the author Gergely Nagy in PR pkg/25318.
Changes:
* Thy 0.9.3 [Dead Gardens] -- 2004-06-30
Fixed a minor information leak in the virtual hosting code, noticed
by Jerome Magnin. Also fixed a couple of memory leaks and disabled
meta-data caching by default.
* Thy 0.9.2 [Re-connect] -- 2004-06-15
The major reason for this release is a discovery of a possible Denial
Of Service attack against Thy, one which can easily crash a Thy
process. However, this was just a NULL-dereference, which can not be
used to execute arbitrary code. And is fixed in this release.
Also, epoll support was disabled in this release.
* Thy 0.9.1 [Hurt] -- 2004-06-05
When Thy starts a helper process (such as the Authoriser or the
Worker), she will close and reopen the connection to syslog with a
different ID.
There is also a new option to limit how many bytes Thy will use for
mapping files into memory. When the limit is reached, no mmapping
will occur. This is only useful when using a Worker, since otherwise
files are not mapped to memory at all.
SRP authentication was implemented in this version.
One of the major new features in this release is the ability to
compile multiple event systems into Thy. In the past, Thy had to be
recompiled if one wanted to use epoll or kqueue instead of
select. Now, every possible event system is compiled in, and one can
select the appropriate one at run time. Thy will also try to select
the most appropriate one if none was explicitly specified.
Some smaller bugs were also fixed, as usual.
* Thy 0.9.0 [A Pirate I Was Meant To Be] -- 2004-04-25
This release features a way to make Thy interact better with web
cache software: the ability to set the max-age of resources and
expiry times.
The Linux version of the networking code was updated to be able to
serve files larger than 2Gb when Thy is compiled with Large File
Support (which is the default).
using information stored in a MySQL database.
Based on pkgwip package done by cube@, thanks a lot!
Package should support both Apache 1.x and 2.x, but only Apache 1.x
tested at the moment.
As soon as PLIST_SRC is defined the "default" PLIST files are not
added to PLIST_SRC. So 'PLIST' has to be explicitly listed in the
APACHE_DEFAULT_FILES == "yes" case.
- Add new build def APACHE_DEFAULT_FILES
Changes with Apache 2.0.50
*) SECURITY: CAN-2004-0493 (cve.mitre.org)
Close a denial of service vulnerability identified by Georgi
Guninski which could lead to memory exhaustion with certain
input data. [Jeff Trawick]
*) mod_cgi: Handle output on stderr during script execution on Unix
platforms; preventing deadlock when stderr output fills pipe buffer.
Also fixes case where stderr from nph- scripts could be lost.
PR 22030, 18348. [Joe Orton, Jeff Trawick]
*) mod_alias now emits a warning if it detects overlapping *Alias*
directives. [André Malo]
*) mod_rewrite no longer turns forward proxy requests into reverse proxy
requests. PR 28125 [ast domdv.de, André Malo]
*) ap_set_sub_req_protocol and ap_finalize_sub_req_protocol are now
exported on Win32 and Netware as well (minor MMN bump). PR 28523.
[Edward Rudd <eddie omegaware.com>, André Malo]
*) Restore the ability to disable the use of AcceptEx on Win9x systems
automatically (broken in 2.0.49). PR 28529. [André Malo]
*) <VirtualHost myhost> now applies to all IP addresses for myhost
instead of just the first one reported by the resolver. This
corrects a regression since 1.3. [Jeff Trawick]
*) util_ldap: allow relative paths for LDAPTrustedCA to be resolved
against ServerRoot PR#26602 [Brad Nicholes]
*) SECURITY: CAN-2004-0488 (cve.mitre.org)
mod_ssl: Fix a buffer overflow in the FakeBasicAuth code for a
(trusted) client certificate subject DN which exceeds 6K in length.
[Joe Orton]
*) mod_dav_fs: Fix MKCOL response for missing parent collections, which
caused issues for the Eclipse WebDAV extension.
PR 29034. [Joe Orton]
*) mod_deflate: Fix memory consumption (which was proportional to the
response size). PR 29318. [Joe Orton]
*) mod_ssl: Log the errors returned on failure to load or initialize
a crypto accelerator engine. [Joe Orton]
*) Allow RequestHeader directives to be conditional. PR 27951.
[Vincent Deffontaines <vincent gryzor.com>, André Malo]
*) Allow LimitRequestBody to be reset to unlimited. PR 29106
[André Malo]
*) Fix a bunch of cases where the return code of the regex compiler
was not checked properly. This affects: mod_setenvif, mod_usertrack,
mod_proxy, mod_proxy_ftp and core. PR 28218. [André Malo]
*) mod_ssl: Fix a potential segfault in the 'shmcb' session cache for
small cache sizes. PR 27751. [Geoff Thorpe <geoff geoffthorpe.net>]
*) Remove 2Gb log file size restriction on some 32-bit platforms.
PR 13511. [Joe Orton]
*) mod_logio no longer removes the EOS bucket. PR 27928.
[Bojan Smojver <bojan rexursive.com>]
*) htpasswd no longer refuses to process files that contain empty
lines. [André Malo]
*) Regression from 1.3: At startup, suexec now will be checked for
availability, the setuid bit and user root. The works only if
httpd is compiled with the shipped APR version (0.9.5).
PR 28287. [André Malo]
*) Unix MPMs: Stop dropping connections when the file descriptor
is at least FD_SETSIZE. [Jeff Trawick]
*) Fix handling of IPv6 numeric strings in mod_proxy. [Jeff Trawick]
*) mod_isapi: send_response_header() failed to copy status string's
last character. PR 20619. [Jesse Pelton <jsp pkc.com>]
*) Fix a segfault when requests for shared memory fails and returns
NULL. Fix a segfault caused by a lack of bounds checking on the
cache. PR 24801. [Graham Leggett]
*) Throw an error message if an attempt is made to use the LDAPTrustedCA
or LDAPTrustedCAType directives in a VirtualHost. PR 26390
[Brad Nicholes]
*) Fix a potential segfault if the bind password in the LDAP cache
is NULL. PR 28250. [Jari Ahonen <jah progress.com>]
*) Quotes cannot be used around require group and require dn
directives, update the documentation to reflect this. Also add
quotes around the dn and group within debug messages, to make it
more obvious why authentication is failing if quotes are used in
error. PR 19304. [Graham Leggett]
*) The Microsoft LDAP SDK escapes filters for us, stop util_ldap
from escaping filters twice when the backslash character is used.
PR 24437. [Jess Holle <jessh ptc.com>]
*) Overhaul handling of LDAP error conditions, so that the util_ldap_*
functions leave the connections in a sane state after errors have
occurred. PR 27748, 17274, 17599, 18661, 21787, 24595, 24683, 27134,
27271 [Graham Leggett]
*) mod_ldap calls ldap_simple_bind_s() to validate the user
credentials. If the bind fails, the connection is left
in an unbound state. Make sure that the ldap connection
record is updated to show that the connection is no longer
bound. [Brad Nicholes]
*) Ensure that lines in the request which are too long are
properly terminated before logging.
[Tsurutani Naoki <turutani scphys.kyoto-u.ac.jp>]
*) Update the bind credentials for the cached LDAP connection to
reflect the last bind. This prevents util_ldap from creating
unnecessary connections rather than reusing cached connections.
