From nobody@FreeBSD.org  Sun Nov 20 17:31:32 2011
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 88540106566B
	for <freebsd-gnats-submit@FreeBSD.org>; Sun, 20 Nov 2011 17:31:32 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from red.freebsd.org (red.freebsd.org [IPv6:2001:4f8:fff6::22])
	by mx1.freebsd.org (Postfix) with ESMTP id 6D5A88FC17
	for <freebsd-gnats-submit@FreeBSD.org>; Sun, 20 Nov 2011 17:31:32 +0000 (UTC)
Received: from red.freebsd.org (localhost [127.0.0.1])
	by red.freebsd.org (8.14.4/8.14.4) with ESMTP id pAKHVWgw095872
	for <freebsd-gnats-submit@FreeBSD.org>; Sun, 20 Nov 2011 17:31:32 GMT
	(envelope-from nobody@red.freebsd.org)
Received: (from nobody@localhost)
	by red.freebsd.org (8.14.4/8.14.4/Submit) id pAKHVWuY095871;
	Sun, 20 Nov 2011 17:31:32 GMT
	(envelope-from nobody)
Message-Id: <201111201731.pAKHVWuY095871@red.freebsd.org>
Date: Sun, 20 Nov 2011 17:31:32 GMT
From: Fabian Keil <fk@fabiankeil.de>
To: freebsd-gnats-submit@FreeBSD.org
Subject: [MAINTAINER-UPDATE] from www/privoxy 3.0.17 to 3.0.18
X-Send-Pr-Version: www-3.1
X-GNATS-Notify:

>Number:         162696
>Category:       ports
>Synopsis:       [MAINTAINER-UPDATE] from www/privoxy 3.0.17 to 3.0.18
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    bf
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Sun Nov 20 17:40:10 UTC 2011
>Closed-Date:    Mon Nov 21 01:46:06 UTC 2011
>Last-Modified:  Mon Nov 21 01:50:07 UTC 2011
>Originator:     Fabian Keil
>Release:        HEAD
>Organization:
>Environment:
FreeBSD r500.local 10.0-CURRENT FreeBSD 10.0-CURRENT #379: Fri Nov 18 00:08:34 CET 2011     fk@r500.local:/usr/obj/usr/src/sys/ZOEY  amd64

>Description:
The attached patch updates www/privoxy from 3.0.17 to 3.0.18.

It's mainly a bug-fix release. One of the fixes addresses
a security issue. Quoting the ChangeLog:

- If a generated redirect URL contains characters RFC 3986 doesn't
  permit, they are (re)encoded. Not doing this makes Privoxy versions
  from 3.0.5 to 3.0.17 susceptible to HTTP response splitting (CWE-113)
  attacks if the +fast-redirects{check-decoded-url} action is used.

The complete ChangeLog is available at:
http://www.privoxy.org/announce.txt

The patch additionally syncs the pkg-descr with the latest project
description and adds an OPTION to enable the new --enable-compression
configure switch.
>How-To-Repeat:

>Fix:


Patch attached with submission follows:

diff -ru .zfs/snapshot/2011-10-15/www/privoxy/Makefile www/privoxy/Makefile
--- .zfs/snapshot/2011-10-15/www/privoxy/Makefile	2011-09-24 09:48:17.418918395 +0200
+++ www/privoxy/Makefile	2011-11-20 14:08:24.892454766 +0100
@@ -6,7 +6,7 @@
 #
 
 PORTNAME=	privoxy
-PORTVERSION=	3.0.17
+PORTVERSION=	3.0.18
 CATEGORIES=	www ipv6
 MASTER_SITES=	SF/ijbswa/Sources/${PORTVERSION}%20%28stable%29
 DISTNAME=	privoxy-${PORTVERSION}-stable-src
@@ -36,8 +36,9 @@
 LDFLAGS+=	-L${LOCALBASE}/lib
 
