libopenmpt 0.2-beta22 (2017-03-11)
[Bug] Possible NULL-pointer dereference read during obscure out-of-memory situations while handling exceptions in the C API.
[Bug] libmodplug: libmodplug.pc was wrong.
[Bug] Cross-compiling libopenmpt with autotools for Windows now properly sets -municode and -mconsole as well as all required Windows system libraries.
[Bug] Excessive loading times with malformed ITP / truncated AMS files.
[Bug] libopenmpt on Windows did not properly guard against current working directory DLL injection attacks.
[Change] The Makefile and Autotools build system got new options USE_DLOPEN and --enable-dlopen respectively which are required to be set in order to load 3rd-party libraries dynamically. Additionally, the defaults for detecting libdl and libltdl now also default to off with autotools. This change has been made in order to make the default configuration as secure as possible. Both build systems default to dependencies that facilitate native MO3 decoding internally anyway, thus there is actually no practical disadvantage with the new default settings at all.
[Change] Un4seen unmo3 support is now completely disabled by default in all configurations and build systems.
[Regression] In order to securely load libmpg123, the Windows binary packages only support the precise libmpg123 binary that is downloaded by the download_mpg123.vbs script. Other binaries might also work, but this has neither been tested nor is officially supported from now on.
Autotools build system now has options --disable-openmpt123, --disable-tests and --disable-examples which may be desireable when cross-compiling.
Windows binary packages now include a script download_mpg123.vbs which downloads libmpg123 and copies it to the appropriate directories relative to the uncompressed binary archive.
Do not set note volume to 0 on out-of-range offset in XM files.
Better import of some slide commands in SFX files.
Sample 15 in "Crew Generation" by Necros requires short loops at the beginning of the sample to not be ignored. Since we need to ignore them in some (non-ProTracker) modules, we heuristically disable the old loop sanitization behaviour based on the module channel count.
Both normal and percentage offset in PLM files were handled as percentage offset.
seek.sync_samples=1 did not apply PTM reverse offset effect and the volume slide part of combined volume slide + vibrato commands.
libopenmpt 0.2-beta21 (skipped)
Version 0.2-beta21 has been skipped in order to avoid confusion with libtool version of libopenmpt 0.3.0-pre.0 and 0.3.0-pre.1 development versions.
Bugfixes:
* Fixed ClearableFileInput’s “Clear” checkbox on model form fields where the model field has a default.
* Fixed RequestDataTooBig and TooManyFieldsSent exceptions crashing rather than generating a bad request response.
* Fixed a crash on Oracle and PostgreSQL when subtracting DurationField or IntegerField from DateField.
* Fixed query expression date subtraction accuracy on PostgreSQL for differences larger than a month.
* Fixed a GDALException raised by GDALClose on GDAL ≥ 2.0.
## 3.2.3 - 2016-11-25 {#version-3-2-3}
### Fixes
* Fixed a bug that `--order` isn't applied.
[GitHub#129][Reported by V«¿t Ondruch]
### Thanks
* V«¿t Ondruch
## 3.2.2 - 2016-11-02 {#version-3-2-2}
### Improvements
* Improved Travis CI configuration.
[GitHub#123][Patch by Ryunosuke SEATO]
* Supported Java native exception.
[GitHub#126][Reported by Bob Saveland]
### Fixes
* doc: Fixed markup. [GitHub#127][Patch by Tomohiro Hashidate]
* Fixed a bug that `--location=LINE` may not detect a test when
fixtures are defined before any tests:
1 class MyTestCase < Test::Unit::TestCase
2 setup do
3 end
4
5 test "xxx" do
6 end
7 end
`--location=5` couldn't find the `xxx` test.
