Upstream announcement:
https://helpx.adobe.com/security/products/flash-player/apsb18-24.html
Adobe Security Bulletin
Security updates available for Flash Player | APSB18-24
Summary
Adobe has released security updates for Adobe Flash Player for Windows,
macOS, Linux and Chrome OS. These updates address critical
vulnerabilities in Adobe Flash Player 30.0.0.113 and earlier versions.
Successful exploitation could lead to arbitrary code execution in the
context of the current user.
Firstly we need to modify the copied libraries so that their install_name
matches the new location, otherwise check-shlibs thinks that they still
come from the main gcc49 package. Secondly we need to avoid the stub
libgcc_ext libraries that are used by default as we are unable to modify
their install_name, just link directly to libgcc. Bump PKGREVISION.
asyncpg v0.17.0:
Improvements
Official support for Python 3.7.
Bug Fixes
Fix garbage collection of connections and emit a ResourceWarning
if an unclosed connection is garbage collected.
Raise a clear error if there's a race in pool intialization.
Channel names in Connection.add_listener() and
Connection.remove_listener() are now quoted properly.
Fixed endianness detection on *BSD systems.
Fixed handling of large type OIDs.
3.6.4:
New features
* Build Python 3.7 wheels on Linux, Windows and Mac.
Resolved issues
* Rename _cpuid module to make upgrades more robust.
* More meaningful exceptions in case of mismatch in IV length (CBC/OFB/CFB modes).
* Fix compilation issues on Solaris 10/11.
3.3 - Charlie the unicorn
* Use masquerade as compiler white-list.
* New --allow-private (the default) which allows non-global
* IP and IPv6 addresses.
* Cross-compilation support.
* Fix parsing of IPv6 addresses.
* Python 3, not python 2.
* Can build without python (and without pump mode or tests).
For those upgrading: you must run update-distcc-symlinks on every server machine, and add manually (see MASQUERADING of distcc(1)) those compilers it does not detect.
includes fixes for build breakage introduced by boost 1.67
## 003.011.001.000
* N310: fix compiler warnings
* N310: Implement digital loopback
* N3xx: Add N3xx devtest
* X300: Properly coerce master clock rate (tick rate)
* X300: handle bad weak_ptr during pcie discovery
* X300: handle bad weak_ptr during pcie discovery
* X300: Fix check_radio_config() to fix errors when using a single dboard
in slot A
* B200: docs: Suggest modifying recv_frame_size for more stability
* B200: Fix bandwidth warnings and ranges
* N2xx: Fix regression issue that limited tuning range
* UBX: Change antenna functions to coercers on antenna/value properties
* adf4002: Fix register programming for power down bit
* UHD: Fix config file path for some Windows builds
* UHD: Add operators == and != for uhd::dict
* UHD: Add device_addr_t constructor from map
* UHD: Fix range of gain group to skip gains with zero step
* UHD: Changes to support Boost 1.67
* UHD: Correctly set end of burst flag in RX metadata
* UHD: Reduce usage of boost::assign, boost::this_thread::sleep, and boost:bind
* UHD: Update multi_usrp::get_usrp_?x_info() for MPM devices
* UHD: Refactor static const values to fix linker errors in niusrprio
* mpm: cmake: Add git hash and version info to Python module
* mpm: Add reference counters to UIO
* mpm: Add offset to EEPROM reads
* mpm: Disable PPS out during initialization
* mpm: Update cmake to find the correct python3
* mpm: Bump maximum supported revision to 5 (Rev F)
* mpm: Fixed db slot typo in db-id
* mpm: Increased claim timeout, made a separate RPC connection for claim, and
added asyn calls for long RPC executions
* mpm: Improve xport<->SFP mapping algorithm
* mpmd: Improved find routine to fail fast and verify correct device is
reachable
* mpmd: Add missing virtual destructors
* rfnoc/x300: Make sure peek32() and peek64() are called with actual addresses
* rfnoc: ctrl_iface cleanup
* rfnoc radio: Improve warning for too many samples requested
* rfnoc radio: get_rx_stream resets sequence num
* examples: Increase settling time, increase buffer fill time, and fix subdevice
selection in txrx_loopback_to_file
* examples: Improvements to benchmark_rate
