It addresses these vulnerabilities:
- Addressing two issues reported by Jouko Pynnonen:
- Forced placement of downloaded skin-files in undesirable locations
- Buffer overflow when processing skins
- Additionally, added an OpenSSL ASN.1 patch
(from OpenSSL 0.9.6k, November 4, 2003)
Submitted by: Arjan van Leeuwen <avleeuwen@piwebs.com> (maintainer)
PR: 59542
In the process, fix the packing list to obtain a clean
pkg_add/pkg_deinstall sequence (a number of empty directory
where not created in previous versions)
The generated package now includes directives to fix
file/dir ownership after install, so that the installed tree
is identical to what you obtain after 'make install' from
the port.
Summary of changes to Tomcat since 4.1.27:
. The Coyote connector (HTTP/1.1 and AJP/1.3) has been
upgraded to Coyote 1.1, which is the one used by Tomcat
5.0.x.
. Upgrade distributed jars: DBCP (1.1) commons-modeler (1.1)
Xerces (2.5.0) regexp (1.3).
. Added support for nesting a Context Listener and a Webapp
Loader within a DefaultContext.
. Minor docs updates.
. StandardContext: Fix reloading regression.
. StandardDefaultContext: Fix support for defining
ResourceLink
. StandardWrapperValve: Fix infinite recursion when logging
in certain cases
. JNDIRealm: Many bugfixes (18698, 11678, 19864, 20518,
. 14817, 22236), and allow multiple user patterns.
. CGI Servlet: Bugfixes (22857, 22858).
. WebDAV Servlet: Fix bad handling of the destinationPath
URL.
. SecurityClassLoad: Preload a few additional classes from
Coyote.
. MemoryUser: XML-escape the values when writing out the
tomcat-users.xml file.
Submitted by: Angelo Turetta <aturetta@commit.it>
PR: 58973
board. No 'mode' parameter is allowed. According to Amazon's
developer's kit, this will result in up to three matches per
category and can yield a total of 45 matches.
PR: ports/59414
Submitted by: Cheng-Lung Sung <clsung@dragon2.net> (maintainer)
- Update to 20031022 snapshot (committer's note: almost entirely documentation
updates although there are some very minor bugfixes)
- set correctly inn tmpdir [PR 57859: thanks to G. Paul Ziemba"
<p-fbsd-bugs@treehouse.napa.ca.us>]
- fix PKG_PREFIX for pkg-install, now post install script knows correct prefix
- add support for db41, db4, db3 in ovdb.
PR: ports/58395
Submitted by: Clement Laforet <sheepkiller@cultdeadsheep.org> (maintainer)
- set correctly inn tmpdir [PR 57859: thanks to G. Paul Ziemba"
<p-fbsd-bugs@treehouse.napa.ca.us>]
- fix PKG_PREFIX for pkg-install, now post install script knows correct prefix
- add support for db4, db3 in ovdb.
Note for users:
inn 2.4.0 DOESN'T SUPPORT db4.1. If you want to use db4.1, use inn-stable
instead.
PR: ports/58394
Submitted by: Clement Laforet <sheepkiller@cultdeadsheep.org> (maintainer)
- modified port mail/squirrelmail to allow a slave port
- added CONFLICTS for mail/squirrelmail and japanese/squirrelmail
PR: 58280
Submitted by: Masafumi Otsune <info@otsune.com>
Approved by: marcus (mentor)
* Check to make sure new ports do not contain PORTEPOCH
* Throw a FATAL error if an additional file exists in the port directory but
not in CVS [2]
* Throw a FATAL error if a file is in CVS but not in the port's directory [2]
* Throw a FATAL error if a file was deleted from CVS but still in the port's
directory [2]
* Warn if a new file contains a non-empty RCS Id [2]
* Add a missing ``if ($verbose)'' [2]
Submitted by: arved [1]
eik [2]
depends a location of run-time link-editor. Since FreeBSD has
dynamic root capability from __FreeBSD_version == 501105, we
should add new location to unbreak the script.
PR: 59511
Submintted by: MAINTAINER
