Changelog:
Various security fixes
Various stability and regression fixes
Performance improvements to the Safe Browsing service to avoid
slowdowns while updating site classification data
Security fixes:
#CVE-2018-5183: Backport critical security fixes in Skia
#CVE-2018-5154: Use-after-free with SVG animations and clip paths
#CVE-2018-5155: Use-after-free with SVG animations and text paths
#CVE-2018-5157: Same-origin bypass of PDF Viewer to view protected PDF files
#CVE-2018-5158: Malicious PDF can inject JavaScript into PDF Viewer
#CVE-2018-5159: Integer overflow and out-of-bounds write in Skia
#CVE-2018-5168: Lightweight themes can be installed without user interaction
#CVE-2018-5174: Windows Defender SmartScreen UI runs with less secure behavior
for downloaded files in Windows 10 April 2018 Update
#CVE-2018-5178: Buffer overflow during UTF-8 to Unicode string conversion
through legacy extension
#CVE-2018-5150: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8
pkgsrc changes:
- Add a files/hub.1 to avoid picking up devel/ruby-ronn as a TOOL_DEPENDS
Changes:
2.3.0
-----
This is a long-awaited release of hub with an abudance of new features.
Thank you everyone for testing out prereleases, reporting bugs, and
submitting pull requests! The work of 76 contributors went into
this release.
## New commands
* `hub issue`: list and create issues and labels
Usage: hub issue [-a <ASSIGNEE>] [-c <CREATOR>] [-@ <USER>]
[-s <STATE>] [-f <FORMAT>] [-M <MILESTONE>]
[-l <LABELS>] [-d <DATE>] [-o <SORT_KEY> [-^]]
[-L <LIMIT>]
hub issue create [-oc] [-m <MESSAGE>|-F <FILE>] [-a <USERS>]
[-M <MILESTONE>] [-l <LABELS>]
hub issue labels [--color]
* `hub pr list`: list pull requests for the current repository
* `hub pr checkout <NUMBER>`: checkout a pull request by its number
* `hub release`: list, create, edit, and delete releases and attachments
Usage: hub release [--include-drafts] [--exclude-prereleases]
[-L <LIMIT>]
hub release show <TAG>
hub release create [-dpoc] [-a <FILE>] [-m <MESSAGE>|-F <FILE>]
[-t <TARGET>] <TAG>
hub release edit [<options>] <TAG>
hub release delete <TAG>
* `hub sync`: fetch updates from remote repository and sync all local
branches to their upstream equivalents, purging merged ones
## Improved commands
* `hub pull-request` now has the ability to set assignees, labels,
reviewers, and milestones.
Usage: hub pull-request [-focp] [-b <BASE>] [-h <HEAD>]
[-r <REVIEWERS> ] [-a <ASSIGNEES>]
[-M <MILESTONE>] [-l <LABELS>]
hub pull-request -m <MESSAGE>
hub pull-request -F <FILE> [--edit]
hub pull-request -i <ISSUE>
* `hub pull-request` and `hub issue create` now support pull request and
issue templates.
* Commands that print the resulting URL, such as `hub pull-request` or
`hub create`, now accept `--copy` to put the URL to the system clipboard
instead.
* `hub pull-request` now supports `--push` and `--open` flags to push the
head branch to the remote and open the resulting PR in a web browser,
respectively.
* `hub pull-request` now strips away the `Signed-off-by` line and the commit
signature when generating the default pull request message.
* Commands that take input via `-m` or `-F` arguments now also respect
`--edit` to additionally edit the text in a text editor before submitting.
* Support `core.commentchar=auto` git configuration when editing
pull request/issue/release message in a text editor.
* Support `/OWNER/REPO/pull/XYZ/commits/SHA` format of URLs as argument to
`cherry-pick`, `am`, and `apply`.
* Commands such as `cherry-pick`, `merge <PR-URL>`, and `checkout <PR-URL>`
don't leave leftover git remotes anymore.
* New `hub compare -b BASE` flag.
* New `hub fork --org=ORGANIZATION` flag.
* New `hub fork --remote-name=NAME` flag to configure the new git remote.
* New, manpage-based help system; see `hub help hub` and
`hub help hub-<command>`.
* Added fish shell completion script.
* When prompted to authenticate with username/password, pasting a
Personal Access Token now works just as well instead of the password.
Changelog:
No new functionality is introduced in these releases.
The following compatibility fixes are included. Users are encouraged
to upgrade.
