gdbus-codegen has grown a --xml-files option for introspection XML files.
* Bug fixes:
697887 GVariant: fix transfer annotation
699485 tests/mappedfile: Also handle ENOMEM
699493 SOCKS5 proxy code crashes if it cannot authenticate
699500 gbitlock: fix this to not unconditionally use futex emu...
Fix a hang in pidgin
* Translation updates:
Indonesian
Italian
Lithuanian
Norwegian bokmål
Polish
Serbian
Slovenian
Changes since 2.1.10:
* Core ejabberd
- Make terms serialization faster
- Reduce size of XML stream state
* Administration
- Add SCRAM and remove MD5 support to ejabberd commands auth verification
- Added command to list all the vhosts registered in an ejabberd node
- Added export2odbc command, copied from mod_admin_extra.erl
- Fix ejabberdctl number of arguments error report with R15
- Check node name is available before starting ejabberd (EJAB-1572)
- Fix ejabberd_xmlrpc commands authentication with SCRAM
- Fix mod_offline:store_offline_msg argument (EJAB-1581)
- Log IP address when auth attempt fails
- Make sure update_info returns atoms only (EJAB-1595)
- On shutdown, first stop listeners, then modules
* Encryption
- Detect OpenSSL version at runtime, not at compile time
- Fixed signedness issue in tls_drv GET_DESCRYPTED_INPUT (EJAB-1591)
- Enable DHE key exchange in TLS driver
- Enable ECDHE key exchange in TSL driver
- Disable old and unsecure ciphers in TLS driver
- Disable SSL 2.0 in TLS driver
* HTTP-Bind
- Do not trigger item-not-found errors in mod_http_bind
- Repeated http-bind request should abort only requests with same rid
- Receiving missing request shouldn't close waiting out-ouf-order request
* XMPP
- Allow multiple fqdn values in configuration (EJAB-1578)
- Fix get_subscription_lists/4
- Fix account registration
- Send announce Message stanzas as Headline type instead of Normal
* Other
- Guide: Fix file name of Name Service Switch
- Guide: Document the db_type modules option (EJAB-1560)
- LDAP: Fix broken JPEG photo (EJAB-1526)
- LDAP: Fix compatibility with Erlang R16A (EJAB-1612)
- MUC: Fix angle brackets handle in plaintext log (EJAB-1610)
- MUC: Fix MUC start when Mnesia tables don't exist yet
- MUC: New mod_muc_log option file_permissions (EJAB-1588)
- ODBC: Merge SQL and Mnesia code into one module (EJAB-1560)
- Translation: New Hebrew
- Translation: Update Slovak
a) refer 'perl' in their Makefile, or
b) have a directory name of p5-*, or
c) have any dependency on any p5-* package
Like last time, where this caused no complaints.
a) refer 'perl' in their Makefile, or
b) have a directory name of p5-*, or
c) have any dependency on any p5-* package
Like last time, where this caused no complaints.
18 of Perl 5.
You can find a full list of changes in the file "perldelta.pod" located in
the "pod" directory inside the release and on the web.
Perl v5.18.0 represents approximately 12 months of development since Perl
v5.16.0 and contains approximately 400,000 lines of changes across 2,100
files from 113 authors.
This release provides the fix for the recently announced security issue
CVE-2013-2063, along with a number of fixes to the build configuration.
Adam Jackson (1):
configure: Remove AM_MAINTAINER_MODE
Alan Coopersmith (5):
Move -I flags from AM_CFLAGS to AM_CPPFLAGS
Add xextproto & xi to Requires.private
Use _XEatDataWords to eat data in error cases
integer overflow in XRecordGetContext() [CVE-2013-2063]
libXtst 1.2.2
Colin Walters (1):
autogen.sh: Implement GNOME Build API
Julien Cristau (1):
COPYING: add copyright notices and licenses from the manpages and specs
This release provides the fixes for the recently announced security issue
CVE-2013-2001 along with a number of other fixes to the error handling
code found while investigating that issue.
Adam Jackson (1):
configure: Remove AM_MAINTAINER_MODE
Alan Coopersmith (10):
Replace deprecated Automake INCLUDES variable with AM_CPPFLAGS
When Xcalloc() returns NULL, you don't need to Xfree() it
Improve error handling in XF86VidModeGetMonitor()
Unlock display before returning alloc error in XF86VidModeGetModeLine()
Unlock display before returning alloc error in XF86VidModeGetAllModeLines()
Unlock display before returning alloc error in XF86VidModeGetDotClocks()
Use _XEatDataWords to avoid overflow of length calculations
memory corruption in XF86VidModeGetGammaRamp() [CVE-2013-2001]
avoid integer overflow in XF86VidModeGetModeLine()
libXxf86vm 1.1.3
Colin Walters (1):
autogen.sh: Honor NOCONFIGURE environment variable
This release provides the fixes for the recently announced security issues
CVE-2013-1991 & CVE-2013-2000, along with a couple build fixes.
Adam Jackson (1):
configure: Remove AM_MAINTAINER_MODE
Alan Coopersmith (7):
Use _XEatDataWords to avoid overflow of rep.length shifting
integer overflow in XDGAQueryModes() [CVE-2013-1991 1/2]
buffer overflow in XDGAQueryModes() [CVE-2013-2000 1/2]
integer overflow & underflow in XDGASetMode() [CVE-2013-1991 2/2]
buffer overflow in XDGASetMode() [CVE-2013-2000 2/2]
integer overflow in XDGAOpenFramebuffer()
libXxf86dga 1.1.4
Colin Walters (1):
autogen.sh: Implement GNOME Build API
Jeremy Huddleston (2):
Build fix when sizeof(off_t) > sizeof(void *)
Include <stdint.h> for uintptr_t
This release provides the fixes for the recently announced security issues
CVE-2013-2002 & CVE-2013-2005, along with other code & doc cleanups, build
fixes, automake compatibility changes, and packaging improvements.
Adam Jackson (1):
configure: Remove AM_MAINTAINER_MODE
Alan Coopersmith (5):
unifdef -U__UNIXOS2__
Unchecked return values of XGetWindowProperty [CVE-2013-2005]
unvalidated length in _XtResourceConfigurationEH [CVE-2013-2002]
Remove old strtoul workaround for SunOS 4
libXt 1.1.4
Colin Walters (1):
autogen.sh: Implement GNOME Build API
Egbert Eich (2):
Install ErrorDB into a $datarootdir-path, not $libdir.
Add XtErrorDB directory to pkg-config file.
Eric S. Raymond (2):
Eliminate use of tab stops.
Remove unused macros that are temptations to presentation-level klugery.
Julien Cristau (1):
Add copyright notice and license from the X Consortium to COPYING
Thierry Reding (1):
Use AM_CPPFLAGS instead of INCLUDES
Thomas Klausner (2):
Avoid referencing something that isn't defined. Bring in the definition from another manual page.
Fix DEBUG build (TMparse.c:376:1: error: overflow in implicit constant conversion)
This release primarily provides the fix for the recently announced
security vulnerability CVE-2013-1988, along with improved compatibility
with future automake releases.
Alan Coopersmith (5):
Replace deprecated Automake INCLUDES variable with AM_CPPFLAGS
Use _XEatDataWords to avoid overflow of rep.length shifting
integer overflow in XResQueryClients() [CVE-2013-1988 1/2]
integer overflow in XResQueryClientResources() [CVE-2013-1988 2/2]
libXres 1.0.7
This bug fix release delivers the fixes for the recently announced security
vulnerability CVE-2013-2062, alongside the last couple years accumulation
of janitorial cleanups, compiler warning fixes, and adjustments to remain
compatible with changes in new and future automake releases.
Alan Coopersmith (10):
Strip trailing whitespace
Stop trying to use NULL for Status values
Fix XpEventToWire arguments to match what libXext expects
Add const qualifiers to silence gcc -Wwrite-strings warnings
Replace deprecated Automake INCLUDES variable with AM_CPPFLAGS
Use _XEatDataWords to avoid overflow of rep.length bit shifting
integer overflow in XpGetAttributes & XpGetOneAttribute [CVE-2013-2062 1/3]
integer overflows in XpGetPrinterList() [CVE-2013-2062 2/3]
integer overflows in XpQueryScreens() [CVE-2013-2062 3/3]
libXp 1.0.2
This bug fix release primarily provides the fix for the recently announced
security vulnerability CVE-2013-1985.
Adam Jackson (1):
configure: Remove AM_MAINTAINER_MODE
Alan Coopersmith (3):
Use _XEatDataWords to avoid overflow of _XEatData calculations
integer overflow in XineramaQueryScreens() [CVE-2013-1985]
libXinerama 1.1.3
Colin Walters (1):
autogen.sh: Implement GNOME Build API
