The NetBSD Project

CVS log for pkgsrc/devel/apr-util/patches/patch-aa

[BACK] Up to [cvs.NetBSD.org] / pkgsrc / devel / apr-util / patches

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.7 / (download) - annotate - [select for diffs], Tue Dec 10 08:27:06 2013 UTC (6 years, 9 months ago) by obache
Branch: MAIN
CVS Tags: pkgsrc-2020Q2-base, pkgsrc-2020Q2, pkgsrc-2020Q1-base, pkgsrc-2020Q1, pkgsrc-2019Q4-base, pkgsrc-2019Q4, pkgsrc-2019Q3-base, pkgsrc-2019Q3, pkgsrc-2019Q2-base, pkgsrc-2019Q2, pkgsrc-2019Q1-base, pkgsrc-2019Q1, pkgsrc-2018Q4-base, pkgsrc-2018Q4, pkgsrc-2018Q3-base, pkgsrc-2018Q3, pkgsrc-2018Q2-base, pkgsrc-2018Q2, pkgsrc-2018Q1-base, pkgsrc-2018Q1, pkgsrc-2017Q4-base, pkgsrc-2017Q4, pkgsrc-2017Q3-base, pkgsrc-2017Q3, pkgsrc-2017Q2-base, pkgsrc-2017Q2, pkgsrc-2017Q1-base, pkgsrc-2017Q1, pkgsrc-2016Q4-base, pkgsrc-2016Q4, pkgsrc-2016Q3-base, pkgsrc-2016Q3, pkgsrc-2016Q2-base, pkgsrc-2016Q2, pkgsrc-2016Q1-base, pkgsrc-2016Q1, pkgsrc-2015Q4-base, pkgsrc-2015Q4, pkgsrc-2015Q3-base, pkgsrc-2015Q3, pkgsrc-2015Q2-base, pkgsrc-2015Q2, pkgsrc-2015Q1-base, pkgsrc-2015Q1, pkgsrc-2014Q4-base, pkgsrc-2014Q4, pkgsrc-2014Q3-base, pkgsrc-2014Q3, pkgsrc-2014Q2-base, pkgsrc-2014Q2, pkgsrc-2014Q1-base, pkgsrc-2014Q1, pkgsrc-2013Q4-base, pkgsrc-2013Q4, HEAD
Changes since 1.6: +8 -1 lines
Diff to previous 1.6 (colored)

Add comments to patch-aa from commit logs.

Revision 1.6 / (download) - annotate - [select for diffs], Tue Dec 10 05:47:59 2013 UTC (6 years, 9 months ago) by obache
Branch: MAIN
Changes since 1.5: +4 -12 lines
Diff to previous 1.5 (colored)

Restore patch-aa, 2nd hunk is still required, especially expat is in ${X11BASE}
and ${X11BASE}/lib is not in default rpath.

Bump PKGREVISION.

Revision 1.5, Sun Dec 1 20:40:13 2013 UTC (6 years, 9 months ago) by ryoon
Branch: MAIN
Changes since 1.4: +1 -1 lines
FILE REMOVED

Remove obsolete patch, noticed by adam@, thank you.

Revision 1.4 / (download) - annotate - [select for diffs], Thu Jul 4 15:21:51 2013 UTC (7 years, 2 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2013Q3-base, pkgsrc-2013Q3
Changes since 1.3: +20 -11 lines
Diff to previous 1.3 (colored)

Update to 1.5.2:

Changes with APR-util 1.5.2

  *) Windows: Add command line makefiles. [Gregg Smith]

  *) apr_uri_parse(): Do not accept invalid characters in the scheme.
     Per RFC 3986 3.3, enforce that the first segment of a relative path does
     not contain a colon. PR 52479. [Stefan Fritsch]

  *) Fix memory leak in hook sorting function. PR 51256.
     [<horowity checkpoint com>]

  *) Speedup md5 calculation by avoiding some copying on little endian
     architectures. PR 49011. [Stefan Fritsch, Stefan Fuhrmann
     <stefanfuhrmann alice-dsl de>]

  *) Use heap memory for crypt in apr_password_validate(), to reduce stack
     usage. PR 54572. [Stefan Fritsch]

  *) Fix password validation failure for all crypt and crypt_r based
     algorithms. PR 54603.  [Harvey Eneman <harvey.eneman oracle.com>]

  *) Fix syntax error in crypto/apr_passwd.c on non-glibc systems. PR 54275.
     [Stefan Fritsch]

