Upstream of the epiphany removed dependency from avahi in 2016, check NEWS file
(/usr/ports/www/epiphany/work/epiphany-3.28.5/NEWS):
3.23.1 - October 24, 2016
=========================
Epiphany has been relicensed from GPLv2+ to GPLv3+.
New dependency:
libhttpseverywhere
Removed dependencies:
avahi-client, avahi-gobject, gdk-x11-3.0, gsettings-desktop-schemas, x11
PR: 247378
Submitted by: VVD <vvd@unislabs.com>
Approved by: gnome (timeout)
- This should fix hangs on startup on FreeBSD 11.4
- Remove NYQUIST option since it is mandatory and disabling it does
not work
Changes: https://www.audacityteam.org/audacity-2-4-2-released/
PR: 247604
Submitted by: maintainer
Fix the creation of the cahce and db dir for rpki-client. When running the
build as root, the rpki-client build infra tries to change the owner of the
cache and db dir, which fails since the user isn't created until later.
Since we deal with special perimissions and owners/groups of files in
pkg-plist anyway, there is no need to try to change the owner/group from the
rpki-client build infra, so add a patch that just creates the directories
without changing ownership.
This fixes the build of rpki-client on the package cluster.
MFH: 2020Q3
(there is no new release and code change since long time,
so use patches to reflect current github version)
- additionally update supported OS for pre compiled so files
- add updating hint to pkg-message
This update contains a security fix for CVE-2020-14196.
The issue is:
CVE-2020-14196: An issue has been found in PowerDNS Recursor where the ACL applied to the internal web server via webserver-allow-from is not properly enforced, allowing a remote attacker to send HTTP queries to the internal web server, bypassing the restriction.
In the default configuration the API webserver is not enabled. Only installations using a non-default value for webserver and webserver-address are affected.
As usual, there were also other smaller enhancements and bugfixes. In particular, the 4.3.2 release contains fixes that allow long CNAME chains to resolve properly, where previously they could fail if qname minimization is enabled.
PR: 247707
Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
MFH: 2020Q3
Security: 641cd669-bc37-11ea-babf-6805ca2fa271
Sponsored by: Netzkommune GmbH