[Brad Nicholes]
*) mod_isapi: GetServerVariable returned improperly terminated header
fields given "ALL_HTTP" or "ALL_RAW". PR 20656.
[Jesse Pelton <jsp pkc.com>]
*) mod_isapi: GetServerVariable("ALL_RAW") returned the wrong buffer
size. PR 20617. [Jesse Pelton <jsp pkc.com>]
*) mod_dav: Fix a problem that could cause crashes when manipulating
locks on some platforms. [Jeff Trawick]
*) mod_headers no longer crashes if an empty header value should
be added. [André Malo]
*) Fix segfault in mod_expires, which occured under certain
circumstances. PR 28047. [André Malo]
*) htpasswd: use apr_temp_dir_get() and general cleanup
[Guenter Knauf <eflash gmx.net>, Thom May]
*) mod_ssl: Fix memory leak in session cache handling. PR 26562
[Madhusudan Mathihalli]
*) mod_ssl: Fix potential segfaults when performing SSL shutdown from
a pool cleanup. PR 27945. [Joe Orton]
*) Add forensic logging module (mod_log_forensic).
[Ben Laurie]
*) logresolve: Allow size of log line buffer to be overridden at
build time (MAXLINE). PR 27793. [Jeff Trawick]
*) Fix the comment delimiter in htdbm so that it correctly parses the
username comment. Also add a terminate function to allow NetWare
to pause the output before the screen is destroyed.
[Guenter Knauf <eflash gmx.net>, Brad Nicholes]
*) Fix crash when Apache was started with no Listen directives.
[Michael Corcoran <mcorcoran warpsolutions.com>]
*) core_output_filter: Fix bug that could result in sending
garbage over the network when module handlers construct
bucket brigades containing multiple file buckets all referencing
the same open file descriptor. [Bojan Smojver]
*) Fix memory corruption problem with ap_custom_response() function.
The core per-dir config would later point to request pool data
that would be reused for different purposes on different requests.
[Jeff Trawick, based on an old 1.3 patch submitted by Will Lowe]
*) Win32: Tweak worker thread accounting routines to eliminate
server hang when number of Listen directives in httpd.conf
is greater than or equal to the setting of ThreadsPerChild.
[Bill Stoddard]
This is security fix release, fixing several important security
issues. From the ChangeLog:
* Fixed strip_tags() to correctly handle '\0' characters.
* Improved stability during startup when memory_limit is used.
* Replace alloca() with emalloc() for better stack protection.
* Added missing safe_mode checks inside ftok and itpc.
* Fixed bug #28963 Fixed address allocation routine in IMAP extension.
* Fixed bug #28632 Prevent open_basedir bypass via MySQL's LOAD DATA LOCAL.
Note: package update also includes extra patches from PHP CVS not
present in stock PHP 4.3.8 release - compilation fix for
mssql extension and Zend engine memory-use-after-free fix.
gcc version 3+.
. generally reduce diffs to Linux version
. retain compatibility with older ABI (AIX-like) thanks to useful comments
from Charles Hannum
Thanks to Matthew Green for the fruitful discussion. This should address
PR#23240 as far as mozilla is concerned.
Change list from release notes:
* Synchronized bundled GD library with GD 2.0.23.
* Fixed a bug that prevented compilation of GD extensions against
FreeType 2.1.0-2.1.2.
* Fixed thread safety issue with informix connection id.
* Fixed incorrect resolving of relative paths by glob() in windows.
* Fixed mapping of Greek letters to html entities.
* Fixed a bug that caused an on shutdown crash when using PHP with Apache
2.0.49.
* Fixed a number of crashes inside pgsql, cpdf and gd extensions.
All in all this release fixes over 30 bugs that have been discovered
and resolved since the 4.3.6 release.
From the article from mozillazine.org:
mozilla.org today released upgrades to both Firefox 0.9 (0.9.1) and
Thunderbird 0.7 (0.7.1) to fix some minor bugs present in both
releases. Both releases correct some flaws in the extension system
that some users may have been experiencing, as well as a new icon set
for the navigation toolbar on Windows and Linux in Firefox 0.9.1. All
users of both products should get this upgrade.
From the article from mozillazine.org:
mozilla.org today released upgrades to both Firefox 0.9 (0.9.1) and
Thunderbird 0.7 (0.7.1) to fix some minor bugs present in both
releases. Both releases correct some flaws in the extension system
that some users may have been experiencing, as well as a new icon set
for the navigation toolbar on Windows and Linux in Firefox 0.9.1. All
users of both products should get this upgrade.
* Fixes:
- Protect proxy variables with mutex locks, should resolve some more
BSD-related threading issues.
- Use libcurl's unescape method rather than our own, fixes a NetBSD
character conversion problem.
- Fix C99-ism which was preventing successfull compilation on
GCC-2.95 (Julio M. Merino Vidal).
Changes:
* Favicons are now processed with gdkpixbuf and saved
to disc in PNG format. Images with 24bit colors and
sizes other than 16x16 are now supported. (Nathan Conrad)
PLEASE NOTE THAT THIS BREAKS FAVICON CACHE
DOWNWARD COMPATIBILITY WITH OLDER RELEASES!
WHEN YOU FALLBACK YOU WILL LOOSE YOUR ICONS.
* Now a short help text is displayed in the HTML view
after startup. (Lars Linder)
* Updated networking code. Many more things, such as
adding a new feed, are processed in the background.
(Nathan Conrad)
* Improved preferences for selecting how to open a link
in an external browser. (Nathan Conrad)
* Popup-window notifications of new items. This
is a first implementation and we are open for your
critics and suggestions! (Karl Soderstrom)
Bugfixes:
* When URLs are passed to an external browser they are
now escaped correctly. (Lars Lindner)
* When a feed could not be downloaded after the
subscription it was missing a cache file. This caused
an error message each time the program starts. This
is fixed now. (Lars Lindner)
* Debian bug #254959 reported by Martin-Eric Racine was
fixed. No Liferea recognizes RSS 1.0 Creative Commons
license information. (Lars Lindner)
* Better favicon detection (more coming in the next release).
* Feed properties (such as titles) are now saved when they
change. (Nathan Conrad)
* Compiles on Solaris, and is hopefully more portable now.
(Nathan Conrad)
* Feed update locking issues were fixed. (Nathan Conrad)
* Several memleaks were fixed.
Linux tested - there are no NetBSD builds so far and the Linux builds
require glibc-2.3 which isn't in pkgsrc so does not work out of the
box on NetBSD yet.
changes since 0.8 can be found at:
http://www.mozilla.org/products/firefox/releases/0.9.html
Solves PR 25426.
Add dependency on PERL5 so that the configure script does the right
thing, since this package use the path in places that cannot be
patched by REPLACE_PERL (and bin/swish-filter-test need perl to
run anyway).
Bump PKGREVISION.
* Fixes:
- Resolved a network threading issue that prevented Drivel from working on
NetBSD, and possibly the other BSD variants as well.
- Fixed the autosave feature.
- Keybinding fixes to allow better interoperability with emacs bindings.
- Resolve a couple of bugs in the History dialog (still requires GTK+ 2.4.4
or higher to work correctly) (Davyd Madeley).
- Correct the lj-lq tag in the poll creator (Grahame Bowland).
