Release 1.7.1:
Deprecated
4623: sphinx.build_main() is deprecated. Use sphinx.cmd.build.build_main() instead.
autosummary: The interface of sphinx.ext.autosummary.get_documenter() has been changed (Since 1.7.0)
4664: sphinx.ext.intersphinx.debug() is deprecated. Use sphinx.ext.intersphinx.inspect_main() instead.
Bugs fixed
4608: epub: Invalid meta tag is generated
4260: autodoc: keyword only argument separator is not disappeared if it is appeared at top of the argument list
4622: epub: epub_scheme does not effect to content.opf
4627: graphviz: Fit graphviz images to page
4617: quickstart: PROJECT_DIR argument is required
4623: sphinx.build_main no longer exists in 1.7.0
4615: The argument of sphinx.build has been changed in 1.7.0
autosummary: The interface of sphinx.ext.autosummary.get_documenter() has been changed
4630: Have order on msgids in sphinx.pot deterministic
4563: autosummary: Incorrect end of line punctuation detection
4577: Enumerated sublists with explicit start with wrong number
4641: A external link in TOC cannot contain “?” with :glob: option
C++, add missing parsing of explicit casts and typeid in expression parsing.
C++, add missing parsing of this in expression parsing.
4655: Fix incomplete localization strings in Polish
4653: Fix error reporting for parameterless ImportErrors
4664: Reading objects.inv fails again
4662: any refs with term targets crash when an ambiguity is encountered
Bug Fixes
The following vulnerabilities have been fixed:
* [1]wnpa-sec-2018-05
The IEEE 802.11 dissector could crash. [2]Bug 14442,
[3]CVE-2018-7335
* [4]wnpa-sec-2018-06
Multiple dissectors could go into large infinite loops. All ASN.1
BER dissectors ([5]Bug 14444), along with the DICOM ([6]Bug 14411),
DMP ([7]Bug 14408), LLTD ([8]Bug 14419), OpenFlow ([9]Bug 14420),
RELOAD ([10]Bug 14445), RPCoRDMA ([11]Bug 14449), RPKI-Router
([12]Bug 14414), S7COMM ([13]Bug 14423), SCCP ([14]Bug 14413),
Thread ([15]Bug 14428), Thrift ([16]Bug 14379), USB ([17]Bug
14421), and WCCP ([18]Bug 14412) dissectors were susceptible.
* [19]wnpa-sec-2018-07
The UMTS MAC dissector could crash. [20]Bug 14339,
[21]CVE-2018-7334
* [22]wnpa-sec-2018-08
The DOCSIS dissector could crash. [23]Bug 14446, [24]CVE-2018-7337
* [25]wnpa-sec-2018-09
The FCP dissector could crash. [26]Bug 14374, [27]CVE-2018-7336
* [28]wnpa-sec-2018-10
The SIGCOMP dissector could crash. [29]Bug 14398, [30]CVE-2018-7320
* [31]wnpa-sec-2018-11
The pcapng file parser could crash. [32]Bug 14403,
[33]CVE-2018-7420
* [34]wnpa-sec-2018-12
The IPMI dissector could crash. [35]Bug 14409, [36]CVE-2018-7417
* [37]wnpa-sec-2018-13
The SIGCOMP dissector could crash. [38]Bug 14410, [39]CVE-2018-7418
* [40]wnpa-sec-2018-14
The NBAP disssector could crash. [41]Bug 14443, [42]CVE-2018-7419
The following bugs have been fixed:
* Change placement of "double chevron" in Filter Toolbar to eliminate
overlap. ([43]Bug 14121)
* AutoScroll does not work. ([44]Bug 14257)
* BOOTP/DHCP: malformed packet -> when user class option (77) is
present. ([45]Bug 14312)
* GET MAX LUN wLength decoded as big-endian - USB Mass Storage.
([46]Bug 14360)
* Unable to create Filter Expression Button for a yellow filter.
([47]Bug 14369)
* Buildbot crash output: fuzz-2018-01-28-15874.pcap. ([48]Bug 14371)
* NetScaler RPC segmentation fault / stack overflow. ([49]Bug 14399)
* [oss-fuzz] #6028 RPC_NETLOGON: Direct-leak in g_malloc
(generate_hash_key). ([50]Bug 14407)
* Newline "\n" in packet list field increase line height for all
rows. ([51]Bug 14424)
* ieee80211-radio.c preamble duration calculation not correct.
