not available yet but it includes security fixes for e.g. SA14821.
Support for Solaris SPARC and x86 is not available due to lack of a
precompiled binary at this point of time.
This is a maintenance release that in addition to over 70 non-critical
bug fixes addresses several security issues inside the exif and
fbsql extensions as well as the unserialize(), swf_definepoly()
and getimagesize() functions. All Users of PHP are strongly
encouraged to upgrade to this release.
Bugfix release
* Crash in bzopen() if supplied path to non-existent file.
* DOM crashing when attribute appended to Document.
* unserialize() float problem on non-English locales.
* Crash in msg_send() when non-string is stored without being serialized.
* Possible infinite loop in imap_mail_compose().
* Fixed crash in chunk_split(), when chunklen > strlen.
* session_set_save_handler crashes PHP when supplied non-existent object ref.
* Memory leak in zend_language_scanner.c.
* Compile failures of zend_strtod.c.
* Fixed crash in overloaded objects & overload() function.
* cURL functions bypass open_basedir.
PHP4 also doesn't bundle PEAR Net_Socket and Net_SMTP anymore now.
Changes since 7.1 according to
http://wp.netscape.com/eng/mozilla/ns7/relnotes/7.html:
* Popup Window Controls have been improved to block mouseover pop-ups and
limit the number of pop-ups when popup window controls preference is set
to off.
* Password Manager allows you to display saved passwords.
* vCard support in Netscape Mail.
* Improvements to Palm Sync.
* Table Editing controls in Composer.
* New Macromedia? Flash 7 plugin for Windows.
* Improvements in browser rendering speed and application start-up.
* Improvements in standards support.
Action Pack splits the response to a web request into a controller
part (performing the logic) and a view part (rendering a template).
This two-step approach is known as an action, which will normally
create, read, update, or delete (CRUD for short) some sort of model
part (often backed by a database) before choosing either to render a
template or redirecting to another action.
Action Pack implements these actions as public methods on Action
Controllers and uses Action Views to implement the template rendering.
Action Controllers are then responsible for handling all the actions
relating to a certain part of an application. This grouping usually
consists of actions for lists and for CRUDs revolving around a single
(or a few) model objects. So ContactController would be responsible
for listing contacts, creating, deleting, and updating contacts. A
WeblogController could be responsible for both posts and comments.
Action View templates are written using embedded Ruby in tags mingled
in with the HTML. To avoid cluttering the templates with code, a
bunch of helper classes provide common behavior for forms, dates, and
strings. And it's easy to add specific helpers to keep the separation
as the application evolves.
Changes since 0.10.1:
0.10.2:
New features:
- Merge in the official debian packaging files so it is now easy to
build your own .deb files. Just apt-get install devscripts and run
debuild in the ELinks root directory.
- Add experimental Ruby scripting back-end. An example hooks file is
available in contrib/ruby/hooks.rb but it doesn't do anything
interesting yet.
Feature updates and improvements:
- Add LEDs info dialog. It can be opened using the Help menu and when
the LED display is clicked.
- Introduce a very simple ECMAScript pop-up window blocking mechanism.
Will show a 'P' in the LED indicators. Off by default.
- Add an example user style sheet and configuration file in contrib/.
- Add support for disabling extended horizontal scrolling, so it will
work like vertical scrolling. Requested by Russ Rowan.
- Optimize CSS style handling.
- Enable usage of the search history also for incremental link text
searching.
- Add a little help text to the terminal options dialog, which also
indicates the value of the TERM environment variable. Hopefully this
will help new users to figure out how configuration of terminals
works.
- When in cursor-routing mode, scroll the document as many rows or
columns as necessary rather than only be one row or one column.
- A few documentation updates.
Bugs fixed:
- Fix handling of forms embedded in table code. (bug 602)
- Alert about file saving error when -no-home was given.
- The default user style sheet is now applied correctly.
- Fix leak related to CSS being disabled and applying the default
style sheet.
- Fix underline rendering when using 256 colors.
- Localization fixes.
- Fix calling of get-proxy scripting hooks. Now they should work
again.
- When using the goto link number functionality in cursor-routing
mode, position the cursor on the newly selected link.
- Compile fixes for *BSD and IRIX systems. Reported by Nelson H. F. Beebe.
0.10.3:
New features:
- Merge the MingGW patches so that --dump should now work. The patches
also improves portability.
Feature updates and improvements:
- Change the behavior of an empty action attribute to be like Mozilla
which handles action="" as action="<current-URI>". (bug 615)
- The Perl hooks file is growing more and more insane thanks to Russ.
- Improve the reporting of errors related to the proxy configuration.
- Add toggle HTML/plain to the right click menu (aka. the tab menu),
and make it to not display reload/bookmark when no document is
available.
- Add a <base href=cwd /> element to the generated listing of local
directories.
- When the URL parameter to the Refresh HTTP-equiv is missing refresh
the current document.
Bugs fixed:
- Fix opening of either single bookmarks or folders referring to URLs
without a slash at the end.
- Fix honouring of the Refresh-header when the loaded document is
empty.
- Fix CSS handling by reverting the proposed optimization introduced in
0.10.2.
- Fix displaying of ordered lists when <li> is not directly nested in
<ol>-elements.
- Build fixes on amd64.
- Fix the Perl get-proxy hook so that an undef return value from the
Perl hook results in the default proxy being used, as is supposed to
be the case with get-proxy hooks.
- Fix compile error related name clashes with the <locale.h> system
header.
- The debian package now really contains relevant documentation from
doc/.
- Only create $prefix/lib directory if the gettext code is going to
install a new charset.alias file.
- Truncate NNTP cache entries when ending connections.
0.10.4:
New features:
- Explicit keyboard accelerators were defined for buttons in
dialogue boxes and are now highlighted.
- Add support for bookmarks separators.
Feature updates and improvements:
- Switch to use a ``new'' FTP directory listing parser based on code
from GNU Wget. The switch is motivated by licensing issues with
ftpparse.[ch] files. (debian bug 300889)
- More hooks.pl updating by the new cvs commiter Russ Rowan.
- Change the verbose level to show warnings (debian bug 303083)
- Add FAQ from homepage in doc/ directory. (debian bug 301861)
- When block cursor terminal option is set, keep cursor at lower
right of screen in dialogs too. (bug 583)
- Use plural gettext message IDs, which make the resource info
dialog more readable.
- 'I' in the LEDs now mean "insert mode" and 'i' now mean modeless.
The change is due to document.browse.forms.insert_mode defaulting
to 1.
- Strip protocol part (ftp://, etc) also from proxy strings returned
from scripting hooks.
- Add option to control whether (expanded) folder states should be
stored when saving bookmarks (bookmarks.folder_state). Defaults to
on; the current behavior. (bug 642)
- Do not display terminal options help text when terminal height is
too low.
- Introduce the option infofiles.secure_save_fsync, which allows one
to configure whether secure file saving calls fsync(3).
- Move focus to the first widget when clearing a dialog.
- Add two new functions available from Lua scripts:
set_option(name, value) and and get_option(name).
Bugs fixed:
- Only add /dev/stdin to the URL list when no URLs was given on the
command line. Allow special files when /dev/stdin is added.
(debian bug 296976)
- Fix reading from /dev/stdin on Mac OS X. (bug 616)
- Fix Guile and Ruby detection, it was a quoting issue.
- Fix handling of empty cache entries in the HTML highlighting
engine.
- Fix redirection issues on newsnow.co.uk due to single quotes
enclosing of URL.
- Add dialog.checkbox-selected color to options. (bug 644)
- Decode the subject when handling mailto: links. There is still an
encoding problem when adding the subject to the command string.
- Fix displaying of accesskeys.
- Encode the base href URI when generating file listings. (bug 358)
Release Notes for Clearsilver 0.9.14 03/08/2005
-------------------------------------
bugfix release
- one incompatible change: semi-public function cgi_html_ws_strip now
takes a second argument to set the level of stripping
- white space stripper now has two levels: 1 is the old debug level
(which doesn't strip whitespace at the beginning of a line) and the
second strips all duplicate whitespace
- fix for cgi_register_strfuncs missing for ruby/perl modules
- fix for color problems in generated images in imd with GD2
Changes in 3.0.5, released 2005-01-22:
* Fixed links in human readable diff view when it's the default diff format.
* Submitting the option form preserves hidden user settings.
* Improvements related to tightly controlled setups such as SELinux.
* Configuration and configuration documentation improvements.
* Tab expansion fix for HTMLized views.
Changes in 1.3.19:
* Works with mozilla 1.7 -> 1.7.5, 1.8a3 -> 1.8a6 and trunk
(Note that there's a bug in 1.8a6 that prevents it working with
galeon if mozilla is compiled by FC3's gcc or gcc cvs. This is
fixed in trunk.)
* Try and stop the page from stealing focus from the location
bar
* Jump to tabs that open javascript dialogs, secunia advisory
SA12712
* Make the location bar turn yellow for secure sites
* Myportal overhaul, including clickable folder headers, and
working file urls
* Fix cookie preferences
* Improved Javascript console
* Allow compilation against FireFox libs (no type-ahead-find
though)
* Allow compilation against Thunderbird libs (requires custom
thunderbird build with extra components)
* Launch urls opened from the command line in a new tab if a
galeon window is on the current workspace
* Encode smart bookmarks better, so they work when the substituion
is in the path portion of the url
* Use the iso-codes package if it is available for language names
* Lots of other bug fixes
Changes in 1.3.20:
* Works with mozilla 1.7 -> 1.7.5, 1.8a3 -> 1.8b1 and trunk
* Using FireFox patched according to the instructions on
http://live.gnome.org/Epiphany_2fMozillaPatches, type ahead
find will work.
* Further improvements to the attempt to stop the focus being
stolen from web pages.
* Works with Gnome 2.10:
o Use startup notification when launching programs
o Don't steal focus from other applications when launching
new windows
o Show application icons in the "Open With" menu
* Don't show security dialogs twice
* Use our own version of the security dialogs to look nicer,
and allow better translation
* Much improved favicon cache - only store favicons on disk
for bookmarks
* When saving files, check the user has permission.
* Lots of other bug fixes
* 2005-04-04 00:19 (Medium)
Fails to process requests for files larger than 2GB in size
Since the name of the patch file is the same as before, DIST_SUBDIR has
been udpated via DIST_STAMP.
Bump PKGREVISION.
Changes:
* web/pie.php (1.5): Updated the file to explicitly reflect that
this file was/is released into the public domain
* web/header.php (1.6): Make some more information available to
templates.
* web/host_view.php (1.5): Patched web frontend to report
gmond_started
http://bugzilla.ganglia.info/cgi-bin/bugzilla/show_bug.cgi?id=31
* web/: cluster_view.php (1.6), conf.php (1.6),
templates/default/cluster_view.tpl (1.7): Make packet graph
optional in a way that allows new optional graphs to be easily
added as well. Fix bug reported by Koo Kee Kiat relating to null
arrays.
* web/conf.php (1.5): Use the generated version.php instead of hard
coding the value here.
* web/: conf.php (1.4), get_context.php (1.6), graph.php (1.8),
templates/default/cluster_view.tpl (1.6),
templates/default/host_view.tpl (1.7): MKN: Add cpu_wio to the CPU
Summary. Lost in the CVS wars :-) MKN: Add Packets/sec summary to
Cluster and Host view. Ditto lost. MKN: Bring version to 3.0.0 to
be in line with release name.
on the actual used emulation base (i.e. works now even when using SuSE 9.1
emulation packages otherwise), update depends accordingly.
Adresses PR pkg/29561 by Robert Elz
Tomcat is the Java Servlet / Java Server Page environment produced
by the Apache Foundation's Jakarta Project. Tomcat can be run as
a standalone web server with Servlet and JSP support, or using
Apache Server as its web server via the mod_jk Apache module
(www/ap-jk). This is the Tomcat 5.5 package, which is a Java Serlet
2.4 and JSP 2.0 server.
if installed on the system. Follows www/firefox/Makefile 1.13.
PKGREVISION unchanged as generated binary unaltered (on those systems which
could build it previously)
Add these official patches:
* 2005-03-30 22:51 (Cosmetic)
external acls requiring authentication does not request new
credentials on access denials like proxy_auth does.
* 2005-03-29 09:52 (Cosmetic)
New cachemgr pending_objects and client_objects actions
* 2005-03-26 23:53 (Minor) rename() related cleanup
* 2005-03-30 22:51 (Medium)
Fails to process requests for files larger than 2GB in size
* 2005-03-19 23:57 (Cosmetic)
aufs warning about open event filedescriptors on shutdown
* 2005-03-19 01:35 (Minor) --disable-hostname-checks not working
* 2005-03-19 01:11 (Cosmetic) LDAP helpers fails to compile with SUN LDAP SDK
* 2005-03-21 20:44 (Minor)
CONNECT requests truncated if client side disconnects first
assertion failed: comm.c:430: "ntohs(address->sin_port) != 0"
* 2005-03-19 00:25 (Minor)
Basic authentication fails with very long logins or password
* 2005-03-29 08:45 (Minor) Several minor aufs issues
* 2005-03-09 15:46 (Cosmetic)
Extend relaxed_header_parser to work around "excess data from"
errors from many major web servers.
* 2005-03-09 15:46 (Cosmetic)
Duplicate content-length headers logged as conflicting with
relaxed_header_parser off
* 2005-03-09 15:46 (Cosmetic)
Defer digest fetch if the peer is not allowed to be used
* 2005-03-10 23:38 (Minor) Incorrect use of ctype functions
* 2005-03-15 04:27 (Minor) compile warnings due to pid_t not being an int
* 2005-03-09 15:46 (Minor)
bzero is a non-standard function not available on all platforms
* 2005-03-09 15:46 (Cosmetic)
Check several squid.conf directives for int overflows
* 2005-03-09 15:46 (Cosmetic) Clarify delay_access function
* 2005-03-09 15:46 (Minor)
reload_into_ims fails to revalidate negatively cached entries
* 2005-03-09 15:46 (Minor) Handle odd date formats
> Major changes compared to the Horde version 3.0.4-RC2 are:
> * Fixed an XSS vulnerability.
> * Added PostgreSQL specific upgrade script.
> * Updated Dutch translation.
> * Some minor bug fixes.
>
> Major changes compared to the Horde version 3.0.4-RC1 are:
> * Improved SQL configuration.
> * Improved Oracle support.
> * Updated Finnish, French, Italian, Norwegian Bokmaal, and Slovak
> translations.
> * Some layout and bug fixes.
>
> Major changes compared to the Horde version 3.0.3 are:
> * Re-added support for the mime_magic extension.
> * Added database specific connection parameters to setup interface.
> * Added Horde_Tree_select class.
> * Improved IMAP folder trees and IMAP message threads.
> * Improved IMSP support.
> * Automatically create configuration files if possible.
> * Updated German, Hungarian, Italian, Japanese, and Slovenian translations.
> * Lots of improvements and bug fixes.
