These files typically come with a corresponding Makefile.in file, and the
same portability issue is in the .in file as well. For building the
package it is only necessary to patch the .in file. Patching the .am file
as well would mean additional work for the pkgsrc package maintainer.
Nevertheless, such fixes should be reported upstream. The upstream
maintainer is more interested in a patch for Makefile.am, since the .in
file is only generated.
Suggested by wiz via private mail.
Before, file names that start or end with spaces were trimmed by read(1),
as specified by POSIX 2004 and POSIX 2018.
https://pubs.opengroup.org/onlinepubs/9699919799/utilities/read.html
This edge case bug had been present since the very beginning of this
code, in November 2006.
Filenames containing backslashes or newlines are still not supported, and
probably never will be intentionally supported.
Debian's w3m 0.5.3+git20190105
* bug fixes
- do not use deprecated features with OpenSSL 1.1
- fix dependency for Imlib2
- fix that the mark_all_pages option works
- respect the simple_preserve_space option for table cells
- fix error handling for ~/.w3m/request.log and localcgi_post()
* new feature
- w3mman supports specifying a section number during a keyword search
Native tar on NetBSD <=8 (and later, if MKBSDTAR is no) does not
handle archive formats increasingly being seen in pkgsrc. bsdtar
("libarchive tar") does, and is natively provided on NetBSD >=9.
pkgsrc already has a mechanism to use /bin/tar as the bsdtar tool when
it is bsdtar, so this change should not cause anything different on
NetBSD >= 9. On <=8, it will depend on archivers/bsdtar, which can
be built without using an extract tool, and which will then be broadly
usable.
As broadly discussed over multiple days on tech-pkg.
This is unnecessary, becuse extract/extract.mk has the same default
assignment. It is harmful, because it prevents setting a value in
platform/Foo.mk.
Change the comment to say this is platform specific (which will be
true soon).
Release 2.2.0
Added support for U2F/FIDO2 security keys, with the following capabilities:
ECDSA (NISTP256) and Ed25519 key algorithms
Key generation, including control over the application and user the key is associated with and whether touch is required when using the key
Certificate generation, both as a key being signed and a CA key
Resident keys, allowing security keys to be used on multiple machines without any information being stored outside of the key
Access to and management of keys loaded in an OpenSSH ssh-agent
Support for both user and host keys and certificates
Support for “no-touch-required” option in authorized_keys files
Support for “no-touch-required” option in OpenSSH certificates
Compatibility with security key support added in OpenSSH version 8.2
Added login timeout client option and limits on the length and number of banner lines AsyncSSH will accept prior to the SSH version header.
Improved load_keypairs() to read public key files, confirming that they are consistent with their associated private key when they are present.
Fixed issues in the SCP server related to handling filenames with spaces.
Fixed an issue with resuming reading after readuntil() returns an incomplete read.
Fixed a potential issue related to asyncio not reporting sockname/peername when a connection is closed immediately after it is opened.
Made SSHConnection a subclass of asyncio.Protocol to please type checkers.
2.0.1
Fixed
Fix Windows build and test Python 3.5-3.8 on Windows
2.0.0
Added
Include license file in manifest
added "static" to C functions, where possible
bring back benchmark introduction
Add syntax highlighting to README
Test on new Travis CPUs
Test on GitHub Actions
Test on Python 3.9-dev to avoid surprises
Use Release Drafter to draft releases
Deploy from GitHub Actions instead of Travis CI
Autodeploy to PyPI from Travis CI
Lint with pre-commit: Black, isort, Flake8
Changed
Use Google's double-conversion lib to fix floating-point precision when converting doubles to and from strings, improves double encoding by 4-5x
Reduce default buffer on stack size
Update ultrajsondec.c
Indent dict values
Test with pytest
Less Travis
Update links
Tests: Remove unused, unmaintained blist
Only deploy sdist from Travis CI
Removed
Drop EOL Python 2.5-2.6, 3.2-3.4 and add 3.7-3.8
Remove serialization of date/datetime objects
Remove double_precision encoding option and precise_float decoding option
Remove generic serialization of objects/iterables
Remove support for __json__ method on str
Remove blist tests
Fixed
Fix for sort_keys bug and a typo
Fix for overflowing long causing invalid JSON
Following std JSON handling of None dict key
Fix for incorrect order when using OrderedDict
Fix reference counting bug for dict values
Fix a couple of memory leaks.
