New Features
Add a tweak to Preferences->Tweaks to control the list of servers calibre considers public email servers
Bug Fixes
Content server: Fix a regression in the previous release that broke the OPDS feeds for libraries with no custom columns
Closes tickets: 1621642
Edit metadata dialog: Fix auto-generation/validation of author sort values not working when only changing case of the author name.
Closes tickets: 1623593
A nicer error message when calibre fails to create the temporary directory.
Closes tickets: 1622131
Fix dates being set to empty in bulk search/replace not becoming UNDEFINED
Edit metadata dialog: Make pressing up on an undefined numeric field set the value to zero instead of -99999.
Closes tickets: 1622757
Conversion: Handle corrupted JPEG files that have valid headers but invalid data.
Closes tickets: 1622416
Conversion: Improve detection of input documents that use uppercase tag/attribute names.
Closes tickets: 1622261
Fix regression in previous release that caused incorrect display of ratings in the side panel of the metadata download dialog
Get Books: Update publio and virtualo store plugins for website changes
Fix reading metadata from PDF files broken by poppler >= 0.47.0
Change the application name set in Qt to calibre from libprs500.
Closes tickets: 1623397
Improved news sources
Respekt Magazine
Punto Informatico
El universal
* Noteworthy changes in release 2016.09.16 (2016-09-16) [stable]
The following macros were added: AX_BUILD_DATE_EPOCH, AX_CHECK_X86_FEATURES,
AX_GCC_X86_CPU_SUPPORTS, AX_OPEN62541_CHECK_H, AX_OPEN62541_CHECK_LIB, and
AX_LUAROCKS_ROCK.
While updating AX_CODE_COVERAGE, the variable CODE_COVERAGE_LDFLAGS was
renamed to CODE_COVERAGE_LIBS.
AX_VALGRIND_CHECK has been extended considerably. In this process. the
undocumented internal rule check-valgrind-tool was removed.
It checks if the host cpu supports various instruction set: mmx, sse, popcnt,
avx, avx2, etc. If the instruction were supported, it would export
HAVE_XXX_INSTRUCTIONS C preprocessor macros and add the instruction set flag to
X86_FEATURES_CFLAGS variable. By default it would also set CFLAGS, but this can
be disabled by the ACTION-IF-FOUND hook.
AX_WITH_CURSES and AX_WITH_CURSES_* macros have been modernized, in line
with PKG_CHECK_MODULES's style. This change breaks the interface, but
makes AX_WITH_CURSES compatible and even completely replaceable with the
interface of PKG_CHECK_MODULES. Ultimately, these macros should be
replaced in the future by calls to PKG_CHECK_MODULES. Variables in
AX_WITH_CURSES have been renamed
CURSES_LIB -> CURSES_LIBS
CURSES_CPPFLAGS -> CURSES_CFLAGS
and for the AX_WITH_CURSES_* macros
PANEL_LIB -> PANEL_LIBS
MENU_LIB -> MENU_LIBS
FORM_LIB -> FORM_LIBS
such that once the variables have been renamed in configure.ac and Makefile.am,
the calls AX_WITH_CURSES and PKG_CHECK_MODULES([CURSES], [ncurses]) are
completely interchangeable.
Important Note
An upstream Mutt change has removed the $locale config variable.
It didnât quite do what the user might expect. This change also
introduces a new variable $attribution_locale which controls the
translation of the âOn {date}, {user} wroteâ reply string.
Bug Fixes
Avoid segfault when listing mailboxes on startup John Swinbank (@jdswinbank)
Fix buffer overrun in search for attach keyword James McCoy (@jamessan)
Fix off-by-one in error message Antonio Radici (@aradici)
fix AC_INIT tarname parameter
fix crash when exiting the pager
fix another crash in the pager
nntp: close message handles
fix: make the pager more robust
fix sidebar sort order
fix notmuch tag completion
Docs
doc: Removes bug entry in new-mail docs Santiago Torres (@SantiagoTorres)
fix some translations in crypt-gpgme.c Antonio Radici (@aradici)
docs: mass tidy up
Upstream
Fix sidebar documentation a bit
Add unsidebar_whitelist command
Remove the $locale configuration variable
Add $attribution_locale configuration variable
Add missing include to send.c and edit.c
Filter out zero width no-break space (U+FEFF)
Update a confusing and obsolete comment
Moves mutt_copy_list to muttlib.c, where it belongs
Redraw screen after an SSL cert prompt
Preserve message-id and mft headers for recalled messages
Fix openssl 1.1 compilation issues
OpenSSH 7.3p1 is primarily a bugfix release and here is summary.
Changes since OpenSSH 7.2
=========================
Security
--------
* sshd(8): Mitigate a potential denial-of-service attack against
the system's crypt(3) function via sshd(8). An attacker could
send very long passwords that would cause excessive CPU use in
crypt(3). sshd(8) now refuses to accept password authentication
requests of length greater than 1024 characters. Independently
reported by Tomas Kuthan (Oracle), Andres Rojas and Javier Nieto.
* sshd(8): Mitigate timing differences in password authentication
that could be used to discern valid from invalid account names
when long passwords were sent and particular password hashing
algorithms are in use on the server. CVE-2016-6210, reported by
EddieEzra.Harari at verint.com
* ssh(1), sshd(8): Fix observable timing weakness in the CBC padding
oracle countermeasures. Reported by Jean Paul Degabriele, Kenny
Paterson, Torben Hansen and Martin Albrecht. Note that CBC ciphers
are disabled by default and only included for legacy compatibility.
