- CVE-2009-1492
The getAnnots Doc method in the JavaScript API in Adobe Reader
and Acrobat 9.1, 8.1.4, 7.1.1, and earlier allows remote
attackers to cause a denial of service (memory corruption) or
execute arbitrary code via a PDF file that contains an
annotation, and has an OpenAction entry with JavaScript code
that calls this method with crafted integer arguments.
- CVE-2009-1493
The customDictionaryOpen spell method in the JavaScript API in
Adobe Reader 8.1.4 and 9.1 on Linux allows remote attackers to
cause a denial of service (memory corruption) or execute
arbitrary code via a PDF file that triggers a call to this
method with a long string in the second argument.
Security: CVE-2009-1492
Security: CVE-2009-1493
Security: http://www.adobe.com/support/security/bulletins/apsb09-06.html
See original release announcement for details:
http://kde.org/announcements/announce-4.2.3.php
New ports:
devel/kdebindings4:
Meta port of KDE bindings for C#, Java, PHP, Python and Ruby.
Currently only Python bindings are supported.
devel/kdebindings4-python, devel/kdebindings4-python-krosspython,
devel/kdebindings4-python-pykde4:
Python bindings for KDE.
print/kdeutils4-printer-applet:
printer-applet is a system tray utility. It shows current print jobs,
shows printer warnings and errors and shows when printers that have
been plugged in for the first time are being auto-configured by
hal-cups-utils. It replaces kjobviewer in KDE 3.
print/system-config-printer-kde
A port of Gnome system-config-printer to KDE.
both current (fc4) and future linux (f8) distributions at one
ports tree.
The patch contains full changes to ports/Mk files and all ports involved.
But only infrastructure is changed. The resulting packages are the same as
before. Hence no need to bump PORTREVISIONs.
The idea was taken from bsd.gnome.mk and others.
More than 130 ports are switched to follow a new linux infrastructure
introduced by changes to bsd.port.mk, bsd.linux-rpm.mk and a new
bsd.linux-apps.mk.
Thanks for all who was involved and helped me with this work.
And help from Alexander Leidinger was incredible.
Other changes are coming. Stay tuned!
PR: ports/132510
Submitted by: bsam (me)
Exp-run by: portmgr (pav)
multimedia/phonon port has been split into phonon itself, phonon-xine
and phono-gstreamer backends. After updating phonon port you have
to install at least one backend. phonon-xine backend is recommended
for KDE.
for FreeBSD. The official KDE 4.2.0 (Codename: "The Answer") release
notes can be found at:
http://kde.org/announcements/4.2/index.php.
New supported languages include Arabic, Icelandic, Basque,
Hebrew, Romanian, Tajik and several Indian languages (Bengali India,
Gujarati, Kannada, Maithili, Marathi) indicating a rise in popularity in
this part of Asia.
New ports for KDE 4.2.0:
arabic/kde4-l10n Arabic
hebrew/kde4-l10n Hebrew
misc/kde4-l10n-bn_IN Bengali (India)
misc/kde4-l10n-eu Basque
misc/kde4-l10n-gu Gujarati
misc/kde4-l10n-is Icelandic
misc/kde4-l10n-kn Kannada
misc/kde4-l10n-mai Maithili
misc/kde4-l10n-mr Marathi
misc/kde4-l10n-ro Romanian
misc/kde4-l10n-tg Tajik
math/eigen2 Lightweight library for vector and matrix math
graphics/kipi-plugins-kde4 KDE4 kipi graphics plugins
sysutils/policykit-kde PolicyKit manager for KDE
Unfortunately FreeBSD 6.4 support is dropped.
We'd like to say thanks for feedback and help to:
Matt Tosto, Kris Moore, stickibit, David Johnson, Markus Brueffer,
David Naylor, Thomas Schlesinger, Warren Liddell, Thomas Abthorpe,
Diego Depaoli, Mats Andreassen, portmgr for exp-run and repocopies.
ports/portuguese/aspell -> ports/portuguese/aspell-pt_PT
o Disconnect from build
ports/portuguese/aspell
o Connect to build
ports/portuguese/aspell-pt_PT
PR: 129339
Repocopy performed by: marcus (portmgr)
for FreeBSD. The official KDE 4.1.1 release notes can be found at
http://www.kde.org/announcements/changelogs/changelog4_1to4_1_1.php.
