OpenLDAP 2.4.57 Release (2021/01/18)
Fixed ldapexop to use correct return code
Fixed slapd to remove asserts in UUIDNormalize
Fixed slapd to remove assert in csnValidate
Fixed slapd validity checks for issuerAndThisUpdateCheck
Fixed slapd validity checks for serialNumberAndIssuerCheck
Fixed slapd AVA sort with invalid RDN
Fixed slapd ldap_X509dn2bv to check for invalid BER after RDN count
Fixed slapd saslauthz to remove asserts in validation
Fixed slapd saslauthz to use slap_sl_free on normalized DN
Fixed slapd saslauthz SEGV in slap_parse_user
Fixed slapd modrdn memory leak
Fixed slapd double-free in vrfilter
Fixed slapd cancel operation to correctly terminate
Fixed slapd-ldap fix binds on retry with closed connection
Fixed slapo-syncprov to ignore duplicate sessionlog entries
Sat Jul 4 06:40:38 UTC 2020 lukem
* Release as "tnftpd 20200704".
* Change --with-blacklist to --with-blocklist and search for
libblocklist first, falling back to the legacy libblacklist.
* Update to NetBSD-ftpd 20200615:
* Increase some buffer sizes.
* Rename blacklist to blocklist.
UnrealIRCd 5.0.8 Release Notes
===============================
The main purpose of this release is to enhance the
[reputation](https://www.unrealircd.org/docs/Reputation_score)
functionality. There have also been some other changes and minor
bug fixes. For more information, see below.
Enhancements:
* Support for [security groups](https://www.unrealircd.org/docs/Security-group_block),
of which four groups always exist by default: known-users, unknown-users,
tls-users and tls-and-known-users.
* New extended ban ```~G:securitygroupname```. Typical usage would be
```MODE #chan +b ~G:unknown-users``` which will ban all users from the
channel that are not identified to services and have a reputation
score below 25 (by default). The exact settings can be tweaked in the
[security group block](https://www.unrealircd.org/docs/Security-group_block).
* The reputation command (IRCOp-only) has been extended to make it
easier to look for potential troublemakers:
* ```REPUTATION Nick``` shows reputation about the nick name
* ```REPUTATION IP``` shows reputation about the IP address
* ```REPUTATION #channel``` lists users in channel with their reputation score
* ```REPUTATION <NN``` lists users with reputation scores below value NN
* Only send the first 1000 matches on ```STATS gline``` or a
similar command. This to prevent the IRCOp from being flooded off.
This value can be changed via
[set::max-stats-matches](https://www.unrealircd.org/docs/Set_block#set::max-stats-matches)
* Warn when the SSL/TLS server certificate is expired or expires soon
(within 7 days).
* New option allow::options::reject-on-auth-failure if you want to
stop matching on a passworded allow block, see the
[allow password documentation](https://www.unrealircd.org/docs/Allow_block#password)
for more information. Note that most people won't use this.
Fixes:
* The ```WHO``` command searched on nick name even if it was told
to search on a specific account name via WHOX options.
* Some typos in the Config script and a warning
* Counting clients twice in some circumstances
Changes:
* Support for $(DESTDIR) in 'make install' if packaging for a distro
* Mention the ban reason in Q-line server notices
* Add self-test to module manager and improve the error message in case
the IRCd source directory does not exist.
* Print out a more helpful error if you run the unrealircd binary
rather than the unrealircd script with an argument like 'mkpasswd' etc.
* On *NIX create a symlink 'source' to the UnrealIRCd source
Module coders / Developers:
* The [Doxygen module API docs](https://www.unrealircd.org/api/5/index.html)
have been improved, in particular the
[Hook API](https://www.unrealircd.org/api/5/group__HookAPI.html)
is now 100% documented.
1.0.02 (2020-12-21):
- optimized handling of large images for Start Page backgrounds;
- improved validation of content blocking profile checksum;
- updated translations;
- some other fixes.
Vala 0.50.3
===========
* Various improvements and bug fixes:
- codegen:
+ Use CCodeInvalidExpression instead of place holders
+ Don't leak memory of already assigned out-parameter on error [#1123]
+ Don't leak memory on internal value comparison of property setter
+ Fix assignment of casted struct value to property [#1126]
- vala:
+ Report an error if gio-2.0 is missing for DBus support
+ Add missing TraverseVisitor.visit_addressof_expression()
+ value_type of PointerIndirection expressions must not be owned [#1118]
+ SliceExpression need to return heap-allocated or unowned references [#1120]
+ Accept "unowned var" as type for foreach variable declaration [#152]
+ Ownership transfer of inline-allocated array is not allowed [#931]
- tests: Use Automake’s parallel test driver to speed up running tests [#1094]
- testrunner: A lot of simplifications
* Bindings:
- gio-2.0: Fix DBusSubtreeIntrospectFunc binding
- gstreamer-1.0: Fix direction of GLib.Value typed parameters [#1014]
- gstreamer: Update from 1.19.0+ git master
- gtk4: Use correct cheader_include for wayland/x11 gdk backend [#1112]
- gtk4: Don't rename binding for gtk_css_provider_load_from_data [#1117]
- gtk4: Update to 4.0.1
- webkit2gtk-4.0: Update to 2.30.3
3.1.4
New --bool option to specify Boolean search query patterns (with
Google search syntax or fzf-like when used with -F to search strings
instead of regex patterns); new --and and --not options; updated
--format to support -v; other minor improvements. More coming soon!
