Update mlterm to 3.3.2. (leaf package update, ok'ed wiz@)

pkgsrc changes:
- remove post-3.3.1 patches
- pull post-3.3.2 fixes for mlterm-fb from upstream:
  - 4d974f7: fix mlterm-fb scroll on >=8bpp framebuffers
  - 0b2987a: fix palette handling on 4bpp framebuffers

Changes from doc/en/ReleaseNote:

ver 3.3.2
* Support 4bpp framebuffer on NetBSD/luna68k.
* Desynchronize ssh negotiation on cygwin or mingw.
* "inner_border" option accepts "[horizontal border],[vertical border]" format value.
* Add "leftward_double_drawing" option which embolds medium fonts by drawing doubly at
  1 pixel leftward instead of rightward.
* Add vte_terminal_set_color_*_rgba() functions to libvte compatible library.
* Bug fixes:
  Fix memory leak when opening pty fails on win32gdi.
  Fix the bug which disabled to clear hidden input method window it if large
  value is specified for --border option.
  Fix the bug which disabled to paste UTF-8 string.
  Bitbucket pull request #1 (Thanks to Hayaki Saito san)
  Fix the bug which causes segfault in pasting text via win32 clipboard from x11
  applications over ssh x11 forwarding
  Fix segfault caused by zero column characters like 0x200e.

(tsutsui)

Install all scripts in same bindir

(pettai)

PR pkg/48479 Fix problem of:
ghostscript-cidfonts doesn't switch correctly ghostscript-agpl and -gpl
Thanks wiz@.

(mef)

Add link to GNOME bug report.

(tron)

Fix build with SunStudio C Compiler under Solaris 10.

(tron)

Adjust PLIST only when following option is active.
  PKG_OPTIONS.ghostscript+=disable-compile-inits
No PKGREVISON++ (not packaged or binaries'd be the same before patch and after).
Discussed at thread starting
  http://mail-index.netbsd.org/pkgsrc-users/2013/12/23/msg019089.html

(mef)

Corrected typo in COMMENT.

(rodent)

Missing documentation update for the new default behaviour of "FETCH_USING".

(tron)

Note update of the "xchat" package to version 2.8.8nb21.

(tron)

Explicitely enable XFT support unless GTK+ was compiled without X11 support
under Mac OS X. This fixes the text output under Mac OS X if GTK+ was
actually compiled with X11 support.

(tron)

>From https://github.com/erlang/otp/pull/46#issuecomment-21719585

"Since b29ecbd (OTP-10418, R15B03) Erlang does not compile anymore with
old versions of GCC that do not have atomic ops builtins on platforms
where there is no native ethread implementation (e.g. ARM): (...)

Please note however that I will be merging this branch as well,
which will mean that you have to explicitly tell configure that
you intend to use the fallback atomic operations though
--disable-native-ethr-impls or --disable-smp-require-native-atomics."

Translated: On NetBSD-5.1 (with gcc-4.1.3) the erlang package
didn't compile because of

>  ../include/internal/gcc/ethr_membar.h:49:4: error:
> #error "No __sync_val_compare_and_swap"

Adding the abovementioned option --disable-native-ethr-impls make the
Erlang runtime system use the original (now fallback) code. This should
maybe be an pkg option, but for now this has to do.

(is)

Updated net/exabgp to 3.2.19

(pettai)

ExaBGP Christmas release (version 3.2.19)
* Fix: bug when displaying EOR
* Fix: invalid check on next-hop for multi-line routes
* Fix: badly parsing command line for run option
* Fix: allow the creation of 'allow' flows
* Fix: bad JSON encoding for EOR
* Fix: API message encoding
* Improvement: allow digit:digit in extended communities
* Improvement: healtcheck.py, python 2.6 and community support

(pettai)

To get a working compiler on SunOS, a number of hardcoded gcc/linker
related paths are replaced.
http://article.gmane.org/gmane.comp.compilers.llvm.devel/63317
ok'd by wiz@

(richard)

Note update of devel/transifex-client package to 0.10.

(taca)

Update transifex-client to 0.10.  This is a leaf package and a warning mail
would be sent from Transifex when using old transifex-client.

Here is some of changes from commit log.

* Use urllib3 for the API call; it allows to have proper SSL certificate
  verification (see CVE-2013-2073) as well as drop a lot of code.
* Add --psuedo option.

(taca)

Add cups-filters to suggested new package list.

(gdt)

Reset maintainer for resigned developers.

(wiz)

Updated comms/asterisk to 11.6.1

(jnemeth)

fix a typo in last change.

(obache)

Update to Asterisk 11.6.1: this is a security fix update to fix
AST-2013-006 and AST-2013-007, and a minor bug fix update.

pkgsrc change: disable SRTP on NetBSD as it doesn't link

---- 11.6.1 ----

The Asterisk Development Team has announced security releases for Certified
Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security
releases are released as versions 1.8.15-cert4, 11.2-cert3, 1.8.24.1, 10.12.4,
10.12.4-digiumphones, and 11.6.1.

