Critical vulnerabilities have been identified in Adobe Reader
9.1.1 and Acrobat 9.1.1 and earlier versions. These
vulnerabilities would cause the application to crash and could
potentially allow an attacker to take control of the affected
system.
Security: http://www.adobe.com/support/security/bulletins/apsb09-07.html
Security: CVE-2009-0198
Security: CVE-2009-0509
Security: CVE-2009-0510
Security: CVE-2009-0511
Security: CVE-2009-0512
Security: CVE-2009-0888
Security: CVE-2009-0889
Security: CVE-2009-1855
Security: CVE-2009-1856
Security: CVE-2009-1857
Security: CVE-2009-1858
Security: CVE-2009-1859
Security: CVE-2009-1861
modular xorg.
- supply corresponding USE_XORG for all imake-using ports that need it
- USE_IMAKE no longer implies USE_XLIB in absence of USE_XORG
- retire USE_X_PREFIX which is not really used anywhere after the
above change
- a few minor nits like whitespace and SF macro
Tested by: 2 tinderbox runs by pav
Approved by: portmgr (pav)
to it have been added. These are to install standard fonts used in the
Ports Collection. Currently they contain:
std.ja_JP/Mincho
std.ja_JP/Gothic
std.ja_JP/Ryumin-Light
std.ja_JP/GothicBBB-Medium
std.zh_CN/STHeiti-Regular
std.zh_CN/STSong-Light
std.zh_CN/MSung-Light
std.zh_CN/MHei-Medium
under ${PREFIX}/share/fonts/. They are just symlinks to
corresponding font files. The symlink names are based on popular
PostScript font names.
Applications should refer the font files via XLFD or fontconfig
first. If they need a direct reference to the font file, please use
files in std.*/*. This is because direct reference to a specific
font name in an application configuration file makes the maintenance
difficult when the font file name is changed, for example.
- CVE-2009-1492
The getAnnots Doc method in the JavaScript API in Adobe Reader
and Acrobat 9.1, 8.1.4, 7.1.1, and earlier allows remote
attackers to cause a denial of service (memory corruption) or
execute arbitrary code via a PDF file that contains an
annotation, and has an OpenAction entry with JavaScript code
that calls this method with crafted integer arguments.
- CVE-2009-1493
The customDictionaryOpen spell method in the JavaScript API in
Adobe Reader 8.1.4 and 9.1 on Linux allows remote attackers to
cause a denial of service (memory corruption) or execute
arbitrary code via a PDF file that triggers a call to this
method with a long string in the second argument.
Security: CVE-2009-1492
Security: CVE-2009-1493
Security: http://www.adobe.com/support/security/bulletins/apsb09-06.html
See original release announcement for details:
http://kde.org/announcements/announce-4.2.3.php
New ports:
devel/kdebindings4:
Meta port of KDE bindings for C#, Java, PHP, Python and Ruby.
Currently only Python bindings are supported.
devel/kdebindings4-python, devel/kdebindings4-python-krosspython,
devel/kdebindings4-python-pykde4:
Python bindings for KDE.
print/kdeutils4-printer-applet:
printer-applet is a system tray utility. It shows current print jobs,
shows printer warnings and errors and shows when printers that have
been plugged in for the first time are being auto-configured by
hal-cups-utils. It replaces kjobviewer in KDE 3.
print/system-config-printer-kde
A port of Gnome system-config-printer to KDE.
multimedia/phonon port has been split into phonon itself, phonon-xine
and phono-gstreamer backends. After updating phonon port you have
to install at least one backend. phonon-xine backend is recommended
for KDE.
for FreeBSD. The official KDE 4.2.0 (Codename: "The Answer") release
notes can be found at:
http://kde.org/announcements/4.2/index.php.
New supported languages include Arabic, Icelandic, Basque,
Hebrew, Romanian, Tajik and several Indian languages (Bengali India,
Gujarati, Kannada, Maithili, Marathi) indicating a rise in popularity in
this part of Asia.
New ports for KDE 4.2.0:
arabic/kde4-l10n Arabic
hebrew/kde4-l10n Hebrew
misc/kde4-l10n-bn_IN Bengali (India)
misc/kde4-l10n-eu Basque
misc/kde4-l10n-gu Gujarati
misc/kde4-l10n-is Icelandic
misc/kde4-l10n-kn Kannada
misc/kde4-l10n-mai Maithili
misc/kde4-l10n-mr Marathi
misc/kde4-l10n-ro Romanian
misc/kde4-l10n-tg Tajik
math/eigen2 Lightweight library for vector and matrix math
graphics/kipi-plugins-kde4 KDE4 kipi graphics plugins
sysutils/policykit-kde PolicyKit manager for KDE
Unfortunately FreeBSD 6.4 support is dropped.
