficient testing when parsing a message allowed records with an
      incorrect class to be be accepted, triggering a REQUIRE failure
      when those records were subsequently cached. This flaw is disclosed
      in CVE-2015-8000. [RT #40987]
    * Incorrect reference counting could result in an INSIST failure if a
      socket error occurred while performing a lookup. This flaw is
      disclosed in CVE-2015-8461. [RT#40945]

New Features

    * None

Feature Changes

    * Updated the compiled in addresses for H.ROOT-SERVERS.NET.

Bug Fixes

    * Authoritative servers that were marked as bogus (e.g. blackholed in
      configuration or with invalid addresses) were being queried anyway.
      [RT #41321]

(taca)

Update bind910 to 9.10.3pl3 (BIND 9.10.3-P3).

Security Fixes

    * Specific APL data could trigger an INSIST. This flaw was discovered
      by Brian Mitchell and is disclosed in CVE-2015-8704. [RT #41396]
    * Certain errors that could be encountered when printing out or
      logging an OPT record containing a CLIENT-SUBNET option could be
      mishandled, resulting in an assertion failure. This flaw was
      discovered by Brian Mitchell and is disclosed in CVE-2015-8705. [RT
      #41397]
    * Named is potentially vulnerable to the OpenSSL vulnerabilty
      described in CVE-2015-3193.
    * Insufficient testing when parsing a message allowed records with an
      incorrect class to be be accepted, triggering a REQUIRE failure
      when those records were subsequently cached. This flaw is disclosed
      in CVE-2015-8000. [RT #40987]
    * Incorrect reference counting could result in an INSIST failure if a
      socket error occurred while performing a lookup. This flaw is
      disclosed in CVE-2015-8461. [RT#40945]

New Features

    * None.

Feature Changes

    * Updated the compiled in addresses for H.ROOT-SERVERS.NET.

Bug Fixes

    * Authoritative servers that were marked as bogus (e.g. blackholed in
      configuration or with invalid addresses) were being queried anyway.
      [RT #41321]

(taca)

Pullup ticket #4900.

(bsiegert)

Pullup ticket #4900 - requested by wiz
textproc/py-pygments: security fix

Revisions pulled up:
- textproc/py-pygments/Makefile                                1.21-1.22
- textproc/py-pygments/distinfo                                1.13
- textproc/py-pygments/patches/patch-img.py                    1.1

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Sun Jan 17 14:22:11 UTC 2016

  Modified Files:
          pkgsrc/textproc/py-pygments: Makefile distinfo
  Added Files:
          pkgsrc/textproc/py-pygments/patches: patch-img.py

  Log Message:
  Fix for code-injection vulnerability (CVE-2015-8557) from upstream.

  From Rin Okuyama in PR 50661.

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Sun Jan 17 16:03:13 UTC 2016

  Modified Files:
          pkgsrc/textproc/py-pygments: Makefile

  Log Message:
  Comment out py-sphinx build dependency since it introduces a cycle.

(bsiegert)

Updated ham/fldigi to 3.23.07.19

(mef)

Update 3.23.07.16 to 3.23.07.19 (and to fix PR pkg/50675), Thanks Robert Elz
------------------------------
2016-01-18  David Freese  <iam_w1hkj@w1hkj.com>

        6ee952a: EXPORT LIST
        c0281ee: HAMLIB CW RTTY
        ddb084c: PSKR metric
        68c5a6a: PSKR/8
        397f570: Audio adjust
        4280903: WEB query
        8af53b6: Mode Set
        e756d93: Tab key docs
        2fb5648: hamlib PTT_ON_DATA
        22514a5: Macro Tool Bar
        94f8362: XmlRpc client update

(mef)

Updated devel/gdb to 7.10.1

(ryoon)

Update to 7.10.1

Changelog:
December 5th, 2015: GDB 7.10.1 Released!

    The latest version of GDB, version 7.10.1, is available for download.

    This is a minor corrective release over GDB 7.10, fixing the following issues:

        PR remote/18965 (new vforkdone stop reply should indicate parent process ID)
        PR gdb/18957 (build failure in linux-namespaces.c due to setns static declaration)
        PR gdb/19297 (Internal error on "record btrace": Unexpected branch trace format)
        PR c++/16957 (gdb segfaults when loading symbols in C++11-enabled application)
        PR c++/19306 (Incorrect demangling of symbols with ABI tags)
        PR c++/19307 (Demangler bugs found with fuzz-testing)
        PR c++/19308 (Demangle C++ Transactional Memory TS (N4514) symbols)

August 28th, 2015: GDB 7.10 Released!

    The latest version of GDB, version 7.10, is available for download.

    Changes in this release include:

        Improved support for accessing shared libraries directly from the target system when debugging remotely.
        Various Guile and Python scripting improvements.
        Record-replay and reverse debugging on Aarch64 Linux.
        Support for fork events on extended-remote Linux targets (Linux kernels 2.5.60 and later).
        DTrace USDT (Userland Static Defined Tracing) probes support on x86_64 GNU/Linux targets.
        Vector ABI support on S/390 GNU/Linux targets.
        GDB now reads the GDBHISTSIZE environment variable rather than HISTSIZE to determine the size of GDB's command history.
        Support for setting the parity when connecting to the target using a serial interface.
        The number of candidates to be considered during completion can now be limited.
        Support for Sun's version of the "stabs" debug file format has been removed.
        Support for HP/PA running HP-UX (hppa*-*-hpux*) has been removed.
        Support for Itanium running HP-UX (ia64-*-hpux*) has been removed.