  *) Fix potential data corruption in apr_brigade_write() and friends if
     the last bucket of the brigade is a heap bucket that has been split,
     and there are still references to the next part of the original bucket
     in use. [Stefan Fritsch]

  *) Remove duplicated logic in apr_brigade_puts(). PR 53740. [Christophe
     Jaillet <christophe jaillet wanadoo fr>]

  *) apr_crypto: If --with-crypto is passed to configure but no crypto
     libraries are enabled, autodetect available libraries.  [Jeff Trawick]

  *) memcache: Fix dead server retry logic.  [Gavin Shelley <columbusmonkey me.com>]

Changes with APR-util 1.5.1

  *) testmemcache: Fix crash. PR 52705. [Peter Poeml <peter poeml de>]

  *) MinGW: Support shared builds of apr-util when apr is shared.
     PR 46175.  [Carlo Bramini <carlo.bramix libero.it>, Jeff Trawick]

  *) Add support for Berkeley DB 5.2 and 5.3. Simplify detection script.
     PR 53684.  [Rainer Jung]

  *) configure: Allow to specify library specific custom linker flags
     via the LDADD_XXX variables. [Rainer Jung]

  *) apr_password_validate(): Fix intermittent errors on systems
     such as FreeBSD where the crypt() function is used.
     (Broken only in 1.5.0)  [Jeff Trawick]

  *) Improve platform detection for bundled expat by updating
     config.guess and config.sub. [Rainer Jung]

Changes with APR-util 1.5.0

  *) dbd_pgsql_escape: Use PQescapeStringConn. [Nick Kew]

  *) apr_password_validate, apr_bcrypt_encode: Add support for bcrypt encoded
     passwords. The bcrypt implementation uses code from crypt_blowfish
     written by Solar Designer <solar openwall com>. apr_bcrypt_encode creates
     hashes with "$2y$" prefix, but apr_password_validate also accepts the old
     prefix "$2a$". PR 49288. [Stefan Fritsch]

  *) APR dbd: Allow to use apr_dbd_get_row() with a different pool than
     apr_dbd_select(). PR 53533. [<arthur echo gmail com>]

  *) APR dbd FreeTDS support: Fix spurious API errors caused by uninitialized
     fields.  [TROY.LIU Ч<TROY.LIU deltaww.com.cn>]

  *) apr_password_validate: Increase maximum hash string length to allow
     more than 9999 rounds with sha512-crypt. PR 53410. [Stefan Fritsch]

  *) Fix segfaults in crypt() and crypt_r() failure modes.
     PR 47272.  [Arkadiusz Miskiewicz <arekm pld-linux.org>]

  *) apr_crypto: Ensure that the if/else that governs the static
     initialisation of each crypto driver works when the first driver
     isn't in use. [Graham Leggett]

  *) apr_crypto: Ensure the *driver variable is initialised when a statically
     compiled library is initialised for the first time. [Graham Leggett]

  *) apr_crypto: Ensure the *driver variable is initialised when the library
     has already been loaded. Fix ported from apr_dbd. [Graham Leggett]

  *) apr_crypto: Move the static initialisation of DRIVER_LOAD from
     apr_crypto_init() to apr_crypto_get_driver(), so that we don't lose
     the parameters. [Graham Leggett]

Changes with APR-util 1.4.3

  *) Fix potential data corruption in apr_brigade_write() and friends if
     the last bucket of the brigade is a heap bucket that has been split,
     and there are still references to the next part of the original bucket
     in use. [Stefan Fritsch]

  *) Remove duplicated logic in apr_brigade_puts(). PR 53740. [Christophe
     Jaillet <christophe jaillet wanadoo fr>]

  *) memcache: Fix dead server retry logic.  [Gavin Shelley <columbusmonkey me.com>]

  *) Improve platform detection for bundled expat by updating
     config.guess and config.sub. [Rainer Jung]

  *) APR dbd: Allow to use apr_dbd_get_row() with a different pool than
     apr_dbd_select(). PR 53533. [<arthur echo gmail com>]

  *) APR dbd FreeTDS support: Fix spurious API errors caused by uninitialized
     fields.  [TROY.LIU Ч<TROY.LIU deltaww.com.cn>]

  *) apr_password_validate: Increase maximum hash string length to allow
     more than 9999 rounds with sha512-crypt. PR 53410. [Stefan Fritsch]

