changes: fix a use-after-free bug which could be used to potentially
execute arbitrary code with root privileges, provided that the user
has been authenticated using a public key and also that a command
restriction is enforced (the "command" option must be used in
the authorized_keys file)
* Add Makefile.DragonFly
* Add xymonclient-dragonfly.sh
* Fix sha2.c #include <stdint.h>.
On last, nothing sets HAVE_STDINT_H and passing -DHAVE_STDINT_H through
cflags fails. Just switch it based on __FreeBSD__ and __DragonFly__.
There is a placeholder for dragonfly-meminfo. It's possible that
freebsd-meminfo.c can be used without modification, but it needs
verification before building it.
Tor 0.2.2.38 fixes a rare race condition that can crash exit relays;
fixes a remotely triggerable crash bug; and fixes a timing attack that
could in theory leak path information.
Remove a dependency to poppler-0.16 in the poppler-qt.pc file so
that pkg-config --cflags "poppler-qt >= 0.3.1" returns valid information.
Default poppler version is now 0.20.x. Since this package explicitly uses
0.16.x, @PC_REQUIRES_PRIVATE@ introduces a dependency to poppler-0.16.x in
the .pc file; pkg-config will then print messages such as "Package
'poppler-qt' requires 'poppler = 0.16.7' but version of poppler is 0.20.2"
instead of the required information. Removing the Requires.private line
entirely fixes the issue.
After applying this patch and rebuilding poppler-qt, graphics/kdegraphics3
and misc/koffice now build on DragonFly. Previously they failed with
poppler-related errors.
Patch provided by F.Tigeot.
CHANGES MADE TO MATHOMATIC 16.0.1 TO BRING IT UP TO THE NEXT VERSION:
A nice cleanup and documenting of everything, while my mind still works.
07/23/12 - Enabled links in "manual.pdf" (the Mathomatic User Guide
and Command Reference), they were not working before,
but they work great now.
07/24/12 - Allow -a option ("set alternative") with sets alternative
color mode, useful in MS-Windows when using Cygwin with the
MinGW compiled version.
07/27/12 - Two bug fixes today:
Fixed using rlwrap under Cygwin and possibly other places,
when running rmath.
get_yes_no() question asker wasn't working in Cygwin or rmath.
Fixed to always ask the question, even if the input is not a TTY.
07/28/12 - Reading directories and empty files gives an error now.
07/30/12 - Split off changes.txt to changes.txt and changes_series_15.txt.
changes.txt and NEWS now contain only series 16 changes.
Added tests/batman_gnuplot_bug.in to prove there is a plotting bug
in gnuplot itself.
08/01/12 - Removed directive to use large font in the CSS for all Mathomatic
documentation. This is so it can be browsed easily with a mobile
device. The font size should be set by the user.
08/02/12 - A one-sided expression with an equals sign now only sets the
expression equal to zero if autocalc didn't work on it. In the
Symbolic Math Library, or without autocalc enabled, all is the
same. This makes it more likely purely numerical input is only
calculated, even when preceded or followed by an equals sign,
when autocalc is enabled. Reason for this change:
Why would you want to set a constant equal to 0?
Fixed a bunch more error reporting bugs coded into version 16.0.1
of Mathomatic to apply identical operations to both sides of an
equation. All fixed now. Points to the error correctly now, too.
08/04/12 - Major change to Symbolic Math Library. It now works exactly like
the application when it comes to purely numerical input,
approximating and displaying the result, however sign variables
are not expanded and the result is not 100% simplified,
so running "simplify sign" afterwards helps with that.
To revert to the old way, just turn off autocalc, or set
the numerical input equal to some normal variable; then there
will be no automatic approximation nor simplification.
You can tell when an input has been approximated because it
was numerical input, because it will always be preceded with
"answer =".
08/05/12 - m4/degrees.m4 copied with m4/functions.m4, when installing with
"make m4install", thanks to a suggestion by Reini Urban,
maintainer of the Cygwin version.
Mathomatic version 16.0.2 released Monday 08/06/12.
CHANGES MADE TO MATHOMATIC 16.0.0 TO BRING IT UP TO THE NEXT VERSION:
07/06/12 - Confirmed successful compilation and testing with the
Tiny C compiler (tcc). Only needed to set the tcc linker
library directories to the current gcc library directories
to make it work (using the -L option).