The release of these versions resolve the following issues:

* A buffer overflow when receiving odd length 16 bit messages in app_sms. An
  infinite loop could occur which would overwrite memory when a message is
  received into the unpacksms16() function and the length of the message is an
  odd number of bytes.

* Prevent permissions escalation in the Asterisk Manager Interface. Asterisk
  now marks certain individual dialplan functions as 'dangerous', which will
  inhibit their execution from external sources.

  A 'dangerous' function is one which results in a privilege escalation. For
  example, if one were to read the channel variable SHELL(rm -rf /) Bad
  Things(TM) could happen; even if the external source has only read
  permissions.

  Execution from external sources may be enabled by setting 'live_dangerously'
  to 'yes' in the [options] section of asterisk.conf. Although doing so is not
  recommended.

These issues and their resolutions are described in the security advisories.

For more information about the details of these vulnerabilities, please read
security advisories AST-2013-006 and AST-2013-007, which were
released at the same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLogs:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.6.1

The security advisories are available at:

* http://downloads.asterisk.org/pub/security/AST-2013-006.pdf
* http://downloads.asterisk.org/pub/security/AST-2013-007.pdf

Thank you for your continued support of Asterisk!

----- 11.6.0 -----

The Asterisk Development Team has announced the release of Asterisk 11.6.0.

The release of Asterisk 11.6.0 resolves several issues reported by the
community and would have not been possible without your participation.
Thank you!

The following is a sample of the issues resolved in this release:

* --- Confbridge: empty conference not being torn down
  (Closes issue ASTERISK-21859. Reported by Chris Gentle)

* --- Let Queue wrap up time influence member availability
  (Closes issue ASTERISK-22189. Reported by Tony Lewis)

* --- Fix a longstanding issue with MFC-R2 configuration that
      prevented users
  (Closes issue ASTERISK-21117. Reported by Rafael Angulo)

* --- chan_iax2: Fix saving the wrong expiry time in astdb.
  (Closes issue ASTERISK-22504. Reported by Stefan Wachtler)

* --- Fix segfault for certain invalid WebSocket input.
  (Closes issue ASTERISK-21825. Reported by Alfred Farrugia)

For a full list of changes in this release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.6.0

Thank you for your continued support of Asterisk!

(jnemeth)

Fix build on NetBSD-5* using a patch from John D. Baker in PR 48469.

(wiz)

bulk-small

(dholland)

fvwm no longer requires xpmroot, so remove xpmroot.

(dholland)

+ bup-0.25 [wiz], calibre-1.16, coreutils-8.22, curl-7.34.0, enlightenment-0.18,
  glade-3.16.1, glproto-1.4.17, gob2-2.0.20, gupnp-0.20.9,
  hicolor-icon-theme-0.13, itstool-2.0.2, libgcrypt-1.6.0,
  libgdata-0.14.1, libzip-0.11.2 [wiz], meld-1.8.3, memcached-1.4.17,
  monit-5.6 [pkg/48465], pcre-8.34, php-tt-rss-1.11, png-1.6.8,
  py-anki2-2.0.20, py-chardet-2.2.1, py-django-1.6.1, py-sphinx-1.2,
  rainbowcrack-1.5, raptor2-2.0.12, ruby-tw-1.0.2 [pkg/48447],
  serf-1.3.3, surfraw-2.2.9, wine-devel-1.7.9 [wait until NetBSD
  gains OSS 4 [kern/46611] or bring OSS 3 support back],
  x264-devel-20131221, xcb-proto-1.10, xscreensaver-5.24,
  yabause-0.9.13.

(wiz)

whitespace

(ryoon)

belatedly add x11-links update.

(mrg)

Note update of the "wireshark" package to version 1.10.5.

(tron)

Update "wireshark" package to version 1.10.5. Changes since 1.10.4:
- The following bugs have been fixed:
  * Wireshark stops showing new packets but dumpcap keeps
    writing them to the temp file. (Bug 9571)
  * Wireshark 1.10.4 shuts down when promiscuous mode is
    unchecked. (Bug 9577)
  * Homeplug dissector bug: STATUS_ACCESS_VIOLATION: dissector
    accessed an invalid memory address. (Bug 9578)
- Updated Protocol Support
  GSM BSSMAP, GSM BSSMAP LE, GSM SMS, Homeplug, NAS-EPS, and SGSAP

(tron)

Depend on php-iconv: updater for 1.9 complains:
"PHP support for iconv is required to handle multiple charsets."
Bump PKGREVISION.

(wiz)

Update DEPENDS gem versions per tw.gemspec file.

Note both ruby-args_parser-0.2.0 and ruby-parallel-0.8.2 were updated
in September.

(tsutsui)

fix gethostbyfoo_r lossage.

(christos)

Update HOMEPAGE, comment out domain-grabbed MASTER_SITES.