  *) Fix segfaults in crypt() and crypt_r() failure modes.
     PR 47272.  [Arkadiusz Miskiewicz <arekm pld-linux.org>]

  *) apr_crypto: Ensure that the if/else that governs the static
     initialisation of each crypto driver works when the first driver
     isn't in use. [Graham Leggett]

  *) apr_crypto: Ensure the *driver variable is initialised when a statically
     compiled library is initialised for the first time. [Graham Leggett]

  *) apr_crypto: Ensure the *driver variable is initialised when the library
     has already been loaded. Fix ported from apr_dbd. [Graham Leggett]

Changes with APR-util 1.4.2 (not released)

  *) apr_crypto: Move the static initialisation of DRIVER_LOAD from
     apr_crypto_init() to apr_crypto_get_driver(), so that we don't lose
     the parameters. [Graham Leggett]

Revision 1.2.14.1 / (download) - annotate - [select for diffs], Fri Oct 15 07:06:49 2010 UTC (9 years, 11 months ago) by spz
Branch: pkgsrc-2010Q2
Changes since 1.2: +6 -7 lines
Diff to previous 1.2 (colored) next main 1.3 (colored)

Pullup ticket 3243 - requested by tron
security update

Revisions pulled up:
- pkgsrc/devel/apr-util/Makefile		1.17
- pkgsrc/devel/apr-util/distinfo		1.9
- pkgsrc/devel/apr-util/patches/patch-aa	1.3

Files removed:
- pkgsrc/devel/apr-util/patches/patch-ab

-------------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   tron
   Date:           Wed Oct 13 19:21:16 UTC 2010

   Modified Files:
           pkgsrc/devel/apr-util: Makefile distinfo
           pkgsrc/devel/apr-util/patches: patch-aa
   Removed Files:
           pkgsrc/devel/apr-util/patches: patch-ab

   Log Message:
   Update "apr-util" package to version 1.3.10. Changes since 1.3.9:
   - SECURITY: CVE-2010-1623 (cve.mitre.org)
     Fix a denial of service attack against apr_brigade_split_line().
     [Stefan Fritsch]
   - SECURITY: CVE-2009-3560, CVE-2009-3720 (cve.mitre.org)
     Fix two buffer over-read flaws in the bundled copy of expat which
     could cause applications to crash while parsing specially-crafted
     XML documents.  [Joe Orton]
   - Upgrade bundled copy of expat library to 1.95.7.  [Joe Orton]
   - apr_thread_pool: Fix some potential deadlock situations.  Bug 49709.
     [Joe Mudd <Joe.Mudd sas.com>]
   - apr_thread_pool_create: Fix pool corruption caused by multithreaded
     use of the pool when multiple initial threads are created.  Bug 47843.
     [Alex Korobka <akorobka fxcm.com>]
   - apr_thread_pool_create(): Only set the output thread pool handle on
     success.  [Paul Querna]
   - DBD ODBC support: Fix memory corruption using apr_dbd_datum_get() with
     several different data types, including APR_DBD_TYPE_TIME.  Bug 49645.
     [<kappa psilambda.com>]
   - Add support for Berkeley DB 4.8 and 5.0.  Bug 49866, Bug 49179.
     [Bernhard Rosenkraenzer <br blankpage.ch>,
      Arfrever Frehtes Taifersar Arahesis <arfrever.fta gmail.com>]
   - Make bundled expat compatible with libtool 2.x.  Bug 49053.
     [Rainer Jung]
   - Prefer libtool 1.x when searching for libtool in
     bundled expat release process. [Rainer Jung, Jim Jagielski]
   - Improve platform detection for bundled expat by updating
     config.guess and config.sub. [Rainer Jung]

   Patch supplied by Mihai Chelaru, approved by Alistair Crooks.


   To generate a diff of this commit:
   cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/apr-util/Makefile
   cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/apr-util/distinfo
   cvs rdiff -u -r1.2 -r1.3 pkgsrc/devel/apr-util/patches/patch-aa
   cvs rdiff -u -r1.2 -r0 pkgsrc/devel/apr-util/patches/patch-ab