[Reported by Ryota Sasabe]
### Thanks
* Ryunosuke Sato
* Tomohiro Hashidate
* Bob Saveland
* Ryota Sasabe
=== 5.10.1 / 2016-12-01
* 1 bug fix:
* Added a hack/kludge to deal with missing #prerecord on reporters that aren't properly subclassing AbstractReporter (I'm looking at you minitest-reporters)
=== 5.10.0 / 2016-11-30
* 2 minor enhancements:
* Added AbstractReporter#prerecord and extended ProgressReporter and CompositeReporter to use it.
* Minor optimization: remove runnables with no runnable methods before run.
* 1 bug fix:
* 2.4: removed deprecation warnings when referring to Fixnum.
=== kgio 2.11.0 - reverting 2.10.0 breakage / 2016-12-16 22:56 UTC
Mainly this release reverts back to kgio 2.9.3 behavior by
supporting "autopush" functionality in the C extension.
Removing this feature in 2.10.0 was a monumental mistake(*) on
my part which caused a performance regression for ONE known user
of kgio on the deprecated (but supported) Rainbows! server.
This release does not affect known users outside of Rainbows!,
but we may have unknown users, too.
The attempt at a pure Ruby version of autopush had flaws and
regressions in real-world testing, so that was abandoned.
So yeah, kgio will be supported indefinitely even in the face
of internal changes to MRI, but I strongly discourage its use
for new projects.
Users who only support Ruby 2.3 (and later) are encouraged to
use `exception: false` with all *_nonblock methods.
4 changes since 2.10.0:
resurrect Kgio.autopush support in pure Ruby [REVERTED]
reinstate the original (and dangerous) autopush in C
TODO: update with Ruby 2.3 status
test: increase test data sizes to fill socket buffers
(*) - as was making this a separate project, at all
# Changelog
## 1.2.3 (February 22, 2017)
* Pure Ruby: Add get_sockname [#308, #772]
* Fix segfault when an Exception is raised from unbind callback [#765, #766]
* Allow destructors to throw when compiling in >= C++11 [#767]
## 1.2.2 (January 23, 2017)
* Java: Fix Fixnum deprecated warning in Ruby 2.4+ [#759]
* Fix uncaught C++ exception in file watcher and raise InvalidSignature [#512, #757]
* Fix connection count off-by-one for epoll and kqueue [#750]
* Fix uninitialized variable warning in EM::P::HttpClient [#749]
* Fix missing initial value for EventableDescriptor NextHeartbeat [#748]
* Fix hostname resolution on Solaris, Ilumos, SmartOS, et al [#745, #746]
* Improve reliability of tests, reduce public Internet accesses in tests [#656, #666, #749]
## 1.2.1 (November 15, 2016)
* Throw strerror(errno) when getsockname or getpeername fail [#683]
* Use a single concrete implementation of getpeername/getsockname, the rest pure virtuals [#683]
* Use gai_strerror to get the failure string from getaddrinfo [#744]
* Fix deregistering descriptor when using KQUEUE [#728]
* Fix to enable to work an example code in EM::Pool [#731]
* LineText2: Add regular expression delimiter support [#706]
* Pure Ruby: EM rescue ECONNREFUSED on initial TCP connect [#741]
* Pure Ruby: EM SSL (working start_tls) [#712]
* Pure Ruby: EM fixes [#707]
* Java: Use Acceptors to get peer and sock names if not present in Connections [#743]
=== 2.3.2 / 2016-11-30
* 5 bug fixes:
* FINALLY fixed a problem with escaping in dstrs. (nex3)
* Fix using match3 on LHS of call. (eqv)
* Fixed handling defn that starts w/ begin+rescue+other stuff. (eqv)
* Fixed return expressions with complex RHS. (eqv)
* Tweaked sexp_processor dependency to ~> 4.6 to sync them better
=== 3.16.0 / YYYY-MM-DD
* 1 minor enhancement:
* Updated compiler plugin dependency for rake-compiler to 1.x.
* 2 bug fixes:
* Fixed rdoc cmd to be more resilient to ruby version changes (w/ isolate)
* Relaxed rake dependency to < 13 to fix against latest release.