(wiz)

update x11-links to 0.80:
- update to handle Xcomposite removal

ok wiz@

(mrg)

The syntax of the Configure architecture table changed recently. Our
entries for NetbSD architectures without assembler routines and Interix
containing ::::::... need to be updated, else -fPIC ends up in the
object-to-build list of crypto/modes. The correct entry snippet is
stored in ${no_asm}.
make test has run successfully in pkgsrc-current and -2013Q3 on
Shark (arm, asm-less) as well as i386 (with asm routines).

(is)

Remove -soname and avoid stripping on Darwin.  Fixes build.

(jperkin)

Remove GNU ld options on Darwin too.

(jperkin)

Add support for Darwin.  Patch from nixpkgs.

(jperkin)

Disable visibility on Darwin, fixes build.

(jperkin)

Patched configure

(jaapb)

Use PKGPATH instead of PKGNAME for check current package, because later variable
may not be defined yet and broken with old bmake in netbsd5.

(obache)

Note update of www/contao32 and www/contao32-example packages to 3.2.3.

(taca)

Update contao32 (and contao32-example) to 3.2.3 during the freeze to
fix a few trivial (but nasty) problems of this almost leaf package:
approved by gdt@.

Version 3.2.3 (2013-12-20)
--------------------------

### Fixed
Correctly resize the mediaboxAdvanced in IE11 (see #6504).

### Fixed
Set the correct status header for cached files (see #6585).

### Fixed
Correctly set the empty value depending on the DB field (fixes #6550, #6544).

### Fixed
Prevent saving of detached models (see #6506).

### Fixed
Correctly determine the ACE editor's height (see #6578).

### Fixed
Always fall back to English if a language does not exist (see #6581).

### Fixed
Correctly display repeated events in the event list (see #6555).

### Fixed
Correctly show the available layout columns in the article module (see #6548).

### Fixed
Correctly show the "read more" link in the news list modules (see #6439).

### Updated
Updated html5shiv to version 3.7.0 (see #6543).

### Fixed
Support browsers with both mouse and touch support in the back end (see #6520).

### Fixed
Correctly handle multiple `RadioTable` widgets on the same page (see #6389).

### Fixed
Fixed two issues with the SQL cache (see #6507).

### Fixed
Do not require a redirect page for newsletter channels (see #6521).

### Fixed
Use the related field instead of `id` in the model query builder (see #6540).

(taca)

Deal with different library path of ffmpeg010 to fix build.

(joerg)

Update netpgpverify and libnetpgpverify to version 20131219

(agc)

Update netpgpverify and libnetpgpverify to version 20131219

Fix a call to mp_radix_size to use a pointer to the BIGNUM, not the
address of the pointer, when accessing.  Fixes a problem observed in
other software when using the same code.  The problem was obscured
from the compiler because of the use of __UNCONST().  This makes the
BN_dec2bn() and BN_hex2bn() functions (in libnetpgpverify) work
properly.

OK: wiz

(agc)

Note update of www/fengoffice package to 2.4.0.6.

(taca)

Update fengoffice to 2.4.0.6.  (This is a leaf package and this update
contains security fix.)

Since 2.4.0.5
- bugfix: Don't send notification when add mail.

Since 2.4.0.4
- bugfix: Deprecated functions usage.
- bugfix: Emtpy trash can was using a deprecated function with performance issues.
- bugfix: Missing parameters in function invocation.

Since 2.4.0.3
- bugfix: can't delete template task, permission denied.

Since 2.4.0.2
- bugfix: langs customer_folder and project_folder.
- bugfix: can't add contacts from mail.
- bugfix: on activity widget move action don't display.
- bugfix: when create user, notifications break mysql transaction.

Since 2.4.0.1
- bugfix: cron process to emtpy trash can does not delete members asociated to contacts.

Since 2.4.0
- bugfix: tab order fix in quick add task;
- bugfix: issue when create a subtask from task view;

Since 2.4-rc
- fetaure: error message improved when upload limit is reached.
- bugfix: on gantt, names of the tasks were not displayed completely.
- bugfix: on gantt, the time estimation for tasks was not displayed correctly.
- bugfix: date custom properties default value does not use user's timezone.
- bugfix: on people widget add user combo is not ordered by name.
- bugfix: on activity widget dates have gmt errors.
- bugfix: general search allways search for empty string.
- bugfix: url files are not saved correctly when url is not absolute.
- bugfix: imap fetch fixed when last email does not exists in server.
- bugfix: only invite automatically the "filtered user" when adding a new event, not when editing an existing one.
- bugfix: variable member_deleted uninitialized in a cycle, maintains the value of previous iterations and fills the log warnings.
- bugfix: don't display group-mailer button if user doesn't have an email account.
- bugfix: allow mail rules for all incoming messages, useful for autoreplies.
- bugfix: the invitations of the events created on google calendar will have the same special ID of the event.