- Don't duplicate the protocol in the Insert Link dialog (gnome@nash.nu).
Changes from 0.5 include (please see the ChangeLog for full details):
* configuration changes;
* build errors fixes when using --enable-m17n and --disable-unicode;
* HTTP basic authentication bugs fixed;
* Fix IPv6 FQDN resolution failure;
* bug fixes and source cleanup.
Here's what's new in this release of Firefox:
* New Default Theme
An updated Default Theme now presents a uniform appearance across all
three platforms - a new crisp, clear look for Windows
users. Finetuning for GNOME will follow in future releases.
* Comprehensive Data Migration
Switching to Firefox has never been easier now that Firefox imports
data like Favorites, History, Settings, Cookies and Passwords from
Internet Explorer. Firefox can also import from Mozilla 1.x, Netscape
4.x, 6.x and 7.x, and Opera. MacOS X and Linux migrators for browsers
like Safari, OmniWeb, Konqueror etc. will arrive in future releases.
* Extension/Theme Manager
New Extension and Theme Managers provide a convenient way to manage
and update your add-ons. SmartUpdate also notifies you of updates to
Firefox.
* Help
A new online help system is available.
* Lots of bug fixes and improvements
Copy Image, the ability to delete individual items from Autocomplete
lists, SMB/SFTP support on GNOME via gnome-vfs, better Bookmarks,
Search and many other refinements fine tune the browsing experience.
For Linux/GTK2 Users
* Look and Feel Updates
Ongoing improvements have been made to improve the way Firefox adheres
to your GTK2 themes, such as menus.
* Talkback for GTK2
Help us nail down crashes by submitting talkback reports with this
crash reporting tool.
Changes:
New features/improvements:
- The BuildHistoryFormat can now accept xml to build the AWStats
database in xml. The XML schema is available in tools/xslt directory.
- Added an example of xslt style sheet to use AWStats XML database.
- Added %time4 flag for LogFormat to support unix timestamp date format.
- Added Firefox to browser database.
- Added option IncludeInternalLinksInOriginSection (defined to 0
by default).
- Added field to choose size of list limit (rawlog plugin).
- Added ExtraSectionCodeFilterX parameters.
- PDF detection works also for browsers that support PDF 6 only.
- maillogconvert.pl:
Added an automatic year adjustment for sendmail/postfix log
files that does not store the log. This solve problems for mail
analyses around new year.
- Added tooltips for mail reports (tooltips plugin).
Changed look of the summary report to prepare add of new informations.
- Added failed mails number in the summary.
- AllowAccessFromWebToFollowingAuthenticatedUsers is no more case
sensitive.
- Added new functions for plugins: AddHTMLMenuHeader, AddHTMLMenuFooter,
AddHTMLContentHeader, AddHTMLContentFooter
- Added detection of Camino web browser (old Chimera).
- Full updated robots database.
Fixes:
- Removed warning "Bizarre copy of ARRAY" with new Perl 5.8.4.
- Fixed syntax error in Year view when xhtml output is selected.
- Fixed a problem of not working misc feature when using IIS and
when URLWithQuery was set to 0.
- Now all non ISO-8859-1 languages are shown correctly even with
Apache2, whatever is the value of the AddDefaultCharset directive.
- Some plugins broke the xhtml output.
- Fixed wrong results for compression ratios when using mod_gzip and
%gzip_ratio tag.
- Fixed old bug showing string "SCALAR(0x8badae4)" inside html reports
when using mod_perl.
- Fixed the not allowed GET method when LogType=S.
- maillogconvert.pl: Better management of error records with sendmail
and postfix (some "reject" records were discarded).
- maillogconvert.pl: Fixed important bug where records were discarded
when server name was a FQDN.
- configure.pl: Now works also on Mac OS X
- configure.pl: If /etc/awstats directory does not exist, try to
create it. If /etc/awstats.model.conf not found on Linux, try to
find it in cgi-bin directory.
- Fixed some bugs when BuildReportOutput is set to xhtml (rawlog plugin)
plugin.
- Number of shown lines were one more than required (rawlog plugin).
- xhtml output broken for some 404 reports.
Other/Documentation:
- BuildReportOutput=xml renamed into BuildReportOutput=xhtml
- Added arabic language file.
- Updated language file.
- Updated documentation.
- maillogconvert.pl:
Update value of NBOFENTRYFOFLUSH
Here's what's new in this release of Firefox:
* New Default Theme
An updated Default Theme now presents a uniform appearance across all
three platforms - a new crisp, clear look for Windows
users. Finetuning for GNOME will follow in future releases.
* Comprehensive Data Migration
Switching to Firefox has never been easier now that Firefox imports
data like Favorites, History, Settings, Cookies and Passwords from
Internet Explorer. Firefox can also import from Mozilla 1.x, Netscape
4.x, 6.x and 7.x, and Opera. MacOS X and Linux migrators for browsers
like Safari, OmniWeb, Konqueror etc. will arrive in future releases.
* Extension/Theme Manager
New Extension and Theme Managers provide a convenient way to manage
and update your add-ons. SmartUpdate also notifies you of updates to
Firefox.
* Help
A new online help system is available.
* Lots of bug fixes and improvements
Copy Image, the ability to delete individual items from Autocomplete
lists, SMB/SFTP support on GNOME via gnome-vfs, better Bookmarks,
Search and many other refinements fine tune the browsing experience.
For Linux/GTK2 Users
* Look and Feel Updates
Ongoing improvements have been made to improve the way Firefox adheres
to your GTK2 themes, such as menus.
* Talkback for GTK2
Help us nail down crashes by submitting talkback reports with this
crash reporting tool.
The full list of changes can be found at:
http://www.mozilla.org/releases/mozilla1.7/README.html
Major browser changes since 1.6:
* A new option to prevent sites from using JavaScript to block the
browser's context menu.
* A new set of icons for files that are associated with Mozilla on
Windows.
* Password Manager has a "show passwords" mode which will display
saved passwords. You will need to enter your master password if
you are using one.
* The "Set As Wallpaper" feature now has a confirmation dialog.
* Linux GTK2 builds have improved support for OS themes.
* Cookie dialogs have been reworked to make them more usable.
* Date handling, especially on OS X, has been improved.
* It is now possible to fine-tune Mozilla's pop-up blocking using
two preferences (dom.popup_maximum and dom.popup_allowed_events)
but there's no UI for that yet. Even without a UI, users should
notice a greater variety of pop-ups blocked (primarily mouseover
pop-ups) and a limit of 20 or so open at one time - regardless of
whether pop-up blocking is active. This will provide some protection
from sites that open hundreds of windows in a loop.
* Downloaded files are now moved to the target directory as soon
as the user selects the desired location. This was the frequently
reported bug 55690.
* There is now user interface to activate Smooth Scrolling (Preferences
-> Appearance).
* Mozilla now supports basic FTP upload.
Ok'ed wiz@/snj@
SpeedyCGI is a way to run perl scripts persistently, which can make them run
much more quickly. A script can be made to to run persistently by changing
the interpreter line at the top of the script from:
#!${LOCALBASE}/bin/perl
to
#!${LOCALBASE}/bin/speedy
After the script is initially run, instead of exiting, the perl interpreter
is kept running. During subsequent runs, this interpreter is used to handle
new executions instead of starting a new perl interpreter each time. A very
fast frontend program, written in C, is executed for each request. This fast
frontend then contacts the persistent Perl process, which is usually already
running, to do the work and return the results.
