* Problems compiling VMIPS with gcc 4.7.x have been fixed.
* An error has been fixed in the Makefiles which was preventing the
canned setup code from being installed.
* An error has been fixed in the Makefiles which was preventing
CFLAGS and LDFLAGS from being set correctly in some cases.
Mesa 7.11 implements the OpenGL 2.1 API, but the version reported by glGetString(GL_VERSION) depends on the particular driver being used. Some drivers don't support all the features required in OpenGL 2.1.
See the Compiling/Installing page for prerequisites for DRI hardware acceleration.
MD5 checksums
New features
None.
Bug fixes
This list is likely incomplete.
Bug 43143 - Mesa 7.11.1 fails to build at main/dlist.c:4532 with error message: "format not a string literal and no format arguments"
Incorrect handling of CopyTexImage from RGBA window to LA texture.
Changes
The full set of changes can be viewed by using the following GIT command:
git log mesa-7.11.1..mesa-7.11.2
Brian Paul (4):
mesa: stop using ctx->Driver.CopyTexImage1D/2D() hooks
mesa: fix format selection for meta CopyTexSubImage()
docs: update news.html and relnotes.html for 7.11.1 release
mesa: use format string in _mesa_error() call to silence warning
Chad Versace (3):
intel: Simplify stencil detiling arithmetic
intel: Fix region dimensions for stencil buffers received from DDX
intel: Fix separate stencil in builtin DRI2 backend
Ian Romanick (3):
docs: Add 7.11.1 release md5sums
mesa: set version string to 7.11.2-devel
mesa: Bump version to 7.11.2 (final)
pkg_src_summary:
- Option -t was added. If applied a value of TOOL_DEPENDS
is added to BUILD_DEPENDS. This option works just like -b
does for BOOTSTRAP_DEPENDS.
pkg_cmp_summary:
- Fixes for -A and -O. Now they output an empty line after each
compared package even if it appeares multiple times in
pkg_summary1. So, the output is now consistent.
Last change time was updated for manual pages
This package contains tool for HTTP(S) sniffing.
mitmproxy is an interactive, SSL-capable man-in-the-middle proxy
for HTTP with a console interface.
mitmdump is the command-line version of mitmproxy. Think tcpdump
for HTTP.
libmproxy is the library that mitmproxy and mitmdump are built on.
Netlib is a collection of network utility classes, used by the
pathod and mitmproxy projects. It differs from other projects in
some fundamental respects, because both pathod and mitmproxy often
need to violate standards. This means that protocols are implemented
as small, well-contained and flexible functions, and are designed
to allow misbehaviour when needed.
Urwid 1.1.1
* Fix for Pile not changing focus on mouse events
* Fix for Overlay.get_cursor_coords()
Urwid 1.1.0
* New common container API: focus, focus_position, contents,
options(), get_focus_path(), set_focus_path(), __getitem__,
__iter__(), __reversed__() implemented across all included
container widgets
A full description doesn't fit here, see the Container Widgets
section in the manual for details
* New Sphinx-based documentation now included in source:
Tutorial rewritten, manual revised and new reference based
on updated docstrings (by Marco Giusti, Patrick Totzke)
* New list walker SimpleFocusListWalker like SimpleListWalker but
updates focus position as items are inserted or removed
* New decoration widget WidgetDisable to disable interaction
with the widgets it wraps
* SelectableIcon selectable text widget used by button widgets is
now documented (available since 0.9.9)
* Columns widget now tries to keep column in focus visible, hiding
columns on the left when necessary
* Padding widget now defaults to ('relative', 100) instead of
'pack' so that left and right parameters are more useful and more
child widgets are supported
* New list walker "API Version 2" that is simpler for many list
walker uses; "API Version 1" will still continue to be supported
* List walkers may now allow iteration from the absolute top or
bottom of the list if they provide a positions() method
* raw_display now erases to the end of the line with EL escape
sequence to improve copy+paste behavior for some terminals
* Filler now has top and bottom parameters like Padding's left and
right parameters and accepts 'pack' instead of None as a height
value for widgets that calculate their own number of rows
* Pile and Columns now accepts 'pack' instead of 'flow' for widgets
that calculate their own number of rows or columns
* Pile and Columns now accept 'given' instead of 'fixed' for
cases where the number of rows or columns are specified by the
container options
* Pile and Columns widgets now accept any iterable to their
__init__() methods
* Widget now has a default focus_position property that raises
an IndexError when read to be consistent with new common container
API
* GridFlow now supports multiple cell widths within the same widget
* BoxWidget, FlowWidget and FixedWidget are deprecated, instead
use the sizing() function or _sizing attribute to specify the
supported sizing modes for your custom widgets
* Some new shift+arrow and numpad input sequences from RXVT and
xterm are now recognized
* Fix for alarms when used with a screen event loop (e.g.
curses_display)
* Fix for raw_display when terminal width is 1 column
* Fixes for a Columns.get_cursor_coords() regression and a
SelectableIcon.get_cursor_coords() bug
* Fixes for incorrect handling of box columns in a number of
Columns methods when that column is selectable
* Fix for Terminal widget input handling with Python 3
Urwid 1.0.3
* Fix for alarms when used with a screen event loop (e.g.
curses_display)
* Fix for Overlay.get_cursor_coords()
Urwid 1.0.2
* Fix for bug when entering Unicode text into Edit widget with
bytes caption
* Fix a regression when not running in UTF-8 mode
* Fix for a MainLoop.remove_watch_pipe() bug
* Fix for a bug when packing empty Edit widgets
* Fix for a ListBox "contents too long" error with very large
Edit widgets
* Prevent ListBoxes from selecting 0-height selectable widgets
when moving up or down
* Fix a number of bugs caused by 0-height widgets in a ListBox
Urwid 1.0.1
* Fix for Terminal widget in BSD/OSX
* Fix for a Filler mouse_event() position bug
* Fix support for mouse positions up to x=255, y=255
* Fixes for a number of string encoding issues under Python 3
* Fix for a LineBox border __init__() parameters
* Fix input input of UTF-8 in tour.py example by converting captions
to unicode
* Fix tutorial examples' use of TextCanvas and switch to using
unicode literals
* Prevent raw_display from calling tcseattr() or tcgetattr() on
non-ttys
* Disable curses_display external event loop support: screen resizing
and gpm events are not properly supported
* Mark PollingListWalker as deprecated
Urwid 1.0.0
* New support for Python 3.2 from the same 2.x code base,
requires distribute instead of setuptools (by Kirk McDonald,
Wendell, Marien Zwart) everything except TwistedEventLoop and
GLibEventLoop is supported
* New experimental Terminal widget with xterm emulation and
terminal.py example program (by aszlig)
* Edit widget now supports a mask (for passwords), has a
insert_text_result() method for full-field validation and
normalizes input text to Unicode or bytes based on the caption
type used
* New TreeWidget, TreeNode, ParentNode, TreeWalker
and TreeListBox classes for lazy expanding/collapsing tree
views factored out of browse.py example program, with new
treesample.py example program (by Rob Lanphier)
* MainLoop now calls draw_screen() just before going idle, so extra
calls to draw_screen() in user code may now be removed
* New MainLoop.watch_pipe() method for subprocess or threaded
communication with the process/thread updating the UI, and new
subproc.py example demonstrating its use
* New PopUpLauncher and PopUpTarget widgets and MainLoop option
for creating pop-ups and drop-downs, and new pop_up.py example
program
* New twisted_serve_ssh.py example (by Ali Afshar) that serves
multiple displays over ssh from the same application using
Twisted and the TwistedEventLoop
* ListBox now includes a get_cursor_coords() method, allowing
nested ListBox widgets
* Columns widget contents may now be marked to always be treated
as flow widgets for mixing flow and box widgets more easily
* New lcd_display module with support for CF635 USB LCD panel and
lcd_cf635.py example program with menus, slider controls and a custom
font
* Shared command_map instance is now stored as Widget._command_map
class attribute and may be overridden in subclasses or individual
widgets for more control over special keystrokes
* Overlay widget parameters may now be adjusted after creation with
set_overlay_parameters() method
* New WidgetPlaceholder widget useful for swapping widgets without
having to manipulate a container widget's contents
* LineBox widgets may now include title text
* ProgressBar text content and alignment may now be overridden
* Use reactor.stop() in TwistedEventLoop and document that Twisted's
reactor is not designed to be stopped then restarted
* curses_display now supports AttrSpec and external event loops
(Twisted or GLib) just like raw_display
* raw_display and curses_display now support the IBMPC character
set (currently only used by Terminal widget)
* Fix for a gpm_mev bug preventing user input when on the console
* Fix for leaks of None objects in str_util extension
* Fix for WidgetWrap and AttrMap not working with fixed widgets
* Fix for a lock up when attempting to wrap text containing wide
characters into a single character column
Urwid 0.9.9.2
* Fix for an Overlay get_cursor_coords(), and Text top-widget bug
* Fix for a Padding rows() bug when used with width=PACK
* Fix for a bug with large flow widgets used in an Overlay
* Fix for a gpm_mev bug
* Fix for Pile and GraphVScale when rendered with no contents
* Fix for a Python 2.3 incompatibility (0.9.9 is the last release
to claim support Python 2.3)
Revision 0.1.7
--------------
- License updated to vanilla BSD 2-Clause to ease package use
(http://opensource.org/licenses/BSD-2-Clause).
- Test suite made discoverable by unittest/unittest2 discovery feature.
- Fix to decoder working on indefinite length substrate -- end-of-octets
marker is now detected by both tag and value. Otherwise zero values may
interfere with end-of-octets marker.
- Fix to decoder to fail in cases where tagFormat indicates inappropriate
format for the type (e.g. BOOLEAN is always PRIMITIVE, SET is always
CONSTRUCTED and OCTET STRING is either of the two)
- Fix to REAL type encoder to force primitive encoding form encoding.
- Fix to CHOICE decoder to handle explicitly tagged, indefinite length
mode encoding
- Fix to REAL type decoder to handle negative REAL values correctly. Test
case added.
Revision 0.1.6
--------------
- The compact (valueless) way of encoding zero INTEGERs introduced in
0.1.5 seems to fail miserably as the world is filled with broken
BER decoders. So we had to back off the *encoder* for a while.
There's still the IntegerEncoder.supportCompactZero flag which
enables compact encoding form whenever it evaluates to True.
- Report package version on debugging code initialization.
Revision 0.1.5
--------------
- Documentation updated and split into chapters to better match
web-site contents.
- Make prettyPrint() working for non-initialized pyasn1 data objects. It
used to throw an exception.
- Fix to encoder to produce empty-payload INTEGER values for zeros
- Fix to decoder to support empty-payload INTEGER and REAL values
- Fix to unit test suites imports to be able to run each from
their current directory
Revision 0.1.4
--------------
- Built-in codec debugging facility added
- Added some more checks to ObjectIdentifier BER encoder catching
posible 2^8 overflow condition by two leading sub-OIDs
- Implementations overriding the AbstractDecoder.valueDecoder method
changed to return the rest of substrate behind the item being processed
rather than the unprocessed substrate within the item (which is usually
empty).
- Decoder's recursiveFlag feature generalized as a user callback function
which is passed an uninitialized object recovered from substrate and
its uninterpreted payload.
- Catch inappropriate substrate type passed to decoder.
- Expose tagMap/typeMap/Decoder objects at DER decoder to uniform API.
- Obsolete __init__.MajorVersionId replaced with __init__.__version__
which is now in-sync with distutils.
- Package classifiers updated.
- The __init__.py's made non-empty (rumors are that they may be optimized
out by package managers).
- Bail out gracefully whenever Python version is older than 2.4.
- Fix to Real codec exponent encoding (should be in 2's complement form),
some more test cases added.
- Fix in Boolean truth testing built-in methods
- Fix to substrate underrun error handling at ObjectIdentifier BER decoder
- Fix to BER Boolean decoder that allows other pre-computed
values besides 0 and 1
- Fix to leading 0x80 octet handling in DER/CER/DER ObjectIdentifier decoder.
See http://www.cosic.esat.kuleuven.be/publications/article-1432.pdf
Revision 0.1.3
--------------
- Include class name into asn1 value constraint violation exception.
- Fix to OctetString.prettyOut() method that looses leading zero when
building hex string.
Revision 0.1.2
--------------
- Fix to __long__() to actually return longs on py2k
- Fix to OctetString.__str__() workings of a non-initialized object.
- Fix to quote initializer of OctetString.__repr__()
- Minor fix towards ObjectIdentifier.prettyIn() reliability
- ObjectIdentifier.__str__() is aliased to prettyPrint()
- Exlicit repr() calls replaced with '%r'
Revision 0.1.1
--------------
- Hex/bin string initializer to OctetString object reworked
(in a backward-incompatible manner)
- Fixed float() infinity compatibility issue (affects 2.5 and earlier)
- Fixed a bug/typo at Boolean CER encoder.
- Major overhawl for Python 2.4 -- 3.2 compatibility:
+ get rid of old-style types
+ drop string module usage
+ switch to rich comparation
+ drop explicit long integer type use
+ map()/filter() replaced with list comprehension
+ apply() replaced with */**args
+ switched to use 'key' sort() callback function
+ support both __nonzero__() and __bool__() methods
+ modified not to use py3k-incompatible exception syntax
+ getslice() operator fully replaced with getitem()
+ dictionary operations made 2K/3K compatible
+ base type for encoding substrate and OctetString-based types
is now 'bytes' when running py3k and 'str' otherwise
+ OctetString and derivatives now unicode compliant.
+ OctetString now supports two python-neutral getters: asOcts() & asInts()
+ print OctetString content in hex whenever it is not printable otherwise
+ in test suite, implicit relative import replaced with the absolute one
+ in test suite, string constants replaced with numerics
Revision 0.0.13
---------------
- Fix to base10 normalization function that loops on univ.Real(0)
Revision 0.0.13b
----------------
- ASN.1 Real type is now supported properly.
- Objects of Constructed types now support __setitem__()
- Set/Sequence objects can now be addressed by their field names (string index)
and position (integer index).
- Typo fix to ber.SetDecoder code that prevented guided decoding operation.
- Fix to explicitly tagged items decoding support.
- Fix to OctetString.prettyPrint() to better handle non-printable content.
- Fix to repr() workings of Choice objects.
Revision 0.0.13a
----------------
- Major codec re-design.
- Documentation significantly improved.
- ASN.1 Any type is now supported.
- All example ASN.1 modules moved to separate pyasn1-modules package.
- Fix to initial sub-OID overflow condition detection an encoder.
- BitString initialization value verification improved.
- The Set/Sequence.getNameByPosition() method implemented.
- Fix to proper behaviour of PermittedAlphabetConstraint object.
- Fix to improper Boolean substrate handling at CER/DER decoders.
- Changes towards performance improvement:
+ all dict.has_key() & dict.get() invocations replaced with modern syntax
(this breaks compatibility with Python 2.1 and older).
+ tag and tagset caches introduced to decoder
+ decoder code improved to prevent unnecessary pyasn1 objects creation
+ allow disabling components verification when setting components to
structured types, this is used by decoder whilst running in guided mode.
+ BER decoder for integer values now looks up a small set of pre-computed
substrate values to save on decoding.
+ a few pre-computed values configured to ObjectIdentifier BER encoder.
+ ChoiceDecoder split-off SequenceOf one to save on unnecessary checks.
+ replace slow hasattr()/getattr() calls with isinstance() introspection.
+ track the number of initialized components of Constructed types to save
on default/optional components initialization.
+ added a shortcut ObjectIdentifier.asTuple() to be used instead of
__getitem__() in hotspots.
+ use Tag.asTuple() and pure integers at tag encoder.
+ introduce and use in decoder the baseTagSet attribute of the built-in
ASN.1 types.
Revision 0.0.12a
----------------
- The individual tag/length/value processing methods of
encoder.AbstractItemEncoder renamed (leading underscore stripped)
to promote overloading in cases where partial substrate processing
is required.
- The ocsp.py, ldap.py example scripts added.
- Fix to univ.ObjectIdentifier input value handler to disallow negative
sub-IDs.
---------------------------
1. The three executables gawk, pgawk, and dgawk, have been merged into
one, named just gawk. As a result:
* The -R option is gone
* Use -D to run the debugger. An optional file argument is a
list of commands to run first.
* Use -o to do pretty-printing only.
* Use -p to do profiling.
This considerably reduces gawk's "footprint" and eases the documentation
burden as well.
2. Gawk now supports high precision arithmetic with MPFR. The default is
still double precision, but setting PREC changes things, or using
the -M / --bignum options. This support is not compiled in if the MPFR
library is not available.
3. The new -i option (from xgawk) is used for loading awk library files.
This differs from -f in that the first non-option argument is treated
as a script.
4. The new -l option (from xgawk) is used for loading dynamic extensions.
5. The dynamic extension interface has been completely redone! There is
now a defined API for C extensions to use. A C extension acts like
a function written in awk, except that it cannot do everything that awk
code can. However, this allows interfacing to any facility that is
available from C. This is a major development, see the doc, which has
a nice shiny new chapter describing everything.
This support is not compiled in if dynamic loading of shared libraries
is not supported.
The old extension mechanism is still supported for compatiblity, but
it will most definitely be removed at the next major release.
6. The "inplace" extension, built using the new facility, can be used to
simulate the GNU "sed -i" feature.
7. The and(), or() and xor() functions now take any number of arguments,
with a minimum of two.
8. New arrays: SYMTAB, FUNCTAB, and PROCINFO["identifiers"]. SYMTAB allows
indirect access to any defined variable or array; it is possible to
"walk" the symbol table, if that should be necessary.
9. Support for building gawk with a cross compiler has been improved.
10. Infrastructure upgrades: bison 2.7.1, gettext 0.18.2.1, automake 1.13.1,
libtool 2.4.2 for the extensions.
* "rev-list --stdin" and friends kept bogus pointers into the input
buffer around as human readable object names. This was not a
huge problem but was exposed by a new change that uses these
names in error output.
* When "git difftool" drove "kdiff3", it mistakenly passed --auto
option that was meant while resolving merge conflicts.
* "git remote add" command did not diagnose extra command line
arguments as an error and silently ignored them.
Also contains a handful of trivial code clean-ups, documentation
updates, updates to the test suite, etc.
functional for PV domains. Support for HVM domains and grant tables
is still to come. Note that xm/xend is deprecated in this version.
You should switch to using xl (which is tested to be working) if
you can.
----- 4.2.2
Xen 4.2.2 is a maintenance release in the 4.2 series and contains:
We recommend that all users of Xen 4.2.1 upgrade to Xen 4.2.2.
This release fixes the following critical vulnerabilities:
CVE-2012-5634 / XSA-33: VT-d interrupt remapping source
validation flaw
CVE-2013-0151 / XSA-34: nested virtualization on 32-bit
exposes host crash
CVE-2013-0152 / XSA-35: Nested HVM exposes host to being
driven out of memory by guest
CVE-2013-0153 / XSA-36: interrupt remap entries shared and
old ones not cleared on AMD IOMMUs
CVE-2013-0154 / XSA-37: Hypervisor crash due to incorrect
ASSERT (debug build only)
CVE-2013-0215 / XSA-38: oxenstored incorrect handling of
certain Xenbus ring states
CVE-2012-6075 / XSA-41: qemu (e1000 device driver): Buffer
overflow when processing large packets
CVE-2013-1917 / XSA-44: Xen PV DoS vulnerability with SYSENTER
CVE-2013-1919 / XSA-46: Several access permission issues with
IRQs for unprivileged guests
CVE-2013-1920 / XSA-47: Potential use of freed memory in event
channel operations
CVE-2013-1922 / XSA-48: qemu-nbd format-guessing due to missing
format specification
This release contains many bug fixes and improvements (around
100 since Xen 4.2.1). The highlights are:
ACPI APEI/ERST finally working on production systems
Bug fixes for other low level system state handling
Bug fixes and improvements to the libxl tool stack
Bug fixes to nested virtualization
----- 4.2.1
Xen 4.2.1 is a maintenance release in the 4.2 series and contains:
We recommend that all users of Xen 4.2.0 upgrade to Xen 4.2.1.
The release fixes the following critical vulnerabilities:
CVE-2012-4535 / XSA-20: Timer overflow DoS vulnerability
CVE-2012-4537 / XSA-22: Memory mapping failure DoS
vulnerability
CVE-2012-4538 / XSA-23: Unhooking empty PAE entries DoS
vulnerability
CVE-2012-4539 / XSA-24: Grant table hypercall infinite
loop DoS vulnerability
CVE-2012-4544, CVE-2012-2625 / XSA-25: Xen domain builder
Out-of-memory due to malicious kernel/ramdisk
CVE-2012-5510 / XSA-26: Grant table version switch list
corruption vulnerability
CVE-2012-5511 / XSA-27: Several HVM operations do not
validate the range of their inputs
CVE-2012-5513 / XSA-29: XENMEM_exchange may overwrite
hypervisor memory
CVE-2012-5514 / XSA-30: Broken error handling in
guest_physmap_mark_populate_on_demand()
CVE-2012-5515 / XSA-31: Several memory hypercall operations
allow invalid extent order values
CVE-2012-5525 / XSA-32: several hypercalls do not validate
input GFNs
Among many bug fixes and improvements (around 100 since Xen 4.2.0):
A fix for a long standing time management issue
Bug fixes for S3 (suspend to RAM) handling
Bug fixes for other low level system state handling
Bug fixes and improvements to the libxl tool stack
Bug fixes to nested virtualization
----- 4.2.0
The Xen 4.2 release contains a number of important new features
and updates including:
The release incorporates many new features and improvements to
existing features. There are improvements across the board including
to Security, Scalability, Performance and Documentation.
XL is now the default toolstack: Significant effort has gone
in to the XL tool toolstack in this release and it is now feature
complete and robust enough that we have made it the default. This
toolstack can now replace xend in the majority of deployments, see
XL vs Xend Feature Comparison. As well as improving XL the underlying
libxl library has been significantly improved and supports the
majority of the most common toolstack features. In addition the
API has been declared stable which should make it even easier for
external toolstack such as libvirt and XCP's xapi to make full use
of this functionality in the future.
Large Systems: Following on from the improvements made in 4.1
Xen now supports even larger systems, with up to 4095 host CPUs
and up to 512 guest CPUs. In addition toolstack feature like the
ability to automatically create a CPUPOOL per NUMA node and more
intelligent placement of guest VCPUs on NUMA nodes have further
improved the Xen experience on large systems. Other new features,
such as multiple PCI segment support have also made a positive
impact on such systems.
Improved security: The XSM/Flask subsystem has seen several
enhancements, including improved support for disaggregated systems
and a rewritten example policy which is clearer and simpler to
modify to suit local requirements.
Documentation: The Xen documentation has been much improved,
both the in-tree documentation and the wiki. This is in no small
part down to the success of the Xen Document Days so thanks to all
who have taken part.
---- 4.2.2
Xen 4.2.2 is a maintenance release in the 4.2 series and contains:
We recommend that all users of Xen 4.2.1 upgrade to Xen 4.2.2.
This release fixes the following critical vulnerabilities:
CVE-2012-5634 / XSA-33: VT-d interrupt remapping source
validation flaw
CVE-2013-0151 / XSA-34: nested virtualization on 32-bit
exposes host crash
CVE-2013-0152 / XSA-35: Nested HVM exposes host to being
driven out of memory by guest
CVE-2013-0153 / XSA-36: interrupt remap entries shared and
old ones not cleared on AMD IOMMUs
CVE-2013-0154 / XSA-37: Hypervisor crash due to incorrect
ASSERT (debug build only)
CVE-2013-0215 / XSA-38: oxenstored incorrect handling of
certain Xenbus ring states
CVE-2012-6075 / XSA-41: qemu (e1000 device driver): Buffer
overflow when processing large packets
CVE-2013-1917 / XSA-44: Xen PV DoS vulnerability with SYSENTER
CVE-2013-1919 / XSA-46: Several access permission issues with
IRQs for unprivileged guests
CVE-2013-1920 / XSA-47: Potential use of freed memory in event
channel operations
CVE-2013-1922 / XSA-48: qemu-nbd format-guessing due to missing
format specification
This release contains many bug fixes and improvements (around
100 since Xen 4.2.1). The highlights are:
ACPI APEI/ERST finally working on production systems
Bug fixes for other low level system state handling
Bug fixes and improvements to the libxl tool stack
Bug fixes to nested virtualization
----- 4.2.1
Xen 4.2.1 is a maintenance release in the 4.2 series and contains:
We recommend that all users of Xen 4.2.0 upgrade to Xen 4.2.1.
The release fixes the following critical vulnerabilities:
CVE-2012-4535 / XSA-20: Timer overflow DoS vulnerability
CVE-2012-4537 / XSA-22: Memory mapping failure DoS vulnerability
CVE-2012-4538 / XSA-23: Unhooking empty PAE entries DoS vulnerability
CVE-2012-4539 / XSA-24: Grant table hypercall infinite
loop DoS vulnerability
CVE-2012-4544, CVE-2012-2625 / XSA-25: Xen domain builder
Out-of-memory due to malicious kernel/ramdisk
CVE-2012-5510 / XSA-26: Grant table version switch list
corruption vulnerability
CVE-2012-5511 / XSA-27: Several HVM operations do not
validate the range of their inputs
CVE-2012-5513 / XSA-29: XENMEM_exchange may overwrite hypervisor memory
CVE-2012-5514 / XSA-30: Broken error handling in
guest_physmap_mark_populate_on_demand()
CVE-2012-5515 / XSA-31: Several memory hypercall operations
allow invalid extent order values
CVE-2012-5525 / XSA-32: several hypercalls do not validate input GFNs
Among many bug fixes and improvements (around 100 since Xen 4.2.0):
A fix for a long standing time management issue
Bug fixes for S3 (suspend to RAM) handling
Bug fixes for other low level system state handling
Bug fixes and improvements to the libxl tool stack
Bug fixes to nested virtualization
----- 4.2.0
The Xen 4.2 release contains a number of important new features
and updates including:
The release incorporates many new features and improvements to
existing features. There are improvements across the board including
to Security, Scalability, Performance and Documentation.
XL is now the default toolstack: Significant effort has gone
in to the XL tool toolstack in this release and it is now feature
complete and robust enough that we have made it the default. This
toolstack can now replace xend in the majority of deployments, see
XL vs Xend Feature Comparison. As well as improving XL the underlying
libxl library has been significantly improved and supports the
majority of the most common toolstack features. In addition the
API has been declared stable which should make it even easier for
external toolstack such as libvirt and XCP's xapi to make full use
of this functionality in the future.
Large Systems: Following on from the improvements made in 4.1
Xen now supports even larger systems, with up to 4095 host CPUs
and up to 512 guest CPUs. In addition toolstack feature like the
ability to automatically create a CPUPOOL per NUMA node and more
intelligent placement of guest VCPUs on NUMA nodes have further
improved the Xen experience on large systems. Other new features,
such as multiple PCI segment support have also made a positive
impact on such systems.
Improved security: The XSM/Flask subsystem has seen several
enhancements, including improved support for disaggregated systems
and a rewritten example policy which is clearer and simpler to
modify to suit local requirements.
Documentation: The Xen documentation has been much improved,
both the in-tree documentation and the wiki. This is in no small
part down to the success of the Xen Document Days so thanks to all
who have taken part.
Kate is an overlay codec, originally designed for karaoke and text, that can be
multiplixed in Ogg. Text and images can be carried by a Kate stream, and
animated. Most of the time, this would be multiplexed with audio/video to carry
subtitles, song lyrics (with or without karaoke data), etc, but doesn't have to
be.
Series of curves (splines, segments, etc) may be attached to various properties
(text position, font size, etc) to create animated overlays. This allows
scrolling or fading text to be defined. This can even be used to draw arbitrary
shapes, so hand drawing can also be represented by a Kate stream.
Diffuse 0.4.7 - 2013-05-13
- added Jindřich Šesták's Czech translation
- improved character editing to allow easy indenting and moving the cursor by whole words
- added Miś Uszatek's Polish translation
- improved auto-detection of utf_16 and utf_32
- added "New N-Way File Merge..." menu item
- added syntax highlighting for Erlang and OpenCL files