([52]Bug 14439)
* DIS: Malformed packet in SISO-STD-002 transmitter. ([53]Bug 14441)
Updated Protocol Support
ASN.1 BER, BOOTP/DHCP, DCE RPC NETLOGON, DICOM, DIS, DMP, DOCSIS, EPL,
FCP, GSM A RR, HSRP, IAX2, IEEE 802.11, Infiniband, IPMI, IPv6, LDAP,
LLTD, NBAP, NetScaler RPC, OpenFlow, RELOAD, RPCoRDMA, RPKI-Router,
S7COMM, SCCP, SIGCOMP, Thread, Thrift, TLS/SSL, UMTS MAC, USB, USB Mass
Storage, and WCCP
New and Updated Capture File Support
pcap pcapng
NEW IN WAF 2.0.6
----------------
* Add Task.deep_inputs to enable further dependencies on input file tasks
* Set unit tests to depend on input file tasks instead of timestamps
NEW IN WAF 2.0.5
----------------
* Force unit tests to depend on the executable creation time besides file contents
* Enhance the Eclipse project generator
* Update the cuda examples
Vala 0.38.8
===========
* Various bug fixes:
- Fix GDestroyNotify of delegate parameters in delegate declaration [#639059]
- Avoid critical when connecting dynamic signals
- compiler: Prefix headers for set_cheader_override() if includedir is given
[#793299]
- Don't warn about unused internal methods which are meant to be visible
on DBus [#593902]
- libvaladoc: Prevent WITH_CGRAPH conditional having an impact on generated
sources
* Bindings:
- gio-2.0: Cherry-pick some DBusProxy fixes from 0.40
- gstreamer-1.0: Update from 1.13+ git master
- gdk-3.0,gtk+-3.0: Update to 3.22.27
1.4.2:
Fixed an offset error when subtracting datetimes in the same timezone.
Fixed wrong value returned by tzname() for the UTC timezone.
Fixed deepcopy() raising an error when using UTC.
New with 1.0.27 (see Note 1), released 2017-05-22:
* Significant enhancements to canon_dr, epjitsu, epsonds, fujitsu,
genesys, hp3500, pixma and xerox-mfp backends.
* Minor updates, bugfixes or scanners added in several backends.
* 30+ new scanner models supported.
* Made libusb-1.0 the default for USB support (see Note 2).
* Switched code from C90 to C99 (Thanks to Volker Diels-Grabsch).
* Updated Linux USB3 workaround (see Note 3).
* Documentation and translation updates.
* Bugfixes (Avahi, threading, USB, ICC/PNG/JPEG, etc).
* Reduced compiler warnings, improved code (see Note 4).
Note 1: There is no 1.0.26 release of sane-backends. That number was
skipped so that our development version numbers would more clearly be
an extension of the prior release. This should make packaging a little
easier for our downstream users.
Note 2: On all systems, the --enable-libusb* flags are now ignored.
Instead, the --with-usb and --without-usb flags now control support.
When neither is given, USB support will be enabled if possible and
disabled otherwise. If --with-usb is requested but not possible,
./configure will fail. There is no support to prefer libusb-0.1 over
libusb-1.0. When libusb-1.0 is not found, libusb-0.1 will be tried.
Note 3: The Linux USB3 workaround which was added in version 1.0.25 is
now disabled by default. If you have difficulty using a scanner which
previously worked, or intermittent scanner availability, try setting
the new environment variable SANE_USB_WORKAROUND=1 before starting
your frontend.
Note 4: A special thanks goes to Olaf Meeuwissen for picking up the
janitorial duties in sane-backends. He has found and fixed a large
number of long-standing bugs, curated our bug tracker, improved our
build scripts and docs, and provided user support. Thank you Olaf!
Version 1.5.0 -- 2018/02/16
---------------------------
* More specific error when failing to create XDG fallback trash directory (#20)
* Windows: Workaround for long paths (#23)
New in 2.1:
* Added support for the following platforms:
(Previously, a build on these platforms failed.)
- x86_64: Solaris 11.3.
- OpenBSD 6.1.
- HardenedBSD 10 and 11.
* Fixed a bug regarding passing of pointers on the following platforms:
- x86_64: Linux with x32 ABI: CC="gcc -mx32".
* Fixed a crash in trampoline on the following platforms:
- mips: Linux with CC="gcc -mabi=64", little endian.