We'd like to say thanks for feedback and help to:
Matt Tosto, Kris Moore, stickibit, David Johnson, Markus Brueffer,
David Naylor, Thomas Schlesinger, Warren Liddell, Thomas Abthorpe,
Diego Depaoli, Mats Andreassen, portmgr for exp-run and repocopies.
2009-02-01 devel/subversion-devel: Use devel/subversion or devel/subversion-freebsd instead of this port
2009-01-19 devel/hs-hat: has been broken for more than 6 months
2009-01-19 devel/hs-hpl: has been broken for more than 6 months
2009-01-19 databases/mysqlbigram: has been broken for more than 6 months
2009-01-19 mail/claws-mail-clamav: has been broken for more than 6 months
2009-01-19 mail/sylpheed2-devel: has been broken for more than 6 months
2009-01-19 www/pecl-mnogosearch: has been broken for more than 6 months
2009-01-31 x11-fonts/mathfonts: This port was supported by Mozilla 1.8 (including Firefox 2.0) - to be replaced by STIX fonts for Firefox 3.x
2009-01-19 x11-wm/fluxspace: has been broken for more than 6 months
2009-01-31 x11-wm/expocity: project has been abandoned
2009-01-19 x11/bbuname: has been broken for more than 6 months
2009-01-19 security/squidclam: has been broken for more than 6 months
2009-01-19 print/virtualpaper: depends on broken, expired port
2009-01-19 print/ifhp: has been broken for more than 6 months
2009-01-19 net-p2p/peercast: has been forbidden for more than 6 months
2009-01-19 palm/pdbc: has been broken for more than 6 months
2009-01-19 net-mgmt/NeTraMet: has been broken for more than 6 months
2009-01-19 net-im/sulci: has been broken for more than 6 months
2009-01-19 multimedia/mjpegtools-yuvfilters: has been broken for more than 6 months
2009-01-19 multimedia/helixplayer: has been broken for more than 6 months
2009-01-19 lang/quack: has been broken for more than 6 months
2009-01-19 misc/pybliographer: has been broken for more than 6 months
2009-01-19 net/versuch: has been broken for more than 6 months
2009-01-19 net/py-mantissa: has been broken for more than 6 months
2009-01-19 net/libunpipc: has been broken for more than 6 months
2009-01-19 net/gnometelnet: has been broken for more than 6 months
2009-01-19 net/gacxtool: depends on expired, broken port
2009-01-19 devel/py-coro: has been broken for more than 6 months
2009-01-19 chinese/stardict2-dict-zh_TW: has been broken for more than 6 months
2009-01-19 x11-themes/gtk-industrial-theme: has been broken for more than 6 months
- Bump PORTREVISION for all ports depending on libglut since the shlib
version number went from 4 to 3.
- Bump PORTREVISION for all ports depending on libXaw as libXaw.so.8 isn't
installed anymore.
- Couple of ports fixes (mostly missing xorg components added to USE_XORG).
Qt4 ports have been updated from 4.4.1 to 4.4.3. With this update
new port misc/qt4-l10n has been added. This port provides localisation
support for Qt4 developers tools designer, linguist, etc.
Approved by: miwi (mentor)
for FreeBSD. The official KDE 4.1.1 release notes can be found at
http://www.kde.org/announcements/changelogs/changelog4_1to4_1_1.php.
KDE Community ships sirst translation and service release of the 4.1
dree desktop, containing numerous bugfixes, Performance Improvements
and Translation Updates.
Pretty much all applications have received the developers' attention,
resulting in a long list of bugfixes and improvements. The most significant
changes are:
* Significant performance, interaction and rendering correctness
improvements in KHTML and Konqueror, KDE's web browser
* User interaction, rendering and stability fixes in Plasma,
the KDE4 desktop shell
* PDF backend fixes in the document viewer Okular
* Fixes in Gwenview, the image viewer's thumbnailing, more
robust retrieval and display of images with broken metadata
* Stability and interaction fixes in KMail
New Ports:
- graphics/kcoloredit
* KColorEdit is a palette files editor. It can be used
for editing color palettes and for color choosing and
naming.
- graphics/kgraphviewer
* KGraphViewer is a GraphViz DOT graph viewer for KDE. The
GraphViz programs are free-software layout engines for graphs.
