14:54 vs 

Update to 1.4.1:
- maketemp now creates an empty file with the given name, instead of merely
  returning the name of a nonexistent file.  This closes a security hole.
- minor fixes, port passes all checks
- use INFO-macro
- strip cruft from pkg-descr; add WWW:
- pet portlint

03:03 roam 

Fix a format string vulnerability.   Note that others might still be lurking
inside the m4 code,   this is just a quick fix for the one reported on BugTraq.