Changes in version 1.20:
The option '--loose-trailing', has been added.
The test used by lzip to discriminate trailing data from a corrupt
header in multimember or concatenated files has been improved to a
Hamming distance (HD) of 3, and the 3 bit flips must happen in different
magic bytes for the test to fail. As a consequence some kinds of files
no longer can be appended to a lzip file as trailing data unless the
'--loose-trailing' option is used when decompressing.
Lziprecover can be used to remove conflicting trailing data from a file.
The contents of a corrupt or truncated header found in a multimember
file are now shown, after the error message, in the same format as
trailing data.
Option '-S, --volume-size' now keeps input files unchanged.
When creating multimember files or splitting the output in volumes, the
dictionary size is now adjusted for each member individually.
The 'bits/byte' ratio has been replaced with the inverse compression
ratio in the output.
The progress of decompression is now shown at verbosity level 2 (-vv) or
higher.
Progress of (de)compression is only shown if stderr is a terminal.
A final diagnostic is now shown at verbosity level 1 (-v) or higher if
any file fails the test when testing multiple files.
A second '.lz' extension is no longer added to the argument of '-o' if
it already ends in '.lz' or '.tlz'.
In case of (de)compressed size mismatch, the stored size is now also
shown in hexadecimal to ease visual comparison.
The dictionary size is now shown at verbosity level 4 (-vvvv) when
decompressing or testing.
The new chapter "Meaning of lzip's output" has been added to the manual.
2Overview of Changes in GTK+ 3.22.28
===================================
* Fix the build
* Improve frame clock accuracy (#787665)
2Overview of Changes in GTK+ 3.22.27
===================================
* Require libcloudproviders 0.2.0
* The Emoji chooser can now be used with GtkTextView as well
* The Emoji chooser avoids fallback sequences that break the grid
* GTK+ is now using ~/.config/gtk-3.0/settings.ini when using
Wayland without dconf
* Make fuse-mounted network filesystems show up in Other Locations
* The font chooser dialog supports search now
* Bugs fixed:
737175 most horizontal sliders are inverted when scrolled with mouse wheel
741633 GtkListBoxRow should implement GtkActionable
771986 Inconsistent 'row-activated' signal emission before drag'n'drop, 'acti...
774248 Desktop-wide text scaling factor is ignored by gtk_widget_override_fon...
779009 Missing property-change::accessible-description events when the toolti...
786123 GtkPlacesSidebar: Add support for libcloudproviders
786509 GDK W32: OLE2 DnD is completely broken
786528 Please make the output deterministic
787089 win32: GtkWindow of type GTK_WINDOW_POPUP/GDK_WINDOW_TEMP leaks memory...
787128 Re-add FUSE network mounts in local-only mode
789054 Firefox crashes @gdk_window_begin_move_drag() on WM without _NET_WM_MO...
789160 Add Windows compatible emoji shortcuts
789268 Keyboard grab by popup window causes a session-modal shortcut-inhibiti...
790029 GtkTextView: Support gtk 3.22.19's emoji chooser
790031 GtkClipboardClearFunc is not being called
790033 Add support for third stylus button on Wacom's new Pro Pen 3D
790201 Settings in ~/.config/gtk-3.0/settings.ini ignored with GDK_BACKEND=wa...
790270 avoid copy of CSS data from resources
790862 Addition of insert_emoji breaks ABI on gtk-3-22
790963 Thread safety issue in gtk_application_impl_dbus_startup
791039 Emit enter+motion after GDK_CROSSING_TOUCH_END leave
791062 Fix mapping window with complete xdg-foreign state
791234 autocleanups: allow g_autoptr() usage with GtkTreePath
791281 Backport size allocation optimization from master to 3.22
791363 Shadow vertical offset is wrong when scaling is > 2
791549 gtklistbox: Crash on page-up on GtkListBox
791650 Do not warn about missing colord systemd service unit
791710 css documentation, non-breaking spaces/hyphens, and other details
791943 gnome-shell built with meson hangs when opening more than one window
792279 Use portable sed syntax in gdk/wayland/Makefile.am
792459 gtk_tree_model_sort_set_sort_column_id() ignores change to sort order
792624 Critical due to gtk_widget_reset_controllers() passing NULL to gtk_e...
* Translation updates:
Africaans
Catalan
Chinese (Taiwan)
Esperanto
Finnish
Friulian
Galician
Hebrew
Hungarian
Icelandic
Indonesian
Italian
Lithuanian
Norwegian bokmål
Polish
Russian
Serbian
Slovenian
Spanish
Turkish
2018-02-18 7.0.7-23 Cristy <quetzlzacatenango@image...>
* Release ImageMagick version 7.0.0-23, GIT revision 22969:c6b3a22b0:20180218.
2018-02-09 7.0.7-23 Dirk Lemstra <dirk@lem.....org>
* Add support for reading the HEIC image format to the Windows build.
2018-01-23 7.0.7-23 Cristy <quetzlzacatenango@image...>
* Fixed numerous use of uninitialized values, integer overflow,
memory exceeded, and timeouts (credit to OSS Fuzz).
* Add list-length policy to limit the maximum image sequence length.
Changes from Ant 1.10.1 TO Ant 1.10.2
=====================================
Changes that could break older environments:
-------------------------------------------
* updated the dependency of BCEL to 6.2.
Bugzilla Report 61196
* delete task previously would silently accept wildcard (*)
value for the "file" attribute. That's no longer the case
and an exception could get thrown by the underlying filesystem
for such use. Usage like:
<delete file="/foo/bar/*.something"/>
should instead be changed to use resource collections like:
<delete>
<fileset dir="/foo/bar/" includes="*.something"/>
</delete>
* Commons Net 3.6 is binary-code, but not source compatible;
see change list of Commons Net 3.0 for details
* The Log4jListener is marked as deprecated as the required log4j library
(in version 1.x) is not maintained any more.
* Image task is marked as deprecated as the required JAI library is not
maintained any more and internal APIs that JAI depended on are no longer
available in Java 9.
Fixed bugs:
-----------
* <genkey>'s <dname> child now skips <param>s that lack a key or
value.
Bugzilla Report 60767
* bootstrapping Ant on Windows failed
Bugzilla Report 61027
* Fixed the issue where the SCP based tasks would try to change
the permissions on the parent directory of a transferred file,
instead of changing it on the transferred file itself.
Bugzilla Reports 59648 and 43271
* Fixed the issue where the source file being copied could end
up being corrupted if the target of the copy happened to be
the same source file (symlinked back to itself).
Bugzilla Report 60644
* Fixed the issue where symlink creation with "overwrite=false",
on existing symlink whose target was a directory, would end
up creating a new symlink under the target directory.
Bugzilla Report 58683
* Improvement to the Zip task for reduced memory usage in certain
cases. Thanks to Glen Lewis for reporting the issue and
suggesting the fix.
Bugzilla Report 19516
* Fixed an issue where the content redirected from output/error
streams of a process, could end up being truncated.
Bugzilla Report 58833, 58451
* <fileset>/<zipfileset>/<tarfileset> will now throw an exception
with a more useful error message when setFile is called twice on
the same instance.
Bugzilla Report 62071
Other changes:
--------------
* Added forceCsvQuoteChar option to <csv> task. When enabled the
values always get quoted.
Github Pull Request #32
* Added <encoding> attributes to various script related tasks and a
compiled attribute to scriptdef.
Github Pull Request #30
* Added support for jarsigner's -tsadigestalg to <signjar>.
Bugzilla Report 60665
* added "regexp" attribute to <linecontainsregexp>
Bugzilla Report 60968
* reduced GC pressure by replacing all usage of FileInputStream and
FileOutputStream.
* Task can now also use attribute setters that expect a
java.nio.file.Path argument.
Bugzilla Report 61042
* added a new magic property ant.tstamp.now that can be used to
override the current time/date used by <tstamp>.
Bugzilla Report 61079
* added Orion support to ejbjar
Github Pull Request #33
* SCP task, when configured to use SFTP protocol, now preserves last
modified timestamp on files that it uploads, if the
preserveLastModified attribute is set to true for that task
Bugzilla Report 58589
* zip and the related tasks can now set the modification time of all
entries to a fixed timestamp.
Github Pull Request #36
* Jsch library dependency has now been upgraded to 0.1.54. Jsch is
the library behind the sshexec and scp Ant tasks.
Bugzilla Report 61718
* Added a new <javaversion> condition.
* added "javac10+" as new supported value for javac's compiler attribute.
* javah has been removed from Java 10. The task will now throw an
exception if you try to use it while running Java 10 or newer.