KGraphViewer displays the graphs in a modern, user-friendly GUI
with all the power of a well integrated KDE application.
- graphics/kiconedit
* KIconEdit is designed to help create icons for KDE using the standard
icon palette.
- graphics/skanlite
* Skanlite is a simple image scanning application that does nothing
more than scan and save images. Skanlite can open a save dialog for
every image scanned or save the images immediately in a specified
directory with auto-generated names and format. The user can also
choose to show the scanned image before saving.
of KDE 3.5.10 for FreeBSD. The official KDE 3.5.10 release
notes can be found at:
http://www.kde.org/announcements/announce-3.5.10.php
While not a very exciting release in terms of features,
3.5.10 brings a couple of nice bugfixes and translation
updates to those who choose to stay with KDE 3.5. The
fixes are thinly spread across KPDF with a number of crash
fixes, KGPG and probably most interesting various fixes
in kicker, KDE3's panel:
* Improved visibility on transparent backgrounds
* Themed arrow buttons in applets that were missing them
* Layout and antialiasing fixes in various applets
Approved by: portmgr (erwin/pav)
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.
To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.
To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.
Changes to Mk/*:
- Add runtime detection magic in bsd.port.mk
- Remove CONFIGURE_TARGET hack in various bsd.*.mk
- USE_GNOME=gnometarget is now an no-op
Changes to individual ports, other than removing the CONFIGURE_TARGET hack:
= pkg-plist changed (due to the ugly CONFIGURE_TARGET prefix in * executables)
- comms/gnuradio
- science/abinit
- science/elmer-fem
- science/elmer-matc
- science/elmer-meshgen2d
- science/elmerfront
- science/elmerpost
= use x86_64 as ARCH
- devel/g-wrap
= other changes
- print/magicfilter
GNU_CONFIGURE -> HAS_CONFIGURE since it's not generated by autoconf
Total # of ports modified: 1,027
Total # of ports affected: ~7,000 (set GNU_CONFIGURE to yes)
PR: 126524 (obsoletes 52917)
Submitted by: rafan
Tested on: two pointyhat 7-amd64 exp runs (by pav)
Approved by: portmgr (pav)
of KDE 3.5.9 for FreeBSD. The official KDE 3.5.9 release
notes can be found at:
http://www.kde.org/announcements/announce-3.5.9.php
After the KDE 4.1.0 import the team found time to make
KDE 3.5.9 ready for the Ports tree.
KDE 3.5.9 was released six months ago and 3.5.10 is coming
soon. We are not sure we have time to get 3.5.10 for FreeBSD
7.1/6.4 release, but we would have minimum 3.5.9 for those
people who prefer to stay with KDE3.
Of course Thanks to all Testers.
for FreeBSD. The official KDE 4.1.0 release notes can be found at
http://www.kde.org/announcements/4.1/.
Some note:
* Prefix
KDE4 will be install into a custom prefixes namely ${LOCALBASE}/kde4.
KDE4 and KDE3 can co-exist
* Sound
For sound to work, it is necessary to have dbus and hal enabled
in your system. Please see the respective documentation on how
to enable these.
For more Informations see the HEADS UP at ports@ and kde-freebsd@
or our wiki page http://wiki.freebsd.org/KDE4/Install.
Have fun!
Note:
With this update several ports specific problems
have been fixed. Qt4 headers and libraries have
been moved to include/qt4 and lib/qt4. bsd.qt.mk
defines QT_INCDIR and QT_LIBDIR now, which could
be used in qt4-dependent ports if required.
Thanks to: Max Brazhnikov Danny Pansters
| A critical vulnerability has been identified in Adobe Reader and
| Acrobat 8.1.2. This vulnerability would cause the application to
| crash and could potentially allow an attacker to take control of
| the affected system.
Security: CVE-2008-2641
Security: CVE-2008-0883
Security: http://www.adobe.com/support/security/bulletins/apsb08-15.html
FQterm is a BBS client based on Qt4 libraries, supports
Simplified and Traditional Chinese BBSs, and with full
SSH2 support.
PR: ports/124267
Submitted by: "Denise H. G." <darcsis@gmail.com>
The affected ports are the ones with gettext as a run-dependency
according to ports/INDEX-7 (5007 of them) and the ones with USE_GETTEXT
in Makefile (29 of them).