 OPTIONS=	ACCEPT_FILTER "Enable support for accf_http(9)" Off \
+		COMPRESSION "Allows to compress buffered content" Off \
 		DEBUG "Build with debugging symbols" Off \
-		EDITOR "Allow to enable the webbased action editor" On \
+		EDITOR "Allows to enable the webbased action editor" On \
 		FORCE "Allows to optionally bypass blocks" On \
 		PRIVOXY_TOOLS "Install Privoxy-Log-Parser, uagen etc." Off \
 		TOGGLE "Support for remote toggling" On
@@ -48,6 +49,10 @@
 CONFIGURE_ARGS+=	 --enable-accept-filter
 .endif
 
+.if defined(WITH_COMPRESSION)
+CONFIGURE_ARGS+=	 --enable-compression
+.endif
+
 .if defined(WITH_DEBUG)
 CONFIGURE_ARGS+=	--with-debug
 .endif
diff -ru .zfs/snapshot/2011-10-15/www/privoxy/distinfo www/privoxy/distinfo
--- .zfs/snapshot/2011-10-15/www/privoxy/distinfo	2010-11-28 14:09:37.214623506 +0100
+++ www/privoxy/distinfo	2011-11-20 14:10:52.963476223 +0100
@@ -1,2 +1,2 @@
-SHA256 (privoxy-3.0.17-stable-src.tar.gz) = d1de36dc141180a5ab5e910507551564e958cc23a7d8daaa411e1564c208cd77
-SIZE (privoxy-3.0.17-stable-src.tar.gz) = 1670102
+SHA256 (privoxy-3.0.18-stable-src.tar.gz) = 81203c60d7862a531cc0438d740abc66a07d9c91a2df24357b36ba38d3104e27
+SIZE (privoxy-3.0.18-stable-src.tar.gz) = 1720020
diff -ru .zfs/snapshot/2011-10-15/www/privoxy/pkg-descr www/privoxy/pkg-descr
--- .zfs/snapshot/2011-10-15/www/privoxy/pkg-descr	2008-01-26 11:25:31.977710000 +0100
+++ www/privoxy/pkg-descr	2011-11-20 14:10:36.239455712 +0100
@@ -1,8 +1,8 @@
 Privoxy is a non-caching web proxy with advanced filtering capabilities for
-enhancing privacy, modifying web page data, managing HTTP cookies, controlling
-access, and removing ads, banners, pop-ups and other obnoxious Internet junk.
-Privoxy has a flexible configuration and can be customized to suit individual
-needs and tastes. Privoxy has application for both stand-alone systems and
-multi-user networks.
+enhancing privacy, modifying web page data and HTTP headers, controlling
+access, and removing ads and other obnoxious Internet junk. Privoxy has a
+flexible configuration and can be customized to suit individual needs and
+tastes. It has application for both stand-alone systems and multi-user
+networks.
 
 WWW: http://www.privoxy.org/


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-ports-bugs->bf 
Responsible-Changed-By: bf 
Responsible-Changed-When: Sun Nov 20 20:51:30 UTC 2011 
Responsible-Changed-Why:  
I'll take it. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=162696 
State-Changed-From-To: open->closed 
State-Changed-By: bf 
State-Changed-When: Mon Nov 21 01:46:04 UTC 2011 
State-Changed-Why:  
Committed, with minor changes. Thanks! 

http://www.freebsd.org/cgi/query-pr.cgi?pr=162696 

From: dfilter@FreeBSD.ORG (dfilter service)
To: bug-followup@FreeBSD.org
Cc:  
Subject: Re: ports/162696: commit references a PR
Date: Mon, 21 Nov 2011 01:43:17 +0000 (UTC)

 bf          2011-11-21 01:43:08 UTC
 
   FreeBSD ports repository
 
   Modified files:
     www/privoxy          Makefile distinfo pkg-descr 
   Log:
   update to 3.0.18
   
   PR:             162696
   Submitted by:   F. Keil (maintainer)
   Security:       prevent http response splitting attacks
   Feature safe:   yes
   
   Revision  Changes    Path
   1.35      +10 -5     ports/www/privoxy/Makefile
   1.11      +2 -2      ports/www/privoxy/distinfo
   1.3       +4 -5      ports/www/privoxy/pkg-descr
 _______________________________________________
 cvs-all@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/cvs-all
 To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
 
>Unformatted:
