gdk-pixbuf was integrated into gtk2 a while ago, but was split out
again now. gdk-pixbuf2 can coexist with gdk-pixbuf1.
This pkg conflicts with the current gtk2 pkg, but since it will be
low in the dependency tree once deployed it would be good to see
bulk build results before gtk2 is updated to 2.22 which will require it.
1.7 (2010-11-01)
1.1. Core
* filelog: improve cmp performances (issue2273)
* patch: don't strip '#' lines from patch descriptions (issue2417)
* patch: when native patching fails (ui.patch is not set), don't retry with an external tool
* setup/hg: always load Mercurial from where it was installed.
* setup: user-friendly error message if Python headers are missing
* store: new unsupported and experimental parentdelta format (see UpgradeNotes)
* store: encode first period or space in filenames (issue1713)
* url: expand environment variables in [auth] settings (issue2328)
* url: check validity (notBefore/notAfter) using OpenSSL (issue2407)
1.2. Commands
* addremove: use similarity 100 by default
* alias: add support for shell command aliases starting with '!' (see [alias] in hgrc(5))
* backout: add --tool argument for specifying merge tool
* backout: backout linearly by default instead of branching and merging (use --merge to get the former behaviour)
* dispatch: properly handle relative path aliases used with -R (issue2376)
* init: expand destination url as a configured paths
* log: do not --follow file that is deleted and recreated later (issue732)
* merge: don't detect copies as "divergent renames", make error message more helpful
* merge: add --tool argument to merge and resolve
* merge: handle no file parent in backwards merge (issue2364)
* tags: do not fail if tags.cache is corrupted (issue2444)
* templater: add "hex" filter and "children" keywords (see hg help templating)
1.3. Subrepos
* support remapping of subrepository source paths (see [subpaths] in hgrc(5))
* make add, diff, incoming, outgoing and status commands recurse into subrepos with --subrepos/-S
* subrepo: add support for 'hg archive'
* subrepo: fix status check on SVN subrepos (issue2445)
1.4. Revsets
* add id() and rev() to allow explicit references to changes by hash or rev (see hg help revsets)
* add min() function to complement max()
* add present() function to avoid lookup errors on possibly missing changesets
* rename tagged() to tag() and allow it to take an optional tag name
* strip: add revsets support
* add revsets support to bisect and update (issue1993)
* bookmarks: add a bookmark([name]) revset for referencing bookmarks
* transplant: add a transplanted(set) revset to get transplanted revisions
1.5. hgweb
* add a help view for accessing the built-in documentation (see help link in hg serve)
* let HTTPS serve use more compatible but less secure encryption
* support very simple caching model (issue1845)
1.6. Extensions
* color: better support for branches and mq guards
* convert: handle closed branch heads in hg-hg conversion (issue2185)
* convert: support darcs changelogs with bytes 0x7F-0xFF (issue2411)
* convert: deprecate --authors in preference for --authormap
* graphlog: support header and footer templates when using styles (issue2395)
* keyword: do not expand at all during diff
* keyword: support copy and rename
* mq: extend support for the --mq argument to extension commands
* mq: save qrefresh message for easy recovery in case it fails (issue2062)
* mq: support hg qimport --existing --name renametothis thatexistingpatch, fix --force case on Windows
* mq/qqueue: support renaming of active queue
* mq/qqueue: add --purge option to delete a queue and its patches
* pager: add global --pager=<auto/boolean> option
* patchbomb: add --confirm option to show series details and ask for confirmation
* patchbomb: let diffstat prompt only once with complete summary
* progress: support rebase and patchbomb
* rebase: re-add patches to mq repo after rebase
* strip: add --keep flag to avoid modifying working directory during strip
* strip: rename --nobackup option to --no-backup (issue2377)
* strip: support stripping multiple revisions
1.7. contrib
* mergetools.hgrc: add vimdiff
* zsh completion: support bookmarks and patchbomb extensions
* zsh completion: add qpush --move option
Trac-0.12.1ja1 (Nov 1, 2010)
* Merge Trac-0.12.1
* Translate default Wiki pages into Japanese.
