ChangeLog:
Wordpress 3.4.1:
* Fixes an issue where a theme’s page templates were sometimes not detected.
* Addresses problems with some category permalink structures.
* Better handling for plugins or themes loading JavaScript incorrectly.
* Adds early support for uploading images on iOS 6 devices.
* Allows for a technique commonly used by plugins to detect a network-wide activation.
* Better compatibility with servers running certain versions of PHP (5.2.4, 5.4)
or with uncommon setups (safe mode, open_basedir), which had caused warnings or
in some cases prevented emails from being sent.
Additionally: Version 3.4.1 fixes a few security issues and contains some security
hardening. These issues were discovered and fixed by the WordPress security team:
* Privilege Escalation/XSS. Critical. Administrators and editors in multisite
were accidentally allowed to use unfiltered_html for 3.4.0.
* CSRF. Additional CSRF protection in the customizer.
* Information Disclosure: Disclosure of post contents to authors and contributors
(such as private or draft posts).
* Hardening: Deprecate wp_explain_nonce(), which could reveal unnecessary information.
* Hardening: Require a child theme to be activated with its intended parent only.
Wordpress 3.4:
* Enhanced theme control
* Customize theme options before activating a new theme using Theme Customizer
* Use Theme Previewer to customize current theme without changing the front-end design
* Custom Headers
* Improved Custom Headers with flexible sizes
* Selecting Custom Header Images and Custom Background Images from Media Library Screen
* Media improvements
* Support HTML in image captions
* Under the Hood improvements
* Improvements in WordPress internationalization and localization (more info)
* Different split in translation POT files for faster translations
* Codex XML-RPC information update accessed via XML-RPC_WordPress_API
* WP_Query improvements
Previously, I added a dependency on pdo_sqlite3 because an owncloud
instance failed to run without PDO. This commit moves the dependency
to be conditional on the sqlite option, so that it doesn't apply if
mysql is selected.
The upstream method selection code is hard to follow, and in
particular I don't understand how dbtype=sqlite is expected to use
MDB2 and dbtype=sqlite3 PDO. So with the sqlite option both chunks of
code are availale. I suspect there is an upstream bug lurking, but I
can't point to it.
version A.B.C is at least D.E.F is to be done by checking A >= D, B >=
E, *and* C >= F. Therefore, it believes that the most recent libxml2
update, which is 2.8.0, is less than its minimum requirement 2.4.1.
Rather than trying to repair this curious logic, just patch the test
to always succeed, as pkgsrc always provides a suitable libxml2.
Thu Jun 14 14:03:22 2012 Aaron Patterson <aaron@tenderlovemaking.com>
* lib/journey/formatter.rb: when generating routes, skip route
literals (routes that do not have replacement values like
"/:controller") when matching unnamed routes.
https://github.com/rails/rails/issues/6459
* test/test_router.rb: corresponding test
pkgsrc change: add RUBY_RAILS_STRICT_DEP which will be enabled later.
## Rails 3.1.6 (Jun 12, 2012)
* nil is removed from array parameter values
CVE-2012-2694
pkgsrc change: add RUBY_RAILS_STRICT_DEP which will be enabled later.
## Rails 3.0.14 (Jun 12, 2012)
* nil is removed from array parameter values
CVE-2012-2694
Changelog: from http://www.seamonkey-project.org/releases/seamonkey2.10/
SeaMonkey-specific changes
The domain name is highlighted in the location bar by default now, configurable in Preferences.
The amount of tabs to be restored concurrently can be configured in Preferences now.
News username and password auth dialogs have been combined and show for which server the prompt is now.
Mozilla platform changes
The new minimum supported Windows version is now XP SP2, Windows 2000 support has been dropped.
The SPDY protocol now enabled by default for faster browsing on supported sites
The column-fill CSS property has been implemented.
Experimental support for ECMAScript 6 Map and Set objects has been implemented.
Support for the CSS3 background-position property extended syntax has been added.
The :invalid pseudo-class can now be applied to the <form> element.
The CSS turn <angle> unit is now supported.
Fixed several stability issues.
