CVS commit: pkgsrc/net/Radicale

["Patrick Welche" <prlw1%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   prlw1
Date:           Tue Jan 12 00:17:11 UTC 2016

Modified Files:
        pkgsrc/net/Radicale: Makefile PLIST distinfo

Log Message:
Update Radicale to 1.1.1

1.1.1 - Second Law of Nature
============================

* Fix the owner_write rights rule

1.1 - Law of Nature
===================

One feature in this release is **not backward compatible**:

* Use the first matching section for rights (inspired from daald)

Now, the first section matching the path and current user in your custom rights
file is used. In the previous versions, the most permissive rights of all the
matching sections were applied. This new behaviour gives a simple way to make
specific rules at the top of the file independant from the generic ones.

Many **improvements in this release are related to security**, you should
upgrade Radicale as soon as possible:

* Improve the regex used for well-known URIs (by Unrud)
* Prevent regex injection in rights management (by Unrud)
* Prevent crafted HTTP request from calling arbitrary functions (by Unrud)
* Improve URI sanitation and conversion to filesystem path (by Unrud)
* Decouple the daemon from its parent environment (by Unrud)

Some bugs have been fixed and little enhancements have been added:

* Assign new items to corret key (by Unrud)
* Avoid race condition in PID file creation (by Unrud)
* Improve the docker version (by cdpb)
* Encode message and commiter for git commits
* Test with Python 3.5


To generate a diff of this commit:
cvs rdiff -u -r1.15 -r1.16 pkgsrc/net/Radicale/Makefile
cvs rdiff -u -r1.6 -r1.7 pkgsrc/net/Radicale/PLIST
cvs rdiff -u -r1.8 -r1.9 pkgsrc/net/Radicale/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.