    See the NEWS file for a more complete and detailed list of what this release includes.

(ryoon)

Updated www/libproxy to 0.4.12

(leot)

Update www/libproxy to 0.4.12.

pkgsrc changes:
o Update MASTER_SITES and HOMEPAGE (libproxy migrated to GitHub)
o Delete patches/patch-libproxy_modules_config__macosx.cpp, now present in the
  stable release.

Changes:
New in version 0.4.12
==============================
* Move development to github.com/libproxy/libproxy
* Fix fd leak in get_pac (Bug #185)
* Detect running MATE session (Bug #186, Part1).
* Fix linking of perl bindings to pthread (Bug #182)
* Correctly detect spidermonky (mozjs185) (Bug #188)
* Stop pxgsettings from segfaulting on exit (Bug #192)
* Fix test #10 (Bug #189)
* Fix build on Mac OS X (Bug #183)
* Add a generic KDE Config module (fix crashes of Qt5 based
  apps) (issue#4)

(leot)

Fix build with recent g++/complex on NetBSD current

(ryoon)

add one more version specific symlink for wx-config in bin

(dbj)

add one more version specific symlink for wx-config in bin

(dbj)

update to freedv-1.1

(dbj)

update to codec2-0.5

(dbj)

precautionary rev bump since this shares Makefile.common with wxGTK28

(dbj)

install everything in version specific directory except for a few symlinks in bin
This is a partial fix for PR pkg/50389
for now we need to keep the conflicting links in bin until we have a fix for dependencies

(dbj)

install everything in version specific directory except for a few symlinks in bin
This is a partial fix for PR pkg/50389
for now we need to keep the conflicting links in bin until we have a fix for dependencies

(dbj)

Darwin build fixes

(dbj)

Pullup tickets #4889 to #4899.

(bsiegert)

Update HOMEPAGE, moved to github.

(wiz)

Updated devel/py-setuptools to 19.4

(wiz)

Update py-setuptools to 19.4:

19.4
----

* Issue #341: Correct error in path handling of package data
  files in ``build_py`` command when package is empty.
* Distribute #323, Issue #141, Issue #207, and
  Pull Request #167: Another implementation of
  ``pkg_resources.WorkingSet`` and ``pkg_resources.Distribution``
  that supports replacing an extant package with a new one,
  allowing for setup_requires dependencies to supersede installed
  packages for the session.

----
19.3
----

* Issue #229: Implement new technique for readily incorporating
  dependencies conditionally from vendored copies or primary
  locations. Adds a new dependency on six.

(wiz)

Updated net/py-foolscap to 0.10.0

(wiz)

Update py-foolscap to 0.10.0:

* Release 0.10.0 (15-Jan-2015)

** Compatibility Fixes

This release is compatible with Twisted-15.3.0 through 15.5.0. A change in
15.3.0 triggered a bug in Foolscap which produced a somewhat-infinite series
of log messages when run under `twistd`. This release fixes that bug, and
slightly changes the semantics of calling `log.msg()` with additional
parameters. (#244)

Foolscap no longer claims compatibility with python-2.6.x . Twisted-15.5.0
was the last release to offer 2.6 support, and subsequent releases actively
throw errors when run against 2.6, so we've turned off Foolscap's automated
testing for 2.6. It may remain compatible by accident for a while. (#245)

(wiz)

Updated audio/libopus to 1.1.2

(wiz)

Update libopus to 1.1.2:

Opus 1.1.2 includes:

    Fixes encoder or decoder state reset, which would previously
    disable some run-time selected architecture-specific optimizations;
    and
    Fixes hybrid mode discontinuous transmission (DTX) operation,
    where the comfort noise above 8 kHz was incorrectly estimated
    and could oscillate in time.

None of these bugs were regressions over previous releases.

(wiz)

Updated fonts/harfbuzz to 1.1.3

(wiz)

Update harfbuzz to 1.1.3:

Overview of changes leading to 1.1.3
Monday, January 11, 2016
====================================

- Ported Indic shaper to Unicode 8.0 data.
- Universal Shaping Engine fixes.
- Speed up CoreText shaper when font fallback happens in CoreText.
- Documentation improvements, thanks to Khaled Hosny.
- Very rough directwrite shaper for testing, thanks to Ebrahim Byagowi.
- Misc bug fixes.
- New API:

  * Font extents:
      hb_font_extents_t
      hb_font_get_font_extents_func_t
      hb_font_get_font_h_extents_func_t
      hb_font_get_font_v_extents_func_t
      hb_font_funcs_set_font_h_extents_func
      hb_font_funcs_set_font_v_extents_func
      hb_font_get_h_extents
      hb_font_get_v_extents
      hb_font_get_extents_for_direction

  * Buffer message (aka debug):
      hb_buffer_message_func_t
      hb_buffer_set_message_func()
    Actual message protocol to be fleshed out later.

(wiz)

Updated devel/py-tortoisehg to 3.6.3

(wiz)

Update py-tortoisehg to 3.6.3:

TortoiseHg 3.6.3 is a regularly scheduled bug fix release.

Bugs Fixes

    demandimport: exclude pkgutil and pkg_resources (fixes #4271, #4298)

(wiz)

Updated devel/py-cffi to 1.5.0

(wiz)

Update py-cffi to 1.5.0:

v1.5.0
======

* Support for `using CFFI for embedding`__.

(wiz)

Updated devel/waf to 1.8.18

(wiz)

Updated sysutils/dbus-glib to 0.106

(wiz)

Update dbus-glib to 0.106:

dbus-glib 0.106 (2016-01-14)
============================

The “crumbling vestige” release.