* ssh(1), sshd(8): Improve operation ordering of MAC verification for
Encrypt-then-MAC (EtM) mode transport MAC algorithms to verify the
MAC before decrypting any ciphertext. This removes the possibility
of timing differences leaking facts about the plaintext, though no
such leakage has been observed. Reported by Jean Paul Degabriele,
Kenny Paterson, Torben Hansen and Martin Albrecht.
* sshd(8): (portable only) Ignore PAM environment vars when
UseLogin=yes. If PAM is configured to read user-specified
environment variables and UseLogin=yes in sshd_config, then a
hostile local user may attack /bin/login via LD_PRELOAD or
similar environment variables set via PAM. CVE-2015-8325,
found by Shayan Sadigh.
New Features
------------
* ssh(1): Add a ProxyJump option and corresponding -J command-line
flag to allow simplified indirection through a one or more SSH
bastions or "jump hosts".
* ssh(1): Add an IdentityAgent option to allow specifying specific
agent sockets instead of accepting one from the environment.
* ssh(1): Allow ExitOnForwardFailure and ClearAllForwardings to be
optionally overridden when using ssh -W. bz#2577
* ssh(1), sshd(8): Implement support for the IUTF8 terminal mode as
per draft-sgtatham-secsh-iutf8-00.
* ssh(1), sshd(8): Add support for additional fixed Diffie-Hellman
2K, 4K and 8K groups from draft-ietf-curdle-ssh-kex-sha2-03.
* ssh-keygen(1), ssh(1), sshd(8): support SHA256 and SHA512 RSA
signatures in certificates;
* ssh(1): Add an Include directive for ssh_config(5) files.
* ssh(1): Permit UTF-8 characters in pre-authentication banners sent
from the server. bz#2058
Bugfixes
--------
* ssh(1), sshd(8): Reduce the syslog level of some relatively common
protocol events from LOG_CRIT. bz#2585
* sshd(8): Refuse AuthenticationMethods="" in configurations and
accept AuthenticationMethods=any for the default behaviour of not
requiring multiple authentication. bz#2398
* sshd(8): Remove obsolete and misleading "POSSIBLE BREAK-IN
ATTEMPT!" message when forward and reverse DNS don't match. bz#2585
* ssh(1): Close ControlPersist background process stderr except
in debug mode or when logging to syslog. bz#1988
* misc: Make PROTOCOL description for direct-streamlocal@openssh.com
channel open messages match deployed code. bz#2529
* ssh(1): Deduplicate LocalForward and RemoteForward entries to fix
failures when both ExitOnForwardFailure and hostname
canonicalisation are enabled. bz#2562
* sshd(8): Remove fallback from moduli to obsolete "primes" file
that was deprecated in 2001. bz#2559.
* sshd_config(5): Correct description of UseDNS: it affects ssh
hostname processing for authorized_keys, not known_hosts; bz#2554
* ssh(1): Fix authentication using lone certificate keys in an agent
without corresponding private keys on the filesystem. bz#2550
* sshd(8): Send ClientAliveInterval pings when a time-based
RekeyLimit is set; previously keepalive packets were not being
sent. bz#2252
3.1.0
The main changes in no particular order are:
* "postfix tls" command to simplify setup of opportunistic TLS,
and to simplify SMTP server key/certificate management.
* Positive and negative DNS reply TTL support in postscreen(8).
* SASL AUTH rate limit in the Postfix SMTP server.
* A safety limit on the number of address verify requests.
* JSON-format Postfix queue listing.
* Destination-independent delivery rate delay
For details, see the RELEASE_NOTES file.
3.1.1
Fixed in all supported releases:
* The Milter "replace sender" (SMFIR_CHGFROM) request lost an
address that was added with sender_bcc_maps, resulting in a
"rcpt count mismatch" warning. Reported by Joerg Backschues.
This defect was introduced with Postfix 2.6.
* The "bad filetype" example in the header_checks(5) manpage
falsely rejected Content- headers with ``name="example";
x-apple-part-url="example.com"''. Reported by Cedric Knight.
This defect was introduced with Postfix 2.6.
3.1.2
Fixed with Postfix 3.1.2:
* Changes to make Postfix build with OpenSSL 1.1.0.
Fixed with Postfix 3.1.2 and 3.0.6:
* The makedefs script ignored readme_directory=pathname overrides.
Fix by Todd C. Olson.
* The tls_session_ticket_cipher documentation says that the default
cipher for TLS session tickets is aes-256-cbc, but the implemented
default was aes-128-cbc. Note that TLS session ticket keys are
rotated after 1/2 hour, to limit the impact of attacks on session
ticket keys.
NVIDIA Texture Tools is a collection of image processing and texture
manipulation tools, designed to be integrated in game tools and asset
conditioning pipelines. The primary features of the library are mipmap and
normal map generation, format conversion and DXT compression.
A minimal, zero-config, BSD licensed, readline replacement.
Noteworthy features:
- Single and multi line editing mode with the usual key bindings implemented.
- History handling.
- Completion.
- Hints (suggestions at the right of the prompt as you type).
- About 1,100 lines of BSD license source code.
- Only uses a subset of VT100 escapes (ANSI.SYS compatible).
try to use networking code under NetBSD.
netbsd won't let you manipulate _res in a multithreaded program and
instead calls abort(). avoid the code that does this for now.
it's possible that it broke the ability to resolve domains and I
didn't see this yet - but I'm able to use network programs now.
bump PKGREVISION
TinyCThread is a minimalist, portable, threading library for C, intended to
make it easy to create multi threaded C applications.
The library is closesly modeled after the C11 standard, but only a subset is
implemented at the moment.