Correct JSON decoding implementation to die on trailing commas in Objects
fixup dconv_wrapper linkage
Fix Warning: 'classifiers' should be a list, got type 'filter'
Remove redundant license parameter
do not forcefully remove the build directory manually
Merged pull request to fix memory leak.
http -> https
Django 1.11.29 fixes a security issue in 1.11.28.
CVE-2020-9402: Potential SQL injection via tolerance parameter in GIS functions and aggregates on Oracle
GIS functions and aggregates on Oracle were subject to SQL injection, using a suitably crafted tolerance.
Django 2.2.11 fixes a security issue and a data loss bug in 2.2.10.
CVE-2020-9402: Potential SQL injection via tolerance parameter in GIS functions and aggregates on Oracle
GIS functions and aggregates on Oracle were subject to SQL injection, using a suitably crafted tolerance.
Bugfixes
Fixed a data loss possibility in the select_for_update(). When using related fields or parent link fields with Multi-table inheritance in the of argument, the corresponding models were not locked
Django 3.0.4 fixes a security issue and several bugs in 3.0.3.
CVE-2020-9402: Potential SQL injection via tolerance parameter in GIS functions and aggregates on Oracle
GIS functions and aggregates on Oracle were subject to SQL injection, using a suitably crafted tolerance.
Bugfixes
Fixed a data loss possibility when using caching from async code.
Fixed a regression in Django 3.0 that caused a file response using a temporary file to be closed incorrectly.
Fixed a data loss possibility in the select_for_update(). When using related fields or parent link fields with Multi-table inheritance in the of argument, the corresponding models were not locked.
Fixed a regression in Django 3.0 that caused misplacing parameters in logged SQL queries on Oracle.
Fixed a regression in Django 3.0.3 that caused misplacing parameters of SQL queries when subtracting DateField or DateTimeField expressions on MySQL.
Fixed a regression in Django 3.0 that didn’t include subqueries spanning multivalued relations in the GROUP BY clause
3.2.5
* __self__ is now preserved on methods by async_to_sync
3.2.4
* Pending tasks/async generators are now cancelled when async_to_sync exits
* Contextvars now propagate changes both ways through sync_to_async
* sync_to_async now preserves attributes on functions it wraps
Changes since 3.1.3:
Version 3.1.4
=============
Enhancements and new features:
* FS filtering can be done on device name documentation enhancement #1606
* Feature request: Include hostname in all (e.g. kafka) exports #1594
* Threading.isAlive was removed in Python 3.9. Use is_alive. #1585
* log file under public/shared tmp/ folders must not have deterministic name #1575
* Install / Systemd Debian documentation #1560
* Display load as percentage when Irix mode is disable #1554
* [WebUI] Add a new TCP connections status plugin new feature #1547
* Make processes.sort_key configurable enhancement #1536
* NVIDIA GPU temperature #1523
* Feature request: HDD S.M.A.R.T. #1288
Bugs corrected:
* Glances 3.1.3: when no network interface with Public address #1615
* NameError: name 'logger' is not defined #1602
* Disk IO stats missing after upgrade to 5.5.x kernel #1601
* Glances don't want to run on Crostini (LXC Container, Debian 10, python 3.7.3) #1600
* Kafka key name needs to be bytes #1593
* Cant start glances with glances --export mqtt #1581
* [WEBUI] AMP plugins is not displayed correctly in the Web Interface #1574
* Unhandled AttributeError when no config files found #1569
* Glances writing lots of Docker Error message in logs file enhancement #1561
* GPU stats not showing on mobile web view bug needs test #1555
* KeyError: b'Rss:' in memory_maps #1551
* CPU usage is always 100% #1550
* IP plugin still exporting data when disabled #1544
* Quicklook plugin not working on Systemd #1537
This was marked NOT_FOR_UNPRIVILEGED, but that is only appropriate
when the package (abusively, as a pre-existing well-discussed
compromise) writes outside of the pkgsrc prefix.
Patch by Jason Bacon, with general approval on tech-pkg.
ok dholland@