* Bug 1462303 - Connecting to a server that was recently upgraded to TLS 1.3
would result in a SSL_RX_MALFORMED_SERVER_HELLO error.
* Bug 1460673 - Fix a rare bug with PKCS#12 files.
fallout from it.
NetBSD has large file support without O_LARGEFILE/open64/lseek64.
Not tested on other operating systems, but hopefully a non-functional
change for them.
This is the equivalent of removing the checks for large file support
and using O_LARGEFILE to test for the availability of different functions
for 64bit.
version 3.0.1
Add fuzz directory to release tar ball
Add include file checking for X-Code
version 3.0.0
breaking changes
----------------
Change offset parameter updating rule. If parse error is happend, offset is updated to the error position.
other updates
-------------
Improve cross platform configuration
Improve build system
Improve user class adaptor
Improve msgpack::object visitation logic
Remove some warnings
Add -> and * operators to object_handle
Improve CI environment
Improve documents
Refactoring
Add OSS-Fuzz support
Changes in 3.11.3:
* cmSystemTools: Revert GetRealPath implementation on Windows
* CPack: Fix cross-compilation of WiX generator
* TestDriver: Replace strncpy with strcpy
Upstream changes:
CHANGES IN VGAM VERSION 1.0-5
NEW FEATURES
o extlogit() now handles 'deriv = 3'.
o Generic function hdeff() implements an analytic solution
for the following families: borel.tanner(), felix(), lindley().
For almost all other families, finite-difference approximations
to derivatives means that first and second derivatives can be
computed, even with models with 'xij' terms.
o Generic function wald.stat() implements Wald tests with SEs evaluated
at the null values, not at the original MLE, so do not suffer from the
Hauck-Donner effect.
o "vglm" objects have a new "charfun" slot, for the
characteristic function.
o "summary.vglm" and "summary.vlm" objects have new
"coef4lrt0", "coef4score0", "coef4wald0" slots, for
storing the 'Wald table' equivalent of LRTs, score tests and
modified Wald tests.
The latter has its SEs computed at the null values with the
other coefficients obtained by further IRLS iterations, etc.
Function summaryvglm() has arguments 'lrt0.arg', 'score0.arg',
'wald0.arg'.
o TIC() is new, for the Takeuchi's Information Criterion.
Thanks to Khedhaouiria Dikra for suggesting this.
o mills.ratio() and mills.ratio2() are exported.
o New functions: lrt.stat(), score.stat(), wald.stat(),
which.etas(), which.xij().
o cauchy1() and cauchy() handle multiple responses and have
been modernized a bit.
o Tested okay on R 3.4.3.
BUG FIXES and CHANGES
o Setting 'deriv.arg' a positive value in plotvgam() when there
are no s() terms results in a warning.
Thanks to Barry Goodwin for detecting this.
o cens.poisson() can better handle large lambda values, at least for
left and right censored data (but not for interval-censored data yet).
Thanks to Eugenie Hunsicker for picking up deficiencies in the code.
o In multinomial.Rd, it was stated that setting parallel = TRUE
did not make the intercepts the same. It does make them the same.
Thanks to Stuart Coles for picking this up.
o binomialff(multiple.responses = TRUE) returned an incorrect deviance.
o bilogistic() uses SFS rather than BFGS as its algorithm.
o Deprecated: lrp(), normal1() [use uninormal() instead].
Upstream changes:
ersion 1.14 at 2018-05-29 08:22:21 +0000
-----------------------------------------
Change: 7ba57fa9ee6d411fc7cd1336a985e57565d082c9
Author: Chris 'BinGOs' Williams <chris@bingosnet.co.uk>
Date : 2018-05-29 09:22:21 +0000
Added accessor for 'context' and update documentation
Upstream changes:
rlang 0.2.1
This is a maintenance release that fixes several tidy evaluation issues.
Functions with tidy dots support now allow splicing atomic vectors.
Quosures no longer capture the current srcref.
Formulas are now evaluated in the correct environment by eval_tidy(). This fixes issues in dplyr and other tidy-evaluation interfaces.
Upstream changes:
Changes in inline version 0.3.15 (2018-05-18)
Correct requireNamespace() call thanks (Alexander Grueneberg in #5).
Small simplification to .travis.yml; also switch to https.
Use seq_along instead of seq(along=...) (Watal M. Iwasaki) in #6).
Update package manual page using references to DESCRIPTION file [CRAN request].
Minor packaging updates.
## Version 0.10.1 (2018-06-01)
* Fix BUILD_DATE refresh support for preserved packages.
* Improve provides/requires output to avoid confusion for new users.