=== 3.15.3 / 2016-11-17
* 1 bug fix:
* Call Gem::Specification.reset after installing a gem. (segiddins)
phpredis 3.1.1
* Additional test updates for 32 bit systems (@remicollet)
* ARM rounding issue in tests (@remicollet)
* Use new zend_list_close instead of zend_list_delete when reconnecting.
* Refactoring of redis_boolean_response_impl and redis_sock_write
(@yatsukhnenko)
phpredis 3.1.1
This release contains mostly fixes for issues introduced when merging
the php 5 and 7 codebase into a single branch.
* Fixed a segfault in igbinary serialization (@yatsukhnenko)
* Restore 2.2.8/3.0.0 functionality to distinguish between an error
and simply empty session data. (@remicollet)
* Fix double to string conversion function (@yatsukhnenko)
* Use PHP_FE_END definition when available (@remicollet)
* Fixed various 'static function declared but not used' warnings
* Fixes to various calls which were typecasting pointers to the
wrong size. (@remicollet)
* Added php session unit test (@yatsukhnenko)
* Added explicit module dependancy for igbinary (@remicollet)
* Added phpinfo serialization information (@remicollet)
phpredis 3.1.1RC2
* Additional test updates for 32 bit systems (@remicollet)
* ARM rounding issue in tests (@remicollet)
* Use new zend_list_close instead of zend_list_delete when reconnecting.
* Refactoring of redis_boolean_response_impl and redis_sock_write
(@yatsukhnenko)
phpredis 3.1.1.RC1
This release contains mostly fixes for issues introduced when merging the php
5 and 7 codebase into a single branch.
* Fixed a segfault in igbinary serialization (@yatsukhnenko)
* Restore 2.2.8/3.0.0 functionality to distinguish between an error
and simply empty session data. (@remicollet)
* Fix double to string conversion function (@yatsukhnenko)
* Use PHP_FE_END definition when available (@remicollet)
* Fixed various 'static function declared but not used' warnings
* Fixes to various calls which were typecasting pointers to the
wrong size. (@remicollet)
* Added php session unit test (@yatsukhnenko)
* Added explicit module dependancy for igbinary (@remicollet)
* Added phpinfo serialization information (@remicollet)
phpredis 3.1.0
In this version of phpredis codebase was unified to work with all versions of
php \o/ Also many bug fixes and some improvements has been made.
--- Improvements ---
* Support the client to Redis Cluster just having one master (andyli) [892e5646]
* Allow both long and strings that are longs for zrangebyscore offset/limit
(Michael Grunder) [bdcdd2aa]
* Process NX|XX, CH and INCR options in zAdd command (Pavlo Yatsukhnenko)
[71c9f7c8]
--- Fixes ---
* Fix incrby/decrby for large integers (Michael Grunder) [3a12758a]
* Use static declarations for spl_ce_RuntimeException decl (Jeremy Mikola)
[a9857d69]
* Fixed method call problem causes session handler to display two times
(ZiHang Gao) [24f86c49]
* psetex method returns '+OK' on success, not true (sitri@ndxbn) [afcd8445]
* Fix integer overflow for long (>32bit) increments in hIncrBy (iyesin)
[58e1d799]
* Move zend_object handler to the end (Michael Grunder) [34107966]
* Using setOption on redis array causes immediate connection (Pavlo
Yatsukhnenko) [f1a85b38]
phpredis 2.2.8
The main improvement in this version of phpredis is support for Redis
Cluster. This version of phpredis is intended for versions of php older
than 7.
In addition there have been many bug fixes and improvements to non cluster
related commands, which are listed below.
I've attempted to include everyone who contribued to the project in each fix
description and have included names or github user ids.