PR: ports/124340
Submitted by: edwin@
Approved by: portmgr (pav)
- Remove USE_XLIB/USE_X_PREFIX/USE_XPM in favor of USE_XORG
- Remove X11BASE support in favor of LOCALBASE or PREFIX
- Use USE_LDCONFIG instead of INSTALLS_SHLIB
- Remove unneeded USE_GCC 3.4+
Thanks to all Helpers:
Dmitry Marakasov, Chess Griffin, beech@, dinoex, rafan, gahr,
ehaupt, nox, itetcu, flz, pav
PR: 116263
Tested on: pointyhat
Approved by: portmgr (pav)
http://blogs.adobe.com/acroread/2008/02/#a005029:
[General Issues]
* Font caching Issues: Various font caching issues are fixed in Reader
8.1.2, including the issue of fonts that were configured using
fontconfig not being picked up by the Reader to render documents
(reported by Novell).
* Problem with Dual-screen setup (Xinerama mode).: Issue number 4
listed on the Known Issues page for Reader 8.1.1.
* Document ordering and fullscreen mode: Issue has been fixed in
Reader 8.1.2.
* Font KozGoProVI-Medium.otf is missing in Japanese Reader: This issue
is fixed in Reader 8.1.2.
[Printing Related Issues]
* Incorrect orientation: Issues with printing PDF files containing
portrait and landscape pages have been fixed in Reader
8.1.2. Choosing "Auto Rotate and Center" will now print the pages in
their inherent orientation.
* Red wash on printing with HP CLJ 2605: A workaround for this has
been added in the preferences
($HOME/.adobe/Acrobat/8.0/Preferences/reader_prefs), namely
"brokenCRDs". This value is set to "false" by default and can be
modified to "true" if one faces the red background issue.
* Scaling issues: Problems with -shrink/-expand options in the command
line (Issue #1 listed on the Known Issues page for Reader 8.1.1) as
well as with "Custom" printing in the dialog have been fixed in
Reader 8.1.2.
* Reader does not remember last chosen printer across sessions: Last
chosen printer is now remembered between different sessions of the
Reader in 8.1.2 release.
* Cannot pipe PDF as input to acroread: PDF contents can be read from
stdin when using the -toPostScript option.
* Hardcoding of printer command: Earlier the printer command was
hardcoded in the reader binary. This has been fixed in Reader 8.1.2
to pick up the command from the PATH environment variable.
- Reset maintainer (mail bounce) [1]
[1]
<ada@bsd.org>: host bsd.org.s6a1.psmtp.com[64.18.5.10] said: 550 No such user -
psmtp (in reply to RCPT TO command)
PR: 120050
Submitted by: Ed Schouten <ed@fxq.nl>
languages). Changes from 7.x include:
User Interface:
* New improved UI with more real-estate in terms of page view
space. Only the most commonly used tools are present in the
toolbar by default (and the toolbar can be customized by the
user according to his/her own preference.)
* Sleek design and new stylish user interface
elements (including toolbars, navigation tabs, panes, etc.)
for a more rich user experience.
* Improved launch time and overall performance. Less waiting,
more work.
* Support for Single Document Interface (SDI) mode for improved
usability. Less cluttered, more intuitive.
* Always-available search toolbar (includes find and access to
search pane)
New Features:
* Support for playing Multimedia-enabled PDF documents for
supported media types (linux). Play Real media and more!
* Support for participating in Shared Reviews along with other
users of Adobe Reader 8.x on Unix, and Adobe Reader/Acrobat
8.x on Win/Mac. Collaborate right inside the Reader.
* Improvements in Commenting and Drawing Markup tools.
* New tools such as Loupe Tool, Pan and Zoom. Expand your
horizons, and control what you want to see.
* Support for dynamically rendered bar code generation in forms.
* Updated Review Tracker with inbuilt support for RSS feeds. Use
the Reader as your RSS feed reader!
* New 2D and 3D measuring tools for more accurate control of
architectural drawings.
* Printing: New support for Booklet Printing and Low Resolution
printing of secured documents.
* Significant performance improvement for certain types of forms
via direct rendering for Dynamic Forms.
* Support for documents created with Adobe Acrobat 3D including
navigation, cross-section and rendering.
* Accessibility: Support for Orca.
* Various new additions to the Manage Digital ID feature,
including support for Roaming Credentials, support for
Cryptographic Tokens and Smart Cards (PKCS#11 compliant).
* Support for adding a Digital Signature Field in documents
which have been "Reader Enabled" through Acrobat Professional
on Win/Mac.
* Support for viewing PDF Packages - get an organized view of
your PDFs in a single well-defined interface.
* Support for the PRC format for 3D data.
