This is a regularly-scheduled bugfix release.
commit: catch changed exec bit on files from p1 (issue4382)
diff: document the nobinary option
dispatch: check shell alias again after loading extensions (issue4355)
dispatch: make "_checkshellalias" reusable regardless of adding aliases
help: fix typo in log examples
help: mention mode in hg log --removed help (issue4381)
hgweb: fail if an invalid command was supplied in url path (issue4071)
hgweb: refresh hgweb.repo on phase change (issue4061)
histedit: abort gracefully on --continue/--abort with no state
keepalive: fix how md5 is used
mq: examine "pushable" of already applied patch correctly
mq: pop correct patches when changing pushable-ness of already applied ones
mq: report correct numbers for changing "number of guarded, applied patches"
mq: use "mq.applied[i].name" instead of "mq.appliedname(i)" for safety
revset: add an optimised baseset.contains (issue4371)
templater: fix precedence of --style and --template options
Upstream changes:
1.000024 2014-06-03 01:52:46Z
- fix inaccurate prerequisite declaration on Test::More (in 1.000023)
1.000023 2014-06-02 02:37:17Z
- support installations on older perls with an ExtUtils::MakeMaker earlier
than 6.63_03
1.000022 - 2014-04-29
- work around change in comparison behaviour in Test::More 0.95_01 by being
more explicit with our tests - now explicitly checking the string form of
the extracted version, rather than the entire version object
- ensure the extracted version is returned as a version object in all cases
(RT#87782, Randy Stauner)
1.000021 - 2014-04-29
- fix use of newer interface from File::Path, to avoid another prereq on
older perls (Graham Knop)
- fixed all out of date prereq declarations
1.000020 - 2014-04-27
- new is_indexable() object method (ether, RT#84357)
- eliminated dependency on IO::File (and by virtue, XS) - thanks, leont!
- removed cruft in test infrastructure left behind from separation from
Module::Build (ether)
- repository moved to https://github.com/Perl-Toolchain-Gang/Module-Metadata
- .pm file is now wholly ascii, for nicer fatpacking (RT#95086)
- some code micro-optimizations (Olivier Mengu)
Upstream changes:
version 1.05: Tue Jun 24 09:38:15 CEST 2014
Fixes:
- test in t/10interp.t failed for Perl 5.20, caused by a
bugfix or change in overload::Overloaded [cpantesters]
version 1.04: Tue Jun 3 10:42:11 CEST 2014
Fixes:
- float serialization under locale in test [cpantesters]
version 1.03: Thu May 22 11:54:24 CEST 2014
Fixes:
- float serialization under locale in test [cpantesters]
- non-errors and ::Dispatcher::Perl
Improvements:
- shorted display of string parameters in stack-trace to max 80 chars
- Log4perl log-lines sometimes show dispatcher as source, skip them.
- disable 'mode switch' trace for try()
version 1.02: Mon Mar 10 16:03:13 CET 2014
Fixes:
- add overload fallback to ::Exception and ::Dispatcher
rt.cpan.org#92970 [Lukas Mai]
- ::Domain::new(translator) with HASH did not initialize
- warn better with ::Optional modules are used before Log::Report
is used.
Improvements:
- changed documentation style
- ::Lexicon::Index dir-scan immediately, hopefully before fork()
Add missing DEPENDS
Upstream changes:
0.04 2014-09-07
- switch to Data::Munge::eval_string
- make with_return a named sub to improve stack traces
- cache runtime generated trampolines; should cut down on the need to
eval strings at runtime
- document RETURN_MULTI_LEVEL_PP
- add RETURN_MULTI_LEVEL_DEBUG for capturing with_return stacks
Update DEPENDS
Upstream changes:
0.12 2013-11-13 07:21:32Z
- removed use of deprecated Class::MOP::load_class
- repository migrated from shadowcat to the github moose organization
- uses of Test::Exception converted to Test::Fatal
Upstream changes:
1.34 2014-06-26
- Fixed use of // operator (my use, not Graham's) in previous release.
1.33 2014-06-26
- Added a skip_frames option. This causes the stack trace to skip an arbitrary
number of frames. Patch by Graham Knopp.
1.32 2014-05-05
- Added a filter_frames_early option to filter frames before arguments are
stringified. Added by Dagfinn Ilmari Mannsker.
1.31 2014-01-16
- No code changes, just doc updates, including documenting the as_string()
method in Devel::StackTrace::Frame. Requested by Skef. RT #91575.
libgit2 is a portable, pure C implementation of the Git core methods provided as
a re-entrant linkable library with a solid API, allowing you to write native
speed custom Git applications in any language which supports C bindings.
2.6.3
-----------
- fix issue575: xunit-xml was reporting collection errors as failures
instead of errors, thanks Oleg Sinyavskiy.
- fix issue582: fix setuptools example, thanks Laszlo Papp and Ronny
Pfannschmidt.
- Fix infinite recursion bug when pickling capture.EncodedFile, thanks
Uwe Schmitt.
- fix issue589: fix bad interaction with numpy and others when showing
exceptions. Check for precise "maximum recursion depth exceed" exception
instead of presuming any RuntimeError is that one (implemented in py
dep). Thanks Charles Cloud for analysing the issue.
- fix conftest related fixture visibility issue: when running with a
CWD outside a test package pytest would get fixture discovery wrong.
Thanks to Wolfgang Schnerring for figuring out a reproducable example.
- Introduce pytest_enter_pdb hook (needed e.g. by pytest_timeout to cancel the
timeout when interactively entering pdb). Thanks Wolfgang Schnerring.
- check xfail/skip also with non-python function test items. Thanks
Floris Bruynooghe.
-----
6.0.2
-----
* Issue #262: Fixed regression in pip install due to egg-info directories
being omitted. Re-opens Issue #118.
-----
6.0.1
-----
* Issue #259: Fixed regression with namespace package handling on ``single
version, externally managed`` installs.
---
6.0
---
* Issue #100: When building a distribution, Setuptools will no longer match
default files using platform-dependent case sensitivity, but rather will
only match the files if their case matches exactly. As a result, on Windows
and other case-insensitive file systems, files with names such as
'readme.txt' or 'README.TXT' will be omitted from the distribution and a
warning will be issued indicating that 'README.txt' was not found. Other
filenames affected are:
- README.rst
- README
- setup.cfg
- setup.py (or the script name)
- test/test*.py
Any users producing distributions with filenames that match those above
case-insensitively, but not case-sensitively, should rename those files in
their repository for better portability.
* Pull Request #72: When using ``single_version_externally_managed``, the
exclusion list now includes Python 3.2 ``__pycache__`` entries.
* Pull Request #76 and Pull Request #78: lines in top_level.txt are now
ordered deterministically.
* Issue #118: The egg-info directory is now no longer included in the list
of outputs.
* Issue #258: Setuptools now patches distutils msvc9compiler to
recognize the specially-packaged compiler package for easy extension module
support on Python 2.6, 2.7, and 3.2.
---
5.8
---
* Issue #237: ``pkg_resources`` now uses explicit detection of Python 2 vs.
Python 3, supporting environments where builtins have been patched to make
Python 3 look more like Python 2.
* "git push" over HTTP transport had an artificial limit on number of
refs that can be pushed imposed by the command line length.
* When receiving an invalid pack stream that records the same object
twice, multiple threads got confused due to a race.
* An attempt to remove the entire tree in the "git fast-import" input
stream caused it to misbehave.
* Reachability check (used in "git prune" and friends) did not add a
detached HEAD as a starting point to traverse objects still in use.
* "git config --add section.var val" used to lose existing
section.var whose value was an empty string.
* "git fsck" failed to report that it found corrupt objects via its
exit status in some cases.
Version 8.36 26-September-2014
------------------------------
1. Got rid of some compiler warnings in the C++ modules that were shown up by
-Wmissing-field-initializers and -Wunused-parameter.
2. The tests for quantifiers being too big (greater than 65535) were being
applied after reading the number, and stupidly assuming that integer
overflow would give a negative number. The tests are now applied as the
numbers are read.
3. Tidy code in pcre_exec.c where two branches that used to be different are
now the same.
4. The JIT compiler did not generate match limit checks for certain
bracketed expressions with quantifiers. This may lead to exponential
backtracking, instead of returning with PCRE_ERROR_MATCHLIMIT. This
issue should be resolved now.
