Version 1.5.10beta01 [February 24, 2012]
Removed two useless #ifdef directives from pngread.c and one from pngrutil.c
Always put the CMAKE_LIBRARY in "lib" (removed special WIN32 case).
Removed empty vstudio/pngstest directory (Clifford Yapp).
Eliminated redundant png_push_read_tEXt|zTXt|iTXt|unknown code from
pngpread.c and use the sequential png_handle_tEXt, etc., in pngrutil.c;
now that png_ptr->buffer is inaccessible to applications, the special
handling is no longer useful.
Fixed bug with png_handle_hIST with odd chunk length (Frank Busse).
Added PNG_SAFE_LIMITS feature to pnglibconf.dfa and code in pngconf.h
to reset the user limits to safe ones if PNG_SAFE_LIMITS is defined.
To enable, use "CPPFLAGS=-DPNG_SAFE_LIMITS_SUPPORTED" on the configure
command or put "#define PNG_SAFE_LIMITS_SUPPORTED" in pnglibconf.h.
Revised the SAFE_LIMITS feature to be the same as the feature in libpng16.
Added information about the new limits in the manual.
Version 1.5.10beta02 [February 27, 2012]
Updated Makefile.in
Version 1.5.10beta03 [March 6, 2012]
Removed unused "current_text" members of png_struct and the png_free()
of png_ptr->current_text from pngread.c
Added palette-index checking. Issue a png_warning() if an invalid index is
found.
Version 1.5.10beta04 [March 10, 2012]
Fixed PNG_LIBPNG_BUILD_BASE_TYPE definition.
Fixed CMF optimization of non-IDAT compressed chunks, which was added at
libpng-1.5.4. It sometimes produced too small of a window.
Version 1.5.10beta05 [March 10, 2012]
Reject all iCCP chunks after the first, even if the first one is invalid.
Issue a png_benign_error() instead of png_warning() about bad palette index.
Fixed an off-by-one error in the palette index checking function.
Revised example.c to put text strings in a temporary character array
instead of directly assigning string constants to png_textp members.
This avoids compiler warnings when -Wwrite-strings is enabled.
Version 1.5.10 [March 29, 2012]
Prevent PNG_EXPAND+PNG_SHIFT doing the shift twice.
Revised png_set_text_2() to avoid potential memory corruption (fixes
CVE-2011-3048).
- Bug Fixes
The following vulnerabilities have been fixed.
o wnpa-sec-2012-04
The ANSI A dissector could dereference a NULL pointer and
crash. (Bug 6823)
Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.
o wnpa-sec-2012-05
The IEEE 802.11 dissector could go into an infinite loop. (Bug
6809)
Versions affected: 1.6.0 to 1.6.5.
o wnpa-sec-2012-06
The pcap and pcap-ng file parsers could crash trying to read
ERF data. (Bug 6804)
Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.
o wnpa-sec-2012-07
The MP2T dissector could try to allocate too much memory and
crash. (Bug 6804)
Versions affected: 1.4.0 to 1.4.11, 1.6.0 to 1.6.5.
o The Windows installers now include GnuTLS 1.12.18, which fixes
several vulnerabilities.
The following bugs have been fixed:
o ISO SSAP: ActivityStart: Invalid decoding the activity
parameter as a BER Integer. (Bug 2873)
o Forward slashes in URI need to be converted to backslashes if
WIN32. (Bug 5237)
o Character echo pauses in Capture Filter field in Capture
Options. (Bug 5356)
o Some PGM options are not parsed correctly. (Bug 5687)
o dumpcap crashes when capturing from pipe to a pcap-ng file
(e.g., when passing data from CACE Pilot to Wireshark). (Bug
5939)
o Unable to rearrange columns in preferences on Windows. (Bug
6077) (Note: this bug still affects the 64-bit package)
o No error for UDP/IPv6 packet with zero checksum. (Bug 6232)
o Wireshark installer doesn't add access_bpf in 10.5.8. (Bug
6526)
o Corrupted Diameter dictionary file that crashes Wireshark.
(Bug 6664)
o packetBB dissector bug: More than 1000000 items in the tree --
possible infinite loop. (Bug 6687)
o ZEP dissector: Timestamp not always displayed correctly.
Fractional seconds never displayed. (Bug 6703)
o GOOSE Messages don't use the length field to perform the
dissection. (Bug 6734)
o Ethernet traces in K12 text format sometimes give bogus
"malformed frame" errors and other problems. (Bug 6735)
o max_ul_ext isn't printed/decoded to the packet details log in
GTP protocol packet. (Bug 6761)
o non-IPP packets to or from port 631 are dissected as IPP. (Bug
6765)
o lua proto registration fails for uppercase proto /
g_ascii_strdown problem. (Bug 6766)
o no menu item Fle->Export->SSL Session Keys in GTK. (Bug 6813)
o IAX2 dissector reads past end of packet for unknown IEs. (Bug
6815)
o TShark 1.6.5 immediately crashes on SSL decryption (every
time). (Bug 6817)
o USB: unknown GET DESCRIPTOR response triggers assert failure.
(Bug 6826)
o IEEE1588 PTPv2 over IPv6. (Bug 6836)
o Patch to fix DTLS decryption. (Bug 6847)
o Expression... dialog crash. (Bug 6891)
o display filter "gtp.msisdn" not working. (Bug 6947)
o Multiprotocol Label Switching Echo - Return Code: Reserved
(5). (Bug 6951)
o ISAKMP : VendorID CheckPoint : Malformed Packet. (Bug 6972)
o Adding a Custom HTTP Header Field with a trailing colon causes
wireshark to immediately crash (and crash upon restart). (Bug
6982)
o Radiotap dissector lists a bogus "DBM TX Attenuation" bit.
(Bug 7000)
o MySQL dissector assertion. (Ask 8649)
o Radiotap header format data rate alignment issues. (Ask 8649)
- Updated Protocol Support
ANSI A, BSSGP, DIAMETER, DTLS, GOOSE, GSM Management, GTP, HTTP,
IAX2, IEEE 802.11, IPP, ISAKMP, ISO SSAP, MP2T, MPLS, MySQL, NTP,
PacketBB, PGM, Radiotap, SSL, TCP, UDP, USB, WSP
- New and Updated Capture File Support
Endace ERF, Pcap-NG, Tektronix K12
Release notes
Release date: 2012-03-27
Opera 11.62 is a recommended upgrade offering security and stability enhancements.
Changes since Opera 11.61
User interface
Fixed
* Find in page (Ctrl + F) uses last used Find inline type
* Address field focus lost on restart when installing extensions with a
toolbar button
* Submit data-security-warning locks page with two warning dialogs where
only one can be closed
* No window control buttons on the menu bar when disabling the close button
on tabs
* Inefficient loading order of resources
* PDF and SVG options offered in GTK print dialog but not supported
* Opera clipboard incompatible with Synergy/VNC/rdesktop/VMware/VirtualBOX
* Sluggish file dialog in GTK
* No GTK toolkit support under FreeBSD 9
Improved
* Updated tr/hu/cs language strings
Display and scripting
Fixed
* Some progressive JPEGs aren't decoded properly
* Crash when inspecting a UserJSEvent object in Dragonfly
* Facebook chat scrolling problems
* Text cursor position lost when clicking to focus on a search match inside
a textarea
* Error message when sending mail at centrum.cz
* IDNs starting with number are shown with punycode in address bar
* Crash when posting message to extension background process
Mail, news, chat
Fixed
* Selected message not consistent on layout switching
* Last selected message is forgotten through a restart
* Scrolling or switching view is slow when there are messages with many
addressees
* Occasional crash when navigating message list
Network
Fixed
* Support Ctrl+F5 and Shift+F5 for unconditional reload of web page (bypass
cache)
* URL Turbo mode header reduction generates invalid HTTP messages
Presto 2.10 rendering engine
Encoding improvements
* Changed multi-byte encodings to be non-greedy when encountering invalid
byte sequences, which is more compatible with other implementations
Security
Fixed
* Fixed an issue where small windows could be used to trick users into
executing downloads, as reported by Jordi Chancel; see our advisory:
http://www.opera.com/support/kb/view/1010/
* Fixed an issue where overlapping content could trick users into executing
downloads, as reported by Jordi Chancel; see our advisory:
http://www.opera.com/support/kb/view/1011/
* Fixed a printing issue which could allow data leaks to other system users,
or allow them to corrupt data, as reported by Christof Meerwald; see our
advisory:
http://www.opera.com/support/kb/view/1015/
* Fixed an issue where history.state could leak the state data from cross
domain pages; see our advisory:
http://www.opera.com/support/kb/view/1012/
* Fixed an issue which could allow web page dialogs to display the wrong
address in the address field; see our advisory:
http://www.opera.com/support/kb/view/1013/
* Fixed an issue where carefully timed reloads and redirects could spoof the
address field, as reported by Jordi Chancel; see our advisory:
http://www.opera.com/support/kb/view/1014/
real PYTHON_VERSIONS_ACCEPTED value of "27 26 25".
Because it depends on a pile of gnome stuff that depends on at least
one single-Python-version package, it will never, or never except with
a lot of probably pointless work, build except with the same Python
version gnome is using. (Plus, even if it built, it quite likely
wouldn't run.)