* Beyond Reader: New help resources that contains up-to-date
information on Adobe products, Adobe Reader and how it can be
used with Adobe¡Çs other products.
* Adobe Help Viewer - a self-contained, one-stop shop for all
help related to the Reader
* Improved Search capabilities, including searching of
sub-documents in a PDF Package, improved searching of
attachments, etc.
http://www.isc.org/index.pl?/sw/bind/bind8-eol.php
Therefore, per the previous announcement, remove the ports for BIND 8.
This includes the chinese/bind8 slave port, and mail/smc-milter which
has a dependency on libbind_r.a from BIND 8.x. The latter has been
unmaintained since 2005, and is 3 versions behind.
Approved by: portmgr (linimon)
GNOME 2.20 release notes can be found at
http://www.gnome.org/start/2.20/notes/en/ . Beyond that, this update
includes the new GIMP 2.4 (courtesy of ahze).
The GNOME 2.20 update also includes a huge change in the FreeBSD GNOME
hierarchy. We are now using the more standard DATADIR of ${PREFIX}/share
rather than ${PREFIX}/share/gnome. The result is that fewer patches and
hacks are needed to port GNOME components to FreeBSD. This will mean some
user changes may be required, so be sure to read /usr/ports/UPDATING for
more details.
This release and the things we accomplished in it would not have been
possible without mezz's crazy idea to collapse DATADIR, and his persistence
to make it happen successfully. Ahze and pav also deserve thanks for
their work on porting modules and testing the whole ball of wax on
pointyhat (respectively).
The FreeBSD GNOME team would also like to thank our various testers and
contributors:
Yasuda Keisuke
Frank Jahnke
Pawel Worach
Brian Gruber
Franz Klammer
Yuri Pankov
Nick Barkas
Cristian KLEIN
Tony Maher
Scot Hetzel
Martin Matuska (mm)
Benoit Dejean
Martin Wilke (miwi)
(And anyone else I may have missed)
PRs fixed in this release:
111272, 113470, 115995, 116338
2007-08-19 chinese/mule-freewnn: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 chinese/xemacs: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 converters/mule-ucs-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 devel/eieio-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 editors/apel-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 editors/bitmap-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 editors/emacs19: emacs19 is obsolete; please use a more recent version
2007-08-19 editors/emacs20: "editors/emacs is recommended instead for new installations"
2007-08-19 editors/flim-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 editors/mule-common: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 editors/mule: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 editors/semi-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 editors/speedbar-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 irc/irchat-pj-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 irc/pure-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/diclookup-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/diclookup-mule: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-canna+freewnn+sj3: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-canna+sj3+wnn6: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-canna+sj3+wnn7: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-canna+sj3: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-canna+wnn6: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-canna+wnn7: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-canna: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-freewnn: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-sj3: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-wnn6: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/mule-wnn7: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/navi2ch-emacs20: emacs20 and related ports are obsolete; please use a more recent version
2007-08-19 japanese/w3: distfile is 10 years old and depends on emacs19 which is obsolete
2007-08-19 korean/mule-freewnn: emacs19 and related ports are obsolete; please use a more recent version
2007-08-19 www/w3: distfile is 10 years old and depends on emacs19 which is obsolete
2007-07-21 graphics/xpcd: is an abandoned project and might be vulnerable
2007-07-29 comms/ixj: does not work on any supported FreeBSD version
2007-08-19 chinese/emacs20: "editors/emacs is recommended instead for new installations"
2007-08-22 java/collections: only needed for jdk1.1, which is obsolete
QT_COMPONENTS can now be depended on at runtime or buildtime only by
specifiying them as <component>_build or <component>_run, respectively.
Specifying <component> without any suffix will depend on the component
at both build- and runtime just like before.
- Convert Qt core ports to use the new dependency switches.
- Add a patch to corelib to fix Qt4 on ARM, submitted by:
Björn König <bkoenig@alpha-tierchen.de>
- This port can be built with GCC 4.x, so remove USE_GCC
- Remove USE_X_PREFIX (it does not directly rely on xlib)
- Install additional documents
- Use COPYTREE_SHARE instead of TAR
- Use DATADIR
PR: ports/114944
Submitted by: Yinghong.Liu <relaxbsd at gmail.com> (maintainer)
Chinese input methods based on XIM (X Input Method), including WuBi, PinYin,
and QuWei.
scim-fcitx is an SCIM IMEngine module for fcitx.
WWW: http://www.fcitx.org
PR: ports/112523
Submitted by: Yinghong.Liu <liu_yinghong at yahoo.com.cn>