5. Fixed an issue, which occures when nested alternatives are optimized
with table jumps.
6. Inserted two casts and changed some ints to size_t in the light of some
reported 64-bit compiler warnings (Bugzilla 1477).
7. Fixed a bug concerned with zero-minimum possessive groups that could match
an empty string, which sometimes were behaving incorrectly in the
interpreter (though correctly in the JIT matcher). This pcretest input is
an example:
'\A(?:[^"]++|"(?:[^"]*+|"")*+")++'
NON QUOTED "QUOT""ED" AFTER "NOT MATCHED
the interpreter was reporting a match of 'NON QUOTED ' only, whereas the
JIT matcher and Perl both matched 'NON QUOTED "QUOT""ED" AFTER '. The test
for an empty string was breaking the inner loop and carrying on at a lower
level, when possessive repeated groups should always return to a higher
level as they have no backtrack points in them. The empty string test now
occurs at the outer level.
8. Fixed a bug that was incorrectly auto-possessifying \w+ in the pattern
^\w+(?>\s*)(?<=\w) which caused it not to match "test test".
9. Give a compile-time error for \o{} (as Perl does) and for \x{} (which Perl
doesn't).
10. Change 8.34/15 introduced a bug that caused the amount of memory needed
to hold a pattern to be incorrectly computed (too small) when there were
named back references to duplicated names. This could cause "internal
error: code overflow" or "double free or corruption" or other memory
handling errors.
11. When named subpatterns had the same prefixes, back references could be
confused. For example, in this pattern:
/(?P<Name>a)?(?P<Name2>b)?(?(<Name>)c|d)*l/
the reference to 'Name' was incorrectly treated as a reference to a
duplicate name.
12. A pattern such as /^s?c/mi8 where the optional character has more than
one "other case" was incorrectly compiled such that it would only try to
match starting at "c".
13. When a pattern starting with \s was studied, VT was not included in the
list of possible starting characters; this should have been part of the
8.34/18 patch.
14. If a character class started [\Qx]... where x is any character, the class
was incorrectly terminated at the ].
15. If a pattern that started with a caseless match for a character with more
than one "other case" was studied, PCRE did not set up the starting code
unit bit map for the list of possible characters. Now it does. This is an
optimization improvement, not a bug fix.
16. The Unicode data tables have been updated to Unicode 7.0.0.
17. Fixed a number of memory leaks in pcregrep.
18. Avoid a compiler warning (from some compilers) for a function call with
a cast that removes "const" from an lvalue by using an intermediate
variable (to which the compiler does not object).
19. Incorrect code was compiled if a group that contained an internal recursive
back reference was optional (had quantifier with a minimum of zero). This
example compiled incorrect code: /(((a\2)|(a*)\g<-1>))*/ and other examples
caused segmentation faults because of stack overflows at compile time.
20. A pattern such as /((?(R)a|(?1)))+/, which contains a recursion within a
group that is quantified with an indefinite repeat, caused a compile-time
loop which used up all the system stack and provoked a segmentation fault.
This was not the same bug as 19 above.
21. Add PCRECPP_EXP_DECL declaration to operator<< in pcre_stringpiece.h.
Patch by Mike Frysinger.
0.040 2014-09-17
[ Packaging ]
- Repackage as a stable release.
0.039_01 2014-07-20
[ Documentation ]
- Document warning and error messages produced by Exporter::Tiny.
[ Other ]
- Exporter::Tiny would previously cause B.pm to be loaded into memory any
time it exported anything. It no longer does.
- No longer die when redefining locally defined subs.
- Warn when redefining any subs.
0.54 2014-09-22 17:30 UTC
+ Add : The new constant VMG_COMPAT_CODE_COPY_CLONE evaluates to true
if your perl calls 'copy' magic when a magical code prototype
is cloned, which is currently the case for perl 5.17.0 and
above.
+ Fix : [RT #90205] : copy magic on subs puts raw CV in $_[3]
$_[3] will now contain a reference to the cloned code when
'copy' magic is called for a coderef.
Thanks Lukas Mai for reporting.
+ Fix : t/35-stash.t has been taught about perl 5.21.4.
+ Fix : Tests using run_perl() in t/17-ctl.t will no longer fail on
Android.
2.066 21 Sept 2014
* IO::Uncompress::Gzip
Documentation of ExtraFlags stated the XFL values for BEST_COMPRESSION
and BEST_SPEED use the values 2 & 4 respectively. They should
be 4 & 2. Code for setting XFL was correct.
* RT #95494: IO::Uncompress::Gunzip: Can no longer gunzip to in-memory
file handle
2014-09-27 meld 3.12.0
======================
Fixes:
* Ignore missing files when cleaning up our recently-used folder (Kai
Willadsen)
* Guard against dialogs missing properties they should definitely have (Kai
Willadsen)
* Remove old property from patch dialog (Kai Willadsen)
Translations:
* Andika Triwidada (id)
* Marek Černocký (cs)
* Piotr Drąg (pl)
2014-09-19 meld 3.11.4
======================
Fixes:
* Only apply the auto merge flag to the last comparison started (Kai
Willadsen)
* Fix install layout issues on Debian-based systems (Kai Willadsen)
* Fix "Open External" for files on Windows (Kai Willadsen)
* Record installation directory and executable location on Windows (Kai
Willadsen)
* Revert to using latin1 as a fallback encoding; this will be reverted in
the next unstable series (Kai Willadsen)
Translations:
* Andika Triwidada (id)
* Daniel Mustieles (es)
* fr33domlover (he)
* Jiri Grönroos (fi)
* Josef Andersson (sv)
* Marek Černocký (cs)
* Piotr Drąg (pl)
*) MySQL driver: Fix incorrect handling of bad parameter in the
driver support for apr_dbd_transaction_end().
*) apr_crypto_get_driver(): Fix invalid storage reference on error path.
*) Fix compile failure for Android.
*) Fix to let ODBC driver build with MSVC6, which does not have intptr_t
*) Windows cmake build: Fix incompatiblities with Visual Studio
generators with all cmake versions, and the NMake Makefile generator
with cmake 2.8.12 and later.
*) Fix detection of Berkeley DB 6.0.
*) Improve platform detection for bundled expat by updating
config.guess and config.sub.
REPLACE_BASH in installed file. Replace PHP interpreter in installed *.php
files. Move options framework into options.mk. Use INSTALLATION_DIRS
instead of INSTALL_DATA_DIR. From doc/RELEASE:
1.2.17 Security Release (2014-03-04)
-------------------------------------------------
MantisBT 1.2.17 is a security update for the stable 1.2.x branch. All
installations that are currently running any 1.2.x version are strongly advised
to upgrade to this release. Download it from [3].
An SQL injection vulnerability (CVE-2014-2238) in adm_config_report.php was
patched. Refer to issue #17055 for detailed information.
This release also includes a few bug fixes for the tracker, including News API
correction for the regression issue #16940 introduced in 1.2.16, as well as
updated translations in many languages.
A full changelog for the 1.2.x series can be found on the official site. [1]
1.2.16 Security Release (2014-02-07)
-------------------------------------------------
MantisBT 1.2.16 is a security update for the stable 1.2.x branch. All
installations that are currently running any 1.2.x version are strongly advised
to upgrade to this release. Download it from [3].
The following security issues were resolved:
- Cross-site scripting (XSS) issue in account_sponsor_page.php, allowing a
malicious user with project manager access to execute arbitrary JavaScript
code (CVE-2013-4460). Affects MantisBT 1.1.0 and later.
Refer to issue #16513 for detailed information.
- SQL injection attacks through the SOAP API's mc_attachment_get() function
(CVE-2014-1608). Affects MantisBT 1.1.0a4 and later.
Refer to issue #16879 for detailed information.
- Additional cases of unsanitized SQL query parameters usage were identified,
potentially allowing SQL injection attacks (CVE-2014-1609).
Refer to issue #16880 for detailed information.
This release also includes many bug fixes and enhancements to the tracker
and the SOAP api, as well as updated translations in many languages.
A full changelog for the 1.2.x series can be found on the official site. [1]
[1] The changelog is split between multiple releases:
1.2.17 http://www.mantisbt.org/bugs/changelog_page.php?version_id=189
1.2.16 http://www.mantisbt.org/bugs/changelog_page.php?version_id=183