Revision 1.3 / (download) - annotate - [select for diffs], Wed Oct 13 19:21:16 2010 UTC (9 years, 11 months ago) by tron
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base, pkgsrc-2013Q2, pkgsrc-2013Q1-base, pkgsrc-2013Q1, pkgsrc-2012Q4-base, pkgsrc-2012Q4, pkgsrc-2012Q3-base, pkgsrc-2012Q3, pkgsrc-2012Q2-base, pkgsrc-2012Q2, pkgsrc-2012Q1-base, pkgsrc-2012Q1, pkgsrc-2011Q4-base, pkgsrc-2011Q4, pkgsrc-2011Q3-base, pkgsrc-2011Q3, pkgsrc-2011Q2-base, pkgsrc-2011Q2, pkgsrc-2011Q1-base, pkgsrc-2011Q1, pkgsrc-2010Q4-base, pkgsrc-2010Q4, pkgsrc-2010Q3-base, pkgsrc-2010Q3
Changes since 1.2: +6 -7 lines
Diff to previous 1.2 (colored)

Update "apr-util" package to version 1.3.10. Changes since 1.3.9:
- SECURITY: CVE-2010-1623 (cve.mitre.org)
  Fix a denial of service attack against apr_brigade_split_line().
  [Stefan Fritsch]
- SECURITY: CVE-2009-3560, CVE-2009-3720 (cve.mitre.org)
  Fix two buffer over-read flaws in the bundled copy of expat which
  could cause applications to crash while parsing specially-crafted
  XML documents.  [Joe Orton]
- Upgrade bundled copy of expat library to 1.95.7.  [Joe Orton]
- apr_thread_pool: Fix some potential deadlock situations.  Bug 49709.
  [Joe Mudd <Joe.Mudd sas.com>]
- apr_thread_pool_create: Fix pool corruption caused by multithreaded
  use of the pool when multiple initial threads are created.  Bug 47843.
  [Alex Korobka <akorobka fxcm.com>]
- apr_thread_pool_create(): Only set the output thread pool handle on
  success.  [Paul Querna]
- DBD ODBC support: Fix memory corruption using apr_dbd_datum_get() with
  several different data types, including APR_DBD_TYPE_TIME.  Bug 49645.
  [<kappa psilambda.com>]
- Add support for Berkeley DB 4.8 and 5.0.  Bug 49866, Bug 49179.
  [Bernhard Rosenkraenzer <br blankpage.ch>,
   Arfrever Frehtes Taifersar Arahesis <arfrever.fta gmail.com>]
- Make bundled expat compatible with libtool 2.x.  Bug 49053.
  [Rainer Jung]
- Prefer libtool 1.x when searching for libtool in
  bundled expat release process. [Rainer Jung, Jim Jagielski]
- Improve platform detection for bundled expat by updating
  config.guess and config.sub. [Rainer Jung]

Patch supplied by Mihai Chelaru, approved by Alistair Crooks.

Revision 1.2 / (download) - annotate - [select for diffs], Sun Nov 2 15:05:11 2008 UTC (11 years, 10 months ago) by cube
Branch: MAIN
CVS Tags: pkgsrc-2010Q2-base, pkgsrc-2010Q1-base, pkgsrc-2010Q1, pkgsrc-2009Q4-base, pkgsrc-2009Q4, pkgsrc-2009Q3-base, pkgsrc-2009Q3, pkgsrc-2009Q2-base, pkgsrc-2009Q2, pkgsrc-2009Q1-base, pkgsrc-2009Q1, pkgsrc-2008Q4-base, pkgsrc-2008Q4
Branch point for: pkgsrc-2010Q2
Changes since 1.1: +2 -2 lines
Diff to previous 1.1 (colored)

Don't let the build's LDFLAGS be polluted by what provides apr, because apr
doesn't know about all dependencies of apr-util.  Otherwise the final binary
wouldn't have the proper RPATHs.

Bump PKGREVISION.

Revision 1.1 / (download) - annotate - [select for diffs], Sat Apr 28 06:23:04 2007 UTC (13 years, 5 months ago) by minskim
Branch: MAIN
CVS Tags: pkgsrc-2008Q3-base, pkgsrc-2008Q3, pkgsrc-2008Q2-base, pkgsrc-2008Q2, pkgsrc-2008Q1-base, pkgsrc-2008Q1, pkgsrc-2007Q4-base, pkgsrc-2007Q4, pkgsrc-2007Q3-base, pkgsrc-2007Q3, pkgsrc-2007Q2-base, pkgsrc-2007Q2, cwrapper, cube-native-xorg-base, cube-native-xorg

Use libtool in the wrapper directory instead of the one installed by
apr.  Otherwise, dependency_libs in libaprutil-1.la is set incorrectly.

Bump PKGREVISION.

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>