Drivel is a LiveJournal client for the GNOME Desktop. Its purpose is to
retain a simple and elegant design while providing the same level of
functionality as the offical LiveJournal clients. Drivel also integrates
tightly with the GNOME Desktop technologies.
Changes:
0.54 - *
- Separated IO code from Accept
- Add HSML comment tag: <?- -?>
- Add launcher from cmdline (path|port) using HsmlExec module.
- Allow stdin to read the configuration file (-c -)
- Disable exectimeout by default to allow large file processing.
- Disable keep-alive (not all scripts print Content-Length)
- Solve IExplorer 'bug' that forces screws to segfault
- Add initial support for Range-bytes in Headers and HsmlExec.
- Drop nonblocking sockets, and use IOpoll/IOselect by default.
- Solved longfiles buffering problems.
- Solve XSS bug on HsmlExec
- Initial screws_* API
- Allow logs using syslog (LOG_ERR) and piped logs (|...)
- Create macros for modules.
- Add CleanLog module
- Move hsml_lua_init into HsmlExec_init (3x faster)
- Exterminate zombies using setsid()
- Change bool env from TRUE/"" to 1/0
- patch unicode bug that wraps the ARGV env.
- Implement headers support for hsml and .x's
(redirect, mimetype, 404...)
- do not overwrite user config file
- initial alloc drop process.
0.53 - 2004/05/10
- Initial code for file uploading
- Solve Dead children ripper bug.
- Cleaner Makefiles
- add portable getpath(Utils/whereis)
- Add nonblocking sockets for child ripping.
- Add multi-part support for fileuploading
- Solve argument parsing bug.
- Add some filechecks in HsmlExec.so
- Add csharp support.
- Patch an hsml parsing bug.
- Hashbang support on hsml (to separate hsml1 and hsml2 code)
- Solve http request bug.
- Write all manpages.
- Added new marc and petrus templates
- Added support for more Exif tags.
- Fix a divide by zero error crash, due to a corrupt image.
- Fix javascript errors occured when a singe quote was included in a filename.
- Fix bug on joi template : accesskey="t" was showing in the pages.
- Fix missing /IF directive in images pages on satyap template.
New features and fixes
Browser
* A new option to prevent sites from using JavaScript to block the
browser's context menu.
* Password Manager has a "show passwords" mode which will display
saved passwords. You will need to enter your master password if
you are using one.
* The "Set As Wallpaper" feature now has a confirmation dialog.
* Linux GTK2 builds have improved support for OS themes.
* Cookie dialogs have been reworked to make them more usable.
* Date handling, especially on OS X, has been improved.
* It is now possible to fine-tune Mozilla's pop-up blocking using
two preferences (dom.popup_maximum and dom.popup_allowed_events)
but there's no UI for that yet. Even without a UI, users should
notice a greater variety of pop-ups blocked (primarily mouseover
pop-ups) and a limit of 20 or so open at one time - regardless
of whether pop-up blocking is active. This will provide some
protection from sites that open hundreds of windows in a loop.
* Downloaded files are now moved to the target directory as soon
as the user selects the desired location. This was the
frequently reported bug 55690.
* There is now user interface to activate Smooth Scrolling
(Preferences -> Appearance).
* Mozilla now supports basic FTP upload.
Mail
* Many improvements to Palm Sync.
* IMAP IDLE support has been added.
* Support for "MSN Authentication" and Secure Password
* Authentication using SSPI NTLM auth for SMTP and POP3.
* A new preference to "always use the default character encoding
for replies" rather than using the encoding of the message being
replied to.
* Improvements to performance of downloading, viewing, and saving
mail messages.
* Support for multiple identities on the same mail account. See
the Multiple Identity Support documentation for more details.
* Support for relative paths for mail folders in prefs.js. This
makes it easier to copy profiles around without having to fix up
prefs.js afterwards.
* You can now edit address lists containing "Last, First" style
names.
* When composing mail, you can now use the up and down arrow keys
to scroll through the To/Cc/Bcc list.
* All Mozilla LDAP queries now default to using LDAPv3
(previously, they used LDAPv2). Mozilla should gracefully fall
back to v2 if v3 isn't found.
Chatzilla
* Chatzilla now supports zooming of fonts with keyboard shortcuts
(Ctrl + and Ctrl -), as well as with the View menu.
* Improved date handling; using the date/time format for the
locale.
* Support for the /ignore command.
* The ability to change the font family and size.
* Working custom sounds on Windows and Linux.
* Improvements to the preferences panel and the user interface for
half-op mode.
Under the Hood
* Size and performance have improved dramatically with this
release. When compared to Mozilla 1.6, Mozilla 1.7 is 7% faster at
startup, is 8% faster to open a window, has 9% faster page
loading, and is 5% smaller in binary size.
* A long-standing bug with CSS backgrounds on table elements has
been fixed (standards mode only).
* Support for Kerberos HTTP authentication using GSSAPI (benefits
Unix-like platforms including Linux and OS X).
* Support for smb:// URLs using the gnome-vfs library (only
enabled in GTK2+XFT Linux builds).
* Support for server push of XML documents using
multipart/x-mixed-replace and XMLHttpRequest.
* Liveconnect now works when a Java applet's codebase is in a
different domain.
* Support for the CSS3 opacity property.
* Mozilla adds support for the onbeforeunload event. This lets web
application developers add code that alerts the user about
potential data-loss when closing a web application, or when
leaving a HTML page with potentially sensitive information.
* This release has a new SVG backend. The feature is not yet
enabled in the mozilla.org releases but developers may wish to
compile with this feature enabled.
* Mozilla handles dynamic style changes much better (see bug 15608
for details.)
* Mozilla has upgraded the NSS libraries to version 3.9. NSS 3.9
passes all the NISCC SSL/TLS and S/MIME tests (1.6 million test
cases of invalid input data) without crashes or memory leaks.
New features and fixes
Browser
* A new option to prevent sites from using JavaScript to block the
browser's context menu.
* Password Manager has a "show passwords" mode which will display
saved passwords. You will need to enter your master password if
you are using one.
* The "Set As Wallpaper" feature now has a confirmation dialog.
* Linux GTK2 builds have improved support for OS themes.
* Cookie dialogs have been reworked to make them more usable.
* Date handling, especially on OS X, has been improved.
* It is now possible to fine-tune Mozilla's pop-up blocking using
two preferences (dom.popup_maximum and dom.popup_allowed_events)
but there's no UI for that yet. Even without a UI, users should
notice a greater variety of pop-ups blocked (primarily mouseover
pop-ups) and a limit of 20 or so open at one time - regardless
of whether pop-up blocking is active. This will provide some
protection from sites that open hundreds of windows in a loop.
* Downloaded files are now moved to the target directory as soon
as the user selects the desired location. This was the
frequently reported bug 55690.
* There is now user interface to activate Smooth Scrolling
(Preferences -> Appearance).
* Mozilla now supports basic FTP upload.
Mail
* Many improvements to Palm Sync.
* IMAP IDLE support has been added.
* Support for "MSN Authentication" and Secure Password
* Authentication using SSPI NTLM auth for SMTP and POP3.