Since 2.4-beta
- feature: alert users if they have mails in the outbox
- feature: contact custom reports - added columns for address, phones, webpages and im.
- feature: display time estimation in time reports when grouping by tasks
- feature: config option to add default permissions to users when creating a member.
- system: upgrade Swift Mailer from version 4.0.6 to 5.0.1, this improves and solves some issues when sending emails with exchange servers
- bugfix: on user login when save timezone don't change the update_on value
- bugfix: solved an issue when editing a repetitive task and changing its previous repetition value
- bugfix: solved when editing a template task can't remove a dimension member
- bugfix: solved using repeating tasks when applying a template
- bugfix: on tasks and timeslots reports, if grouped by task it diplay milestones
- bugfix: allow the creation of templates in the root (View all)
- bugfix: Users are now shown by default in the People tab.
- bugfix: when printing the task list view, tasks now display their progress and estimation
- bugfix: on general search prevent multiple form submit.

Since 2.3.2.1
- feature: templates have been greatly improved: they have changed completely for good!
- feature: remember selection on total task execution time report
- feature: when sending an email, if a word containing attach is found and no attachment if found, it triggers an alert.
- feature: new user config option to set how many members are shown in breadcrumbs
- feature: update plugins after running upgrade from console.
- feature: add root permission when creating executive or superior users.
- feature: contact edit form has been improved

- bugfix: when uploading avatars, if it is .png and its size is smaller than 128x128 the image is not resized
- bugfix: when sending an mail, the sender is now subscribed to it
- bugfix: when adding a file from an email attachment, its now set to be created by the account owner
- bugfix: reporting pagination fixed
- bugfix: custom reports, csv and pdf export only exports the active page..now it exports everything!
- bugfix: don't collapse task group after performing an action to the task when group is expanded.
- bugfix: email parsing removes enters and some emails were not shown correctly
- bugfix: people widget in french used to cause a syntax error
- bugfix: don't classify email in account's member if conversation is already classified.
- bugfix: task filtering by user has been improved: it loads faster and more accurate
- bugfix: the users selectbox for assignees has been improved: it loads faster and more accurate
- bugfix: check for "can manage contacts" in system permissions if column exists
- bugfix: email parsing does not fetch addresses when they are separated by semicolon
- bugfix: tasks assigned to filter doesn't filter correctly when logged user is an internal collaborator and users can add objects without classifying them.
- bugfix: search result pagination issue
- bugfix: search results ordered by date again
- bugfix: add to searchable objects failed for some emails
- bugfix: custom properties migration fix
- bugfix: feng 1 to feng 2 upgrade improved
- bugfix: style fixes in administration tabs
- bugfix: checkbox in contact tab now is working properly. initially it does not show the users
- bugfix: google calendar sync issue for events with over 100 chars has been solved
- bugfix: contact csv export fixed: when no contact is selected => export all contact csv export fixed
- bugfix: some undefined variables have been defined
- bugfix: some translations that were missing were added
- security: remove xss from request parameters
- performance: search engine has been greatly improved
- other: the search button is disabled until returns the search result
- other: when upgrading to 2.4 the completed tasks from feng 1 will change to 100% in completed percentage

(taca)

Updated devel/p5-Proc-Daemon to 0.14nb4

(wen)

Fix CVE-2013-7135 (patch is from Debian)
Add LICENSE
Add missing BUILD_DEPENDS for test

Approved by: wiz@

(wen)

Simplyfy using REPLACE_BASH instead of REPLACE_INTERPRETER and its
friends.

No functional change.

(taca)

Updated lang/nodejs to 0.10.24

(fhajny)

2013.12.18, Version 0.10.24 (Stable)
* uv: Upgrade to v0.10.21
* npm: upgrade to 1.3.21
* v8: backport fix for CVE-2013-{6639|6640}
* build: unix install node and dep library headers (Timothy J Fontaine)
* cluster, v8: fix --logfile=%p.log (Ben Noordhuis)
* module: only cache package main (Wyatt Preul)

(fhajny)

pullups 4276 and 4277

(spz)

Pullup ticket #4277 - requested by is
graphics/gd: build fix for e.g. arm

Revisions pulled up:
- graphics/gd/distinfo                                          1.34-1.35
- graphics/gd/patches/patch-src_gd__bmp.c                      1.1-1.2

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: dholland
  Date: Mon Nov 11 20:38:16 UTC 2013

  Modified Files:
  pkgsrc/graphics/gd: distinfo
  Added Files:
  pkgsrc/graphics/gd/patches: patch-src_gd__bmp.c

  Log Message:
  Don't use ceill(); it isn't needed here and causes problems. See PR 48334.

  Technically this change should bump PKGREVISION (as it changes the
  binary package ever so slightly for platforms where the ceill() didn't
  cause a build failure) but I'm going to let it slide.

