1.74.4 11 Jun 17
- Converted two progs to reg tests
- New version because 1.74.3 had some spurious files (xtractprotos,
endianness.h)
1.74.3 9 Jun 17
- Coverity scan fixes.
- Several fixes for running on Windows, including subtle one with tiff
encoding depending on pad bits.
- Utility and test if a page image likely has a table.
- Remove use of pixCreateTemplateNoInit() where it may cause problems.
- Make release 'configure-make ready'
June 5, 2017 - Version 10.55 (production release)
- Added support for GIF multimedia extensions
- Added a couple of new Sony/Minolta lenses (thanks Chris)
- Added a new Nikon LensID (thanks Jakob Dettner)
- Added new Composite TotalPathPoints tag to photoshop_paths.config
- Decode a number of new Sony tags and updated some others (thanks Jos Roost)
- Decode a new Pentax tag and fixed decoding of another (thanks Andras
Salamon)
- Updated iptcCore.args for new IPTC specification
- Changed description of a couple of AVI Model tags to match EXIF
- Patched tests to avoid failures with Perl 5.25.11 due to missing "." in @INC
- Fixed an incorrect warning from the experimental Validate feature
May 26, 2017 - Version 10.54
- Added support for Google XMP GImage and GAudio tags
- Added a new Olympus CameraType (thanks LibRaw)
- Added a two new Sony lenses and decode more ILCE-9 tags (thanks Jos Roost)
- Added new values to some Pentax tags (thanks Andras Salamon)
- Added a new Canon LensType
- Added an additional checks to the experimental -validate feature
- Improved user-defined FileTypes feature to provide more flexibility
- Enhanced -ext option to allow specific files extensions to be processed
along with supported files
- API Changes:
- Added ListJoin option to replace List and ListSep options
May 17, 2017 - Version 10.53
- Added support for "MeSa" Photoshop IRB resource
- Made XMP-GSpherical tags writable
- Improved German translations (thanks Jobi)
May 12, 2017 - Version 10.52
- Added some new values to a number of FujiFilm tags and changed some others
(thanks Albert Shan)
- Decode a number of new Sony tags for the ILCE-9 (thanks Jos Roost)
- Made SonyISO writable
- Changed behaviour of advanced formatting expression for Shortcut tags so it
now applies to the combined value rather than individual constituent values
- Minor changes to some Pentax print conversions
- Fixed problem using new NoDups utility with Shortcut tags
May 2, 2017 - Version 10.51
- Added "NoDups" utility function for use in advanced formatting expressions
- Added a new Pentax LensType (thanks JohnK)
- Added some new Pentax DriveMode values (thanks Andras Salamon)
- Enhanced -ver option to report Perl include directories with -v2
- Improved warning message when advanced formatting expression returns undef
- Minor change to a few FujiFilm print conversion strings (thanks Albert Shan)
- Changed behaviour when interpolating Shortcut tags in a string (the values
are now separated according to the -sep option setting instead of simply
being concatenated)
- Patched to allow file times to be set on systems where futimes is not
available
pkgsrc changes:
- remove a pkgsrc patch for ruby-gnome2-gtk that seems fixed in upstream
- ignore native-package-installer dependency checks
in ruby-gnome2-clutter-gstreamer and ruby-gnome2-webkit-gtk
Upstream changes:
(from https://github.com/ruby-gnome2/ruby-gnome2/blob/3.1.6/NEWS)
== Ruby-GNOME2 3.1.6: 2017-06-03
=== Changes
This is a bug fix release for Windows packages.
==== All
* Fixes
* Added a missing path existence check on Windows.
== Ruby-GNOME2 3.1.5: 2017-06-03
=== Changes
This is a bug fix release for Windows packages.
==== All
* Improvements
* Supported RubyInstaller2.
==== Ruby/Pango
* Improvements
* Add backward compatibility APIs:
* (({Pango::FontDescription::WEIGHT_*}))
* (({Pango::FontDescription::STYLE_*}))
== Ruby-GNOME2 3.1.4: 2017-05-30
=== Changes
This is a release that supports Ruby 2.4 on Windows.
==== All
* Improvements
* Supported MSYS2.
==== Ruby/GLib2
* Improvements
* Added (({GLib::Object#floating?})) for debugging.
==== Ruby/GIO2
* Improvements
* Added (({Gio::File.open})). The followings are deprecated.
* (({Gio::File.commandline_arg}))
* (({Gio::File.path}))
* (({Gio::File.uri}))
==== Ruby/GObjectIntrospection
* Improvements
* Relaxed expected test result for 32bit environment.
[GitHub#1026][Reported by Mamoru TASAKA]
* Added tests for (({GObjectIntrospection::ConstantInfo})).
[GitHub#1027][Patch by cedlemo]
* Supported floating "transfer full" GObject.
==== Ruby/GDK3
* Improvements
* Supported (({Cairo::Surface#to_pixbuf(options={})})).
(({Cairo::Surface#to_pixbuf(src_x, src_y, width, height)})) is
deprecated.
==== Ruby/Rsvg2
* Improvements
* Migrated to GObject Introspection bindings.
* Renamed to (({Rsvg})) from (({RSVG})). (({RSVG})) is still
usable but it's deprecated.
[GitHub#1030][Patch by cedlemo]
* Supported (({Cairo::Context#render_rsvg_handle(handle, :id =>
...)})).
==== Ruby/WebKit2GTK
* Improvements
* (({WebKit3Gtk::WebView#initialize})): Supported (({Hash}))
options.
[GitHub#1028][Patch by Matijs van Zuijlen]
=== Thanks
* Mamoru TASAKA
* cedlemo
* Matijs van Zuijlen
== Ruby-GNOME2 3.1.3: 2017-04-27
=== Changes
This is a release that improve backward compatibility for Ruby/Pango.
==== Ruby/Pango
* Improvements
* Defined constants under (({Pango})) again for backward compatibility.
[GitHub#1022][Reported by Andy Meneely]
* Defined constants under (({Pango::Layout})) again for backward
compatibility.
[GitHub#1022][Reported by Andy Meneely]
* (({Pango.pixels})): Added again.
* (({Pango::AttrShape#data})): Supported again.
* Fixes
* (({Pango::Layout#text=})): Fixed a bug that wrong bytesize is
used for multibyte string.
* (({Pango::Layout#markup=})): Fixed a bug that wrong bytesize
is used for multibyte string.
=== Thanks
* Andy Meneely
== Ruby-GNOME2 3.1.2: 2017-04-26
There is an incompatible change. (({GBytes})) to (({String}))
conversion is changed to (({GBytes})) to (({GLib::Bytes}))
conversion. You can get (({String})) by (({GLib::Bytes#to_s})).
Other incompatible changes are bugs. Please report them to us.
=== Changes
==== All
* Improvements
* Supported auto depended package install for GObject
Introspection based bindings.
==== Ruby/GLib2
* Improvements
* Supported overriding (({alloc_func})) in super class.
* Extracted native package installer code as
native-package-installer gem.
* (({GLib::Bytes})): Added.
* Supported pkg-config 1.1.9 or later.
* Fixes
* Fixed a build error on CentOS 6 and Ubuntu 12.04. They use
GLib < 2.34.
[GitHub#1012][Reported by Scot]
* Fixed a bug that (({GLib::TypePlugin})) can't be included.
[GitHub#1019][Patch by Matijs van Zuijlen]
==== Ruby/GIO2
* Fixes
* Fixed a path in test. [GitHub#990][Reported by Mamoru TASAKA]
==== Ruby/GObjectIntrospection
* Improvements
* Supported getting interface, union and boxed type as a field value.
* Supported setting an interface as a field.
* Supported more struct types.
* Supported cairo-gobject types.
* Supported outputting an array of interfaces.
[GitHub#1006][Reported by cedlemo]
* Supported Rubyish method name conversion for (({list_XXX}))
methods that return an array.
* Supported customizing field reader method name.
* Supported auto (({int})) to boolean conversion for field value.
* (({GObjectIntrospection::Repository.default})): Added a GC guard.
* Supported inputting (({unichar})).
* Supported inputting (({gint64})) C array.
* Supported inputting (({gint8})) C array.
* Added tests for (({GObjectIntrospection::UnionInfo})).
[GitHub#1016][Patch by cedlemo]
* Stopped auto (({GBytes})) to (({String}))
conversion. (({GBytes})) is converted to (({GLib::Bytes})). It's
for efficient byte sequence handling in Ruby. It's
an incompatible change. You can use (({GLib::Bytes#to_s})) to
get (({String})).
* Fixes
* (({GObjectIntrospection::RepositoryError})): Fixed parent class.
* Fixed a typo. [GitHub#1002][Reported by cedlemo]
==== Ruby/ATK
* Improvements
* Migrated to GObject Introspection bindings.
[GitHub#998][Patch by cedlemo]
==== Ruby/CairoGObject
* Fixes
* Fixed a double free bug.
==== Ruby/Pango
* Improvements
* Migrated to GObject Introspection bindings.
[GitHub#1007][GitHub#1008][GitHub#1009][GitHub#1010]
[GitHub#1011][Patch by cedlemo]
[GitHub#1013][GitHub#1014][Patch by Detlef Wagner]
==== Ruby/GdkPixbuf2
* Improvements
* Supported GdkPixbuf 2.31.6 on CentOS 7 again.
==== Ruby/GDK3
* Improvements
* (({Gdk::Event})) and subclasses: Supported again.
* Supported old GDK 3 again.
* Supported X11 related features.
[GitHub#999][Reported by johnlane]
==== Ruby/GTK3
* Improvements
* (({Gtk::Widget#click})): Added.
* (({Gtk::Widget#send_key})): Added.
* (({Gtk::Widget#wait_for_draw})): Added.
* (({Gtk::WiAccelGroup.activate})): Added.
* Updated samples.
[GitHub#1002][GitHub#1003]
[Patch by cedlemo]
* (({Gtk::IconTheme#choose_icon})): Changed the default flags to
(({0})) from (({:generic_fallback})).
* (({Gtk::IconTheme#lookup_icon})): Changed the default flags to
(({0})) from (({:generic_fallback})).
* Supported GTK+ < 3.20 again.
* Fixes
* Updated signal name in document.
[GitHub#995][Patch by Arnaud Meuret]
==== Ruby/ClutterGdk
* Fixes
* Ensured initializing GDK.
[GitHub#1000][Reported by cedlemo]
==== Ruby/GOffice
* Improvements
* (({GOffice::Version})): Added.
=== Thanks
* Mamoru TASAKA
* Arnaud Meuret
* cedlemo
* johnlane
* Scot
* Detlef Wagner
* Matijs van Zuijlen
Release Notes for Version 2.41
The rendering of Bezier patches was improved. Minor improvements were made
to perpendicular marks in the geometry package. A perl issue was addressed.
Two unwanted temporary files are now removed after TeX processing.
EPS output is now supported with all TeX engines. A workaround was
implemented for the ImageMagick jpeg black background bug.
Release Notes for Version 2.40
A partial workaround for the OpenGL transparency bug was implemented, by
presorting transparent triangles of the same material. The examples were
updated and a segmentation fault was fixed. Multisample detection, surface
rendering, and crack filling algorithms were fixed. The default compilation
flags now specify -std=c++11.
Release Notes for Version 2.39
A workaround was implemented for the backwards incompatibility in the
TeXLive 2016 graphicx package. Empty tick labels in graphs are now avoided.
A paletteticks NoTicks option was added. Support for lualatex was improved.
Renderers for Bezier patches and curves more efficient than those
in the deprecated GLU library were implemented.
Require Meson 0.39.1; the previous release already had an implicit requirement on this version
Allow disabling EGL support when building Epoxy
Add support for building on Haiku
Update EGL registry from Khronos
Pkgsrc changes:
* Adapt PLIST, remove patches for now-integrated bugfixes.
As the release announcement says:
All of the changes are bug and security fixes.
Upstream changes:
CHANGES IN LIBTIFF:
* libtiff/tif_getimage.c, libtiff/tif_open.c: add parenthesis to
fix cppcheck clarifyCalculation warnings * libtiff/tif_predict.c,
libtiff/tif_print.c: fix printf unsigned vs signed formatting
(cppcheck invalidPrintfArgType_uint warnings)
* libtiff/tif_read.c, libtiff/tiffiop.h: fix uint32 overflow in
TIFFReadEncodedStrip() that caused an integer division by zero.
Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2596
* libtiff/tif_pixarlog.c, libtiff/tif_luv.c: fix heap-based buffer
overflow on generation of PixarLog / LUV compressed files, with
ColorMap, TransferFunction attached and nasty plays with
bitspersample. The fix for LUV has not been tested, but suffers
from the same kind of issue of PixarLog. Reported by Agostino
Sarubbo. Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2604
* libtiff/tif_strip.c: revert the change in TIFFNumberOfStrips()
done for http://bugzilla.maptools.org/show_bug.cgi?id=2587 /
CVE-2016-9273 since the above change is a better fix that makes
it unnecessary.
* libtiff/tif_dirread.c: modify ChopUpSingleUncompressedStrip()
to instanciate compute ntrips as TIFFhowmany_32(td->td_imagelength,
rowsperstrip), instead of a logic based on the total size of
data. Which is faulty is the total size of data is not sufficient
to fill the whole image, and thus results in reading outside of
the StripByCounts/StripOffsets arrays when using TIFFReadScanline().
Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2608.
* libtiff/tif_ojpeg.c: make OJPEGDecode() early exit in case of
failure in OJPEGPreDecode(). This will avoid a divide by zero,
and potential other issues. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2611
* libtiff/tif_write.c: fix misleading indentation as warned by GCC.
* libtiff/tif_fax3.h: revert change done on 2016-01-09 that made
Param member of TIFFFaxTabEnt structure a uint16 to reduce size
of the binary. It happens that the Hylafax software uses the
tables that follow this typedef (TIFFFaxMainTable, TIFFFaxWhiteTable,
TIFFFaxBlackTable), although they are not in a public libtiff
header. Raised by Lee Howard. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2636
* libtiff/tiffio.h, libtiff/tif_getimage.c: add TIFFReadRGBAStripExt()
and TIFFReadRGBATileExt() variants of the functions without ext,
with an extra argument to control the stop_on_error behaviour.
* libtiff/tif_getimage.c: fix potential memory leaks in error code
path of TIFFRGBAImageBegin(). Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2627
* libtiff/tif_jpeg.c: increase libjpeg max memory usable to 10 MB
instead of libjpeg 1MB default. This helps when creating files
with "big" tile, without using libjpeg temporary files. Related
to https://trac.osgeo.org/gdal/ticket/6757
* libtiff/tif_jpeg.c: avoid integer division by zero in
JPEGSetupEncode() when horizontal or vertical sampling is set
to 0. Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2653
* libtiff/tif_dirwrite.c: in TIFFWriteDirectoryTagCheckedRational,
replace assertion by runtime check to error out if passed value
is strictly negative. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2535
* libtiff/tif_dirread.c: avoid division by floating point 0 in
TIFFReadDirEntryCheckedRational() and
TIFFReadDirEntryCheckedSrational(), and return 0 in that case
(instead of infinity as before presumably) Apparently some
sanitizers do not like those divisions by zero. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2644
* libtiff/tif_dir.c, tif_dirread.c, tif_dirwrite.c: implement
various clampings of double to other data types to avoid undefined
behaviour if the output range isn't big enough to hold the input
value. Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2643http://bugzilla.maptools.org/show_bug.cgi?id=2642http://bugzilla.maptools.org/show_bug.cgi?id=2646http://bugzilla.maptools.org/show_bug.cgi?id=2647
* libtiff/tif_jpeg.c: validate BitsPerSample in JPEGSetupEncode()
to avoid undefined behaviour caused by invalid shift exponent.
Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2648
* libtiff/tif_read.c: avoid potential undefined behaviour on signed
integer addition in TIFFReadRawStrip1() in isMapped() case.
Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2650
* libtiff/tif_getimage.c: add explicit uint32 cast in putagreytile
to avoid UndefinedBehaviorSanitizer warning. Patch by Nicolás
Peña. Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2658
* libtiff/tif_read.c: TIFFReadBufferSetup(): use _TIFFcalloc() to
zero initialize tif_rawdata. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2651
* libtiff/tiffio.h, tif_unix.c, tif_win32.c, tif_vms.c: add _TIFFcalloc()
* libtiff/tif_luv.c, tif_lzw.c, tif_packbits.c: return 0 in Encode
functions instead of -1 when TIFFFlushData1() fails. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2130
* libtiff/tif_ojpeg.c: fix leak in OJPEGReadHeaderInfoSecTablesQTable,
OJPEGReadHeaderInfoSecTablesDcTable and
OJPEGReadHeaderInfoSecTablesAcTable when read fails. Patch by
Nicolás Peña. Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2659
* libtiff/tif_jpeg.c: only run JPEGFixupTagsSubsampling() if the
YCbCrSubsampling tag is not explicitly present. This helps a
bit to reduce the I/O amount when the tag is present (especially
on cloud hosted files).
* libtiff/tif_lzw.c: in LZWPostEncode(), increase, if necessary,
the code bit-width after flushing the remaining code and before
emitting the EOI code. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=1982
* libtiff/tif_pixarlog.c: fix memory leak in error code path of
PixarLogSetupDecode(). Patch by Nicolás Peña. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2665
* libtiff/tif_fax3.c, tif_predict.c, tif_getimage.c: fix GCC 7
-Wimplicit-fallthrough warnings.
* libtiff/tif_dirread.c: fix memory leak in non DEFER_STRILE_LOAD
mode (ie default) when there is both a StripOffsets and TileOffsets
tag, or a StripByteCounts and TileByteCounts Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2689
* libtiff/tif_ojpeg.c: fix potential memory leak in
OJPEGReadHeaderInfoSecTablesQTable, OJPEGReadHeaderInfoSecTablesDcTable
and OJPEGReadHeaderInfoSecTablesAcTable Patch by Nicolás Peña.
Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2670
* libtiff/tif_fax3.c: avoid crash in Fax3Close() on empty file.
Patch by Alan Coopersmith + complement by myself. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2673
* libtiff/tif_read.c: TIFFFillStrip(): add limitation to the number
of bytes read in case td_stripbytecount[strip] is bigger than
reasonable, so as to avoid excessive memory allocation.
* libtiff/tif_zip.c, tif_pixarlog.c, tif_predict.c: fix memory
leak when the underlying codec (ZIP, PixarLog) succeeds its
setupdecode() method, but PredictorSetup fails. Credit to OSS-Fuzz
(locally run, on GDAL)
* libtiff/tif_read.c: TIFFFillStrip() and TIFFFillTile(): avoid
excessive memory allocation in case of shorten files. Only
effective on 64 bit builds and non-mapped cases. Credit to
OSS-Fuzz (locally run, on GDAL)
* libtiff/tif_read.c: TIFFFillStripPartial() / TIFFSeek(), avoid
potential integer overflows with read_ahead in CHUNKY_STRIP_READ_SUPPORT
mode. Should especially occur on 32 bit platforms.
* libtiff/tif_read.c: TIFFFillStripPartial(): avoid excessive
memory allocation in case of shorten files. Only effective on
64 bit builds. Credit to OSS-Fuzz (locally run, on GDAL)
* libtiff/tif_read.c: update tif_rawcc in CHUNKY_STRIP_READ_SUPPORT
mode with tif_rawdataloaded when calling TIFFStartStrip() or
TIFFFillStripPartial(). This avoids reading beyond tif_rawdata
when bytecount > tif_rawdatasize. Fixes
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1545.
Credit to OSS-Fuzz
* libtiff/tif_color.c: avoid potential int32 overflow in
TIFFYCbCrToRGBInit() Fixes
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1533 Credit
to OSS-Fuzz
* libtiff/tif_pixarlog.c, tif_luv.c: avoid potential int32 overflows
in multiply_ms() and add_ms(). Fixes
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1558 Credit
to OSS-Fuzz
* libtiff/tif_packbits.c: fix out-of-buffer read in PackBitsDecode()
Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1563
Credit to OSS-Fuzz
* libtiff/tif_luv.c: LogL16InitState(): avoid excessive memory
allocation when RowsPerStrip tag is missing. Credit to OSS-Fuzz
(locally run, on GDAL)
* libtiff/tif_lzw.c: update dec_bitsleft at beginning of LZWDecode(),
and update tif_rawcc at end of LZWDecode(). This is needed to
properly work with the latest chnges in tif_read.c in
CHUNKY_STRIP_READ_SUPPORT mode.
* libtiff/tif_pixarlog.c: PixarLogDecode(): resync tif_rawcp with
next_in and tif_rawcc with avail_in at beginning and end of
function, similarly to what is done in LZWDecode(). Likely needed
so that it works properly with latest chnges in tif_read.c in
CHUNKY_STRIP_READ_SUPPORT mode. But untested...
* libtiff/tif_getimage.c: initYCbCrConversion(): add basic validation
of luma and refBlackWhite coefficients (just check they are not
NaN for now), to avoid potential float to int overflows. Fixes
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1663 Credit
to OSS Fuzz
* libtiff/tif_read.c: _TIFFVSetField(): fix outside range cast of
double to float. Credit to Google Autofuzz project
* libtiff/tif_getimage.c: initYCbCrConversion(): check luma[1] is
not zero to avoid division by zero. Fixes
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1665 Credit
to OSS Fuzz
* libtiff/tif_read.c: _TIFFVSetField(): fix outside range cast of
double to float. Credit to Google Autofuzz project
* libtiff/tif_getimage.c: initYCbCrConversion(): check luma[1] is
not zero to avoid division by zero. Fixes
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1665 Credit
to OSS Fuzz
* libtiff/tif_getimage.c: initYCbCrConversion(): stricter validation
for refBlackWhite coefficients values. To avoid invalid float->int32
conversion. Fixes
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1718 Credit
to OSS Fuzz
CHANGES IN THE TOOLS:
* tools/fax2tiff.c (main): Applied patch by Jörg Ahrens to fix
passing client data for Win32 builds using tif_win32.c
(USE_WIN32_FILEIO defined) for file I/O. Patch was provided via
email on November 20, 2016.
* tools/tiffcp.c: avoid uint32 underflow in cpDecodedStrips that
can cause various issues, such as buffer overflows in the library.
Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2598
* tools/tiffcrop.c: fix readContigStripsIntoBuffer() in -i (ignore)
mode so that the output buffer is correctly incremented to avoid
write outside bounds. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2620
* tools/tiffcrop.c: add 3 extra bytes at end of strip buffer in
readSeparateStripsIntoBuffer() to avoid read outside of heap
allocated buffer. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2621
* tools/tiffcrop.c: fix integer division by zero when BitsPerSample
is missing. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2619
* tools/tiffinfo.c: fix null pointer dereference in -r mode when
the image has no StripByteCount tag. Reported by Agostino Sarubbo.
Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2594
* tools/tiffcp.c: avoid potential division by zero is BitsPerSamples
tag is missing. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2597
* tools/tif_dir.c: when TIFFGetField(, TIFFTAG_NUMBEROFINKS, ) is
called, limit the return number of inks to SamplesPerPixel, so
that code that parses ink names doesn't go past the end of the
buffer. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2599
* tools/tiffcp.c: avoid potential division by zero is BitsPerSamples
tag is missing. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2607
* tools/tiffcp.c: fix uint32 underflow/overflow that can cause
heap-based buffer overflow. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2610
* tools/tiffcp.c: replace assert( (bps % 8) == 0 ) by a non assert
check. Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2605
* tools/tiff2ps.c: fix 2 heap-based buffer overflows (in PSDataBW
and PSDataColorContig). Reported by Agostino Sarubbo. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2633 and
http://bugzilla.maptools.org/show_bug.cgi?id=2634.
* tools/tiff2pdf.c: prevent heap-based buffer overflow in -j mode
on a paletted image. Note: this fix errors out before the overflow
happens. There could probably be a better fix. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2635
* tools/tiff2pdf.c: fix wrong usage of memcpy() that can trigger
unspecified behaviour. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2638
* tools/tiff2pdf.c: avoid potential invalid memory read in
t2p_writeproc. Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2639
* tools/tiff2pdf.c: avoid potential heap-based overflow in
t2p_readwrite_pdf_image_tile(). Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2640
* tools/tiffcrop.c: remove extraneous TIFFClose() in error code
path, that caused double free. Related to
http://bugzilla.maptools.org/show_bug.cgi?id=2535
* tools/tiffcp.c: error out cleanly in cpContig2SeparateByRow and
cpSeparate2ContigByRow if BitsPerSample != 8 to avoid heap based
overflow. Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2656
and http://bugzilla.maptools.org/show_bug.cgi?id=2657
* tools/raw2tiff.c: avoid integer division by zero. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2631
* tools/tiff2ps.c: call TIFFClose() in error code paths.
* tools/fax2tiff.c: emit appropriate message if the input file is
empty. Patch by Alan Coopersmith. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2672
* tools/tiff2bw.c: close TIFF handle in error code path. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2677
Changes from Version 1.11.0 to 1.11.1
Added 3D convex hull computation and features (David Stöckel).
Added Random Forest version 3, inspired by LEMON's graph API, to simplify customization of RF variants (Philip Schill).
Improved hierarchical clustering (Cpnstantin Pape).
Minor improvements and bug fixes in the code and documentation.
Add C++ guards around generated headers
Add z,relro and z,now to the GCC linker flags
Add explicit version flags for macOS builds
Add missing visibility compiler flags
Prefer using pkg-config files to find GLES
Fix build on MSVC 2013 when using the inline keyword
Fix dlwrap on aarch64
Require Meson ≥ 0.38.1
Allow building Epoxy as a Meson sub-project
Avoid crashes when running Epoxy on X servers without GLX
* recommended dependencies (from http://www.graphviz.org/Download_source.php)
are now non-optional: that includes Pango, Cairo and GTS
* enabled Quartz support on macOS
* added Poppler and QT as options
* options are not nested in X11 any more; that allows building on Darwin
* PLIST has been sorted correctly
useful functions to deal with 3D surfaces meshed with interconnected
triangles.
A brief summary of its main features:
* Simple object-oriented structure giving easy access to topological
properties.
* 2D dynamic Delaunay and constrained Delaunay triangulations.
* Robust geometric predicates (orientation, in circle) using fast adaptive
floating point arithmetic.
* Robust set operations on surfaces (union, intersection, difference).
* Surface refinement and coarsening (multiresolution models).
* Dynamic view-independent continuous level-of-detail.
* Preliminary support for view-dependent level-of-detail.
* Bounding-boxes trees and Kd-trees for efficient point location and
collision/intersection detection.
* Graph operations: traversal, graph partitioning.
* Metric operations (area, volume, curvature ...).
* Triangle strips generation for fast rendering.
bug fixes, possibly some security fixes, although they are not
explicitly mentioned in the change log.
Pkgsrc changes:
* Remove patch which no longer applies.
Upstream changes:
1.3.10
. Address floating point build parameters to give consistent positioning
results across platforms
. Various bug fixes
1.3.9
. Add Collision COLL_ISSPACE to allow for visible spaces in collision
avoidance
. Add segment and pass direction information to tracing output
. Bug fix rule length testing in 32-bit
. Increase slanted margin distances for collision avoidance
. Change kerning algorithm to simple outline expansion.
Seems to make no visible difference.
. Add trace2svg to test tools
1.3.8
. Various bug fixes arising from fuzzing
. Fix regression that stopped piglatin from working
. Make collision avoidance kerning give more regular results
. Minor modification to clustering algorithm to handle variable width chars
Changelog:
Overview of Changes from GIMP 2.8.20 to GIMP 2.8.22
===================================================
GUI:
- improve drawing performance in single window mode, especially with
pixmap themes
macOS DMG:
- Make the launcher script also set BABL_PATH
- Add patch for GTK+ Bug 743717 to the build which concerns crashes
during clipboard operations with a clipboard manager active
- Add patch for GTK+ Bug 767091 to the build which concerns crashes
on some drag & drop operations
- generate OSX package metadata during build
Plug-ins:
- Fix for CVE-2007-3126, a bug in the ICO plug-in which allowed
context-dependent attackers to cause a denial of service (crash)
via an ICO file with an InfoHeader containing a Height of zero.
We couldn't reproduce any crash in recent version, but fixed the
error messages for good measure
- Avoid creating wrong layer group structure when importing PSD
files (already fixed in 2.8.20, didn't make it to the NEWS)
- Prevent a crash in PDF plug-in if images or resolution are large
- stop parsing invalid PCX files early and prevent a segmentation fault
General:
- if NOCONFIGURE is set, autogen.sh won't run configure
- VPATH builds for win32 targets have been fixed
Updated Translations:
- Basque
- Brazilian Portuguese
- Catalan
- Chinese (PRC)
- Finnish
- Greek
- Hungarian
- Italian
- Kazakh
- Norwegian
- Polish
- Slovenian
- Spanish
- Swedish
fixes CVE-2017-7857 CVE-2017-7858 CVE-2017-7864 CVE-2017-8105 CVE-2017-8287
Upstream change announcement:
I. IMPORTANT CHANGES
- Support for OpenType Variation Fonts is now complete. The last
missing part was handling the `VVAR' and `MVAR' tables, which is
available with this release.
- A new function `FT_Face_Properties' allows the control of some
module and library properties per font. Currently, the
following properties can be handled: stem darkening, LCD filter
weights, and the random seed for the `random' CFF operator.
- The PCF change to show more `colourful' family names (introduced
in version 2.7.1) was too radical; it can now be configured with
PCF_CONFIG_OPTION_LONG_FAMILY_NAMES at compile time. If
activated, it can be switched off at run time with the new pcf
property `no-long-family-names'. If the `FREETYPE_PROPERTIES'
environment variable is available, you can say
FREETYPE_PROPERTIES=pcf:no-long-family-names=1
- Support for the following scripts has been added to the
auto-hinter.
Adlam, Avestan, Bamum, Buhid, Carian, Chakma, Coptic, Cypriot,
Deseret, Glagolitic, Gothic, Kayah, Lisu, N'Ko, Ol Chiki, Old
Turkic, Osage, Osmanya, Saurashtra, Shavian, Sundanese, Tai
Viet, Tifinagh, Unified Canadian Syllabics, Vai
II. IMPORTANT BUG FIXES
- `Light' auto-hinting mode no longer uses TrueType metrics for
TrueType fonts. This bug was introduced in version 2.4.6,
causing horizontal scaling also. Almost all GNU/Linux
distributions (with Fedora as a notable exception) disabled the
corresponding patch for good reasons; chances are thus high that
you won't notice a difference.
If optical backward compatibility for legacy applications is
necessary, you might enable the AF_CONFIG_OPTION_TT_SIZE_METRICS
configuration option. However, it is strongly recommended to
avoid that, adjusting font sizes instead.
- If a TrueType font gets loaded with FT_LOAD_NO_HINTING, FreeType
now scales the font linearly again (bug introduced in version
2.4.6).
- CVE-2017-8105, CVE-2017-8287: Older FreeType versions have
out-of-bounds writes caused by heap-based buffer overflows
related to Type 1 fonts.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8105https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8287
III. MISCELLANEOUS
- A new function `FT_Set_Default_Properties' has been added to
parse the `FREETYPE_PROPERTIES' environment variable
(previously, it was internal only). `FT_Init_FreeType' always
call this function, but `FT_New_Library' does not (similar to
`FT_Add_Default_Modules').
- To be in sync with OpenType version 1.7 and newer, macros
FT_PARAM_TAG_IGNORE_PREFERRED_FAMILY,
FT_PARAM_TAG_IGNORE_PREFERRED_SUBFAMILY,
TT_NAME_ID_PREFERRED_FAMILY
TT_NAME_ID_PREFERRED_SUBFAMILY
are renamed to
FT_PARAM_TAG_IGNORE_TYPOGRAPHIC_FAMILY,
FT_PARAM_TAG_IGNORE_TYPOGRAPHIC_SUBFAMILY,
TT_NAME_ID_TYPOGRAPHIC_FAMILY
TT_NAME_ID_TYPOGRAPHIC_SUBFAMILY
The old macro names are deprecated (but still available).
- Support for SFNT `name' tables has been improved.
. Format 1 `name' tables are now supported. Use new function
`FT_Get_Sfnt_LangTag' to access associated language tags.
. Language, encoding, and name IDs have been updated to OpenType
version 1.8.1.
- The new CFF engine now handles the `random' operator. All CFF
opcodes are now supported.
- The CFF module has a new property `random-seed' to control the
pseudo-random number generation for the `random' operator.
- The `freetype-config' script is now a wrapper of `pkg-config' if
this program is available in the path.
- FT_LOAD_TARGET_LCD is now a variant of FT_LOAD_TARGET_LIGHT;
this should provide better rendering results.
- A mode to display light auto-hinting with sub-pixel positioning
has been added to `ftdiff'.
The error is as follows.
./configure: 17376: Syntax error: no modifiers allowed with ${#var}
From the commit log of r1.127 src/bin/sh/parser.c,
it seems intentional. So use ksh explicitly.
- Undef PySlice_GetIndicesEx, see https://bugs.python.org/issue29943
- Fix for file with DPI in EXIF but not metadata, and XResolution is an int rather than tuple
- Docs: Removed broken download counter badge
- Docs: Fixed rst syntax error
--------------------------------------------
Version Downloads Last updated
------- --------- ------------
FlickrNet API... 3.24.0 (this version) 585 Monday, February 6, 2017
FlickrNet API... 3.22.0 2,278 Friday, February 12, 2016
- Upload now uses substantially less memory, Issue #13
- Refactoring tests
- Add simple retry on Web Exception 502 Bad Gateway
- a common error returned by Flickr API
FlickrNet API... 3.20.0 193 Tuesday, February 9, 2016
FlickrNet API... 3.19.0 510 Monday, February 1, 2016
