- Bump PORTREVISION
Changes:
- CVE-2006-7243
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow
context-dependent attackers to bypass intended access restrictions by placing a
safe file extension after this character, as demonstrated by .php\0.jpg at the
end of the argument to the file_exists function
Secuity 3761df02-0f9c-11e0-becc-0022156e8794 fixed by check in fopen functions
for strlen(filename) != filename_len
- CVE-2012-4388
The sapi_header_op function in main/SAPI.c does not properly determine a pointer
during checks for %0D sequences (aka carriage return characters), which allows
remote attackers to bypass an HTTP response-splitting protection mechanism via a
crafted URL, this vulnerability exists because of an incorrect fix for
CVE-2011-1398.
- Timezone database updated to version 2012.9 (2012i)
PR: ports/173685
Submitted by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com>
Approved by: maintainer
Feature safe: yes
All methods that alter the contents of an array that implements
this Gem are first checked to ensure that the added items are of
the types allowed. All methods behave exactly as their Array
counterparts, including additional forms, block processing, etc.
WWW: https://github.com/yaauie/typed-array
Feature safe: yes
This package serves two purposes:
(i) Provide a comfortable R interface to query the Google server
for static maps.
(ii) Use the map as a background image to overlay plots within R.
This requires proper coordinate scaling.
WWW: http://cran.r-project.org/web/packages/RgoogleMaps/
Feature safe: yes
This package provides an easy and simple way to read, write and
display bitmap images stored in the PNG format. It can read and
write both files and in-memory raw vectors.
WWW: http://www.rforge.net/png/
Feature safe: yes
in bsd.options.desc.mk.
Fix build on i386 by partially reverting r307565. Only a partial revert
because I worked around a bug where ${PERL} was not recognized after switching
to new style options.
Feature safe: yes
console interface that allows traffic flows to be inspected and edited on the
fly.
'mitmdump' is the command-line version of mitmproxy, with the same
functionality but without the frills. Think tcpdump for HTTP.
WWW: http://mitmproxy.org/index.html
PR: ports/173449
Submitted by: Hung-Yi Chen <gaod@hychen.org>
Feature safe: yes
property set. No need to bump portrevision as it's a build fix.
PR: ports/173712
Submitted by: Craig Leres <leres@ee.lbl.gov> (maintainer)
Feature safe: yes
- Fix installation so it doesn't overwrite your config files every time you
upgrade the port
- Fix some space/tab issues to make portlint happy
- Use dirrmtry in a few places because some people have their own custom
filters, actions, etc.
PR: ports/171708
Submitted by: Mark Felder <feld@feld.me>
Approved by: Christoph Theis <theis@gmx.at> (maintainer)
Feature safe: yes