Fixes:

• Stop testing G_HAVE_INLINE, which ceased to work in GLib 2.47.2 and
  wasn't meant to be API anyway. Instead, rely on "static inline" doing
  the right thing. On pre-C99 compilers, this relies on <glib.h> defining
  inline to __inline, __inline__ or the empty string if the compiler
  requires it, which it has done since 2000. (fd.o #93513, Colin Watson)

• Stop calling g_mem_profile() in the tests, which no longer does anything
  and caused the tests to fail by issuing a warning (Simon McVittie)

• Slightly modernize build system, and remove a weird cross-directory
  dependency which was breaking distcheck (Simon McVittie)

• Stop distributing generated marshallers in the tarball (Simon McVittie)

(wiz)

Pullup ticket #4898 - requested by taca
devel/ruby-test-unit: build fix

Revisions pulled up:
- devel/ruby-test-unit/Makefile                                1.22

---
  Module Name:    pkgsrc
  Committed By:  taca
  Date:          Fri Jan  1 16:14:46 UTC 2016

  Modified Files:
          pkgsrc/devel/ruby-test-unit: Makefile

  Log Message:
  Do not depend on devel/ruby-power_assert with ruby23 since ruby23 bundled
  its own power_assert gem.

(bsiegert)

Pullup ticket #4897 - requested by taca
devel/ruby-debugger-ruby_core_source: build fix

Revisions pulled up:
- devel/ruby-debugger-ruby_core_source/Makefile                1.6
- devel/ruby-debugger-ruby_core_source/PLIST                    1.2

---
  Module Name:    pkgsrc
  Committed By:  taca
  Date:          Sun Dec 27 12:07:40 UTC 2015

  Modified Files:
          pkgsrc/devel/ruby-debugger-ruby_core_source: Makefile PLIST

  Log Message:
  Force to support new Ruby 2.0 and drop ruby21 support.

  Bump PKGREVISION.

(bsiegert)

Updated textproc/py-xlsxwriter to 0.8.4

(fhajny)

Update textproc/py-xlsxwriter to 0.8.4.

Release 0.8.4 - January 16 2016
-------------------------------

* Fix for :func:`write_url` exception when the URL contains two ``#``
  location/anchors. Note, URLs like this aren't strictly valid and cannot be
  entered manually in Excel.
  Issue `#330 <https://github.com/jmcnamara/XlsxWriter/issues/330>`_.

Release 0.8.3 - January 14 2016
-------------------------------

* Added options to configure chart axis tick placement. See :func:`set_x_axis()`.

Release 0.8.2 - January 13 2016
-------------------------------

* Added transparency option to solid fill colors in chart areas
  (:ref:`chart_formatting_fill`).
  Feature request `#298 <https://github.com/jmcnamara/XlsxWriter/issues/298>`_.

Release 0.8.1 - January 12 2016
-------------------------------

* Added option to set chart tick interval.
  Feature request `#251 <https://github.com/jmcnamara/XlsxWriter/issues/251>`_.

Release 0.8.0 - January 10 2016
-------------------------------

* Added additional documentation on :ref:`working_with_formulas`.

Release 0.7.9 - January 9 2016
------------------------------

* Added chart pattern fills, see :ref:`chart_formatting_pattern` and
  :ref:`ex_chart_pattern`.
  Feature request `#268 <https://github.com/jmcnamara/XlsxWriter/issues/268>`_.

(fhajny)

Updated lang/nodejs to 5.4.1

(fhajny)

Update lang/nodejs to 5.4.1.

- Minor performance improvements:
  - module: move unnecessary work for early return (Andres Suarez) #3579
- Various bug fixes
- Various doc fixes
- Various test improvements

(fhajny)

Fix some stuff in qt5-qtbase.

Fix gtk2 option. PR pkg/49277.
Explicitly turn off all database drivers since they might be picked up, as
shown in joyents linux bulk build.
Bump pkgrevision.

(nros)

Drop outdated patch. Fix cwrappers build. Use consistent rpath flags.

(joerg)

Pullup ticket #4896 - requested by taca
devel/ruby-debugger: build fix
devel/ruby-debugger-linecache: build fix

Revisions pulled up:
- devel/ruby-debugger-linecache/Makefile                        1.3
- devel/ruby-debugger/Makefile                                  1.7

---
  Module Name:    pkgsrc
  Committed By:  taca
  Date:          Sun Dec 27 12:06:16 UTC 2015

  Modified Files:
          pkgsrc/devel/ruby-debugger: Makefile
          pkgsrc/devel/ruby-debugger-linecache: Makefile

  Log Message:
  Drop ruby21 support.

(bsiegert)

Pullup ticket #4895 - requested by taca
net/ntp4: security fix

Revisions pulled up:
- net/ntp4/Makefile                                            1.90
- net/ntp4/distinfo                                            1.25
- net/ntp4/patches/patch-ntpd-ntpd.c                            deleted

---
  Module Name:    pkgsrc
  Committed By:  taca
  Date:          Sat Jan  9 15:49:27 UTC 2016

  Modified Files:
          pkgsrc/net/ntp4: Makefile distinfo
  Removed Files:
          pkgsrc/net/ntp4/patches: patch-ntpd-ntpd.c

  Log Message:
  Update ntp4 to 4.2.8p5.

  NTP 4.2.8p5

  Focus: Security, Bug fixes, enhancements.

  Severity: MEDIUM

  In addition to bug fixes and enhancements, this release fixes the
  following medium-severity vulnerability:

  * Small-step/big-step.  Close the panic gate earlier.
      References: Sec 2956, CVE-2015-5300
      Affects: All ntp-4 releases up to, but not including 4.2.8p5, and
          4.3.0 up to, but not including 4.3.78
      CVSS3: (AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:L) Base Score: 4.0, MEDIUM
      Summary: If ntpd is always started with the -g option, which is
          common and against long-standing recommendation, and if at the
          moment ntpd is restarted an attacker can immediately respond to
          enough requests from enough sources trusted by the target, which
          is difficult and not common, there is a window of opportunity
          where the attacker can cause ntpd to set the time to an
          arbitrary value. Similarly, if an attacker is able to respond
          to enough requests from enough sources trusted by the target,
          the attacker can cause ntpd to abort and restart, at which
          point it can tell the target to set the time to an arbitrary
          value if and only if ntpd was re-started against long-standing
          recommendation with the -g flag, or if ntpd was not given the
          -g flag, the attacker can move the target system's time by at
          most 900 seconds' time per attack.
      Mitigation:
          Configure ntpd to get time from multiple sources.
          Upgrade to 4.2.8p5, or later, from the NTP Project Download
              Page or the NTP Public Services Project Download Page
          As we've long documented, only use the -g option to ntpd in
              cold-start situations.
          Monitor your ntpd instances.
      Credit: This weakness was discovered by Aanchal Malhotra,
          Isaac E. Cohen, and Sharon Goldberg at Boston University.

      NOTE WELL: The -g flag disables the limit check on the panic_gate
          in ntpd, which is 900 seconds by default. The bug identified by
          the researchers at Boston University is that the panic_gate
          check was only re-enabled after the first change to the system
          clock that was greater than 128 milliseconds, by default. The
          correct behavior is that the panic_gate check should be
          re-enabled after any initial time correction.

          If an attacker is able to inject consistent but erroneous time
          responses to your systems via the network or "over the air",
          perhaps by spoofing radio, cellphone, or navigation satellite
          transmissions, they are in a great position to affect your
          system's clock. There comes a point where your very best
          defenses include:

              Configure ntpd to get time from multiple sources.
              Monitor your ntpd instances.

  Other fixes:

  * Coverity submission process updated from Coverity 5 to Coverity 7.
    The NTP codebase has been undergoing regular Coverity scans on an
    ongoing basis since 2006.  As part of our recent upgrade from
    Coverity 5 to Coverity 7, Coverity identified 16 nits in some of
    the newly-written Unity test programs.  These were fixed.
  * [Bug 2829] Clean up pipe_fds in ntpd.c  perlinger@ntp.org
  * [Bug 2887] stratum -1 config results as showing value 99
    - fudge stratum should only accept values [0..16]. perlinger@ntp.org
  * [Bug 2932] Update leapsecond file info in miscopt.html.  CWoodbury, HStenn.
  * [Bug 2934] tests/ntpd/t-ntp_scanner.c has a magic constant wired in.  HMurray
  * [Bug 2944] errno is not preserved properly in ntpdate after sendto call.
    - applied patch by Christos Zoulas.  perlinger@ntp.org
  * [Bug 2952] Peer associations broken by fix for Bug 2901/CVE-2015-7704.
  * [Bug 2954] Version 4.2.8p4 crashes on startup on some OSes.
    - fixed data race conditions in threaded DNS worker. perlinger@ntp.org
    - limit threading warm-up to linux; FreeBSD bombs on it. perlinger@ntp.org
  * [Bug 2957] 'unsigned int' vs 'size_t' format clash. perlinger@ntp.org
    - accept key file only if there are no parsing errors
    - fixed size_t/u_int format clash
    - fixed wrong use of 'strlcpy'
  * [Bug 2958] ntpq: fatal error messages need a final newline. Craig Leres.
  * [Bug 2962] truncation of size_t/ptrdiff_t on 64bit targets. perlinger@ntp.org
    - fixed several other warnings (cast-alignment, missing const, missing prototypes)
    - promote use of 'size_t' for values that express a size
    - use ptr-to-const for read-only arguments
    - make sure SOCKET values are not truncated (win32-specific)
    - format string fixes
  * [Bug 2965] Local clock didn't work since 4.2.8p4.  Martin Burnicki.
  * [Bug 2967] ntpdate command suffers an assertion failure
    - fixed ntp_rfc2553.c to return proper address length. perlinger@ntp.org
  * [Bug 2969]  Seg fault from ntpq/mrulist when looking at server with
                lots of clients. perlinger@ntp.org
  * [Bug 2971] ntpq bails on ^C: select fails: Interrupted system call
    - changed stacked/nested handling of CTRL-C. perlinger@ntp.org
  * Unity cleanup for FreeBSD-6.4.  Harlan Stenn.
  * Unity test cleanup.  Harlan Stenn.
  * Libevent autoconf pthread fixes for FreeBSD-10.  Harlan Stenn.
  * Header cleanup in tests/sandbox/uglydate.c.  Harlan Stenn.
  * Header cleanup in tests/libntp/sfptostr.c.  Harlan Stenn.
  * Quiet a warning from clang.  Harlan Stenn.

(bsiegert)

Pullup ticket #4894 - requested by taca
databases/php-do_sqlite: PKGREVISION reset
meta-pkgs/php55-extensions: PKGREVISION reset
textproc/php-intl: PKGREVISION reset

Revisions pulled up:
- databases/php-pdo_sqlite/Makefile                            1.20
- meta-pkgs/php55-extensions/Makefile                          1.7
- textproc/php-intl/Makefile                                    1.21

---
  Module Name:    pkgsrc
  Committed By:  taca
  Date:          Fri Jan  8 03:31:21 UTC 2016

  Modified Files:
          pkgsrc/databases/php-pdo_sqlite: Makefile
          pkgsrc/meta-pkgs/php55-extensions: Makefile
          pkgsrc/textproc/php-intl: Makefile

  Log Message:
  Reset PKGREVISION after all PHP updates.

(bsiegert)

Pullup ticket #4893 - requested by taca
lang/php70: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.122
- lang/php70/distinfo                                          1.3

---
  Module Name:    pkgsrc
  Committed By:  taca
  Date:          Fri Jan  8 03:29:12 UTC 2016

  Modified Files:
          pkgsrc/lang/php: phpversion.mk
          pkgsrc/lang/php70: distinfo

  Log Message:
  Update php70 to 7.0.2, including security fix.

  07 Jan 2016 PHP 7.0.2

  - Core:
    . Fixed bug #71165 (-DGC_BENCH=1 doesn't work on PHP7).
      (y dot uchiyama dot 1015 at gmail dot com)
    . Fixed bug #71163 (Segmentation Fault: cleanup_unfinished_calls). (Laruence)
    . Fixed bug #71109 (ZEND_MOD_CONFLICTS("xdebug") doesn't work). (Laruence)
    . Fixed bug #71092 (Segmentation fault with return type hinting). (Laruence)
    . Fixed bug memleak in header_register_callback. (Laruence)
    . Fixed bug #71067 (Local object in class method stays in memory for each
      call). (Laruence)
    . Fixed bug #66909 (configure fails utf8_to_mutf7 test). (Michael Orlitzky)
    . Fixed bug #70781 (Extension tests fail on dynamic ext dependency).
      (Francois Laupretre)
    . Fixed bug #71089 (No check to duplicate zend_extension). (Remi)
    . Fixed bug #71086 (Invalid numeric literal parse error within
      highlight_string() function). (Nikita)
    . Fixed bug #71154 (Incorrect HT iterator invalidation causes iterator reuse).
      (Nikita)
    . Fixed bug #52355 (Negating zero does not produce negative zero). (Andrea)
    . Fixed bug #66179 (var_export() exports float as integer). (Andrea)
    . Fixed bug #70804 (Unary add on negative zero produces positive zero).
      (Andrea)

  - CURL:
    . Fixed bug #71144 (Sementation fault when using cURL with ZTS).
      (Michael Maroszek, Laruence)

  - DBA:
    . Fixed key leak with invalid resource. (Laruence)

  - Filter:
    . Fixed bug #71063 (filter_input(INPUT_ENV, ..) does not work). (Reeze Xia)

  - FTP:
    . Implemented FR #55651 (Option to ignore the returned FTP PASV address).
      (abrender at elitehosts dot com)

  - FPM:
    . Fixed bug #70755 (fpm_log.c memory leak and buffer overflow). (Stas)

  - GD:
    . Fixed bug #70976 (Memory Read via gdImageRotateInterpolated Array Index
      Out of Bounds). (emmanuel dot law at gmail dot com).

  - Mbstring:
    . Fixed bug #71066 (mb_send_mail: Program terminated with signal SIGSEGV,
      Segmentation fault). (Laruence)

  - Opcache:
    . Fixed bug #71127 (Define in auto_prepend_file is overwrite). (Laruence)

  - PCRE:
    . Fixed bug #71178 (preg_replace with arrays creates [0] in replace array
      if not already set). (Laruence)

  - Readline:
    . Fixed bug #71094 (readline_completion_function corrupts static array on
      second TAB). (Nikita)

  - Session:
    . Fixed bug #71122 (Session GC may not remove obsolete session data). (Yasuo)

  - SPL:
    . Fixed bug #71077 (ReflectionMethod for ArrayObject constructor returns
      wrong number of parameters). (Laruence)
    . Fixed bug #71153 (Performance Degradation in ArrayIterator with large
      arrays). (Nikita)

  - Standard:
    . Fixed bug #71270 (Heap BufferOver Flow in escapeshell functions).
      (emmanuel dot law at gmail dot com)

  - WDDX:
    . Fixed bug #70661 (Use After Free Vulnerability in WDDX Packet Deserialization).
      (taoguangchen at icloud dot com)
    . Fixed bug #70741 (Session WDDX Packet Deserialization Type Confusion
      Vulnerability). (taoguangchen at icloud dot com)

  - XMLRPC
    . Fixed bug #70728 (Type Confusion Vulnerability in PHP_to_XMLRPC_worker).
      (Julien)

(bsiegert)

Disable DRI3 on Darwin, it currently causes build failure and is mutually
exclusive with Apple DRI.

(jperkin)

+ dvtm-0.15 [leot], libvirt-1.3.1, odt2txt-0.5, pdfgrep-1.4.1, pngcrush-1.8.0,
  weechat-1.4 (and while here ``!}sort'')

(leot)

Updated graphics/giflib-util to 5.1.2.

(leot)

Remove no more available configure arguments to reflect current configure script
(they were removed in giflib-5.0.0).

(leot)

Remove --enable-dri2, it is no longer a valid argument.

(jperkin)

Update the manual Darwin patch to apply against current MesaLib.

(jperkin)

Updated databases/py-ldap to 2.4.25

(adam)

Changes 2.4.25:
* Fix for attrlist=None regression introduced in 2.4.23
  by ref count patch

(adam)

Updated databases/py-peewee to 2.8.0

(fhajny)

Update databases/py-peewee to 2.8.0.

This release includes a couple new field types and greatly improved
C extension support for both speedups and SQLite enhancements. Also
includes some work, suggested by @foxx, to remove some places where
Proxy was used in favor of more obvious APIs.

New features

- C extension speedups now enabled by default, includes faster
  implementations for dict and tuple QueryResultWrapper classes,
  faster date formatting, and a faster field and model sorting.
- C implementations of SQLite functions is now enabled by default.
  SQLite extension is now compatible with APSW and can be used in
  standalone form directly from Python.
- SQLite C extension now supports murmurhash2.
- UUIDField is now supported for SQLite and MySQL, using text and
  varchar respectively, thanks @foxx!
- Added BinaryField, thanks again, @foxx!
- Added PickledField to playhouse.fields.
- ManyToManyField now accepts a list of primary keys when adding or
  removing values from the through relationship.
- Added support for SQLite table-valued functions using the
  sqlite-vtfunc library.
- Significantly simplified the build process for compiling the
  C extensions.

Backwards-incompatible changes

- Instead of using a Proxy for defining circular foreign key
  relationships, you now need to use DeferredRelation.
- Instead of using a Proxy for defining many-to-many through tables,
  you now need to use DeferredThroughModel.
- SQLite Virtual Models must now use Meta.extension_module and
  Meta.extension_options to declare extension and any options.
- MySQL database will now issue COMMIT statements for SELECT queries.

Bugs fixed

- #766, fixed bug with PasswordField and Python3. Fuck Python 3.
- #768, fixed SortedFieldList and remove_field(). Thanks @klen!
- #771, clarified docs for APSW.
- #773, added docs for request hooks in Pyramid
- #774, prefetch() only loads first ForeignKeyField
  for a given relation.
- #782, fixed typo in docs.
- #791, foreign keys were not correctly handling coercing to
  the appropriate python value.
- #792, cleaned up some CSV utils code.
- #798, cleaned up iteration protocol in QueryResultWrappers.
- #806, not really a bug, but MySQL users were clowning around
  and needed help.

2.7.4

This is another small release which adds code to automatically build
the SQLite C extension if libsqlite is available. The release also
includes:

- Support for UUIDField with SQLite.
- Support for registering additional database classes with the db_url
  module via register_database.
- prefetch() supports fetching multiple foreign-keys to the same model
  class.
- Added method to validate FTS5 search queries.

(fhajny)

Revbump all Go packages after the go-1.5.3 security update (hint: static
linking).

(fhajny)

Updated mail/p5-Sendmail-AccessDB to 1.04

(mef)

(pkgsrc)
  - Add ${PERL5_LICENSE}
(upstream)
  - Update 0.09 to 1.04
-------------------
1.04  Mon Dec 22 2014
- Removed the locked sub attributes because they seem to have no
          gain(no object acces/modification is done)
- Enhanced the POD
- Enhanced the test so they skip if /usr/sbin/makemap is not
          insTALLED(might be needed to bundle a .db again)
- In 2012: Enhanced the lookup function so it does correctly check all
          variations of an email address
1.01  Tue Nov 10 2009
- Fixed a permissions issue where a test file didn't exist prior
  to testing.

(mef)

Updated graphics/giflib to 5.1.2

(leot)

Update graphics/giflib to 5.1.2.

Changes:
Version 5.1.2
=============
Code Fixes
----------
* Code hardening using reallocarray() from OpenBSD.
* Sanity check in giffilter catches files with malformed extension records
  Fixes SourceForge bug #63: malformed gif causes segfault in giffilter.
* Inexpensive sanity check in DGifSlurp() catches malformed files with
  no image descriptor. Fixes SourceForge bug #64: malformed gif causes
  crash in giftool.
* Fix SourceForge bug #66: GifDrawBoxedText8x8() modifying constant input
  parameter.
* Bail out of GIF read on invalid pixel width. Addresses Savannah bug
  #67: invalid shift in dgif_lib.c
* Fix SourceForge bug #69: #69 Malformed: Gif file with no extension
  block after a GRAPHICS_EXT_FUNC_CODE extension causes segfault (in
  giftext).
* Fix SourceForge bug #71: Buffer overwrite when giffixing a malformed gif.
* Fix SourceForge bug #73: Null pointer deference in gifclrmap (only
  reachable with malformed GIF).
* Fix SourceForge bug #74: Double free in gifsponge under 5.1,1,
  for any valid gif image.
* Fix SourceForge bug #75: GAGetArgs overflows due to uncounted use of va_arg.
* Sanity check in giffix catches some malformed files. Addresses
  SourceForge bug #77: dgif_lib.c: extension processing error

(leot)

Updated mail/p5-Email-Address to 1.908

(mef)

Update to 1.908
---------------
1.908    2015-09-19 22:53:38-04:00 America/New_York
        - default to 1 level of nested comments to avoid pathological behaviors

(mef)

Updated devel/p5-Pod-Usage to 1.68

(wen)

Update to 1.68
Update DEPENDS

Upstream changes:
1.68 (marekr)
- CPAN#102529: License declaration mismatch
  unified the license for Pod-Usage to "as Perl itself", and corrected authors
- CPAN#109830: Tests fail
  added prerequisite for Pod::Text 4.00 to avoid running tests with outdated
  Pod::Text
- CPAN#110443: [PATCH] fix -perldoc option in pod2usage() method
  added missing '-'
- CPAN#110446: [feature request] -perldocopt for supplying perldoc options
  added this option; split of string on whitespace is not optimal, but
  should do the job

1.67 (marekr)
- added options -perlcmd and -perldoc to allow for non-standard installations
  of perl and the perldoc script. Thanks to Markus Jansen for the patch

(wen)

Updated textproc/p5-podlators to 4.05

(wen)

Update to 4.05

Upstream changes:
podlators 4.05 (2016-01-16)

    Switch back to generating pod2man and pod2text from *.PL files.  While
    ExtUtils::MakeMaker can fix the #! line, it can't handle all non-UNIX
    operating systems, and the *.PL script generation code can.  This will
    hopefully remove the need for Perl core to maintain a separate copy of
    the *.PL wrapper scripts as well.  Thanks, Craig A. Berry.

