Log message:
Bump all packages for perl-5.18, that
a) refer 'perl' in their Makefile, or
b) have a directory name of p5-*, or
c) have any dependency on any p5-* package

Like last time, where this caused no complaints.

Log message:
security update for RT3, fixing:

    CVE-2013-3368
    CVE-2013-3369
    CVE-2013-3370
    CVE-2013-3371
    CVE-2013-3372
    CVE-2013-3373
    CVE-2013-3374

It also includes a database upgrade, so please make sure to run `make
upgrade-database`.

Changes in detail are:
3.8.15->3.8.16:
ruz 	stop RT from locking on "large" mails
ruz 	make sure data is recorded (tests)
alexmv 	Remove bogus argument to ->get(), which fail on HTTP::Message >= 5.05
alexmv 	Ensure that tickets are destroyed before global destruction, in more
alexmv 	Work around a bug in perl < 5.13.10 with open($fh, \ 
">:raw", \$string)
sunnavy destroy more tickets and objects before global destruction for modern
tsibley Remove the "signature" paragraph from the README's explanation \ 
of RT

3.8.16->3.8.17:
alexmv 	Ensure that filenames in inline image attributes are HTML-escaped
alexmv 	Deny direct access to callbacks
alexmv 	Protect calls to $m->comp with user input in ColumnMap
alexmv 	Ensure that subjects cannot contain embedded newlines
alexmv 	Remove filename= suggesions from Content-Disposition lines
alexmv 	Ensure consistent escaping of filenames in attachment URIs
alexmv 	Ensure that URLs placed in HTML attributes are escaped correctly, to
	prevent XSS injection
alexmv 	Ensure that the default replacement does not pass through unescaped
	content
alexmv 	Use File::Temp for non-predictable temporary filenames

Log message:
Update to the latest version in the rt3 train. Contains security updates:

  3.8.15 Release Notes

   This release resolves a number of security vulnerabilities.
   It resolves CVE-2012-4730, CVE-2012-4732, CVE-2012-4734, CVE-2012-4735,
   and CVE-2012-4884.

   In addition to these security fixes, RT 3.8.15 contains support for
   partitioned PGP messages.

  3.8.14 Release Notes

   This release contains two fixes related to the 3.8.12 security release.

   Access to search results URLs is now CSRF whitelisted, based on user
   feedback.
   An error in rt-email-dashboards has been corrected.

  3.8.13 Release Notes

   This release contains an important bugfix over the 3.8.12 security
   release:

    * Fix sending email with the 'perl-script' mod_perl handler, by
      ensuring that STDIN was always on FD 0 before calling IPC::Open2.
      This failure showed as either SIGPIPE or abnormal exit codes when
      running sendmail.

    * Fix for "Undefined value assigned to typeglob" and "Bad file
      descriptor: core_output_filter" errors caused by the above change, by
      ensuring that both FD 0 and FD 1 are prevented from being claimed by
      Apache.  This error only arose with the perfork MPM and mod_perl <=
      2.0.4.

Log message:
Bump all packages that use perl, or depend on a p5-* package, or
are called p5-*.

I hope that's all of them.

Log message:
Change 'pax' to '${PAX}', because 'pax' may not exist if using nbpax.

Log message:
Update RT to version 3.8.12:

Changes from 3.8.11 to 3.8.12:
    This release, in addition to being a bugfix release, also resolves a
    number of security vulnerabilities.  It resolves CVE-2011-2082,
    CVE-2011-2083, CVE-2011-2084, CVE-2011-2085, CVE-2011-4458,
    CVE-2011-4459, and CVE-2011-4460.

     * Upgrade prototype.js to version 1.7, for compatibility with google
       charts.
     * Remove ie7.js, which is no longer used.
     * Ensure that TransactionBatch scripts are only run once.

Changes from 3.8.10 to 3.8.11:
    This release contains a number of bugfixes and minor security updates
    since the 3.8.10 release, most notably:

     * Adjust FCGI dependency to one which resolves FCGI's CVE-2011-2766

     * New WebHttpOnlyCookies option, enabled by default, which hides RT's
       cookie from direct Javascript access.

     * Compatibility with perl 5.12 and 5.14, by removing deprecated "for
       qw(...)" and "defined %hash" syntax.

     * MySQL 5.5 compatibility, by specifying ENGINE=InnoDB rather than
       TYPE=InnoDB

     * Ensure that RT::Interface::Web's _Overlay, _Local, and _Vendor files
       are loaded correctly.

     * Fix session cleaner for on-disk sessions, broken since 3.8.0.

     * Ensure that only one "Based on" attribute is stored for each custom
       field.

     * Fix the loading of Shredder plugins, broken in 3.8.10.

Log message:
make rt deal with perl 5.14

Log message:
Upstream announce message:
This release, in addition to being a bugfix release, also resolves a
number of security vulnerabilities.  It resolves CVE-2011-1685,
CVE-2011-1686, CVE-2011-1687, CVE-2011-1688, CVE-2011-1689, and
CVE-2011-1690.

* Cleanups identified by perlcritic.
* Clear the system attribute cache to avoid 'sticky' attributes like
  the queue subject tag.
* Fix our signature escaping so we better match FCKEditor and don't
  misidentify signatures during processing.
* Add the ability to create BasedOn Custom Fields from intiialdata
* Provide a callback to affect the display format in admin pages
* Fix id prefixing on Custom Fields to be RTIR compatible
* Fix #16656 - Requestors with OwnTicket could show up in the owner list
  in other Queues.
* Don't attach the original multipart mail to notifications that already
  contain one part of it.
* Work around CGI.pm 3.51 and 3.52 which add ; charse=ISO-8859-1 to our
  utf-8 encoded javascript.

Log message:
init also requires --datadir

Log message:
add a missing file, fix a few paths