* A new preference to "always use the default character encoding
for replies" rather than using the encoding of the message being
replied to.
* Improvements to performance of downloading, viewing, and saving
mail messages.
* Support for multiple identities on the same mail account. See
the Multiple Identity Support documentation for more details.
* Support for relative paths for mail folders in prefs.js. This
makes it easier to copy profiles around without having to fix up
prefs.js afterwards.
* You can now edit address lists containing "Last, First" style
names.
* When composing mail, you can now use the up and down arrow keys
to scroll through the To/Cc/Bcc list.
* All Mozilla LDAP queries now default to using LDAPv3
(previously, they used LDAPv2). Mozilla should gracefully fall
back to v2 if v3 isn't found.
Chatzilla
* Chatzilla now supports zooming of fonts with keyboard shortcuts
(Ctrl + and Ctrl -), as well as with the View menu.
* Improved date handling; using the date/time format for the
locale.
* Support for the /ignore command.
* The ability to change the font family and size.
* Working custom sounds on Windows and Linux.
* Improvements to the preferences panel and the user interface for
half-op mode.
Under the Hood
* Size and performance have improved dramatically with this
release. When compared to Mozilla 1.6, Mozilla 1.7 is 7% faster at
startup, is 8% faster to open a window, has 9% faster page
loading, and is 5% smaller in binary size.
* A long-standing bug with CSS backgrounds on table elements has
been fixed (standards mode only).
* Support for Kerberos HTTP authentication using GSSAPI (benefits
Unix-like platforms including Linux and OS X).
* Support for smb:// URLs using the gnome-vfs library (only
enabled in GTK2+XFT Linux builds).
* Support for server push of XML documents using
multipart/x-mixed-replace and XMLHttpRequest.
* Liveconnect now works when a Java applet's codebase is in a
different domain.
* Support for the CSS3 opacity property.
* Mozilla adds support for the onbeforeunload event. This lets web
application developers add code that alerts the user about
potential data-loss when closing a web application, or when
leaving a HTML page with potentially sensitive information.
* This release has a new SVG backend. The feature is not yet
enabled in the mozilla.org releases but developers may wish to
compile with this feature enabled.
* Mozilla handles dynamic style changes much better (see bug 15608
for details.)
* Mozilla has upgraded the NSS libraries to version 3.9. NSS 3.9
passes all the NISCC SSL/TLS and S/MIME tests (1.6 million test
cases of invalid input data) without crashes or memory leaks.
* Only decode %xx up to the first '?' in all requests, per RFC2396.
* Crank PKGREVISION
* Set SERVER_SOFTWARE to explicitly contain "nb6" (the PKGREVISION).
(I would have done this with CPPFLAGS, except the make/shell/cpp
quoting ended up too hairy & fragile)
Changes:
ADD: RSS feed support (thanks to Lübbe Onken for his work on this)
ADD: Translatations for French and Portuguese
ADD: .exe is recognised by default as having content-type
application/x-msdownload
ADD: Recognised links are now 'linkified' in the log messages
ADD: Tabs in file/diff listings are now expanded by a user
configurable number of spaces.
ADD: WebSVN URLs now access the repository by name rather than number.
This means that bookmarks will stay the same when new projects
are added. The old behaviour can be configure in config.inc.
FIX: Removed the revision 0 that has appeared in the previous version
FIX: Repositories were not sorted alphabetically when using ParentPath
FIX: The PNG support script needed for IE (and the BlueGrey scheme) is
now only loaded with IE
Code changes
* Support for mozilla 1.7rc1, 1.7rc2, 17rc3, 1.7 branch and trunk
(Christian, Marco, Carlos Romero)
* Eliminate external protocol handlers and use prefs instead
(Christian Biesinger)
* Various solaris portability fixes (Brian Cameron, Christian)
* Filter unwanted urls from history (Christian) [#142143]
* Disable xpinstall by default (Christian) [144035]
Bugfixes
* Fix some compile warnings (Christian)
* Use single sign-on prompt for downloads too (Christian)
* Fix crash with popup window and when opening windows from command line
(Christian) (backported from HEAD) [#142184]
* Fix compilation with gcc 2.95 (Christian)
* Fix LD_LIBRARY_PATH setting in startup script (Christian) [#141576]
* Fix a mem leak in the toolbar editor (Christian)
* Fix cookies-cleared notification (Christian)
* Fix toolbar editor dragging theme bug (Crispin Flowerday)
* Fix reload not to use forced reload by default (C. J. N. Breame)
[#143365]
* Fix filechooser default filename shown from web form file inputs
(Christian)
* Fix opening of webcal: urls (Marco) [#139040]
* Fix check for firefox bookmarks file import (Christian)
* Fix contextmenu on unfocused text fields (Marco) [#139040]
Documentation translations
* Translated to spanish (es) by Francisco F. Serrador
Translations
* bg, el, th, tk, ru
WebSVN offers a view onto your subversion repositories that's been designed to
reflect the Subversion methodology. You can view the log of any file or
directory and see a list of all the files changed, added or deleted in any
given revision. You can also view the differences between 2 versions of a
file so as to see exactly what was changed in a particular revision.
WebSVN offers the following features:
* Easy to use interface
* Highly customisable templating system
* Log message searching
* Colourisation of file listings
* Fast browsing thanks to internal caching feature
* Apache MultiViews support
Since it's written using PHP, WebSVN is also very portable and easy to
install.
pkgsrc change:
o set DIST_SUBR to ${PKGNAME}.
Changes:
o 2004-06-07 21:25 (Cosmetic) Negative size in access.log on long
running CONNECT requests
o 2004-06-08 11:01 (Major) Segmentation fault after
"Likely proxy abuse detected"
o 2004-06-18 17:39 (Security issue) Overflow bug in Squid's ntlm_auth helper.
Note: currently below patch isn't applied since it is broken and I'm
not sure how it shold be corrected. I wish it would fixed
before tagging pkgsrc-2004Q2.
o 2004-06-08 11:42 (Minor) sasl_auth doesn't compile with SALS2
changes:
* VPL: (once again) don't lose the comment text from inside a comment
* don't crash when source/VPL buttons are pressed while a plugin is visible
* don't crash when canceling a failed upload
* don't crash when saving files while the structure tree is visible
* don't crash when inserting a dot in an empty CSS file
* fix a major memory leak, cause of many crashes and instability
* don't be confused by quotation marks inside a script area which is
inside a tag value (like <a href="<? echo "foo" ?>">)
* fix search problems when Preview is set to appear in the bottom area
* fix restoration of the toolbar visibility setting
* hide/show the plugin toolbar as well when Show Toolbar is
unchecked/checked
* fix the layout of the Document Properties Dialog
* don't ask for copying a file to the project if it is under the project
directory (happened with symlinked files and projects)
* color with bold in the Files Tree the opened files, even if they are
under a symlinked directory
* don't save the shortcuts as localized strings
* remove the backup files in every case when the document was saved and
don't warn about their presence on the next startup
* <fieldset> is not a single tag
* unconditionally hide the splash screen after 10 seconds
* make uploading of empty folders possible
* don't show the file changed dialog when previewing after Save All or
Project Upload was called
* fix removal of action containing &
* fix toolbar configuration and removal for non-English versions
* improvement: allow two plugins named differently, but using of the same
part
* performance improvement: faster parsing and tree building
o Use subst.mk to patch the files (so the patches are not needed).
o Look for cvsweb.conf in ${PKG_SYSCONFDIR} instead of using
a harcoded "/usr/pkg/etc/cvsweb".