Thanks to everyone for submitting bug reports and pull requests. A special
thanks to Remi Collet for helping with any and all packaging related issues
\o/
--- Improvements ---
* Added randomization to our seed nodes to balance which instance is used
to map the keyspace (Vitaliy Stepanyuk) [32eb1c5f]
* Added support for IPv6 addresses
--- Fixes ---
* PHP liveness checking workaround (Shafreeck Sea) [c18d58b9]
* Various documentation and code formatting and style fixes (ares333,
sanpili, Bryan Nelson, linfangrong, Romero Malaquias, Viktor Sz?pe)
* Fix scan reply processing to use long instead of int to avoid overflow
(mixiaojiong).
* Fix potential segfault in Redis Cluster session storage (Sergei Lomakov)
[cc15aae]
* Fixed memory leak in discard function [17b1f427]
* Sanity check for igbinary unserialization (Maurus Cuelenaere) [3266b222,
5528297a]
* Fix segfault occuring from unclosed socket connection for Redis Cluster
(CatKang) [04196aee]
* Case insensitive zRangeByScore options
* Fixed dreaded size_t vs long long compiler warning
2.3.20 (2017-03-10)
-------------------
New features
- [core] new sogo-tool checkup command to make sure user's data is sane
- [core] new sogo-tool manage-acl command to manage calendar/address book ACLs
- [web] use "date" extension of Sieve to enable/disable vacation auto-reply (#1530, #1949)
Enhancements
- [web] added Hebrew (he) translation - thanks to Raz Aidlitz
- [web] updated CKEditor to version 4.6.2
Bug fixes
- [core] remove all alarms before sending IMIP replies (#3925)
- [core] fixed handling of exdates and proper intersection for fbinfo (#4051)
- [core] remove attendees that have the same identity as the organizer (#3905)
- [eas] improved EAS parameters parsing (#4003)
- [eas] properly handle canceled appointments
- [web] fixed SCAYT automatic language selection in HTML editor
- [web] prevent 304 HTTP status code for Ajax requests on IE (#4066)
2.5.1 Sun, Feb 26, 2017 - xdebug 2.5.1
= Fixed bugs:
- Fixed issue #1057: Add xdebug.ini of all settings to package
- Fixed issue #1165: DBGp: step_out skips subsequent function calls
- Fixed issue #1180: Code coverage crashes with non-standard start/stops
- Fixed issue #1278: Xdebug with PHP 7 does not handle prefill-from-oparray
for XDEBUG_CC_UNUSED
- Fixed issue #1300: Xdebug functions are not exposing their signature to
Reflection
- Fixed issue #1313: Arguments to __call() trampoline picked from the wrong
memory location
- Fixed issue #1329: While printing out a stack with and function parameters,
XDebug reads uninitialized zvals or free()d memory
- Fixed issue #1381: Code Coverage misses line due to missing FETCH_DIM_W
overload
- Fixed issue #1385: can not fetch IS_INDIRECT properties
- Fixed issue #1386: Executable code not shown as executed/executable
- Fixed issue #1392: Unable to compile on FreeBSD due to missing struct
definition
- Fixed issue #1394: Code coverage does not cover instanceof (in elseif)
2.5.0 Sun, Dec 4, 2016 - xdebug 2.5.0
+ Added features:
- Implemented issue #1232: add memory delta to HTML traces
- Implemented issue #1365: Allow remote_connect_back to be set through
XDEBUG_CONFIG
= Fixed bugs:
- Fixed issue #1168: Added defensive check to prevent infinite loop
- Fixed issue #1242: Xdebug on Windows with Eclipse has issues with
breakpoint IDs
- Fixed issue #1343: Wrong values of numerical keys outside 32bit range
- Fixed issue #1357: Function signature using variadics is reported as being
not executed
- Fixed issue #1361: Remote debugging connection issues with Windows (Anatol
Belski)
- Fixed issue #1373: Crash in zend_hash_apply_with_arguments when debugging,
due to unset symbol table