- trac/wiki/default-pages/*
* Translate document for trac.ini options into Japanese.
- trac/env.py
- trac/versioncontrol/admin.py
- trac/versioncontrol/api.py
- trac/versioncontrol/svn_authz.py
- trac/versioncontrol/web_ui/browser.py
- trac/web/chrome.py
- trac/web/main.py
- trac/wiki/api.py
Trac 0.12.1 (October 9, 2010)
http://svn.edgewall.org/repos/trac/tags/trac-0.12.1
This list contains only a few highlights:
- db: improve concurrency behavior (#9111)
- fcgi: add an environment variable `TRAC_USE_FLUP` to control the usage of flu
p vs. bundled _fcgi.py (defaults to 0, i.e. use bundled as before)
- svn authz: improve compatibility with svn 1.5 format (#8289)
- milestone: allow to set the time for the due date (#6369, #9582)
- ticket: fixes for the CC: property (#8597, #9522)
- notification: improved the formatting of ticket fields in notification e-mail
s (#9484, #9494)
- i18n: added a configuration option to set the default language (#8117)
- several fixes for upgrade (#9400, #9416, #9483, #9556)
skf (1.97.3)
* fix index of JIS X-0208(1978) table.
* fix x-0201 kana to x-0208 kana conversion.
* nkf-compatibility: fix -X option.
* several nkf-compatibility feature fix and added.
manifests (resulting in much less metadata for large repositories), lots
of speed ups for the manifest parser, and smaller improvements like revert
dealing with merge records.
* SECURITY: CVE-2010-1452 (cve.mitre.org)
mod_dav: Fix Handling of requests without a path segment.
* SECURITY: CVE-2009-1891 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_deflate or other
modules, by forcing the server to consume CPU time in compressing a
large file after a client disconnects.
* SECURITY: CVE-2009-3095 (cve.mitre.org)
mod_proxy_ftp: sanity check authn credentials.
* SECURITY: CVE-2009-3094 (cve.mitre.org)
mod_proxy_ftp: NULL pointer dereference on error paths.
* SECURITY: CVE-2009-3555 (cve.mitre.org)
mod_ssl: Comprehensive fix of the TLS renegotiation prefix injection
attack when compiled against OpenSSL version 0.9.8m or later. Introduces
the 'SSLInsecureRenegotiation' directive to reopen this vulnerability
and offer unsafe legacy renegotiation with clients which do not yet
support the new secure renegotiation protocol, RFC 5746.
* SECURITY: CVE-2009-3555 (cve.mitre.org)
mod_ssl: A partial fix for the TLS renegotiation prefix injection attack
for OpenSSL versions prior to 0.9.8l; reject any client-initiated
renegotiations. Forcibly disable keepalive for the connection if there
is any buffered data readable. Any configuration which requires
renegotiation for per-directory/location access control is still
vulnerable, unless using openssl 0.9.8l or later.
* SECURITY: CVE-2010-0434 (cve.mitre.org)
Ensure each subrequest has a shallow copy of headers_in so that the
parent request headers are not corrupted. Elimiates a problematic
optimization in the case of no request body.
* SECURITY: CVE-2008-2364 (cve.mitre.org)
mod_proxy_http: Better handling of excessive interim responses
from origin server to prevent potential denial of service and high
memory usage.
* SECURITY: CVE-2010-0425 (cve.mitre.org)
mod_isapi: Do not unload an isapi .dll module until the request
processing is completed, avoiding orphaned callback pointers.
* SECURITY: CVE-2008-2939 (cve.mitre.org)
mod_proxy_ftp: Prevent XSS attacks when using wildcards in the path of
the FTP URL. Discovered by Marc Bevand of Rapid7.