    [Pod::Man] Fall back (with a warning) to non-utf8 behavior if the utf8
    option is specified but the Encode module is not available.  This is
    useful in some cross-compilation situations.  Thanks, Niko Tyni.

    Don't try to remove the temporary directory used by tests in the tests
    themselves, since this races with other tests run in parallel.
    Instead, just remove it on make clean.

    Provide a mailto address in bug tracking metadata, use the shorter
    form of the RT bug tracker URL, and fix the license value to match the
    new metadata specification.

podlators 4.04 (2016-01-02)

    Fix portability of the t/docs/synopsis.t test to Windows.  It was
    assuming UNIX path delimiters when filtering out files it didn't
    intend to test.

    Don't include .travis.yml in the distribution so that it isn't picked
    up by Perl core.  Thanks, Karen Etheridge.  (#110385)

    Add homepage information to the CPAN metadata and change the canonical
    repository location to GitHub.

podlators 4.03 (2015-12-06)

    Fix tests when POD_MAN_DATE or SOURCE_DATE_EPOCH are already set in
    the environment.  Thanks, Niko Tyni.  (Debian Bug#807086)

    Continue general improvements and refactoring of the test suite to
    make it more maintainable and clean out duplicate or unnecessary code.

podlators 4.02 (2015-12-02)

    For versions of Perl prior to 5.11, install the modules into the Perl
    core module directories, since in those versions site modules did not
    take precedence over Perl core modules.  Thanks, Peter Rabbitson.
    (#110024)

podlators 4.01 (2015-12-01)

    [Pod::Text::Termcap] Do not override the TERMPATH environment variable
    if it's already set.  This should fix the test suite with Term::Cap
    1.16 (which has a bug in termcap handling if TERMPATH doesn't point to
    a valid file).  Also document the manipulation of TERMPATH.

    Revert the switch to Module::Build as the build system.  This creates
    a circular dependency with Module::Build, since it wants a newer
    version of Pod::Man than in Perl versions prior to 5.10.1.  Instead,
    add the new metadata to Makefile.PL and stick with a single build
    system that will also work inside Perl core.

podlators 4.00 (2015-11-28)

    Increase the version number of the package to be larger than any of
    the previous version numbers of any of the modules, and change all
    modules to use the same version as the overall podlators package.
    Switch to a simple decimal version number to avoid complexity with
    v-strings and portability to old versions of Perl.

    podlators now requires Perl 5.006 or later.  All modules enable
    warnings.  Please report any unexpected or confusing warnings as bugs
    in the bug tracker.

    [pod2man] In previous versions, the -r or --release option could be
    specified without an argument and was interpreted as setting that
    value to the empty string.  That never made a great deal of sense, and
    the original change to Perl was apparently because no one realized one
    could pass the empty string as the argument value.  The argument is
    now mandatory, but may be the empty string, which will cause some
    *roff implementations to use the system default.

    Allow any even number of characters to be specified as the quote marks
    for Pod::Text and Pod::Man (and the corresponding --quotes options of
    pod2text and pod2man), rather than being artificially limited to one-
    or two-character quotes.  The first half of the string will be used as
    the left quote and the second half as the right quote.  This allows
    Unicode characters or groff escapes like \(lq and \(rq to be used.
    (Partly addresses #103298)

    [Pod::Man] Attempt to detect if the input came from a pipe and
    therefore has a completely unhelpful (and nonreproducible) source file
    name, and diagnose this as an error.  Document that the name option
    (--name to pod2man) is required when processing POD source from
    standard input.  (Debian Bug#777405)

    [Pod::Man] Honor the environment variable SOURCE_DATE_EPOCH and use it
    as the timestamp from which to derive the left-hand footer if the date
    option is not set, overriding the timestamp of the input file.  This
    is primarily useful to ensure reproducible builds of the same output
    file given the same souce and Pod::Man version, even when file
    timestamps may not be consistent.  Thanks, Niko Tyni.  (Debian
    Bug#801621)

    [Pod::Man] Honor the environment variable POD_MAN_DATE and use its
    contents, if set, as the value of the left-hand footer if the date
    option is not set, overriding the timestamp of the input file.  This
    was an earlier version of SOURCE_DATE_EPOCH, but has been supported in
    Debian for a while and doesn't serve exactly the same purpose, so both
    continue to be supported.  Thanks, Niko Tyni.

    [Pod::Man] The default left-hand footer date is now based on UTC
    rather than the local time zone to make the output more reproducible.
    Thanks, Chris Lamb.  (Debian Bug#780259)

    [Pod::Man] Simplify the preamble code for handling the F register and
    index entries, and add backslashes after the braces in the preamble
    code for handling the F register to avoid introducing a spurious page
    break before at the first page with AT&T *roff.  Thanks, Carsten
    Kunze and Daphne Pfister.  (#92979)

    [Pod::Man] Support setting the left-hand footer to the empty string.