6.0.3 - 2021-01-23
This patch improves the type annotations for one_of(), by adding
overloads to handle up to five distinct arguments as typing.Union
before falling back to typing.Any, as well as annotating the |
(__or__) operator for strategies (issue #2765).
6.0.2 - 2021-01-14
This release makes some small improvements to how filtered strategies
work. It should improve the performance of shrinking filtered
strategies, and may under some (probably rare) circumstances improve
the diversity of generated examples.
ver 0.22.4 (2021/01/21)
* protocol
- add command "binarylimit" to allow larger chunk sizes
- fix "readpicture" on 32 bit machines
- show duration and tags of songs in virtual playlist (CUE) folders
* storage
- curl: fix several WebDAV protocol bugs
* decoder
- dsdiff: apply padding to odd-sized chunks
* filter
- ffmpeg: detect the output sample format
* output
- moveoutput: fix always_on and tag lost on move
* Android
- enable https:// support (via OpenSSL)
New in 2.13:
* Added support for macOS/arm64.
* Added support for Solaris OpenIndiana.
* Added support for catching stack overflow on Solaris 11/SPARC.
* Added support for catching stack overflow on 64-bit Haiku.
* Provide a correct value for SIGSTKSZ on 64-bit Solaris/x86. The one defined
by this system is too small.
* Improved support for Linux/RISC-V, Linux/nds32.
* Improved support for Android.
* Improved support for FreeBSD/x86, FreeBSD/x86_64, FreeBSD/arm, FreeBSD/arm64.
* Improved support for 64-bit ABI on Solaris/x86_64.
Noteworthy changes in version 1.9.0 (2021-01-19) [C23/A3/R0]
------------------------------------------------
* New and extended interfaces:
- New curves Ed448, X448, and SM2.
- New cipher mode EAX.
- New cipher algo SM4.
- New hash algo SM3.
- New hash algo variants SHA512/224 and SHA512/256.
- New MAC algos for Blake-2 algorithms, the new SHA512 variants,
SM3, SM4 and for a GOST variant.
- New convenience function gcry_mpi_get_ui.
- gcry_sexp_extract_param understands new format specifiers to
directly store to integers and strings.
- New function gcry_ecc_mul_point and curve constants for Curve448
and Curve25519. [#4293]
- New function gcry_ecc_get_algo_keylen.
- New control code GCRYCTL_AUTO_EXPAND_SECMEM to allow growing the
secure memory area. Also in 1.8.2 as an undocumented feature.
* Performance:
- Optimized implementations for Aarch64.
- Faster implementations for Poly1305 and ChaCha. Also for
PowerPC. [b9a471ccf5,172ad09cbe,#4460]
- Optimized implementations of AES and SHA-256 on PowerPC.
[#4529,#4530]
- Improved use of AES-NI to speed up AES-XTS (6 times faster).
[a00c5b2988]
- Improved use of AES-NI for OCB. [eacbd59b13,e924ce456d]
- Speedup AES-XTS on ARMv8/CE (2.5 times faster). [93503c127a]
- New AVX and AVX2 implementations for Blake-2 (1.3/1.4 times
faster). [af7fc732f9, da58a62ac1]
- Use Intel SHA extension for SHA-1 and SHA-256 (4.0/3.7 times
faster). [d02958bd30, 0b3ec359e2]
- Use ARMv7/NEON accelerated GCM implementation (3 times faster).
[2445cf7431]
- Use of i386/SSSE3 for SHA-512 (4.5 times faster on Ryzen 7).