Searched globally for the word "simply" and fixed many outdated
texts in the Mathomatic documentation and READMEs, deleting some
wrongly used "simply"s, too.
07/07/12 - Allow "set modulus_mode language", where language is C, Java,
Python, or positive.
07/08/12 - Now leaving the "UNIX" C preprocessor define alone,
when "HANDHELD" is defined. "UNIX" was previously
forced undefined.
07/11/12 - "make test", "make check", and ./t now display the actual
Mathomatic version number being tested.
matho-primes now has a -v (display version number) option,
like Mathomatic does.
Mathomatic now automatically clears out all old
numeric calculations if it runs out of equation spaces,
requiring no action from the user.
07/12/12 - The solve command never needs the "repeat solve" prefix anymore.
The repeat flag is always set for the solve command, so that
it will always do full simplifies when verifying.
Added quadratic formula derivation and proof to
"tests/quadratic.in".
07/17/12 - I came up with a swinging new and easy way to add, subtract,
multiply, divide, modular and integer divide,
and raise to the power of both sides of an equation by any
expression. To add x+1 to both sides of the current
equation, just type "+=x+1" at the main prompt. To divide both
sides by c^2, type "/=c^2". You can add stuff to non-equations
too, this way. Be sure and use the simplify command after this
if needed, because only a small amount of simplification is done
by default, just enough so you can see what is happening.
07/20/12 - Changed floating point to rational floating point conversion
routine (f_to_fraction()) to ignore converting anything with
over 15 digits, for greater accuracy.
This fixes some small accuracy bugs: "factor number 17!" now gives
an error instead of the wrong value.
07/21/12 - Integrate, Laplace, and Numerical Integrate commands now warn
when the current equation is not a properly solved equation.
Mathomatic version 16.0.1 released Sunday 07/22/12.
Maxima 5.28 change log
Backwards-incompatible changes:
* package stats: removed function simple_linear_regression (superseded by
linear_regression)
New items in core:
* new function generalized_lambert_w
* new functions zn_mult_table, zn_power_table
* new functions for Galois fields: gf_set, gf_char, gf_prim, etc.
New items in share:
* package descriptive: new function principal_components
* package descriptive: new histogram style 'density'
* package stats: new function linear_regression
Other changes:
* revise system for building Maxima on MS Windows
* function gamma_incomplete: improve accuracy for complex bigfloats
* function expintegral_e: improved calculation for large imaginary part
Bug fixes:
3539699: limit of atan2
3538167: Wrong result for definite integral
3534858: wrong answer: limit
3533723: abs_integrate causes stack overflow
3530767: integrate changes k[0] --> k(0)
3530272: nthroot, bad error msg
3529992: Shi (sinh integral) wrong branch, integrate inconsistent
3529144: Error integrating exp(-x)*sinh(sqrt(x)) with domain: complex
3526359: gamma_incomplete(1/5,-32.0) not accurate
3526111: float erf (%i) not working
3522750: assume & integrate
3521596: atan2(sqrt(1-u)*(u-1),1); /* hangup */
3517785: Wrong sign in exponential integral
3517034: polarform error on simple case
mailing list 2012-04-09: Loading gentran
mailing list 2012-03-27: bug in net present value
unnumbered: inequality facts being forgotten
unnumbered: limit(erfc(z), z, inf)
unnumbered: bug in animated_gif
unnumbered: Lisp output not readable
unnumbered: bigfloats parsed incorrectly when ibase is not 10
* Fix verify NSEC3 denials.
* allow for a secure trace if you use DS records as trust anchors
* bugfix #313: trace on an empty nonterminal continuation.
Features:
* implement log-time-ascii on windows.
* --with-libunbound-only build option, only builds the library and not the daemon and other tools.
* --with-nss build option (for now, --with-libunbound-only), uses libNSS for crypto operations.
* disable RSAMD5 if in FIPS mode (for openssl and for libnss).
* Add flush_bogus option for unbound-control.
Bug Fixes:
* Fix libunbound report of errors when in background mode.
* fix bogus nodata cname chain not reported as bogus by validator
* [bugzilla: 454 ] Fix for ACX_CHECK_COMPILER_FLAG from configure.ac, if CFLAGS is specified at configure time then '-g -O2' is not appended to CFLAGS, so that the user can override them.
* FIPS_mode openssl does not use arc4random but RAND_pseudo_bytes.
* fix missing break for GOST DS hash function.
* implemented forward_first for the root.
* code review: return value of cache_store can be ignored for better performance in out of memory conditions.
* patch for unbound_munin_ script to handle arbitrary thread count by Sven Ulland.
* Fix validation of qtype DS queries that result in no data for non-optout NSEC3 zones.
* fix edns-buffer-size and msg-buffer-size manpage documentation.
* fix error handling of alloc failure during rrsig verification.
* The key-cache bad key ttl is now 60 seconds.
* [bugzilla: 452 ] fix crash on assert in mesh_state_attachment. Fixes DS NS search to not generate duplicate sub queries.
* silence warning from swig-generated code (md set but not used in swig initmodule, due to ifdefs in swig-generated code).
* Fix debian-bugs-658021: Please enable hardened build flags.
* update iana ports list
* mail-log plugin: Log mailbox names with UTF-8 everywhere (instead of mUTF-7
in some places and UTF-8 in other places)
* director: Changed director_username_hash setting's default from %u to %Lu (=
lowercase usernames). This doesn't break any existing installations, but
might fix some of them.
+ doveadm: Added "auth cache flush [<username>]" command.
+ Implemented dict passdb/userdb
+ Implemented Redis and memcached dict backends, which can be used as auth
backends. Redis can also be used as dict-quota backend.
+ Added plugin { quota_ignore_save_errors=yes } setting to allow saving a mail
when quota lookup fails with temporary failure.
- Full text search indexing might have failed for some messages, always causing
indexer-worker process to run out of memory.
- fts-lucene: Fixed handling SEARCH HEADER FROM/TO/SUBJECT/CC/BCC when the
header wasn't lowercased.
- fts-squat: Fixed crash when searching a virtual mailbox.
- pop3: Fixed assert crash when doing UIDL on empty mailbox on some setups.
- auth: GSSAPI RFC compliancy and error handling fixes.
- Various fixes related to handling shared namespaces
Bugfixes:
* SUPPORT-30: RRSIGs are left in the signed zone when authoritative RRsets
become glue [OPENDNSSEC-282].
* OPENDNSSEC-261: Ldns fails to parse RR that seems syntactically correct.
Was due to memory allocation issues. Provided better log message.
* OPENDNSSEC-285: Signer segfault for 6 or more -v options
* OPENDNSSEC-298: Only unlink existing pidfile on exit if we wrote it.
* OPENDNSSEC-303: Return if open/parse of zonelist.xml fails in ksmutil.c
update_zones() and cmd_listzone().
* OPENDNSSEC-304: Signer Engine: Check pidfile on startup, if pidfile exists
and corresponding process is running, then complain and exit.
* Signer seems to hang on a ods-signer command. Shutdown client explicitly
with shutdown().
* opendnssec.spec file removed
This minor maintenance release provides the usual collection of recent
build configuration improvements and janitorial cleanups.
Alan Coopersmith (5):
Update Sun license notices to current X.Org standard form
Sun's copyrights belong to Oracle now
config: Add missing AC_CONFIG_SRCDIR
Chop whitespace off of the ends of lines
evieproto 1.1.1
Gaetan Nadon (8):
.gitignore: use common defaults with custom section # 24239
configure.ac: AM_MAINTAINER_MODE missing #24238
configure.ac: deploy the new XORG_DEFAULT_OPTIONS #24242
Makefile.am: INSTALL file is missing or incorrect #24206
Makefile.am: ChangeLog not required: EXTRA_DIST or *CLEANFILES #24432
README: file created or updated #24206
Makefile.am: add ChangeLog and INSTALL on MAINTAINERCLEANFILES
config: update AC_PREREQ statement to 2.60
Based on PR 46440 by Uwe Klaus.
Version Changes for Hypermail
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
============================
HYPERMAIL VERSION 2.3.0:
============================
Jose Kahan (Oct 27, 2009)
- Added two new accesskeys in messages: 't' -> next message
in thread, 'd' -> next message
Jose Kahan (Oct 26, 2009)
- Updated hmrc.4 and hmrc.html to descrbie the new features.
Jose Kahan (Oct 26, 2009)
Various fixes / enhancements developed at W3C by Fumihiro Kato,
Daigo Matsubara and myself:
- Markup changes for deleted messages that are kept.
- New directive: htmlmessage_deleted for setting a custom HTML
message for the body of deleted messages.
- New directive: delete_incremental to disable deleting of existing
messages in the archive when doing an incremental add of a new
message. In some setups, if this feature is enabled, replies to
deleted messages will cause uncontrolled markup escape and
expansion. Feature is enabled by default.
- Updated list of known protocol uris that hypermail will convert
into links.
- Bug fix: setup.c:MakeConfig() CFG_SWITCH was using long instead of
int.
- New directive: fragment_prefix for customizing the prefix that is
put before each URI fragment in a message. Default value is "msg",
the previous hard-coded value.
- New directive: email_address_obfuscation foro enablingemail
address obfuscation using numeric character reference.
- New directive: inline_addlink to add in-line links to content that
is stored in the attachments subdirectory. 'inline_types" must
also be enabled.
- New directive: inreplyto_command, gives a URI template to a script
that hypermail will link to if it's unable to find a corresponding
Message-Id in the archive's messages.
Peter McCluskey (May 13, 2008)
Change from Fumihiro Kato to fix bug that sometimes caused a charset
problem when Content-Type is us-ascii but message headers
include other encoded text like utf-8.
Peter McCluskey (Nov 14, 2007)
Applied xhtml patch from Zvi Har'El.
Peter McCluskey (Oct 1, 2007)
Changes from Fumihiro Kato to fix bugs on 64 bit systems and some
possible buffer overflow problems.
Change in rules about whether to escape urls; it now seems to escape them
when found in the middle of the line the same way it has been doing when
they are at the start of a line.
Peter McCluskey (Feb 16, 2007)
Changes from Rick van der Zwet:
cosmetic = tweaking the interface a small bit (right align, the message
numbers, years in the date listing
spamify-domain = obfuscate the body of the message as well (will also
obfuscate 'ssh rick@foo.bar' this of course), moved the domain obfuscate
yes/no to the general to make the function more portable
Changes from Mike Fabian changing int to size_t.
Peter McCluskey (Mar 27, 2006)
Add rel="nofollow" to text message URLs (option txtsuffix = 1).
Peter McCluskey (Mar 14, 2006)
Fixed a core dump with linkquotes = 1 caused by Daigo's changes.
Peter McCluskey (Sep 30, 2005)
Fixed missing links at top when show_index_links is 1 or 3.
Peter McCluskey (Aug 4, 2005)
Fixed double counting of messages deleted with the delete_msgnum option,
which sometimes caused top level index page to show wrong number of
messages and not link to a folder.
Peter McCluskey (Jul 29, 2005)
Changed to sort on sender date rather than from date when displaying
sender date as a result of use_sender_date = 1.
Peter McCluskey (Jun 23, 2005)
Some small changes from Vincent McIntyre to make date-range in index of
folders link to default index page, to use CSS instead of <th> to
distinguish that column, and some whitespace changes.
Added explanation of how to handle strcasestr prototype error to INSTALL.
Peter McCluskey (Mar 19, 2005)
Fixes to files_by_thread option submitted by Oliver Meili.
Peter McCluskey (Dec 2, 2004)
Patch from Ulf Härnhammar to fix two format string bugs in Hypermail.
They could have caused crashes if using incremental mode on edited
pre-existing archives with data like "%n%n%n%n%n%n%n%n" in certain lines.
Peter McCluskey (Nov 28, 2004)
Add filename_base option.
Peter McCluskey (Sep 29, 2004)
Add support for JAVT timezone.
Add mailbox_date_trimmer to contrib, faq.
Peter McCluskey (Jun 2, 2004)
Add language code substitution cookie patch from Shane Wegner.
============================
HYPERMAIL VERSION 2.2.0:
============================
Peter McCluskey (May 25, 2004)
Changed some of the addresses to hypermail-project.org.
Made the "We delete ... " message print only if progress != 0.
Peter McCluskey (Mar 23, 2004)
Changes to speed up incremental update when there are deleted files if
using usegdbm (it's still slow if usegdbm = 0).
============================
HYPERMAIL VERSION 2.1.9:
============================
Peter McCluskey (Feb 23, 2004)
Released version 2.1.9 tar file.
Peter McCluskey (Feb 17, 2004)
Add use_sender_date option.
Fix instructions for doing "make install" so that the documentation will
be installed.
Peter McCluskey (Feb 5, 2004)
Update much of the documentation.
Peter McCluskey (Feb 4, 2004)
Change default in setup.c for spamprotect and spamprotect_id to On.