Tested on NetBSD 1.6.2 and Solaris. Installed on FreeBSD but could not
run it without X.
From the (minimal) ChangeLog:
Various stability improvements
Redirecting links correctly marked as visited
Initial support for quoting selected text in messages
Solved problem with duplicate addresses when using "Reply all"
Bug #753: va_copy required
Bug #995: segfault on long URLs (bug in previous patch to Bug #753)
And reduce offset from pkgsrc's patches.
Bump package revision.
* 2004-06-01 08:38 (Medium) Segfault in memBufVPrintf on certain
architectures requiring va_copy
* 2004-06-01 00:00 (Cosmetic) msnt_auth documentation update
* 2004-05-31 23:37 (Cosmetic) dns_servers should default to localhost
if no resolv.conf
* 2004-05-31 23:37 (Cosmetic) FTP directory listing HTML DOCTYPE misread
by some tools
* 2004-06-01 08:26 (Minor) fix compilation on OpenBSD/m88k
* 2004-05-31 22:59 (Cosmetic) Show client ip in cache.log debug output
* 2004-05-31 22:43 (Minor) cacheCurrentUnlinkRequests should be a counter,
not gauge
* 2004-05-31 22:08 (Minor) store_dir_select_algorithm least-load doesn't
work for ufs cache_dir type
* 2004-05-31 21:32 (Cosmetic) Very large cache_mem values reported wrongly
in cache.log
even if it's main app creates another user config directory.
e.g. firefox creates .phoenix, thunderbird creates .thunderbird
so no need to define user config directory for each package based on mozilla.
simply remove ${WRKDIR}/.mozilla is enough
o added ability to "upload" to file:// URLs
o added curl_global_init_mem()
o removed curl_formparse()
o the MSVC project file in the release archive is automatically built
o curl --proxy-digest is a new command line option
o the Windows version of libcurl can use wldap32.dll for LDAP
o added curl_easy_strerror(), curl_multi_strerror() and curl_share_strerror()
o IPv6-enabled Windows hosts now resolves names threaded/asynch as well
o configure --with-libidn can be used to point out the root dir of a libidn
installation (version 0.4.5 or later) for curl to use, then libcurl can
resolve and use IDNA names (domain names with "international" letters)
Bugfixes:
o incoming cookies with domains set with a prefixed dot now works better
o CURLOPT_COOKIEFILE and CURLOPT_COOKIE can be used in the same request
o improved peer certificate name verification
o allocation failures cause no leaks nor crashes
o the progress meter display now handles file sizes up to full 8 exabytes
(which is as high a signed 64 bit number can reach)
o general HTTP authentication improvements
o HTTP Digest authentication with the proxy works
o mulipart formposting with -F and file names with spaces work again
o curl_easy_duphandle() now works when ares-enabled
o HTTP Digest authentication works a lot more like the RFC says
o curl works with telnet and stdin properly on Windows
o configure --without-ssl works even when pkg-config has OpenSSL details
o src/hugehelp.c builds correct again in non-configure build environments
mod_transform is a filter module that allows Apache 2.0 to do dynamic XSL
Transformations on either static XML documents, or XML documents generated
from another Apache module or CGI program.
- fix installation of example README.CSR.
Changes with mod_ssl 2.8.18 (11-May-2004 to 27-May-2004)
*) Fix buffer overflow in "SSLOptions +FakeBasicAuth" implementation
if the Subject-DN in the client certificate exceeds 6KB in length.
(CVE CAN-2004-0488).
*) Handle the case of OpenSSL retry requests after interrupted system
calls during the SSL handshake phase.
*) Remove some unused functions.
without having to hack the Makefile(s).
makes it easier to downgrade to a previous nightly build (provided you
already have the distfile) by simply setting eg. MOZ_VER=20040525, as
I just had to do :)
Many improvements; see the installed file /usr/pkg/share/doc/cvsweb/NEWS or
http://www.freebsd.org/cgi/cvsweb.cgi/projects/cvsweb/NEWS?rev=1.26&content-type=text/x-cvsweb-markup
for more info.
Note: whilst (optional) support for CvsGraph 1.4.0, enscript 1.6.3
and CVSHistory 2.0 exists in this version, this package does
not specifically depend upon those products as the features that use
them are optional...
Changes in release 0.22.2:
* Fix build issues on AIX (Tony Bennett).
* Fix DeltaV commands on locked resources.
* Update to neon 0.24.6:
- SECURITY (CVE CAN-2004-0398): fix for sscanf overflow in date parsing
- * Fixed dirent.h includes inside dpid.
- * Fixed a slippery bug with certain interlaced gif images (BUG#500).
- * Fixed libpng-1.2.4 detection in configure.in.
- * Added proxy authentication support through the "http_proxyuser" option
in dillorc (the password is asked at run time).
- * Moved tooltips to DwStyle, tooltip event handling to DwPage, and applied
this also to the TITLE attribute of <a> and <abbr>.
- * Fixed a bug related to spaces after anchors and breaks.
- * Removed two "type punning" gcc warnings (dw_gtk_viewport.c).
* Added some missing "static" qualifiers.
* Improved a_Strbuf_chars() so no list reversion is required.
* Removed an unused data list (dns.c), and redundant code (selection.c).
* Switch one realloc() call to g_realloc(), to match g_free() (dpi.c).
* Removed unnecessary NULL-checks and NULL initializations.
* Added Html_get_attr_wdef(), it lets providing a default return value.
- * Fixed configure.in so pthreads are only linked where needed.
- * Modified a_Misc_stuff_chars for simplicity and removed a memory leak.
* Made the dpi framework send the HTTP query to the https dpi
(this allows for an SSL-lib dpi and for easier session caching).
* Cleaned up the int2void and void2int casts in CCC parameters.
* Added container|inline model information to the HTML element table, and
made the bug-meter and the parser aware of it. This both improves bug
detection and rendering.
* Fixed newly detected HTML bugs in bookmarks dpi and file.c.
* Fixed opening files with a ':' character in its name (again).
* Added binaryconst.h (allows for binary constants in C).
* Fixed The ladder effect with lists (BUG#534).
* Made the bug-meter detect tags lacking a closing '>' (BUG#532).
* Made the bug-meter detect excluded inline elements from <PRE>.
* Eliminated a segfault source with tricky <input> tags (BUG#552).
* Fixed <address> to render as a block element (BUG#527).
* Added a content test for "name" and "id" attribute values (BUG#536).
* Fixed the URL resolver handling of the "//" sequence in <path> (BUG#535).
* Added "show_extra_warnings" and removed "use_old_parser" (dillorc).
* Added minor support for the deprecated <MENU> element.
* Eliminated a race condition that produced segfaults when a dpi transfer
was cancelled before the contents were sent (a very rare case).
* Added a test for socklen_t in configure.in.
* Fixed the downloads dpi to handle both new savenames and target directory.
* GdkRgb: fixed handling of not usable system default visual and colormap.
* Made dillo recognize unhandled MIME types, and offer a download dialog!