KDE Community ships sirst translation and service release of the 4.1
dree desktop, containing numerous bugfixes, Performance Improvements
and Translation Updates.
Pretty much all applications have received the developers' attention,
resulting in a long list of bugfixes and improvements. The most significant
changes are:
* Significant performance, interaction and rendering correctness
improvements in KHTML and Konqueror, KDE's web browser
* User interaction, rendering and stability fixes in Plasma,
the KDE4 desktop shell
* PDF backend fixes in the document viewer Okular
* Fixes in Gwenview, the image viewer's thumbnailing, more
robust retrieval and display of images with broken metadata
* Stability and interaction fixes in KMail
New Ports:
- graphics/kcoloredit
* KColorEdit is a palette files editor. It can be used
for editing color palettes and for color choosing and
naming.
- graphics/kgraphviewer
* KGraphViewer is a GraphViz DOT graph viewer for KDE. The
GraphViz programs are free-software layout engines for graphs.
KGraphViewer displays the graphs in a modern, user-friendly GUI
with all the power of a well integrated KDE application.
- graphics/kiconedit
* KIconEdit is designed to help create icons for KDE using the standard
icon palette.
- graphics/skanlite
* Skanlite is a simple image scanning application that does nothing
more than scan and save images. Skanlite can open a save dialog for
every image scanned or save the images immediately in a specified
directory with auto-generated names and format. The user can also
choose to show the scanned image before saving.
of KDE 3.5.10 for FreeBSD. The official KDE 3.5.10 release
notes can be found at:
http://www.kde.org/announcements/announce-3.5.10.php
While not a very exciting release in terms of features,
3.5.10 brings a couple of nice bugfixes and translation
updates to those who choose to stay with KDE 3.5. The
fixes are thinly spread across KPDF with a number of crash
fixes, KGPG and probably most interesting various fixes
in kicker, KDE3's panel:
* Improved visibility on transparent backgrounds
* Themed arrow buttons in applets that were missing them
* Layout and antialiasing fixes in various applets
Approved by: portmgr (erwin/pav)
of KDE 3.5.9 for FreeBSD. The official KDE 3.5.9 release
notes can be found at:
http://www.kde.org/announcements/announce-3.5.9.php
After the KDE 4.1.0 import the team found time to make
KDE 3.5.9 ready for the Ports tree.
KDE 3.5.9 was released six months ago and 3.5.10 is coming
soon. We are not sure we have time to get 3.5.10 for FreeBSD
7.1/6.4 release, but we would have minimum 3.5.9 for those
people who prefer to stay with KDE3.
Of course Thanks to all Testers.
for FreeBSD. The official KDE 4.1.0 release notes can be found at
http://www.kde.org/announcements/4.1/.
Some note:
* Prefix
KDE4 will be install into a custom prefixes namely ${LOCALBASE}/kde4.
KDE4 and KDE3 can co-exist
* Sound
For sound to work, it is necessary to have dbus and hal enabled
in your system. Please see the respective documentation on how
to enable these.
For more Informations see the HEADS UP at ports@ and kde-freebsd@
or our wiki page http://wiki.freebsd.org/KDE4/Install.
Have fun!
| A critical vulnerability has been identified in Adobe Reader and
| Acrobat 8.1.2. This vulnerability would cause the application to
| crash and could potentially allow an attacker to take control of
| the affected system.
Security: CVE-2008-2641
Security: CVE-2008-0883
Security: http://www.adobe.com/support/security/bulletins/apsb08-15.html
The affected ports are the ones with gettext as a run-dependency
according to ports/INDEX-7 (5007 of them) and the ones with USE_GETTEXT
in Makefile (29 of them).
PR: ports/124340
Submitted by: edwin@
Approved by: portmgr (pav)
- Remove USE_XLIB/USE_X_PREFIX/USE_XPM in favor of USE_XORG
- Remove X11BASE support in favor of LOCALBASE or PREFIX
- Use USE_LDCONFIG instead of INSTALLS_SHLIB
- Remove unneeded USE_GCC 3.4+
Thanks to all Helpers:
Dmitry Marakasov, Chess Griffin, beech@, dinoex, rafan, gahr,
ehaupt, nox, itetcu, flz, pav
PR: 116263
Tested on: pointyhat
Approved by: portmgr (pav)
http://blogs.adobe.com/acroread/2008/02/#a005029:
[General Issues]
* Font caching Issues: Various font caching issues are fixed in Reader
8.1.2, including the issue of fonts that were configured using
fontconfig not being picked up by the Reader to render documents
(reported by Novell).