  To generate a diff of this commit:
  cvs rdiff -u -r1.33 -r1.34 pkgsrc/graphics/gd/distinfo
  cvs rdiff -u -r0 -r1.1 pkgsrc/graphics/gd/patches/patch-src_gd__bmp.c

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: dholland
  Date: Mon Nov 11 21:34:40 UTC 2013

  Modified Files:
  pkgsrc/graphics/gd: distinfo
  pkgsrc/graphics/gd/patches: patch-src_gd__bmp.c

  Log Message:
  Add upstream report URL per PR 48334.

  To generate a diff of this commit:
  cvs rdiff -u -r1.34 -r1.35 pkgsrc/graphics/gd/distinfo
  cvs rdiff -u -r1.1 -r1.2 pkgsrc/graphics/gd/patches/patch-src_gd__bmp.c

(spz)

Pullup ticket #4276 - requested by tron
net/wireshark: security update

Revisions pulled up:
- net/wireshark/DESCR                                          1.4
- net/wireshark/Makefile                                        1.112
- net/wireshark/distinfo                                        1.71
- net/wireshark/patches/patch-aa                                1.13
- net/wireshark/patches/patch-ab                                1.4
- net/wireshark/patches/patch-ac                                1.2

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: tron
  Date: Wed Dec 18 11:52:26 UTC 2013

  Modified Files:
  pkgsrc/net/wireshark: DESCR Makefile distinfo
  pkgsrc/net/wireshark/patches: patch-aa patch-ab patch-ac

  Log Message:
  Update "wireshark" package to version 1.10.4. Changes since version 1.10.3:
  - Bug Fixes
      The following vulnerabilities have been fixed.
        * wnpa-sec-2013-66
          The SIP dissector could go into an infinite loop.
          Discovered by Alain Botti. (Bug 9388)
          Versions affected: 1.10.0 to 1.10.3, 1.8.0 to 1.8.11
          CVE-2013-7112
        * wnpa-sec-2013-67
          The BSSGP dissector could crash. Discovered by Laurent
          Butti. (Bug 9488)
          Versions affected: 1.10.0 to 1.10.3
          CVE-2013-7113
        * wnpa-sec-2013-68
          The NTLMSSP v2 dissector could crash. Discovered by Garming
          Sam.
          Versions affected: 1.10.0 to 1.10.3, 1.8.0 to 1.8.11
          CVE-2013-7114
      The following bugs have been fixed:
        * "On-the-wire" packet lengths are limited to 65535 bytes.
          (Bug 8808, ws-buglink:9390)
        * Tx MCS set is not interpreted properly in WLAN beacon
          frame. (Bug 8894)
        * VoIP Graph Analysis window - some calls are black. (Bug
          8966)
        * Wireshark fails to decode single-line, multiple Contact:
          URIs in SIP responses. (Bug 9031)
        * epan/follow.c - Incorrect "bytes missing in capture file"
          in "check_fragments" due to an unsigned int wraparound?.
          (Bug 9112)
        * gsm_map doesn't decode MAPv3 reportSM-DeliveryStatus
          result. (Bug 9382)
        * Incorrect NFSv4 FATTR4_SECURITY_LABEL value. (Bug 9383)
        * Timestamp decoded for Gigamon trailer is not padded
          correctly. (Bug 9433)
        * SEL Fast Message Bug-fix for Signed 16-bit Integer Fast
          Meter Messages. (Bug 9435)
        * DNP3 Bug Fix for Analog Data Sign Bit Handling. (Bug
          9442)
        * GSM SMS User Data header fill bits are wrong when using a 7
          bits ASCII / IA5 encoding. (Bug 9478)
        * WCDMA RLC dissector cannot assemble PDUs with SNs skipped
          and wrap-arounded. (Bug 9505)
        * DTLS: fix buffer overflow in mac check. (Bug 9512)
        *  Correct data length in SCSI_DATA_IN packets (within
          iSCSI). (Bug 9521)
        * GSM SMS UDH EMS control expects 4 octets instead of 3 with
          OPTIONAL 4th. (Bug 9550)
        * Fix "decode as ..." for packet-time.c. (Bug 9563)
  - Updated Protocol Support
    ANSI IS-637-A, BSSGP, DNP3, DVB-BAT, DVB-CI, GSM MAP, GSM SMS,
    IEEE 802.11, iSCSI, NFSv4, NTLMSSP v2, RLC, SEL FM, SIP, and Time

  To generate a diff of this commit:
  cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/wireshark/DESCR
  cvs rdiff -u -r1.111 -r1.112 pkgsrc/net/wireshark/Makefile
  cvs rdiff -u -r1.70 -r1.71 pkgsrc/net/wireshark/distinfo
  cvs rdiff -u -r1.12 -r1.13 pkgsrc/net/wireshark/patches/patch-aa
  cvs rdiff -u -r1.3 -r1.4 pkgsrc/net/wireshark/patches/patch-ab
  cvs rdiff -u -r1.1 -r1.2 pkgsrc/net/wireshark/patches/patch-ac

(spz)

exactly check for the case MAKE_JOBS.
fixes for old bmake behavior in netbsd5 and missing MAKE_JOBS.

(obache)

Improve support for HTTPS master site URLs:
As the default fetch program "tnftp" (in "pkgsrc" and all released
versions of NetBSD) doesn't support HTTPS prefer "fetch" (DragonFlyBSD,
FreeBSD and Minix) or Curl (CygWin, Linux, Mac OS X, Solaris) if available.

Change during pkgsrc-freeze approved by Greg Troxel and Thomas Klausner.

(tron)

Use SPECIAL_PERMS on MirBSD, too. Fix build.

(bsiegert)

Add a Platform/MirBSD.cmake file to fix the MirBSD build. The file is
installed along with other platform files, so I had to amend PLIST and
bump the PKGREVISION.

reviewed by wiz@, adam@

(bsiegert)

Make KEYMAP_PATH match the directory keymaps are installed in. Hi prlw1!

(sborrill)

remove qt5-ibus; no such directory

(jnemeth)

Pick up maintainership.

(wiz)

Configure looks for bison, and 'make' dies without a yacc, as the SunOS
bulk builds show. Add bison to USE_TOOLS.

(wiz)

Updated security/gnupg to 1.4.16

(wiz)

Update to 1.4.16:

Noteworthy changes in version 1.4.16 (2013-12-18)
-------------------------------------------------

* Fixed the RSA Key Extraction via Low-Bandwidth Acoustic
  Cryptanalysis attack as described by Genkin, Shamir, and Tromer.
  See <http://www.cs.tau.ac.il/~tromer/acoustic/>.  [CVE-2013-4576]

* Put only the major version number by default into armored output.

* Do not create a trustdb file if --trust-model=always is used.

* Print the keyid for key packets with --list-packets.

* Changed modular exponentiation algorithm to recover from a small
  performance loss due to a change in 1.4.14.

(wiz)

Improve doc handling, from Niclas Rosenvik in PR 48454.
Really fixes packaging when doxygen already is installed.

No change by default, so no PKGREVISION++.

(wiz)

ISO C++ says that replacements for operator new/delete must be global.
So don't define inline versions of them.

(joerg)

When using deprecated features, it helps to not disable them first.

(joerg)

Apply the changes from setup2.py to setup3.py as well to fix the build
of the Python 3.x variant.

(joerg)

Note update of the "wireshark" package to version 1.10.4.

(tron)

Update "wireshark" package to version 1.10.4. Changes since version 1.10.3:
- Bug Fixes
  The following vulnerabilities have been fixed.
    * wnpa-sec-2013-66
      The SIP dissector could go into an infinite loop.
      Discovered by Alain Botti. (Bug 9388)
      Versions affected: 1.10.0 to 1.10.3, 1.8.0 to 1.8.11
      CVE-2013-7112
    * wnpa-sec-2013-67
      The BSSGP dissector could crash. Discovered by Laurent
      Butti. (Bug 9488)
      Versions affected: 1.10.0 to 1.10.3
      CVE-2013-7113
    * wnpa-sec-2013-68
      The NTLMSSP v2 dissector could crash. Discovered by Garming
      Sam.
      Versions affected: 1.10.0 to 1.10.3, 1.8.0 to 1.8.11
      CVE-2013-7114
  The following bugs have been fixed:
    * "On-the-wire" packet lengths are limited to 65535 bytes.
      (Bug 8808, ws-buglink:9390)
    * Tx MCS set is not interpreted properly in WLAN beacon
      frame. (Bug 8894)
    * VoIP Graph Analysis window - some calls are black. (Bug
      8966)
    * Wireshark fails to decode single-line, multiple Contact:
      URIs in SIP responses. (Bug 9031)
    * epan/follow.c - Incorrect "bytes missing in capture file"
      in "check_fragments" due to an unsigned int wraparound?.
      (Bug 9112)
    * gsm_map doesn't decode MAPv3 reportSM-DeliveryStatus
      result. (Bug 9382)
    * Incorrect NFSv4 FATTR4_SECURITY_LABEL value. (Bug 9383)
    * Timestamp decoded for Gigamon trailer is not padded
      correctly. (Bug 9433)
    * SEL Fast Message Bug-fix for Signed 16-bit Integer Fast
      Meter Messages. (Bug 9435)
    * DNP3 Bug Fix for Analog Data Sign Bit Handling. (Bug
      9442)
    * GSM SMS User Data header fill bits are wrong when using a 7
      bits ASCII / IA5 encoding. (Bug 9478)
    * WCDMA RLC dissector cannot assemble PDUs with SNs skipped
      and wrap-arounded. (Bug 9505)
    * DTLS: fix buffer overflow in mac check. (Bug 9512)
    *  Correct data length in SCSI_DATA_IN packets (within
      iSCSI). (Bug 9521)
    * GSM SMS UDH EMS control expects 4 octets instead of 3 with
      OPTIONAL 4th. (Bug 9550)
    * Fix "decode as ..." for packet-time.c. (Bug 9563)
- Updated Protocol Support
  ANSI IS-637-A, BSSGP, DNP3, DVB-BAT, DVB-CI, GSM MAP, GSM SMS,
  IEEE 802.11, iSCSI, NFSv4, NTLMSSP v2, RLC, SEL FM, SIP, and Time

(tron)

Pullup ticket #4275.