* utils: downloader supports multiple RegExs
* utils: Added code to handle underruns during self calibration
* utils: Fix 30s tiemout in query_gpsdo_sensors
* logging: Improve style consistency and demote some messages
* logging: Fix UHD_LOG_FILE cmake variable
* Docs: Add Known Issues section to USRP1, B100, and USRP2/N2x0
* Docs: Hide dependencies directory from Doxygen
* Docs: Clarify subdev specs and magnesium driver usage for N300/N310
* cmake: Improve warning for missing requests
* cmake: update NSIS template
* cmake: Remove images downloader section (replaced by manifest)
## 003.011.000.001
* N300: Added driver support (includes some refactoring of N3xx
codebase)
* MPM: Fix PyLint warnings, Fix error handling for TCA communication
errors, Fix printout of AD9371 version
* uhd_images_downloader: Create unique archive names for images archives
(now include git hashes in the filename)
* uhd_images_downloader: Fix SHA256 check
* utils: Add support for N3xx filesystem images to images downloader
* UHD: Minor logging fixes
* UHD: fix legacy compat to work with 2TX radio block
* X300: improve lvbitx bitstream md5 read time
* examples: Enhance benchmark_rate with more stats and timestamps for errors
* cmake: Correctly fail when an unavailable component is requested
* debian: Add UHDConfig.cmake to install list for libuhd-dev
- dns: An experimental promisified version of the dns module is now
available. Give it a try with `require('dns').promises`.
- fs: `fs.lchown` has been undeprecated now that libuv supports it.
- lib: `Atomics.wake` is being renamed to `Atomics.notify` in the
ECMAScript specification. Since Node.js now has experimental support
for worker threads, we are being proactive and added a `notify` alias,
while emitting a warning if `wake` is used.
- n-api: Add API for asynchronous functions.
- util: `util.inspect` is now able to return a result instead of
throwing when the maximum call stack size is exceeded during
inspection.
- vm: Add `script.createCachedData()`. This API replaces the
`produceCachedData` option of the `Script` constructor that is now
deprecated.
- worker: Support for relative paths has been added to the `Worker`
constructor. Paths are interpreted relative to the current working
directory.
- This version disables liblogging-stdlog by default. We now also
emit a warning message ("liblogging-stdlog will go away") so that
users know what is going on and my react.
- add openssl driver alongside GnuTLS one for TLS (experimental)
- GnuTLS TLS driver: support intermediate certificates
- omelasticsearch: write op types; bulk rejection retries
- lookup tables: reload message now with "info" severity (was "error")
- imptcp: add support for regex-based framing
- imjournal: add statistics counter
- config: permit 4-digit file creation modes
- ommongodb: add possibility to ignore some insertion error code
- omprog: simplify 'plugin-with-feedback.py' example
- core: misadressing when writing disk queue files
- core: fix message loss on target unavailibility during shutdown
- imrelp bugfix: error message "librelp too old" is always emitted ...
- imrelp: segfault on startup when cert without priv key is configured
- omrelp bugfix: segfault on first message sent when authmode was
wrong
- imfile bugfix: double-free on module shutdown
- imfile/core bugfix: potential misadressing in string copy routine
- imfile bugfix: if freshStartTail is set some initial file lines
missing
- core: fix undefined behaviour (unsigned computation may lead to
value < 0)
Upstream changes:
version 1.18 at 2018-07-02 09:18:10 +0000
-----------------------------------------
Change: 58133ae09a1087d1d0cf6e5eac3767961b2e2577
Author: Chris 'BinGOs' Williams <chris@bingosnet.co.uk>
Date : 2018-07-02 10:18:10 +0000
Added usessl option to enable SSL/TLS
Upstream changes:
0.23 2018-06-26 00:00:13Z
- properly skip potentially-problematic tests when needed, due to circular
dependencies between Moose and Test::CleanNamespaces (RT#125678)
Upstream changes:
Moodle 3.5.1 release notes
Releases > Moodle 3.5.1 release notes
Release date: 9 July 2018
Here is the full list of fixed issues in 3.5.1.