Peter McCluskey (Feb 2, 2004)
Add set_report_new_file and set_report_new_folder options.
Peter McCluskey (Jan 23, 2004)
Add in missing <a name="end"> for index files.
Removed a misleading, nonportable timezone string from link titles in
toplevel index pages.
Peter McCluskey (Jan 9, 2004)
Change to make mbox_shortened option work a little better with
discard_dup_msgids = 0.
Change folder_by_date option to use "From " date rather than "Date: "
to decide which subdirectory to use. This makes it consistent with
top level index page.
Peter McCluskey (Dec 26, 2003)
Add increment = -1 mode to enable automatic determination of whether
to update or append in most cases.
Peter McCluskey (Dec 3, 2003)
Added a mbox_shortened option to handle mboxes that have had messages
deleted from the start of the mbox.
Peter McCluskey (Dec 1, 2003)
Fix mismatch in <ul>, </ul> in date.html with indextable = 0.
Peter McCluskey (Nov 17, 2003)
Add a check for the problem with the starting message number that was
partly fixed on Oct 1. Now old archives with a startmsgnum = 0 .hmrc but
a first message of 0001.html in this case will be treated as if startmsgnum
was 0.
Peter McCluskey (Nov 15, 2003)
Add Portugese support from Hugo Cisneiros.
Peter McCluskey (Oct 1, 2003)
Fix some problems with starting message number that caused bugs when
increment = 1, linkquotes = 1 and using folder_by_date.
Peter McCluskey (Sep 11, 2003)
Fixes to make pcre work.
Peter McCluskey (Sep 3, 2003)
Applied patches from Mike McDonald to use nowrap option in the author and
date columns in the index tables and get rid of all of the 'width=100%'
options to the tables.
Peter McCluskey (Sep 3, 2003)
French language improvements from Olivier Kaloudoff.
Peter McCluskey (Sep 1, 2003)
Applied patches from Mike McDonald to make spamify_replacedomain use
set_antispam_at, change printdates to include the dates in the table
version of the bydate index, and make the table use the whole screen
width instead of 80%.
Jose Kahan (Aug 18, 2003)
- Changed to lowercase the suffixes added to the message indexes. That is,
from "archive name By Date" to "archive name by date" because the
upper case seemed out of style as we don't have any control on what
is the string used for the archive's name. Did this change only for
the English messages as I don't know if this convention works well for
other languages.
Jose Kahan (Aug 18, 2003)
- Made the links to the different indexes show the index of the current entry.
This change originated from the feedback we got on the WAI enhanced archievs.
People find that this small changes increases the usability of the archive.
Jose Kahan (Aug 18, 2003)
- The links to the first message (aka #first) were not working in the
by attachment, by author, and by subject indexes.
Peter McCluskey (Aug 16, 2003)
- applied fix from Jean-Charles Meyrignac to handle 0x1A in mbox.
Jose Kahan (Aug 14, 2003)
- After receiving more feedback, reverted the changes done for converting the
displayed value of the Date: header. The reason is that users like to know
when they send a message. This information was getting lost because we
were converting the date to the local time.
- Made the Received on date be shown in converted local time.
- Added a new configuration option, indexdateformat, so that people can
specify a different format for indexes than the one used elsewhere. If this
variable is not defined., it'll use the dateformat by default.
- Made the index by date compare dates independently of the value of dateformat.
Jose Kahan (Aug 13, 2003)
- Made the Received on footnote line use the same date format as that used for the
Date: header on top of the messages.
Jose Kahan (Aug 18, 2003)
- Small WAI change to the list of indexes to show the entry corresponding to
the current index, but outside of a link. This comes from feedback, where
people said it was less distracting to see the same index to links all
the time.
Jose Kahan (Aug 18, 2003)
- Add the <title> WAI enhancement that I had forgotten to do for messages.
The new format is: [subject] from [author] on [date] ([mailing list label]).
I also removed the 64 characters maximum limit check we had on the title.
The reason is that this is not part of the HTML specification, but rather
a writing style. Dominique says we shouldn't be so strict in this case. In
addition, just adding a \0 after 64 characters could break entity names and
generate invalid HTML.
Jose Kahan (Aug 13, 2003)
- The mailcommand option didn't work when applied to a paragraph that had
a previously converted href string that includes the '@' char. I added
a quick hack to ConvURlsString to avoid doing the mailto: convertion if an href
already exists in that line. The best solution would be to do something
similar to ConvURLsWithHrefs.