* Fix recursive ErrorDocument handling.
* mod_ssl: Do not do overlapping memcpy.
* Add Set-Cookie and Set-Cookie2 to the list of headers allowed to pass
through on a 304 response.
* apxs: Fix -A and -a options to ignore whitespace in httpd.conf
* prefork MPM: Run cleanups for final request when process exits gracefully
to work around a flaw in apr-util.
* mod_reqtimeout: Do not wrongly enforce timeouts for mod_proxy's backend
connections and other protocol handlers (like mod_ftp). Enforce the
timeout for AP_MODE_GETLINE. If there is a timeout, shorten the lingering
close time from 30 to 2 seconds.
* Proxy balancer: support setting error status according to HTTP response
code from a backend.
* mod_authnz_ldap: If AuthLDAPCharsetConfig is set, also convert the
password to UTF-8.
* core: check symlink ownership if both FollowSymlinks and
SymlinksIfOwnerMatch are set
* core: fix origin checking in SymlinksIfOwnerMatch
* mod_headers: Enable multi-match-and-replace edit option
* mod_log_config: Make ${cookie}C correctly match whole cookie names
instead of substrings.
* mod_dir, mod_negotiation: Pass the output filter information
to newly created sub requests; as these are later on used
as true requests with an internal redirect. This allows for
mod_cache et.al. to trap the results of the redirect.
* rotatelogs: Fix possible buffer overflow if admin configures a
mongo log file path.
* mod_ssl: Do not do overlapping memcpy.
* vhost: A purely-numeric Host: header should not be treated as a port.
* core: (re)-introduce -T commandline option to suppress documentroot
check at startup.
* Undo a crash-bug introduced in 1.3.9 affecting some applications of
the apr hash and table structures, reported to affect Subversion
Changes 1.4.1:
* Win32: Properly handle the ERROR_DIRECTORY system error code.
Changes 1.4.0:
* Add apr_global_mutex_lockfile() for retrieving the file, if any,
associated with the mutex. Add apr_global_mutex_name() for retrieving
the name of the lock mechanism used by the underlying proc mutex.
* Add apr_socket_atreadeof to determine whether the receive part of the
socket has been closed by the peer.
* Make apr_pollset and apr_pollcb implementations using providers.
Added apr_pollset_create_ex and apr_pollcb_create_ex that allows
choosing non-default providers.
* apr_temp_dir_get() now checks the TMPDIR environment variable first,
instead of third.
* Add apr_file_sync() and apr_file_datasync() calls.
* apr_pollset_wakeup() on Windows: Fix core caused by closing the
file_socket_pipe with standard file_close.
* Introduce apr_hash_do() for iterating over a hash table.
* Make sure WIN32 behaves the same as posix for file-backed shared memory
by removing the file on cleanup/remove.
* Introduce apr_pollset_wakeup() for interrupting the blocking
apr_pollset_poll() call.
* Add apr_file_link() function.
=== 0.4.4 2010-10-31
* Fix LoadError rescue in tests: return can't be used in this context
(Hans de G raaff)
* HTTP headers should be strings. (seancribbs)
* ensure consumer uri gets set back to original config even if an error occurs
(Brian Finney)
* Yahoo uses & to split records in OAuth headers (Brian Finney)
* Added support for Rails 3 in client/action_controller_request (Pelle)
on consensus of pkgsrc developers from private discussion.
Essentially 10.3 and below will not be allowed to clutter the PR db,
10.4 is iffy, and 10.5 and 10.6 are normal.
changes:
-fix crash on empty cmd line arguments which is considered a security
problem because it can crash mtn server processes (SA41960)
-minor fixes
also add a patch from upstream to adapt to a behavior change
in sqlite3-3.7.3
arguments which don't work (but keep inclusion of oss.bl3.mk)
-ignore fmemopen(3) -- the code assumes too much if this is found,
fixes build on NetBSD-current