(ports/lang/php4/files/patch-ext::pcre::php_pcre.c). Fixes a bug
(described at http://bugs.php.net/bug.php?id=27810) which causes
apache2 to dump core on receiving SIGHUP.
This is supposedly fixed in the next release of PHP.
Revision History
Version 3.05
1. Fixed uninitialized variable warning on start_form() when running from
command line.
2. Fixed CGI::_set_attributes so that attributes with a - are handled
correctly.
3. Fixed CGI::Carp::die() so as to avoid problems from _longmess()
clobbering @_.
4. If HTTP_X_FORWARDED_HOST is defined (i.e. running under a proxy), the
various functions that return HOST will use that instead.
5. Fix for undefined utf8() call in CGI::Util.
6. Changed the call to warningsToBrowser() in CGI::Carp::fatalsToBrowser
to call only after HTTP header is sent (thanks to Didier Lebrun for
noticing).
7. Patches from Dan Harkless to make CGI.pm validatable against HTML 3.2. 8. Fixed an extraneous "foo=bar" appearing when extra style parameters passed to start_html;
9. Fixed potential cross-site scripting bug in startform().
10. Fixed documentation to discuss list context behavior of form-element
generators explicitly.
11. Fixed incorrect results from end_form() when called in OO manner.
12. Fixed query string stripping in order to handle URLs containing
escaped newlines.
13. During server push, set NPH to 0 rather than 1. This is supposed to
fix problems with Apache.
14. Fixed incorrect processing of multipart form fields that contain
embedded quotes. There's still the issue of how to handle ones that
contain embedded semicolons, but no one has complained (yet).
15. Fixed documentation bug in -style argument to start_html()
16. Added -status argument to redirect().
Version 3.04
1. Fixed the problem with mod_perl crashing when "defaults" button
pressed.
Version 3.03
1. Fix upload hook functionality 2. Workaround for CGI->unescape_html()
3. Bumped version numbers in CGI::Fast and CGI::Util for 5.8.3-tobe
Version 3.02
1. Bring in Apache::Response just in case.
2. File upload on EBCDIC systems now works.
Version 3.01
1. No fix yet for upload failures when running on EBCDIC server.
2. Fixed uninitialized glob warnings that appeared when file uploading
under perl 5.8.2.
3. Added patch from Schlomi Fish to allow debugging of PATH_INFO from
command line.
4. Added patch from Steve Hay to correctly unlink tmp files under
mod_perl/windows
5. Added upload_hook functionality from Jamie LeTaul
6. Workarounds for mod_perl 2 IO issues. Check that file upload and state
saving still working.
7. Added code for underreads.
8. Fixed misleading description of redirect() and relative URLs in the
POD docs. 9. Workaround for weird interaction of CGI::Carp with Safe module
reported by William McKee.
10. Added patches from Ilmari Karonen to improve behavior of CGI::Carp.
11. Fixed documentation error in -style argument.
12. Added virtual_port() method for finding out what port server is
listening on in a virtual-host aware fashion.
Version 3.00
1. Patch from Randal Schwartz to fix bug introduced by cross-site
scripting vulnerability "fix."
2. Patch from JFreeman to replace UTF-8 escape constant of 0xfe with
0xfc. Hope this is right!
Version 2.99
1. Patch from Steve Hay to fix extra Content-type: appearing on browser
screen when FatalsToBrowser invoked.
2. Patch from Ewann Corvellec to fix cross-site scripting vulnerability.
3. Fixed tmpdir routine for file uploading to solve problem that occurs
under mod_perl when tmpdir is writable at startup time, but not at
session time.
Hightlights:
* User interface redesigned
* Added Chat client
* Added RSS newsfeeds
* Fast full-text indexing of e-mail messages
* Support for spell check (via aspell)
* Graphical smileys in chat and e-mail
Note: on upgrade, e-mail from previous Opera versions will be
reindexed for faster searching and sorting. The new e-mail format
is not backward compatible, so earlier versions of Opera
won't be able to read the mail once this happens.
For details, see:
http://www.opera.com/linux/changelogs/750/http://www.opera.com/linux/changelogs/750b1/
Changes with mod_ssl 2.8.17 (01-Nov-2003 to 11-May-2004)
*) Upgraded to Apache 1.3.31
*) Log the OpenSSL error stack contents if the crypto engine
load/init fails.
*) Fixed segfault in lookup of variable SESSION_ID
in case SSL_get_session() returns NULL.
*) Bugfix "dbm" session cache: the DBM file was closed
too early (before accessing the data).
*) Bugfix "shmcb" session cache for situations where
the session data is bigger than the cache size.
*) Adjusted all copyright messages to contain the new year 2004 ;)
Apache 1.3.31 Major changes
Security vulnerabilities
* CAN-2003-0987 (cve.mitre.org)
In mod_digest, verify whether the nonce returned in the client
response is one we issued ourselves. This problem does not affect
mod_auth_digest.
* CAN-2003-0020 (cve.mitre.org)
Escape arbitrary data before writing into the errorlog.
* CAN-2004-0174 (cve.mitre.org)
Fix starvation issue on listening sockets where a short-lived
connection on a rarely-accessed listening socket will cause a
child to hold the accept mutex and block out new connections until
another connection arrives on that rarely-accessed listening socket.
* CAN-2003-0993 (cve.mitre.org)
Fix parsing of Allow/Deny rules using IP addresses without a
netmask; issue is only known to affect big-endian 64-bit
platforms
New features
New features that relate to specific platforms:
* Linux 2.4+: If Apache is started as root and you code
CoreDumpDirectory, core dumps are enabled via the prctl() syscall.
New features that relate to all platforms:
* Add mod_whatkilledus and mod_backtrace (experimental) for
reporting diagnostic information after a child process crash.
* Add fatal exception hook for running diagnostic code after a
crash.
* Forensic logging module added (mod_log_forensic)
* '%X' is now accepted as an alias for '%c' in the
LogFormat directive. This allows you to configure logging
to still log the connection status even with mod_ssl
Bugs fixed
The following noteworthy bugs were found in Apache 1.3.29 (or earlier)
and have been fixed in Apache 1.3.31:
* Fix memory corruption problem with ap_custom_response() function.
The core per-dir config would later point to request pool data
that would be reused for different purposes on different requests.
* mod_usertrack no longer inspects the Cookie2 header for
the cookie name. It also no longer overwrites other cookies.
* Fix bug causing core dump when using CookieTracking without
specifying a CookieName directly.
* UseCanonicalName off was ignoring the client provided
port information.
A Wiki is a website that allows its users to add pages, and edit any
existing pages.
You can create a new kwiki website with a single command. The module
has no prerequisite modules, except the ones that ship with Perl.
It doesn't require a database backend, although it could be made to
use one. The default kwiki behaviour is fairly full featured, and includes
support for html tables. Any behaviour of the kwiki can be customized,
without much trouble.
User Interface/Editing
Bug fixes
* Windows platforms only: several transformations crashed.
* Fix crashes in the spell checker.
* GTK version: Amaya is now able to copy and paste utf-8 characters.
* A significant space were sometimes removed after a copy + paste
command.
CSS
Bug fixes
* Local CSS files were not reparsed when they are saved.
* Fix a confusion with classes, pseudo-classes, ids, and attributes.
* Amaya now generates an empty User style sheet ($AmayaHome/amaya.css)
if this file doesn't exist.