CONTENTS [hide]
1 Highlights
2 Fixes and improvements
3 Security issues
4 See also
Highlights
MDL-62544 - Enable admins and privacy officers to make subject access requests on behalf of users
MDL-62211 - Data requests page may be filtered or sorted and is paginated
MDL-62391 - User who made the data request shown on data requests page
Fixes and improvements
MDL-57968 - Multiple unnecessary Messaging AJAX requests
MDL-61702 - Can't install Moodle with MariaDB version >= 10.3.1
MDL-59047 - Short answer question doesn't display correctly when using the Boost theme
MDL-61189 - Calendar event descriptions not saved when using TinyMCE
MDL-62239 - Drag and drop question types broken when using iOS 11.3
MDL-51419 - Filename corruption on download when name contains multibyte chars when using MS Edge
MDL-62658 - Notifications are not marked as read when clicked on
MDL-62543 - New 'deleted' field for forum posts is used in the wrong way for RSS feeds
MDL-62516 - Request to delete forum data for a user will delete files of all users
MDL-62440 - Participants page exhausts memory with many site-wide role assignments
MDL-62358 - Question rendering API does not support all 'question numbers' that might be needed
MDL-60915 - get_recordset methods load entire result set into memory in Postgres
MDL-62493 - Policy plugin problem when guests attempt to create an account
MDL-62574 - Database exception when deleting user data from the HTML block
MDL-62532 - Predefined tags are not appearing in the question tag dropdown
MDL-61832 - Editing options disappear after saving a Lesson page in expanded view
MDL-56498 - Notifications are not marked as read when clicked in popover
MDL-62270 - Cron task fails on data-privacy-related task when admin directory renamed
MDL-62320 - JSON should be enabled as a file type, as used in data export
MDL-62735 - Simple search does not obey global search on/off setting
MDL-58702 - Restore role mappings form has no label
MDL-62705 - Global search results order selection does not display when no context
MDL-62597 - Data requests date column should include time
MDL-62519 - After making multiple attempts to record a video, only the last attempt should be saved
MDL-61932 - Glossary created via import does not display on the front page
MDL-61778 - The online status icon in the messaging interface is a "play" button instead of a coloured dot
MDL-58063 - Unable to access manage files within HTML block on Page resource when using the Clean theme
MDL-61894 - Tag-managing dialog modals have unstyled buttons
MDL-62386 - Audio file doesn't display when using HTML5 audio media player
MDL-62796 - Policy popup should display for not logged in users
MDL-62288 - Glossary entries permalinks
Security issues
A number of security related issues were resolved. Details of these issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
Python client for the Apache Kafka distributed stream processing
system. kafka-python is designed to function much like the official
java client, with a sprinkling of pythonic interfaces (e.g., consumer
iterators).
This package replaces devel/py-kafka.
3.5.4:
Revert sass2scss@v1.1.2 update
3.5.3:
Community
Add nim-sass to implementations list
Add Haskell bindings to implementations list
Add SharpScss and LibSassHost bindings to implementations list
Update node-sass link in implementations list
Update Unicode doc after forcing UTF8/plain ASCII
Update compatibility section of the read me
Features
Update sass2scss@v1.1.2
Emit transparent colours as rgba(0, 0, 0, 0)
Add a sass_option_push_import_extension C-API
Fixes
Fix output/error for modulo zero operation
Fix automake build if sassc is missing
Fix handling of colours in @at directives
Fix edge case converting achromatic colors to HSL
Fix evaluation of arithmetic inside interpolation
Fix handling of @important in custom properties
Fix duplicate definition of out_of_memory macro
Fix merging of nested media queries with negation
Fix regression in parsing selector with trailing escaped colon
Fix segfault on empty custom properties
3.5.2:
Features
Implement more detailed backtraces
Fixes
Fix parsing of block comments to ignore css string rules
Fix win UNC path handling for dot and dotdot directories
3.5.1:
Community
Add sass.cr to implementations list
Fixes
Fix compiler warnings
Fix double free when run in concurrent processes
Fix units sometimes being dropped in math operations
Fix missing error for mixins defined within mixins