Also fixed a memory leak.
Peter McCluskey (Aug 8, 2003)
- Applied haof fixes from Bernhard Reiter.
Jose Kahan (Aug 4, 2003)
- As a side effect of PNK's use of an SGML entity for the @ char, the
mailcommand option stopped working on all the headers except for
the To: one.
Jose Kahan (Aug 1, 2003)
- In order to guarantee the validity of XHTML documents, changed the
behavior of hypermail when including customized footers. Previously,
when using this option, the custom markup had to include the </body>
and </html> end tags. As we also need to include a </div> in some
cases for XHTML and it's much harder to guess when to add it, I
made hypermail always add those three end tags as needed, regardless
of whether the custom footer option is being used.
Jose Kahan (Jul 30, 2003)
- After talking with Dom Hazel-Massieux, I added some extra WAI enhancements
to the list of indexes generated by hypermai. Specifically, the date
is shown in a verbose name in the title attribute of each entry and in
an abbreviated version in the markup that's being displayed.
Jose Kahan (Jul 30, 2003)
- When rebuilding an archive, the attachment files were not being overwritten
correctly. . Fixed this by adding an O_TRUNC flag.
Jose Kahan (Jul 29, 2003)
- Removed a memory leak in file.c as reported by insure.
- The ietf-mbox option didn't work on "quoted printable" encoded attachments.
Peter McCluskey (July 22, 2003)
Fix show_msg_links = 3 option (Jose's changes assumed it didn't exist).
Updates to German from Tobias Weber.
Kent Landfield (Jul 14, 2003)
- When show_headers was used in print.c, the newline was not recognized
early enough in printheaders. A check was added to assure the newline
was recognized properly.
Kent Landfield (Jul 10, 2003)
- Small typo in print.c corrected.
fprintf(fp, "%s ^lt;<em>%s</em>>"...
[Changes]
- Merge pull request #13 from hiroshiyui to Fix wrong data type conversion
- Fixed: Google Issue 1079: Use shift key to switch to English mode in ibus-chewing
Also list as GitHub pull request #17
- Fixed: Google Issue 1089: Ibus-chewing cause window flicker when compiz enabled
- Fixed: Google Issue 1329, Github Issue 3: Merge with buganini at gmail.com
- Fixed: Google Issue 1351: ibus-chewing 1.3.10 mistakenly send uncommitted charactor.
- Fixed: Google Issue 1374: ibus-chewing: cannot save the preference with gnomeshell
- Fixed: Google Issue 1427: ibus-chewing-1.3.10 is not compatible with ibus-1.4.0 and higher
Also list as GitHub pull request #16
- Fixed: GitHub Issue 5: Word missing when with libchewing-0.3.3 and ibus-chewing 1.3.10
Also list as GitHub pull request #15
- Fixed: Launchpad bug: 1014456 bus-chewing deletes characters if too many of them are entered
Also list as GitHub pull request #19
When the Emacs user option `enable-local-variables' is set to `:safe'
(the default value is t), Emacs should automatically refuse to evaluate
`eval' forms in file-local variable sections. Due to the bug, Emacs
instead automatically evaluates such `eval' forms. Thus, if the user
changes the value of `enable-local-variables' to `:safe', visiting a
malicious file can cause automatic execution of arbitrary Emacs Lisp
code with the permissions of the user.
Bug tracker ref: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=12155
When the Emacs user option `enable-local-variables' is set to `:safe'
(the default value is t), Emacs should automatically refuse to evaluate
`eval' forms in file-local variable sections. Due to the bug, Emacs
instead automatically evaluates such `eval' forms. Thus, if the user
changes the value of `enable-local-variables' to `:safe', visiting a
malicious file can cause automatic execution of arbitrary Emacs Lisp
code with the permissions of the user.
Bug tracker ref: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=12155
When the Emacs user option `enable-local-variables' is set to `:safe'
(the default value is t), Emacs should automatically refuse to evaluate
`eval' forms in file-local variable sections. Due to the bug, Emacs
instead automatically evaluates such `eval' forms. Thus, if the user
changes the value of `enable-local-variables' to `:safe', visiting a
malicious file can cause automatic execution of arbitrary Emacs Lisp
code with the permissions of the user.
Bug tracker ref: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=12155
Bump PKGREVISION.