[b52dde8609]
- Use 64 bit ARMv8/CE PMULL for CRC (7 times faster). [14c8a593ed]
- Improve CAST5 (40% to 70% faster). [4ec566b368]
- Improve Blowfish (60% to 80% faster). [ced7508c85]
* Bug fixes:
- Fix infinite loop due to applications using fork the wrong
way. [#3491][also in 1.8.4]
- Fix possible leak of a few bits of secret primes to pageable
memory. [#3848][also in 1.8.4]
- Fix possible hang in the RNG (1.8.3 only). [#4034][also in 1.8.4]
- Several minor fixes. [#4102,#4208,#4209,#4210,#4211,#4212]
[also in 1.8.4]
- On Linux always make use of getrandom if possible and then use
its /dev/urandom behaviour. [#3894][also in 1.8.4]
- Use blinding for ECDSA signing to mitigate a novel side-channel
attack. [#4011,CVE-2018-0495] [also in 1.8.3, 1.7.10]
- Fix incorrect counter overflow handling for GCM when using an IV
size other than 96 bit. [#3764] [also in 1.8.3, 1.7.10]
- Fix incorrect output of AES-keywrap mode for in-place encryption
on some platforms. [also in 1.8.3, 1.7.10]
- Fix the gcry_mpi_ec_curve_point point validation function.
[also in 1.8.3, 1.7.10]
- Fix rare assertion failure in gcry_prime_check. [also in 1.8.3]
- Do not use /dev/srandom on OpenBSD. [also in 1.8.2]
- Fix test suite failure on systems with large pages. [#3351]
[also in 1.8.2]
- Fix test suite to not use mmap on Windows. [also in 1.8.2]
- Fix fatal out of secure memory status in the s-expression parser
on heavy loaded systems. [also in 1.8.2]
- Fix build problems on OpenIndiana et al. [#4818, also in 1.8.6]
- Fix GCM bug on arm64 which troubles for example OMEMO. [#4986,
also in 1.8.6]
- Detect a div-by-zero in a debug helper tool. [#4868, also in 1.8.6]
- Use a constant time mpi_inv and related changes. [#4869, partly
also in 1.8.6]
- Fix mpi_copy to correctly handle flags of opaque MPIs.
[also in 1.8.6]
- Fix mpi_cmp to consider +0 and -0 the same. [also in 1.8.6]
- Fix extra entropy collection via clock_gettime. Note that this
fallback code path is not used on any decent hardware. [#4966,
also in 1.8.7]
- Support opaque MPI with gcry_mpi_print. [#4872, also in 1.8.7]
- Allow for a Unicode random seed file on Windows. [#5098, also in
1.8.7]
* Other features:
- Add OIDs from RFC-8410 as aliases for Ed25519 and Curve25519.
[also in 1.8.6]
- Add mitigation against ECC timing attack CVE-2019-13626. [#4626]
- Internal cleanup of the ECC implementation.
- Support reading EC point in compressed format for some curves.
[#4951]
## 2.6.3 (2020-01-12)
### Added
- Support Argon2id KDF [#5778]
- Support XMLv2 key files [#5798]
### Changed
- Improve CSV Import/Export, include time fields and TOTP [#5346]
- Support empty area dragging of the application window [#5860]
- Display default Auto-Type sequence in preview pane [#5654]
- Remove strict length limit on generated passwords [#5748]
- Hide key file path by default when unlocking database [#5779]
- Document browser extension use with Edge in managed mode [#5692]
- Windows: Prevent clipboard history and cloud sync [#5853]
- macOS: Update the application icon to Big Sur styling [#5851]
### Fixed
- Re-select previously selected entry on database unlock [#5559]
- Properly save special character choice in password generator [#5610]
- Fix crash in browser integration with multiple similar entries [#5653]
- Remove offset on username field in classic theme [#5788]
- Ensure entry history is copied when drag/dropping entries and groups [#5817]
- Close modal dialogs when database is locked [#5820]
- Prevent crash when KeeShare modifies an entry that is currently being edited [#5827]
- Improve preview of entry attributes [#5834]
- Always activate/focus database open dialog preventing mistype [#5878]
- Reports: fix calculation of average password length [#5862]
- Linux: Delay startup on login to correct tray icon issues [#5724]
ChangeLog:
Version 0.7.9, 2021-01-11
- Fix a crash introduced with the new UTF-8 handling in -Tterm.
- Allow the "section" metadata key to set the manpage section when used
with -Tman.
- Significantly clean up lists (definition, ordered, unordered) and how
indenting and compacting is handled in -Tman and -Tms.
- Use EX and EE for block code when in -Tman. These only apply in
LOWDOWN_NROFF_GROFF mode. While looking at block codes, fix how much
trailing space is emitted and make sure that subsequent paragraphs
are indented.
- Don't have sections in -Tman be followed by superfluous paragraph
macros (PP, etc.).
Version 0.7.7, 2021-01-06
Have the -Tterm output correctly adjust columns for UTF-8 wide characters.
This makes both ASCII and UTF-8 (e.g, Russian) correctly align on terminal
output.
help2man (1.47.17) unstable; urgency=medium
* Add Serbian translation of info page (thanks to Мирослав Николић).
* Update Swedish translation (thanks to Sebastian Rasmussen).
* Update to debhelper v13.
* Update standards version to 4.5.1 (no changes).
* Update copyright years.
-- Brendan O'Dea <bod@debian.org> Tue, 19 Jan 2021 22:27:16 +1100
gopls/v0.6.4
Includes fixes for https://blog.golang.org/path-security.
gopls/v0.6.3
This release has a number of bug fixes and documentation improvements.
Incompatible Changes
There are no changes intentionally incompatible with Perl 5.32.0.
If any exist, they are bugs, and we request that you submit a
report. See "Reporting Bugs" below.
Modules and Pragmata
Updated Modules and Pragmata
Data::Dumper has been upgraded from version 2.174 to 2.174_01.
A number of memory leaks have been fixed.
DynaLoader has been upgraded from version 1.47 to 1.47_01.
Module::CoreList has been upgraded from version 5.20200620 to
5.20210123.
Opcode has been upgraded from version 1.47 to 1.48.
A warning has been added about evaluating untrusted code with
the perl interpreter.
Safe has been upgraded from version 2.41 to 2.41_01.
A warning has been added about evaluating untrusted code with
the perl interpreter.
Documentation
New Documentation
perlgov
Documentation of the newly formed rules of governance for Perl.
perlsecpolicy
Documentation of how the Perl security team operates and how the
team evaluates new security reports.
Changes to Existing Documentation
We have attempted to update the documentation to reflect the changes
listed in this document. If you find any we have missed, open an
issue at https://github.com/Perl/perl5/issues.
Additionally, the following selected changes have been made:
perlop
Document range op behaviour change.
Diagnostics
The following additions or changes have been made to diagnostic
output, including warnings and fatal error messages. For the complete
list of diagnostic messages, see perldiag.
Changes to Existing Diagnostics
\K not permitted in lookahead/lookbehind in regex; marked by
<-- HERE in m/%s/
This error was incorrectly produced in some cases involving
nested lookarounds. This has been fixed.
[GH #18123]
Configuration and Compilation
Newer 64-bit versions of the Intel C/C++ compiler are now
recognized and have the correct flags set.
We now trap SIGBUS when Configure checks for va_copy.
On several systems the attempt to determine if we need va_copy
or similar results in a SIGBUS instead of the expected SIGSEGV,
which previously caused a core dump.
[GH #18148]
Testing
Tests were added and changed to reflect the other additions and
changes in this release.
Platform Support
Platform-Specific Notes
MacOS (Darwin)
The hints file for darwin has been updated to handle future
macOS versions beyond 10. Perl can now be built on macOS Big
Sur.
[GH #17946, GH #18406] Minix
Build errors on Minix have been fixed.
[GH #17908]
Selected Bug Fixes
Some list assignments involving undef on the left-hand side
were over-optimized and produced incorrect results.
[GH #16685, GH #17816]
Fixed a bug in which some regexps with recursive subpatterns
matched incorrectly.
[GH #18096]
Fixed a deadlock that hung the build when Perl is compiled for
debugging memory problems and has PERL_MEM_LOG enabled.
[GH #18341]
Fixed a crash in the use of chained comparison operators when
run under "no warnings 'uninitialized'".
[GH #17917, GH #18380]
Exceptions thrown from destructors during global destruction
are no longer swallowed.
[GH #18063]
ChangeLog:
2013-05-31 Pavel Roskin <proski@gnu.org>
* Version 0.2.6 released.
* COPYING: New file, GPL v2, as suggested by Automake.
2013-05-11 Pavel Roskin <proski@gnu.org>
* cvsu.pl (process_arg): Check for words "Result of merge"
rather than for "+" to fing the results of merge. In some
cases, there is no "+" in the timestamp.
Reported by Mikhail Gusarov <mikhail@hola.org>
ChangeLog:
- Update the web address and give the package a new home after the old
server has been retired.
- Update automake to modern version and use pkg-config.
- Go with the irony and rebase the cvsgraph codebase to a git repository.
Release Notes for cloc version 1.88:
New Languages and File Types:
o LLVM IR
o Logos
o Meson
o Mojo
o Odin
o Jinja Templates
o WXML
o WXSS
Updates:
o Support MATLAB block comments.
o More flexible matching of git hashes.
o Case insensitive diff file alignment on Windows.
o Add .BAS as a Visual Basic extension
o Rename Objective C to Objective-C
Bug Fixes:
o Add missing Raku_or_Prolog() subroutine.
o Handle UTF encoded list files (file given to --list-file).
o Improved support for options parsing from config file.
o Catch unidentified files via --diff-list-file.
o Don't insert extra newlines when stripping with --unicode.
