Next | Query returned 72 messages, browsing 21 to 30 | Previous

History of commit frequency

CVS Commit History:


   2013-06-17 00:10:14 by John Nemeth | Files touched by this commit (3)
Log message:
Asterisk is known to fail on 32-bit systems, specifically i386.  Mark it
as such until the bug is found and fixed.
   2013-06-15 01:53:03 by John Nemeth | Files touched by this commit (7)
Log message:
- fix PLIST when jabber option is disabled
- fix build when newlocale is detected, patch from joerg@
   2013-06-06 14:55:24 by Thomas Klausner | Files touched by this commit (1687)
Log message:
Bump PKGREVISION for libXft changes for NetBSD native X support on
NetBSD 6, requested by tron.
   2013-06-05 00:17:35 by Matthias Scheler | Files touched by this commit (1946)
Log message:
Try to fix the fallout caused by the fix for PR pkg/47882. Part 3:

Recursively bump package revisions again after the "freetype2" and
"fontconfig" handling was fixed.
   2013-06-03 12:06:28 by Thomas Klausner | Files touched by this commit (1948)
Log message:
Bump freetype2 and fontconfig dependencies to current pkgsrc versions,
to address issues with NetBSD-6(and earlier)'s fontconfig not being
new enough for pango.

While doing that, also bump freetype2 dependency to current pkgsrc
version.

Suggested by tron in PR 47882
   2013-05-31 14:42:58 by Thomas Klausner | Files touched by this commit (2880)
Log message:
Bump all packages for perl-5.18, that
a) refer 'perl' in their Makefile, or
b) have a directory name of p5-*, or
c) have any dependency on any p5-* package

Like last time, where this caused no complaints.
   2013-05-09 09:40:47 by Adam Ciarcinski | Files touched by this commit (620)
Log message:
Massive revbump after updating graphics/ilmbase, graphics/openexr, textproc/icu.
   2013-04-10 07:27:08 by John Nemeth | Files touched by this commit (2) | Package updated
Log message:
Update to Asterisk 10.12.2:  this is a security update which fixes
AST-2013-001, AST-2013-002, and AST-2013-003.

The Asterisk Development Team has announced security releases for Certified
Asterisk 1.8.15 and Asterisk 1.8, 10, and 11. The available security releases
are released as versions 1.8.15-cert2, 1.8.20.2, 10.12.2, 10.12.2-digiumphones,
and 11.2.2.

The release of these versions resolve the following issues:

* A denial of service exists in Asterisk's HTTP server. AST-2012-014, fixed
  in January of this year, contained a fix for Asterisk's HTTP server for a
  remotely-triggered crash. While the fix prevented the crash from being
  triggered, a denial of service vector still exists with that solution if an
  attacker sends one or more HTTP POST requests with very large Content-Length
  values.

  This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11

* A potential username disclosure exists in the SIP channel driver. When
  authenticating a SIP request with alwaysauthreject enabled, allowguest
  disabled, and autocreatepeer disabled, Asterisk discloses whether a user
  exists for INVITE, SUBSCRIBE, and REGISTER transactions in multiple ways.

  This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11

These issues and their resolutions are described in the security advisories.

For more information about the details of these vulnerabilities, please read
security advisories AST-2013-001, AST-2013-002, and AST-2013-003, which were
released at the same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLogs:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.2

The security advisories are available at:

 * http://downloads.asterisk.org/pub/security/AST-2013-001.pdf
 * http://downloads.asterisk.org/pub/security/AST-2013-002.pdf
 * http://downloads.asterisk.org/pub/security/AST-2013-003.pdf

Thank you for your continued support of Asterisk!
   2013-04-07 20:22:11 by John Nemeth | Files touched by this commit (2)
Log message:
Revert:  these packages are marked OWNER= for a reason!

pkglint warnings aren't gospel!  They need to be verified in an
intelligent manner.  After variable substitution, the lines will
be shorter then 80 characters, thus there was no need to shorten
them.
   2013-04-06 14:14:31 by Blue Rats | Files touched by this commit (2)
Log message:
"Line too long (should be no more than 80 characters)."

Next | Query returned 72 messages, browsing 21 to 30 | Previous