* Problem with Dual-screen setup (Xinerama mode).: Issue number 4
listed on the Known Issues page for Reader 8.1.1.
* Document ordering and fullscreen mode: Issue has been fixed in
Reader 8.1.2.
* Font KozGoProVI-Medium.otf is missing in Japanese Reader: This issue
is fixed in Reader 8.1.2.
[Printing Related Issues]
* Incorrect orientation: Issues with printing PDF files containing
portrait and landscape pages have been fixed in Reader
8.1.2. Choosing "Auto Rotate and Center" will now print the pages in
their inherent orientation.
* Red wash on printing with HP CLJ 2605: A workaround for this has
been added in the preferences
($HOME/.adobe/Acrobat/8.0/Preferences/reader_prefs), namely
"brokenCRDs". This value is set to "false" by default and can be
modified to "true" if one faces the red background issue.
* Scaling issues: Problems with -shrink/-expand options in the command
line (Issue #1 listed on the Known Issues page for Reader 8.1.1) as
well as with "Custom" printing in the dialog have been fixed in
Reader 8.1.2.
* Reader does not remember last chosen printer across sessions: Last
chosen printer is now remembered between different sessions of the
Reader in 8.1.2 release.
* Cannot pipe PDF as input to acroread: PDF contents can be read from
stdin when using the -toPostScript option.
* Hardcoding of printer command: Earlier the printer command was
hardcoded in the reader binary. This has been fixed in Reader 8.1.2
to pick up the command from the PATH environment variable.
languages). Changes from 7.x include:
User Interface:
* New improved UI with more real-estate in terms of page view
space. Only the most commonly used tools are present in the
toolbar by default (and the toolbar can be customized by the
user according to his/her own preference.)
* Sleek design and new stylish user interface
elements (including toolbars, navigation tabs, panes, etc.)
for a more rich user experience.
* Improved launch time and overall performance. Less waiting,
more work.
* Support for Single Document Interface (SDI) mode for improved
usability. Less cluttered, more intuitive.
* Always-available search toolbar (includes find and access to
search pane)
New Features:
* Support for playing Multimedia-enabled PDF documents for
supported media types (linux). Play Real media and more!
* Support for participating in Shared Reviews along with other
users of Adobe Reader 8.x on Unix, and Adobe Reader/Acrobat
8.x on Win/Mac. Collaborate right inside the Reader.
* Improvements in Commenting and Drawing Markup tools.
* New tools such as Loupe Tool, Pan and Zoom. Expand your
horizons, and control what you want to see.
* Support for dynamically rendered bar code generation in forms.
* Updated Review Tracker with inbuilt support for RSS feeds. Use
the Reader as your RSS feed reader!
* New 2D and 3D measuring tools for more accurate control of
architectural drawings.
* Printing: New support for Booklet Printing and Low Resolution
printing of secured documents.
* Significant performance improvement for certain types of forms
via direct rendering for Dynamic Forms.
* Support for documents created with Adobe Acrobat 3D including
navigation, cross-section and rendering.
* Accessibility: Support for Orca.
* Various new additions to the Manage Digital ID feature,
including support for Roaming Credentials, support for
Cryptographic Tokens and Smart Cards (PKCS#11 compliant).
* Support for adding a Digital Signature Field in documents
which have been "Reader Enabled" through Acrobat Professional
on Win/Mac.
* Support for viewing PDF Packages - get an organized view of
your PDFs in a single well-defined interface.
* Support for the PRC format for 3D data.
* Beyond Reader: New help resources that contains up-to-date
information on Adobe products, Adobe Reader and how it can be
used with Adobe¡Çs other products.
* Adobe Help Viewer - a self-contained, one-stop shop for all
help related to the Reader
* Improved Search capabilities, including searching of
sub-documents in a PDF Package, improved searching of
attachments, etc.