    Fix documentation of the utf8 option to Pod::Man and Pod::Text, and
    the corresponding -u option to pod2man and pod2text, to reflect that
    Pod::Simple now autodetects Latin-1 and UTF-8 but warns.

    More clearly document the options that set values in the .TH header in
    the pod2man and Pod::Man documentation.  Thanks, Guillem Jover.
    (#103297)

    [Pod::Text] Fix encoding handling in documents that start without an
    encoding declaration and then declare an encoding partway through.
    Previously, this would result in attempts to print wide characters if
    there were non-ASCII characters in the document.  Thanks, Magnolia K.
    (#101722)

    [Pod::Text] Change the documentation to not say Pod::Text only
    generates ASCII text.  (#89355)

    Switch the preferred module build system to Module::Build, but still
    provide a Makefile.PL file for backward compatibility and for the use
    of Perl core.  (#108714)

    Installation of this package no longer tries to overwrite the Pod::Man
    and Pod::Text modules that come with Perl core, and instead relies on
    the normal precedence rules in Perl's module search path that prefer
    locally-installed modules over core modules.

    Rename NEWS to Changes to match the normal Perl convention.

    Work around a bug in Term::Cap 1.16 that caused the test suite to fail
    by forcing a setting of TERMPATH to a termcap file provided by the
    test suite while running tests.  (#98272)

(wen)

Updated devel/p5-Test-Warnings to 0.024

(wen)

Update to 0.024

Upstream changes:
0.024    2015-12-24 18:44:29Z
          - remove diagnostics accidentally left in new test

0.023    2015-12-22 06:44:24Z
          - properly handle propagating warnings to previously declared
            handlers that are not coderefs (i.e. a sub name, or the magic
            DEFAULT and IGNORE)

0.022    2015-12-19 00:32:42Z
          - propagate all warnings to any previously-declared __WARN__
            handlers (unlike with __DIE__, merely calling warn() is not
            sufficient)

(wen)

Updated devel/p5-Test-Cmd to 1.09

(wen)

Update to 1.09

Upstream changes:
1.09 2015-10-25 NEILB
    - README updated with current location of Aegis project.
      Thanks to @SparkeyG for the pull request
    - Updated github repo URL after changing my github username
    - Switched to Dist::Zilla

(wen)

Updated security/openssh to 7.1.1nb2

(jperkin)

Explicitly disable roaming, as per CVE-2016-0777 and CVE-2016-0778.

Fix patch dates and offsets while here.  Bump PKGREVISION.

(jperkin)

Updated www/p5-HTTP-Headers-Fast to 0.20

(mef)

Update to 0.20
--------------
0.20 2015-11-20T04:44:09Z
    - add flatten and flatten_without_sort
    (masahiro nagano)

(mef)

Updated www/p5-HTML-TreeBuilder-LibXML to 0.25

(mef)

(pkgsrc)
- Add following line for make test
BUILD_DEPENDS+= p5-Test-Exception-[0-9]*:../../devel/p5-Test-Exception
(upstream)
Update to 0.25
--------------
0.25 2015-04-21T23:39:33Z
  Author: Yanick Champoux <yanick at babyl.dyndns.org>
    silence warnings
    ... as the arguments can be undefined
    Fixes #10

(mef)

Updated www/p5-HTML-Entities-Interpolate to 1.09

(mef)

(pkgsrc)
  - Drop  PERL5_MODULE_TYPE statement to be default
  - Add three lines for make test
BUILD_DEPENDS+= p5-Test-Stream-[0-9]*:../../devel/p5-Test-Stream
BUILD_DEPENDS+= p5-Capture-Tiny-[0-9]*:../../devel/p5-Capture-Tiny
BUILD_DEPENDS+= p5-File-Slurper-[0-9]*:../../devel/p5-File-Slurper

(upstream)
Update 1.05 to 1.09
-------------------
1.09  2015-11-29T10:08:00
- Replace "\t" with \s{4} in scripts/synopsis.pl and t/synopsis.html
  in an attempt to fix the large number of failures reported by CPAN
  Testers.
- Patch t/test.t to use File::Spec to join a dir to a file name.
- Use $^X rather than 'perl' to invoke Perl in t/test.t.
- Make some pre-req version #s explicit.

1.08  2015-11-26T14:26:00
- In V 1.07 I patched t/test.t to use Test::Stream instead of Test::More,
  but did not patch Makefile.PL to match. Test::More is still used for
  xt/author/pod.t.

1.07  2015-11-24T08:47:00
- Apologies: Forgot to release V 1.06 to CPAN.
- Add scripts/synopsis.pl and its output t/synopsis.html.
- Copy scripts/synopsis.pl into docs.
- Add t/test.t to run scripts/synopsis.pl and compare the output
  to t/synopsis.html.
- Update pre-reqs to add Capture::Tiny and File::Slurper,
  which are used in t/test.t.
- Add .gitignore to MANIFEST.SKIP.
- Remove Build.PL.
- Remove t/load.t.
- Reformat the dates in this file.

1.06  2015-02-18T16:32:00
- Add use strict and use warnings to Build.PL and Makefile.PL.
- Add github repo to Build.PL, Makefile.PL and docs.
- Move t/pod.t to xt/author/.
- Patch Build.PL to handle xt/author/*.t.

(mef)

Updated www/p5-File-Mork to 0.4

(mef)