* Updated Maven Ant Tasks, Jakarta Regexp and JUnit 4 to the latest
stable version (2.1.3, 1.4, and 4.12 respectively); updated
JRuby to the latest Java 5 compatible version (1.6.8); added
resolve target for AntUnit to facilitate updates.
Github Pull Request #50
* Updated Java Mail API, Jython, Rhino and Commons Net to the latest
stable version (1.6.0, 2.7.0, 1.7.7.2 and 3.6, respectively).
Github Pull Request #53
Version 6.6.2 - February 9 2018
[INCOMPATIBLE CHANGES]
o gozilla: Deleted the following undocumented functions to reduce or eliminate
possibility of future security risks. These were inherently unnecessary as
source code tagging system.
$HOME/.gozillarc
Alias file. Please read the source code for details.
BUGS
Gozilla can accept not only source files but also text files,
directories, HTML files and even URLs, because it is omnivorous.
[FIXED BUGS]
o geco.rc: gecoless always failed with a message 'geco: percol, peco or fzf is required.'
Now, it works.
o gtags-cscope: did not accept function '9' in the line mode. This caused vim8 to hang.
Now it accepts function '9' and reports an error message.
New features:
Allow trusting all subject alternative names (SAN) in a certificate if the current hostname matches the certificate
Bugfixes and minor changes:
OS X: Fix file lists becoming inresponsive when a file rename edit box is discarded by clicking to the right of the last column in the file list
Fix rare crash during directory removal
Fix rare crash in the transfer queue
version 2.8.14:
- avcodec/vp8: Check for bitstream end before vp7_fade_frame()
- avcodec/exr: Check remaining bits in last get code loop
- avutil/common: Fix integer overflow in av_clip_uint8_c() and av_clip_uint16_c()
- avcodec/h264_cabac: Tighten allowed coeff_abs range
- avcodec/h264_cavlc: Set valid qscale value in ff_h264_decode_mb_cavlc()
- avcodec/vp3: Error out on invalid num_coeffs in unpack_vlcs()
- avcodec/mpeg4videodec: Ignore multiple VOL headers
- avcodec/vp3: Check eob_run
- avcodec/huffyuvdec: Check input buffer size
- avcodec/wavpack: Fix integer overflow in FFABS
- avcodec/aacsbr_fixed: Fix overflows in rounding in sbr_hf_assemble()
- changelog: update with previous commit
- x264: Support version 153
- avcodec/indeo5: Do not leave frame_type set to an invalid value
- avcodec/hevc_ps: Check log2_sao_offset_scale_*
- avcodec/mpeg4videodec: Avoid possibly aliasing violating casts
- avcodec/get_bits: Document the return code of get_vlc2()
- avcodec/mpeg4videodec: Check mb_num also against 0
- avfilter/vf_transpose: Fix used plane count.
- avcodec/hevc_cabac: Check prefix so as to avoid invalid shifts in coeff_abs_level_remaining_decode()
- avcodec/mjpegdec: Fix integer overflow in DC dequantization
- avcodec/hevc_cabac: Move prefix check in coeff_abs_level_remaining_decode() down
- avcodec/truemotion2: Fix integer overflow in TM2_RECALC_BLOCK()
- avcodec/snowdec: Fix integer overflow before htaps check
- avcodec/ulti: Check number of blocks at init
- avcodec/ac3dec_fixed: Fix integer overflow in scale_coefs()
- avformat/lrcdec: Fix memory leak in lrc_read_header()
- avformat/matroskadec: Fix float-cast-overflow undefined behavior in matroska_parse_tracks()
- configure: bump year
- avcodec/arm/sbrdsp_neon: Use a free register instead of putting 2 things in one
- avcodec/h264addpx_template: Fixes integer overflows
- avcodec/dirac_dwt: Fix overflows in COMPOSE_HAARiH0/COMPOSE_HAARiL0
- avcodec/diracdec: Fix integer overflow with quant
- avcodec/opus_parser: Check payload_len in parse_opus_ts_header()
- avcodec/jpeg2000dsp: Fix integer overflows in ict_int()
- avcodec/h264_slice: Do not attempt to render into frames already output
- avcodec/exr: Check buf_size more completely
- avcodec/flacdec: Fix overflow in multiplication in decode_subframe_fixed()
- avcodec/hevcdsp_template: Fix Invalid shifts in put_hevc_qpel_bi_w_h() and put_hevc_qpel_bi_w_w()
- avcodec/flacdec: avoid undefined shift
- avcodec/hevcdsp_template.c: Fix undefined shift in FUNC(dequant)
- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD97iH0() and COMPOSE_DD137iL0()
- avcodec/hevc_cabac: Fix integer overflow in ff_hevc_cu_qp_delta_abs()
- avcodec/hevc_sei: Fix integer overflows in decode_nal_sei_message()
- avcodec/hevcdsp_template: Fix undefined shift in put_hevc_qpel_bi_w_hv()
- libavfilter/af_dcshift.c: Fixed repeated spelling error
- avfilter/formats: fix wrong function name in error message
- avcodec/amrwbdec: Fix division by 0 in voice_factor()
- avcodec/dirac_dwt: Fix integer overflows in COMPOSE_DAUB97*
- avcodec/vorbis: Fix another 1 << 31 > int32_t::max() with 1u.
- Don't manipulate duration when it's AV_NOPTS_VALUE.
- avcodec/vorbis: 1 << 31 > int32_t::max(), so use 1u << 31 instead.
- avformat/utils: Prevent undefined shift with wrap_bits > 64.
- avcodec/j2kenc: Fix out of array access in encode_cblk()
- avcodec/hevcdsp_template: Fix undefined shift in put_hevc_epel_bi_w_h()
- avcodec/mlpdsp: Fix signed integer overflow, 2nd try
- avcodec/kgv1dec: Check that there is enough input for maximum RLE compression
- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_FIDELITYi*
- avcodec/mpeg4videodec: Check also for negative versions in the validity check
- Close ogg stream upon error when using AV_EF_EXPLODE.
- Fix undefined shift on assumed 8-bit input.
- avformat/mov: Propagate errors in mov_switch_root.
- avcodec/hevcdsp_template: Fix invalid shift in put_hevc_epel_bi_w_v()
- avcodec/mlpdsp: Fix undefined shift ff_mlp_pack_output()
- avcodec/zmbv: Check that the buffer is large enough for mvec
- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD137iL0()
- avcodec/wmv2dec: Check end of bitstream in parse_mb_skip() and ff_wmv2_decode_mb()
- avcodec/snowdec: Check for remaining bitstream in decode_blocks()
- avcodec/snowdec: Check intra block dc differences.
- avformat/mov: Check size of STSC allocation
- avcodec/h264dec: Fix potential array overread
- avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu
- avcodec/aacdec_fixed: Fix undefined shift
- avcodec/mdct_*: Fix integer overflow in addition in RESCALE()
- avcodec/snowdec: Fix integer overflow in header parsing
- avcodec/cngdec: Fix integer clipping
- avcodec/sbrdsp_fixed: Fix integer overflow in shift in sbr_hf_g_filt_c()
- avutil/softfloat: Add FLOAT_MIN
- avcodec/aacsbr_fixed: Fix division by zero in sbr_gain_calc()
- avcodec/h264idct_template: Fix integer overflows in ff_h264_idct8_add()
- avcodec/xan: Check for bitstream end in xan_huffman_decode()
- avformat: Free the internal codec context at the end
- avcodec/xan: Improve overlapping check
- avcodec/aacdec_fixed: Fix integer overflow in apply_dependent_coupling_fixed()
- avcodec/aacdec_fixed: Fix integer overflow in predict()
- avcodec/jpeglsdec: Check for end of bitstream in ls_decode_line()
- avcodec/jpeglsdec: Check ilv for being a supported value
- avcodec/snowdec: Check mv_scale
- avcodec/pafvideo: Check for bitstream end in decode_0()
- avcodec/ffv1dec: Fix out of array read in slice counting
- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_53iL0()
- avcodec/mpeg_er: Clear mcsel in mpeg_er_decode_mb()
- avcodec/mpeg4videodec: Use 64 bit intermediates for sprite delta
- avcodec/truemotion2: Fix integer overflows in tm2_high_chroma()
- avcodec/aacdec_template: Clear tns present flag on error
- avcodec/proresdec2: SKIP_BITS() does not work with len=32
- avcodec/hevcdsp_template: Fix undefined shift
- avcodec/jpeg2000: Check that codsty->log2_prec_widths/heights has been initialized
- avcodec/takdec: Fix integer overflow in decode_lpc()
- avcodec/proresdec2: Check bits in DECODE_CODEWORD(), fixes invalid shift
- avcodec/takdec: Fix integer overflows in decode_subframe()
- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_FIDELITYi*()
- avcodec/ffv1dec: Fix integer overflow in read_quant_table()
- avcodec/svq3: Fix overflow in svq3_add_idct_c()
- avcodec/pngdec: Clean up on av_frame_ref() failure
- avcodec/jpeg2000dsp: Fix multiple integer overflows in ict_int()
- avcodec/hevcdsp_template: Fix undefined shift in put_hevc_pel_bi_w_pixels
- avcodec/diracdec: Fix overflow in DC computation
- avformat/asfdec: Fix DoS in asf_build_simple_index()
- avformat/mov: Fix DoS in read_tfra()
- avcodec/dirac_dwt: Fix multiple overflows in 9/7 lifting
- avformat/libssh: check the user provided a password before trying to use it
0.29 (2018/02/11)
* implement %prio% for --format
* the default --format falls back to "performer" if there is no "artist"
* add command "prio"
* command "outputs" prints attributes
* fix build failure with gcc 7.0 and clang 4.0
* build with Meson instead of autotools
By default, meson strips all rpaths, see
https://github.com/mesonbuild/meson/issues/314
Remove the stripping (which might leave build rpaths inside installed binaries
but at least gives us runnable binaries) until meson fixes this properly.
