Number of commits found: 25

Versions 3.2.0 and earlier of the pidgin-otr plugin contain
a format string security flaw. This flaw could potentially be
exploited by a remote attacker to cause arbitrary code to be
executed on the user's machine.

The flaw is in pidgin-otr, not in libotr. Other applications
that use libotr are not affected.

Remove license info

- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav

Indicate my preference against bumping PORTREVISION in these ports
without a good reason

- Chase the libgcrypt shared lib version

Chase security/libgcrypt shlib bump.

PR:             ports/148755
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>

Add LICENSE information to my ports where the right answer is obvious

Bounce PORTREVISION for gettext-related ports.  Have fun, ya'll.

- update to 1.4.1
Reviewed by:    exp8 run on pointyhat
Supported by:   miwi

- update to jpeg-8

- bump all port that indirectly depends on libjpeg and have not yet been bumped
or updated
Requested by:   edwin

Where it matters, update regarding MAKE_JOBS_{UN}SAFE for my ports

- Bump PORTREVISION due to share library version bump in security/libgcrypt

PR:              ports/127478

Update to version 3.2.0, released June 15th. The configuration and
"OTR button" functionality have been moved to a menu. Also, "Buddy
authentication has been revamped, based on the user study published
in SOUPS 2008." The old authentication methods are still allowed.

This version adds locale files for ar, de, hu, and ru.

Drop the specific library version number for libpurple to
(hopefully) avoid churn down the road.

Assume maintainership, and add my website to MASTER_SITES.

Approved by:    Maintainer timeout

Bump portrevision due to upgrade of devel/gettext.

The affected ports are the ones with gettext as a run-dependency
according to ports/INDEX-7 (5007 of them) and the ones with USE_GETTEXT
in Makefile (29 of them).

PR:             ports/124340
Submitted by:   edwin@
Approved by:    portmgr (pav)

- Remove unneeded dependency from gtk12/gtk20 [1]
- Remove USE_XLIB/USE_X_PREFIX/USE_XPM in favor of USE_XORG
- Remove X11BASE support in favor of LOCALBASE or PREFIX
- Use USE_LDCONFIG instead of INSTALLS_SHLIB
- Remove unneeded USE_GCC 3.4+

Thanks to all Helpers:
        Dmitry Marakasov, Chess Griffin, beech@, dinoex, rafan, gahr,
        ehaupt, nox, itetcu, flz, pav

PR:             116263
Tested on:      pointyhat
Approved by:    portmgr (pav)

Chase the libpurple shared lib version.

- Chase libpurple shlib bump

Pointy hat to:  marcus

Update pidgin to 2.3.1, and chase the shared lib version bump.  See
http://developer.pidgin.im/wiki/ChangeLog for the list of changes.

Chase the libpurple shared lib version.

Unbreak the build by adding an explicit dependency on intltool

1. Update to 3.1.0
2. Update the MASTER_SITES
3. Add a verify target for the PGP signature, and download the signature
4. Add USE_GMAKE
5. Add an unconditional USE_GETTEXT since there is no way to disable it
6. Update pkg-plist with the *.mo files

Approved by:    maintainer timeout

PR:             ports/115664 (pkg-plist fix)
Submitted by:   Matthias Andree <matthias.andree@gmx.de>

Chase the libpurple shared lib version.

- Update to 3.0.1
- Update pkg-descr
- Update MASTER_SITES
- Connect to build

PR:             112651
Submitted by:   Mike Smith<perlfu@gmail.com>

- Force commit for notes that's a repocopy.
- Project was renamed

Repocopied by:  marcus

Number of commits found: 25

12 vulnerabilities affecting 17 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities