Finally figured out how to use the X.Org automatic submission
script after realizing that I had to change the script in order for
OpenChrome DDX to build in the first place.
OpenChrome DDX Version 0.6 has added the following new features.
- First official support for CX700, VX700, and VX800 chipsets
integrated TMDS transmitter (i.e., DVI support)
- Initial support for Silicon Image SiI 164 TMDS transmitter
OpenChrome DDX Version 0.6 has the following improvements.
- Improved FP reinitialization when resuming from standby
(HP 2133 Mini-Note, FIC CE260 / CE261 based netbooks like
Everex CloudBook and Sylvania g netbook)
- Improved automatic detection of display resources
- Improved X Server stability in dual monitor mode
- Automatic active steering of the display controller channel to the
correct display output device
OpenChrome DDX Version 0.6 fixes the following bugs.
- Fix for the disruption of the VT (Virtual Terminal) screen bug
introduced in Version 0.5
- Fix for HP 2133 Mini-Note's PCIe WLAN getting turned off
inadvertently bug introduced in Version 0.5
- version: 2.80.0
date: 2017-02-24
new features:
- title: "Add support for sideloading of KFX files created with the third-party KFX calibre plugin"
- title: "Edit book: Allow drag and drop of image files, stylesheets and html files into the editor to insert the appropriate <img> and <link> tags and add the files to the book automatically."
- title: "Kobo driver: Add support for updated firmware"
- title: "Edit Book: Spell Check: If there are no suggestions fill the suggested word box with the original word."
- title: "Viewer: add a shortcut (Ctrl+F11) to show/hide toolbars."
bug fixes:
- title: "PDF Output: Fix courier font not being rendered when converting on windows."
- title: "E-mail delivery: Add a Message-ID header when sending emails. Reduces probability of mails sent from calibre being marked as spam"
- title: "Save to disk: Fix path shortening being applied to entire save template even when saving to singe directory."
- title: "Get Books: Update the Virualo and Publi store plugins for website changes"
- title: "Viewer: Fix regression that caused slow opening of some books with missing font/css/image files"
- title: "Viewer: Pressing Ctrl+F in fullscreen mode should show the controls."
- title: "Edit book: Do not allow creating multiple new files whose names differ only by case."
- title: "Viewer: Use heuristics to try to detect comics encoded as fixed layout EPUBs to ensure they are displayed as intended."
improved recipes:
- The Atlantic
- The Financial Times
new recipes:
- title: Various new and improved Belgian news sources
Changelog:
The NSS team has released Network Security Services (NSS) 3.29.3
No new functionality is introduced in this release.
This is a patch release to fix a rare crash when initializing an SSL socket
fails.
The NSS team has released Network Security Services (NSS) 3.29.2
No new functionality is introduced in this release.
This is a patch release to fix an issue with TLS session tickets.
* Switch to GTK3 build
* Remove py-sqlite2 dependency, fix PR pkg/52032
Changelog:
New
Added support for WebAssembly, an emerging standard that brings near-native performance to Web-based games, apps, and software libraries without the use of plugins.
Added automatic captive portal detection, for easier access to Wi-Fi hotspots. When accessing the Internet via a captive portal, Firefox will alert users and open the portal login page in a new tab.
Added user warnings for non-secure HTTP pages with logins. Firefox now displays a "This connection is not secure" message when users click into the username and password fields on pages that don't use HTTPS.
Implemented the Strict Secure Cookies specification which forbids insecure HTTP sites from setting cookies with the "secure" attribute. In some cases, this will prevent an insecure site from setting a cookie with the same name as an existing "secure" cookie from the same base domain.
Enhanced Sync to allow users to send and open tabs from one device to another.
Fixed
Various security fixes
Improved text input for third-party keyboard layouts on Windows. This will address some keyboard layouts that
* have chained dead keys
* input two or more characters with a non-printable key or a dead key sequence
* input a character even when a dead key sequence failed to compose a character
Changed
Removed support for Netscape Plugin API (NPAPI) plugins other than Flash. Silverlight, Java, Acrobat and the like are no longer supported.
Removed Battery Status API to reduce fingerprinting of users by trackers
Improved experience for downloads:
* Notification in the toolbar when a download fails
* Quick access to five most recent downloads rather than three
* Larger buttons for canceling and restarting downloads
Display (but allow users to override) an "Untrusted Connection" error when encountering SHA-1 certificates that chain up to a root certificate included in Mozilla's CA Certificate Program. (Note: Firefox continues to permit SHA-1 certificates that chain to manually imported root certificates.) Read more about the Mozilla Security Team's plans to deprecate SHA-1
Migrated Firefox users on Windows XP and Windows Vista operating systems to the extended support release (ESR) version of Firefox.
When not using Direct2D on Windows, Skia is used for content rendering
Developer
Enabled CSS Grid Layout, opening up a world of new possibilities for graphic design
Redesigned Responsive Design Mode to include device selection, network throttling, and more
Improved security for screen sharing, which now shows a preview and no longer requires a whitelisted domain
unresolved
Google Hangouts temporarily won't work
Security fixes:
#CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP
#CVE-2017-5401: Memory Corruption when handling ErrorResult
#CVE-2017-5402: Use-after-free working with events in FontFace objects
#CVE-2017-5403: Use-after-free using addRange to add range to an incorrect root object
#CVE-2017-5404: Use-after-free working with ranges in selections
#CVE-2017-5406: Segmentation fault in Skia with canvas operations
#CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters
#CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping
#CVE-2017-5411: Use-after-free in Buffer Storage in libGLES
#CVE-2017-5409: File deletion via callback parameter in Mozilla Windows Updater and Maintenance Service
#CVE-2017-5408: Cross-origin reading of video captions in violation of CORS
#CVE-2017-5412: Buffer overflow read in SVG filters
#CVE-2017-5413: Segmentation fault during bidirectional operations
#CVE-2017-5414: File picker can choose incorrect default directory
#CVE-2017-5415: Addressbar spoofing through blob URL
#CVE-2017-5416: Null dereference crash in HttpChannel
#CVE-2017-5417: Addressbar spoofing by draging and dropping URLs
#CVE-2017-5425: Overly permissive Gecko Media Plugin sandbox regular expression access
#CVE-2017-5426: Gecko Media Plugin sandbox is not started if seccomp-bpf filter is running
#CVE-2017-5427: Non-existent chrome.manifest file loaded during startup
#CVE-2017-5418: Out of bounds read when parsing HTTP digest authorization responses
#CVE-2017-5419: Repeated authentication prompts lead to DOS attack
#CVE-2017-5420: Javascript: URLs can obfuscate addressbar location
#CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports
#CVE-2017-5421: Print preview spoofing
#CVE-2017-5422: DOS attack by using view-source: protocol repeatedly in one hyperlink
#CVE-2017-5399: Memory safety bugs fixed in Firefox 52
#CVE-2017-5398: Memory safety bugs fixed in Firefox 52 and Firefox ESR 45.8
Requests-FTP is an implementation of an FTP transport adapter for use
with the awesome Requests Python library. This library is intended as
both a starting point for future development and a useful example for
how to implement transport adapters.
Fixed security bugs:
* Cross-site scripting (XSS) via media file metadata. Reported by Chris Andrè
Dale, Yorick Koster, and Simon P. Briggs.
* Control characters can trick redirect URL validation. Reported by Daniel
Chatfield.
* Unintended files can be deleted by administrators using the plugin deletion
functionality. Reported by xuliang.
* Cross-site scripting (XSS) via video URL in YouTube embeds. Reported by Marc
Montpas.
* Cross-site scripting (XSS) via taxonomy term names. Reported by Delta.
* Cross-site request forgery (CSRF) in Press This leading to excessive use of
server resources. Reported by Sipke Mellema.
More information here: https://codex.wordpress.org/Version_4.7.3
The library can also be compiled using MinGW.
Removed use of alloca().
[Security] Removed implementation of deprecated "quick check" feature of PGP block cipher mode.
Improved the performance of scrypt by converting some Python to C.
2017-03-06 Richard Russon <rich@flatcap.org>
* Bug Fixes
- Get the correct buffer size under fmemopen/torify (#441)
- Use static inlines to make gcc 4.2.1 happy
- getdnsdomainname: cancel getaddrinfo_a if needed
- imap: remove useless code (#434) (origin/master)
- Fixes missing semi-colon compilation issue (#433)
* Docs
- github: added template for Pull Requests, issues and a CONTRIBUTION.md (#339)
- editorconfig: support for new files, fix whitespace (#439)
- add blocking fmemopen bug on debian to manual (#422)
* Upstream
- Increase ACCOUNT.pass field size. (closes#3921)
- SSL: Fix memory leak in subject alternative name code. (closes#3920)
- Prevent segv if open-appending to an mbox fails. (closes#3918)
- Clear out extraneous errors before SSL_connect() (see #3916)
2017-02-25 Richard Russon <rich@flatcap.org>
* Features
- Add option $show_multipart_alternative
- notmuch: Allow to use untransformed tag for color
- Use getaddrinfo_a if possible (#420)
* Bug Fixes
- handle sigint within socket operations (#411)
- Avoid browsing the remote spoolfile by setting MUTT_SELECT_MULTI attach
- notmuch: fix crash when completing tags (#395)
- Fixes missing failure return of notmuch msg open (#401)
- Fix latest Coverity issues (#387)
- Advance by the correct number of position even for unknown characters (#368)
- Release KyotoCabinet data with kcfree() (#384)
- 22 resource leaks
* Translations
- Update translations
- Update the german translation (#397)
* Docs
- fix typo in notmuch example
- remove duplicate "default" in the sidebar intro
- fix confusing description of notmuch operators (#371)
- correct spelling mistakes (#412)
* Website
- link to clang-format config in main repo (#28)
- updated list of useful programs
- update/improve list of useful programs
- sidebar_format has a single default value
- fix name of GNU Guix
- added guix distro
- added link to new afew maintainers
- add code of conduct
- add mutt-addressbook to useful
- remove unnecessary unicode non-breaking spaces
- github merging
* Build
- Enable and run unit-tests on the feature/unit-test branch
- add notmuch to default, feature
- new dbs for mutt
- master is now the main branch
- streamline builds
- fix doc generator
- add a few includes (prelude to clang-format)
- slcurses.h defines its own bool type
- travis: use container build
- add clang-format file
- Remove ugly macros and casts from crypt-gpgme.c
- fix minor reflow issues in some comments
- editorconfig: use spaces to indent in *.[ch] files
- added comment-blocks for clang-format to ignore
- fix 80 column limit, align statements
- Remove snprintf.c from EXTRA_DIST (#406)
- Kill homebrew (v)snprintf implementations, as they are C99 (#402)
- Display charset + small refactoring
- Do not cast or check returns from safe_calloc (#396)
- refactor: create a generic base64 encode/decode
- debug: remove dprint in favor of mutt_debug (#375)
- Fix dubious use macro for _() / gettext() (#376)
- Use mutt_buffer_init instead of memset
- Make the heap method and datatype a plain list
- Reverts making AliasFile into a list_t (#379)
- Turn mutt_new_* macros into inline functions
- Do not cast return values from malloc (et similia)
* Upstream
- Simplify mutt_label_complete().
- Permit tab completion of pattern expressions with ~y (labels).
- Fix the mutt_label_complete() pos parameter.
- Fix the x-label update code check location.
- Improve the label completion hash table usage.
- Adds label completion.
- Add hash_find_elem to get the hash element.
- Minor fixes to the x-label patch from David.
- Adds capability to edit x-labels inside mutt, and to sort by label.
- Allow "unsubjectrc *" to remove all patterns.
- Add subjectrx command to replace matching subjects with something else.
- Abstract the SPAM_LIST as a generic REPLACE_LIST
- Improve Reply-to vs From comparison when replying. (closes#3909)
- Fix sidebar references to the "new count" to be "unread". (closes#3908)
- Fix several alias hashtable issues.
- Add casecmp and strdup_key flags to hash_create()
- Improve error handling in mbox magic detection.
- Allow initial blank lines in local mailboxes.
- Fix minor documentation issues.
- Convert cmd_parse_search to use the uid hash. (closes#3905)
- Create a uid hash for imap. (see #3905)
- Convert HASH to be indexable by unsigned int. (see #3905)
- Fix imap server-side search to call uid2msgno() only once. (see #3905)
- Add a pattern_cache_t to speed up a few repeated matches.
- Canonicalize line endings for GPGME S/MIME encryption. (closes#3904)
- Fix build for bdb.
- Create function to free header cache data.
- Add Kyoto Cabinet support to the header cache.
- Prevent null pointer exception for h->ai_canonname
- Show SHA1 fp in interactive cert check menu.
- Fix potential cert memory leak in check_certificate_by_digest().
- Plug memory leak in weed-expired-certs code.
- Filter expired local certs for OpenSSL verification.
- Change "allow_dups" into a flag at hash creation.
textproc/py-sphinxcontrib-newsfeed.
sphinxcontrib-newsfeed is a extension for adding a simple Blog,
News or Announcements section to a Sphinx website.
Features:
Makes feed entries from Sphinx documents.
Generates a list of entries with teasers.
Saves the feed to a file in RSS format.
Supports comments via Disqus.
dpkg (1.18.23) unstable; urgency=medium
* Handle unmatched arch-qualified virtual packages in dpkg-genbuildinfo,
instead of letting perl die. Closes: #849944
* Declare .buildinfo format as stable with version 1.0.
* Do not depend on cxxabi.h to have declared __cxa_pure_virtual, use
the same “__cxxabiv1” namespace as specified in the C++ ABI, instead
of using the “abi” alias intended for use by userland.
Thanks to Jörg Sonnenberger <joerg@netbsd.org>.