Bump PKGREVISION.
1.87 2018-02-07 22:04:16Z
========================================
[FIXED]
- Fix typo in contributor name (GH#241) (Philippe Bruhat (BooK))
- Fix link to Michael Schilli's article in Linux magazine (GH#240) (Bernhard Wagner)
- Fix some section links (GH#238) (Evan Zacks)
- Override _agent() method. (GH#236) (Сергей Романов)
- Link to appropriate section of HTML::Form (GH#237) (Evan Zacks)
- Make version consistent in .pm files (GH#231) (Olaf Alders)
[ENHANCEMENTS]
- Return form number in list context. (GH#235) (Сергей Романов)
- Overload 'post' in order to set 'base'. (GH#111) (Stuart A Johnston)
- Allow multiple file paths/uris in mech-dump; fixes issue 72 (GH#113) (Nik LaBelle)
- Add docs for the output of dump_forms (GH#112) (John Beppu)
0.17 2018-02-22 06:11:23 JST
- Added support for loading debug middleware outside of the
Plack::Middleware::Debug::* namespace, by prefixing the name of
middleware with a "+",
e.g. "+My::Plack::Middleware::Debug::Something".
- Debug.pm no longer injects inline JavaScript
7.69 2018-02-24
- Improved respond_to method in Mojolicious::Controller and accepts helper in
Mojolicious::Plugin::DefaultHelpers to no longer limit support for multiple
MIME types to requests containing an X-Requested-With header, since browsers
have become smarter about requesting what they actually want.
7.68 2018-02-22
- Fixed RFC 7230 compliance bugs in Mojo::Message::Request that prevented
"GET //foo/bar HTTP/1.1" to be interpreted as a request target in origin
form.
7.67 2018-02-19
- Modernized ".perltidyrc".
- Fixed a bug in Mojo::Asset::File where forked processes could delete
temporary files prematurely.
7.66 2018-02-13
- This release contains fixes for security issues, everybody should upgrade!
- Removed origin attribute of Mojo::Cookie::Response.
- Removed deprecated data and remaining methods from Mojo::IOLoop::Delay.
- Added host_only attribute to Mojo::Cookie::Response.
- Improved all method in Mojo::Promise to resolve with no results if no
promises have been passed.
- Fixed a bug in Mojo::UserAgent::CookieJar where old cookies could be leaked.
(exp-innit, sri)
7.65 2018-02-11
- Added EXPERIMENTAL timing->begin, timing->elapsed, timing->rps and
timing->server_timing helpers to Mojolicious::Plugin::DefaultHelpers.
- Added EXPERIMENTAL server_timing method to Mojo::Headers.
- Added support for new HTTP status code.
7.64 2018-02-07
- Fixed a bug in Mojo::Log where short log messages spanning multiple lines
would not be formatted properly for systemd.
7.63 2018-02-06
- Improved Mojo::Log to use native systemd log levels.
7.62 2018-02-01
- Added -u option to get command. (jberger)
- Added dont_use_nlink option to list_tree method in Mojo::File.
- Added reverse proxy section to Mojolicious::Guides::Cookbook. (polettix)
- Fixed a promise resolution bug in Mojo::Promise.