2.5.0RC1 Sat, Nov 12, 2016 - xdebug 2.5.0RC1
+ Added features:
- Implemented issue #998: Added support for IPv6 (Thomas Vanhaniemi)
- Implemented issue #1297: Initial PHP 7.1 support
= Fixed bugs:
- Fixed issue #1295: Apache crashes (SIGSEGV) when trying to establish
connection when sockfd is large
- Fixed issue #1303: POLLRDHUP is not supported outside of Gnu/Linux
- Fixed issue #1331: Segfault in code coverage
- Removed features:
- Support for PHP versions lower than PHP 5.5 has been dropped
CHANGELOG Roundcube Webmail
===========================
RELEASE 1.2.4
-------------
- Managesieve: Fix handling of scripts with nested rules (#5540)
- Managesieve: Fix parser issue with empty lines between comments (#5657)
- Managesieve: Fix possible defect in handling \r\n in scripts (#5685)
- Fix variable substitution in ldap host for some use-cases,
e.g. new_user_identity (#5544)
- Fix adding images to new identity signatures
- Fix rsync error handling in installto.sh script (#5562)
- Fix some advanced search issues with multiple addressbooks (#5572)
- Fix so group/addressbook selection is retained on page refresh
- Fix bug where image data URIs in css style were treated as evil/remote in
mail preview (#5580)
- Fix bug where external content in src attribute of input/video tags was not
secured (#5583)
- Fix PHP error on update of a contact with multiple email addresses when
using PHP 7.1 (#5587)
- Fix bug where mail content frame couldn't be reset in some corner cases
(#5608)
- Fix bug where some classic skin images were not displayed in IE/Edge (#5614)
- Fix bug where signature couldn't be added above the quote in Firefox 51
(#5628)
- Fix regression where groups with email address were resolved to its members'
addresses
- Fix update of group name in the contacts list header on group rename (#5648)
- Add rewrite rule to disable access to /vendor/bin folder in .htaccess (#5630)
- Fix bug where it was too easy accidentally move a folder when using the
subscription checkbox (#5655)
- Fix XSS issue in handling of a style tag inside of an svg element
1.6.0 2017-02-26 03:26 UTC
Changelog:
* This release adds GnuPG 2.1 support.
* Internal API has been refactored.
* Fix Bug #21182: Ignore invalid proc_close() exit code
* Fix Bug G#28: Use --batch argument for key imports when no passphrase is
provided.
* Fix Bug #21151: GPG-AGENT process is not automatically closed when using
GnuPG 2.0
* Fix Bug #21152: Ignore time conflicts (by default)
* Fixed Bug #21148: Throw bad-passphrase exception instead of key-not-found
exception on decryption
Pear
1.10.3 2017-02-28 11:25 UTC
Changelog:
* Bug #21188: Class 'PEAR_Proxy' not found
1.10.2 2017-02-28 08:48 UTC
Changelog:
* Fix Bug #4426: PEAR_Autoloader __call() must take only 2 arguments [kna]
* Fix Bug #20989: fatal error/bug in the postinstallscript task [kguest]
* Fix Bug #20991: Strict Standards: startSession and run methods in
PEAR_Task_Postinstallscript [kguest]
* Fix Bug #21001: PEAR_ERROR_DIE exit code is 0 [danielc]
* Pull Request #52: Channel's _lastmodified is an int and not a string [sathieu]
* Pull Request #53: Add proper HTTPS proxy support through the CONNECT verb
[youknow0]
* Pull Request #58: Make method signatures compatible. [yunosh]
XML_Util
1.4.2. 2017-02-22 14:32 UTC
Changelog:
* Bug #21184 Collapse issue
1.4.1 2017-02-07 13:12 UTC
Changelog:
* Bug #21177 XML_Util::collapseEmptyTags() can return NULL
1.4.0 2017-02-03 13:43 UTC
Changelog:
* Set minimum PHP version to 5.4.0
* Set minimum PEAR version to 1.10.1
* Adds a new XML_UTIL_COLLAPSE_NONE option for preventing empty tag
collapsing.
* Request #15467 CDATA sections and blank nodes