* Add a comment on any C code switch case that falls through. Fixes new
gcc-7 warnings.
* Use snprintf() instead of sprintf() in libdpkg when constructing the ar
member header, as we might overflow depending on the input data.
* Portability:
- Do not redeclare sys_siglist in libcompat when the system does so.
Thanks to Thomas Klausner <wiz@NetBSD.org>.
- Rename err variable to ret in start-stop-daemon as the former is a
function on BSDs.
- Use 5-argument kvm_getprocs() call form on OpenBSD in start-stop-daemon.
- Use correct struct kinfo_proc ruid submember name on NetBSD in
start-stop-daemon.
- Define _KMEMUSER for NetBSD to get declarations for various
struct kinfo_proc members in start-stop-daemon.
* Perl modules:
- Do not special case EM_SPARC32PLUS for NetBSD in Dpkg::Shlibs::Objdump,
the code has been fixed in NetBSD as that situation could not happen.
- Fix read() error handling in Dpkg::Shlibs::Objdump::get_format() to
gracefully ignore non-ELF files again. Closes: #854536
- Emit an explicit warning from Dpkg::Shlibs::Objdump::Object::analyze()
for unknown executable formats instead of relying on objdump doing so.
- Do not parse bogus ELF binaries in Dpkg::Shlibs::Objdump::get_format().
Reported by Niels Thykier <niels@thykier.net>.
- Add ‘.mnt-ignore’ to the default ignore lists in Dpkg::Source::Package,
as we were already ignoring the ‘_MTN’ pathnames. Closes: #855450
Thanks to Nicolas Boulenguez <nicolas@debian.org>.
- Mark kfreebsd-amd64, kfreebsd-i386, sparc and sparc64 architectures as
having gcc builtin PIE in Dpkg::Vendor::Debian.
- Switch PIE handling in Dpkg::Vendor::Debian to have no default (!) and
delegate the setting to gcc or an explicit request by a user. This is
needed to cope with the general PIE brokenness situation in Debian, and
the current specific brokenness of a Debian gcc patch mangling the dpkg
build flags. Closes: #848129, #845550
* Documentation:
- Clarify the requirements for deb-conffile(5) pathnames. Closes: #854417
Proposed by Dieter Adriaenssens <dieter.adriaenssens@gmail.com>.
- Document dpkg-source --before-build and --after-build in --help output.
- Document dpkg-buildpackage --ignore-builtin-builddeps in --help output.
* Build system:
- Check <sys/proc.h> by also including <sys/param.h>, on several BSD
systems the header is not self-contained.
- Handle libmd implementations built into system libc, as found on some
BSD systems.
- Do not fail on missing compression libraries or headers on automatic
detection mode. Regression introduced in dpkg 1.18.14.
* Test suite:
- Use the detected perl interpreter instead of a random one from PATH.
[ Updated programs translations ]
* Dutch (Frans Spiesschaert). Closes: #856325
[ Updated scripts translations ]
* German (Helge Kreutzmann).
[ Updated man pages translations ]
* Dutch (Frans Spiesschaer). Closes: #856326
-- Guillem Jover <guillem@debian.org> Mon, 06 Mar 2017 05:41:11 +0100
0.9.3
=====
released 2017-03-06
* FIX `list` (and commands based on it like `calendar`, `at`, and `search`)
crashed if `--notstarted` was given and allday events were found (introduced
in 0.9.2)
* FIX `list --notstarted` (and commands based on it) would show events only on
the first day of their occurrence and not on all further days
* FIX `configure` would crash if neither "import config from vdirsyncer" nor
"create locale vdir" was selected
* FIX `at` will now show an error message if a date instead of a datetime is
given
* FIX `at`'s default header will now show the datetime queried for (instead of
just the date)
* FIX validate vdir metadata in color files
* FIX show the actually configured keybindings in ikhal
* NEW khal will now show cancelled events with a big CANCELLED in front (can be
configured via event formatting)
* NEW ikhal supports editing an event's raw icalendar content in an external
editor ($EDITOR), default keybinding is `alt + shift + e`. Only use this, if
you know what you are doing, the icalendar library we use doesn't do a lot of
validation, it silently disregards most invalid data.
Changes since 2.4.2 are too numerous to mention, with over 4,700 lines
in the ChangeLog file. However, this release does at least fix a large
number of build failures on SmartOS, and doesn't appear to cause any
obvious regressions in bulk builds performed by Joerg and myself.
Some pkgsrc cleanups while here, including merging the MirBSD patches
correctly. It couldn't be made much clearer how to properly integrate
patches here to ensure they are not lost. Next time you might not be so
fortunate!