(tron)

Pullup ticket #4275 - requested by taca
devel/ruby-i18n: security update

Revisions pulled up:
- devel/ruby-i18n/Makefile                                      1.9
- devel/ruby-i18n/PLIST                                        1.5
- devel/ruby-i18n/distinfo                                      1.8

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Mon Dec 16 09:21:34 UTC 2013

  Modified Files:
  pkgsrc/devel/ruby-i18n: Makefile PLIST distinfo

  Log Message:
  Update ruby-i18n to 0.6.9.  This is security fix.

  * Add I18n::exists? method.
  * Add I18n.locale_available? method.
  * Delete unused files.
  * I18n::MissingTranslation exception escapes key names for its
    html_message, fixing CVE-2013-4492.
  * Use CGI.escapeHTML instead of CGI.escape_html for Ruby 1.8.7.
  * Fix an issue with setting I18n.config.enforce_available_locales.

(tron)

Note PKGREVISION bump of teTeX-bin

(minskim)

Resolve conflicts between teTeX-bin and tex-context

(minskim)

Use a pointer to the void type, not a enum value that turns out to be 0.
Bump revision.

(joerg)

Explicitly include unistd.h for getconf defines.

(joerg)

Maintainer mode was being activated in all cases, which is not
desirable; in particular on builds it enables -Werror which causes
the build to fail now.  from Debian by way of FreeBSD.

(markd)

Don't segfault when using PKG_OPTIONS.libVNCServer=-inet6

(prlw1)

Small fixes:
1.) Comment out "MASTER_SITES". The URL no longer works and all copies
    that Google can find are "pkgsrc" distfile mirrors.
2.) Fix various "pkglint" errors.

(tron)

Updated mail/thunderbird17-l10n to 17.0.11

(ryoon)

Update to 17.0.11

* Sync with thunderbird17-17.0.11

(ryoon)

Updated mail/thunderbird17 to 17.0.11

(ryoon)

Update to 17.0.11

* This package uses external NSS (devel/nss)

Changelog:
Fixed in Thunderbird ESR 17.0.11
MFSA 2013-103 Miscellaneous Network Security Services (NSS) vulnerabilities

(ryoon)

Updated mail/thunderbird-l10n to 24.2.0

(ryoon)

Update to 24.2.0

* Sync with thunderbird 24.2.0

(ryoon)

Updated www/firefox24-l10n to 24.2.0

(ryoon)

Update to 24.2.0

* Sync with firefox24-24.2.0

(ryoon)

Updated www/firefox-l10n to 26.0

(ryoon)

Update to 26.0

* Sync with firefox-26.0.

(ryoon)

Pullup ticket #4274.

(tron)

Pullup ticket #4274 - requested by taca
www/typo3_45: security update

Revisions pulled up:
- www/typo3_45/Makefile                                        1.28-1.29
- www/typo3_45/PLIST                                            1.13
- www/typo3_45/distinfo                                        1.23-1.24

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Dec  5 16:41:07 UTC 2013

  Modified Files:
  pkgsrc/www/typo3_45: Makefile distinfo

  Log Message:
  Update typo345 to 4.5.31 (TYPO3 4.5.31).

  2013-11-26  434ce71                  [RELEASE] Release of TYPO3 4.5.31 (TYPO3 Release Team)
  2013-11-19  396534e  #53758          [BUGFIX] Table cache_imagesizes is defined twice (Michiel Roos)
  2013-11-19  3f2ed1d  #53750          [BUGFIX] Scheduler extension sql file is invalid (Michiel Roos)
  2013-11-15  428baac  #17493          [BUGFIX] Fix broken edit icons on cType HTML (Stefan Neufeind)
  2013-11-11  6755f40  #37948          [BUGFIX] Correctly append additionalTreelistUpdateFields (Bart Dubelaar)
  2013-11-11  082facd  #31998          [BUGFIX] Faulty check for missing SMTP port (Stefan Neufeind)
  2013-11-09  c581f33  #29179          [BUGFIX] Escape title, extension, description of scheduler tasks (Stefan Neufeind)
  2013-11-09  7b08aa9  #53195          [BUGFIX] T3editor: Honour fileDenyPattern on saving included TS (Stefan Neufeind)
  2013-11-04  d372f5f  #38055          [BUGFIX] Remove declare(encoding=) (Josef Florian Glatz)
  2013-10-28  5ae438c  #53075          [BUGFIX] Cannot auto-load SC_* classes (Ernesto Baschny)
  2013-10-22  b5d6e9f  #50881          [TASK] Added missing core autoloaded files (Ernesto Baschny)
  2013-10-13  5b072ff  #52759          [BUGFIX] Object passed to date() (Philipp Gampe)
  2013-10-12  6371e46  #52104          [BUGFIX] Wrong calculation of maximum value for checkbox fields (Nicole Cordes)
  2013-10-12  78871e2  #37611          [BUGFIX] Select available page when changing WS (Thorsten Kahler)
  2013-10-11  ce02c01  #36573          [BUGFIX] Add workspace overlay for fetched records. (Anja Leichsenring)
  2013-10-11  d114ddb  #37065          [BUGFIX] Don't show duplicates in workspace preview (Timo Webler)
  2013-10-06  3289c39  #52045          [BUGFIX] EmConfUtility accesses non-arrays (Markus Klein)
  2013-09-27  cd1e12b  #52091,#51684  [BUGFIX] Check for string before using strlen (Markus Klein)
  2013-09-26  c8d2033  #34886          [BUGFIX] CF FileBackend unlimited lifetime support (Dominique Feyer)
  2013-09-18  ef6dc06                  [BUGFIX] Fix cropping of transparent gifs with im6. (Felix Bu
(tron)

g-ir-scanner on Darwin doesn't like empty comments, fixes hang.

(jperkin)

g-ir-scanner on Darwin doesn't like empty comments, fixes hang.

(jperkin)

One more file installed on FreeBSD.

(asau)

One more file installed on FreeBSD (same as NetBSD).

(asau)

POSIX shmem module is installed on FreeBSD.

(asau)

No utmp.h on modern FreeBSD, use utmpx.h instead.

(asau)

one update notice is enough

(jnemeth)

Updated comms/asterisk10 to 10.12.4

(jnemeth)

Updated comms/asterisk10 to 10.12.4

(jnemeth)

Update to Asterisk 10.12.4:  this is a security fix update that fixes
AST-2013-006 and AST-2013-007.

The Asterisk Development Team has announced security releases for Certified
Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security
releases are released as versions 1.8.15-cert4, 11.2-cert3, 1.8.24.1, 10.12.4,
10.12.4-digiumphones, and 11.6.1.

The release of these versions resolve the following issues:

* A buffer overflow when receiving odd length 16 bit messages in app_sms. An
  infinite loop could occur which would overwrite memory when a message is
  received into the unpacksms16() function and the length of the message is an
  odd number of bytes.

* Prevent permissions escalation in the Asterisk Manager Interface. Asterisk
  now marks certain individual dialplan functions as 'dangerous', which will
  inhibit their execution from external sources.

  A 'dangerous' function is one which results in a privilege escalation. For
  example, if one were to read the channel variable SHELL(rm -rf /) Bad
  Things(TM) could happen; even if the external source has only read
  permissions.

  Execution from external sources may be enabled by setting 'live_dangerously'
  to 'yes' in the [options] section of asterisk.conf. Although doing so is not
  recommended.

These issues and their resolutions are described in the security advisories.

For more information about the details of these vulnerabilities, please read
security advisories AST-2013-006 and AST-2013-007, which were
released at the same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLogs:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.24.1

The security advisories are available at:

* http://downloads.asterisk.org/pub/security/AST-2013-006.pdf
* http://downloads.asterisk.org/pub/security/AST-2013-007.pdf

Thank you for your continued support of Asterisk!

(jnemeth)

No separate library for dlopen on FreeBSD too.

(asau)

Updated comms/asterisk18 to 1.8.24.1

(jnemeth)

Update to Asterisk 1.8.24.1:  this is a security update that fixes
AST-2013-006 and AST-2013-007.

The Asterisk Development Team has announced security releases for Certified
Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security
releases are released as versions 1.8.15-cert4, 11.2-cert3, 1.8.24.1, 10.12.4,
10.12.4-digiumphones, and 11.6.1.

The release of these versions resolve the following issues:

* A buffer overflow when receiving odd length 16 bit messages in app_sms. An
  infinite loop could occur which would overwrite memory when a message is
  received into the unpacksms16() function and the length of the message is an
  odd number of bytes.

* Prevent permissions escalation in the Asterisk Manager Interface. Asterisk
  now marks certain individual dialplan functions as 'dangerous', which will
  inhibit their execution from external sources.

  A 'dangerous' function is one which results in a privilege escalation. For
  example, if one were to read the channel variable SHELL(rm -rf /) Bad
  Things(TM) could happen; even if the external source has only read
  permissions.

  Execution from external sources may be enabled by setting 'live_dangerously'
  to 'yes' in the [options] section of asterisk.conf. Although doing so is not
  recommended.

These issues and their resolutions are described in the security advisories.

For more information about the details of these vulnerabilities, please read
security advisories AST-2013-006 and AST-2013-007, which were
released at the same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLogs:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.24.1

The security advisories are available at:

* http://downloads.asterisk.org/pub/security/AST-2013-006.pdf
* http://downloads.asterisk.org/pub/security/AST-2013-007.pdf

Thank you for your continued support of Asterisk!

(jnemeth)