* Amaya didn't parse correctly non-quoted font family names containing
whitespace.
(X)HTML
Bug fixes
* Amaya generated a new line character after an <img> element within
headlines (<h1>, <h2>, etc.).
And more... please review http://www.w3.org/Amaya/User/New.html
* removed maximum user+password+hostname size limit
* removed maximum dir depth limit for FTP
* the ares build now requires c-ares 1.2.0 or later
* --tcp-nodelay and CURLOPT_TCP_NODELAY were added
* curl/curlver.h contains the libcurl version info now
* bugfixes
the maintainer. Sort PLIST.
Changes:
* correct ifdef in LYgetattrs() to ensure that getattrs() is used only
if the configure script actually found it
(report/patch by Paul Gilmartin).
* correct LYcommandList() to allocate data passed to HTList_addObject(),
since LYRemoveFromCloset() may free it (report by FLWM) -TD
* add a null-pointer check to parameter of HTQuoteParameter(), fixes bug
introduced in 2.8.5pre.4 (report by FLWM) -TD
* correct units shown by HTReadProgress() for very low rates - bug from
2.8.5pre.3 changes (report by PG) -TD
* update current-version in README -LP
o 2004-03-11 15:29 (Cosmetic)
Helper queue warnings inprecice on the number of helpers required
o 2004-03-12 10:13 (Cosmetic)
Add pkg-config support for finding correct OpenSSL compile flags
o 2004-03-19 09:02 (Medium) "Vary: *" is ignored
o 2004-03-19 09:12 (Minor) 100% CPU usage on Linux-2.2
o 2004-03-19 09:17 (Cosmetic)
Version number includes -CVS if autoconf is run
o 2004-03-29 09:47 (Minor)
deny_info redirection with requested URL escaped wrongly
o 2004-03-29 10:02 (Minor) CONNECT timeout should produce a 504 or 503
o 2004-04-03 13:54 (Cosmetic)
cache_swap_log documentation referred to swap.state by it's old
swap.log name
o 2004-04-06 14:12 (Cosmetic)
ntlm/auth_ntlm.c(683): warning #187: use of "=" where "==" may
have been intended
o 2004-04-11 09:19 (Medium) rfc1035NameUnpack: Assertion (*off) < sz failed
o 2004-04-18 01:33 (Major)
Segment violation when using a blank user name in digest authentication
o 2004-04-18 23:46 (Medium)
assertion failed: errorpage.c:292: "mem->inmem_hi == 0"
o 2004-04-20 12:30 (Cosmetic)
Spelling corrections in configure and squid.conf.default
o 2004-04-20 12:38 (Cosmetic)
Clarify meaning of ERR in digest helper protocol
o 2004-04-20 12:38 (Cosmetic)
Spelling error in Turkish ERR_DNS_FAIL
o 2004-04-24 14:10 (Minor)
Negative cached 404 replies with VARY header never matches
o 2004-04-30 00:01 (Minor)
range_offset_limit -1 KB rejected as invalid syntax
* Look for "id" attribute of anchor element as XHTML 1.0 deprecates
"name" attribute. (bug 137854) [Sven Neumann]
* Use focus-width when restyling box. (bug 125290) [Balamurali Vishwnanthan]
* Fix crasher bug in gnochm when displaying new page. (bug #135489).
Epiphany 1.2.5
==============
Bugfixes
* Make saving a web page not re-fetch the page (Christian) [#141652]
* Fix crash on startup (Marco) [#141262]
Translations
* Duarte Loreto (pt)
Documentation
* New translation of help into Basque (eu) by
Hizkuntza Politikarako Sailburuordetza
* Updated screenshots in help (Piers)
* Updated help on smart bookmarks (Piers, patch by "gatto") [#139616]
Epiphany 1.2.4
==============
Bugfixes
* Fix problem with font selection in prefs dialogue (Christian)
* Fix encoding of downloaded and saved content (Marco) [#126571, #141050]
* Fix crash when closing a window while in print preview
mode (Christian) [#121298]
Translations
* John C Barstow (mi)
Bluefish 0.13 features a new bookmarks functionality, much improved
project management, auto tag closing, better navigation trough opened
documents, a much more responsive user interface, again many user
interface improvements, many bug fixes and much, much more!
http://cgi-spec.golux.com/
mentions SCRIPT_NAME but not SCRIPT_FILENAME.
Support web servers that only supply the former, even though
PHP 4.3 wants the latter to operate as a CGI...
Fixes problem using PHP 4.3 under a variety of non-Apache web servers.
as a copy of SCRIPT_NAME with the leading `/' removed.
Note that SCRIPT_FILENAME is _not_ a CGI/1.1 environment variable per
http://cgi-spec.golux.com/
If SCRIPT_FILENAME is not set set PHP 4.3.6 as a CGI fails with
No input file specified.
Apache sets this variable; it appears that many other CGI/1.1 compliant
web servers do not and thus PHP 4.3.6 as a CGI doesn't function with them.
"oh joy."
KEYS: overview of all keys [installed by the package]
Support for braille terminal
Updated Estonian translation
More svgalib modes added
Cursor on selected line in bookmarks (for Braille terminals)
Fixed --disable-graphics and --disable-javascript
Fixed encoding bug in javascript when modifying form element value and
default value.
Fixed crash when document changes under us and user presses 'd'
Fixed crash when pressed '=' on page with incomplete frames
Do not strip filename when relative url begins with '?'
SSL fix on OS/2
Do not timeout when file upload lasts too long
Terminal mouse handling returned back before change from
Thu Oct 9 16:44:10 GMT 2003
Copy and paste to clipboard
Selecting text to clipboard
Allow '?' instead of '/' as separator of host and path in url
Ask for overwrite when file exists.
Fixed memory leak with read-only select boxes
textarea wrap=hard
Added language hints to encodings.
Strip '#' of tag names
Disallow network options in anonymous mode
Fixed wrong error code and fd leak on error when uploading files
Fixed incorrect parsing of '&' entities in image maps
Do not hang when opening filo with file://
Fixed crash when url contains character with code 1
Fixed a security bug --- hiding url was possible with character code 1
Updated Upper Sorbian translation
Updated Polish translation
Allow urls: file:///d:/directory/file on OS/2
Fixed proxy sent in referrer
Upper Sorbian translation
Fixed user in smb
Support directories without '/' at the end on just another ftp server
Do not call memset from signal handler
Disable AC_BIG_ENDIAN and AC_LITTLE_ENDIAN name clash
Use pkg-config to find openssl
Fixed signal-delivery delay
Fixed crash in view_gr.c when displaying source
Fixed cache problems with long files in smb and when restarting http
Removed useless reallocs, speed up rendering
Do not send more Authorization headers
Detect infinite loop in authorization responses
FreeBSD frames
revision 1.53
date: 2004/04/24 10:36:15; author: grant; state: Exp; lines: +2 -1
make sure we link with the correct rpath on Solaris.
----------------------------
revision 1.52
date: 2004/04/24 10:35:23; author: grant; state: Exp; lines: +2 -2
don't pass "-Q option" to ${LD}, it isn't needed and the Solaris linker
errors on it.
----------------------------
revision 1.51
date: 2004/04/23 15:32:04; author: taya; state: Exp; lines: +2 -2
catch up to current statvfs support
