rabbitmq-c v0.10.0
Added:
amqp_ssl_socket_get_context can be used to get the current OpenSSL CTX*
associated with a connection.
Changed:
openssl: missing OpenSSL config is ignored as an OpenSSL init error
AMQP_DEFAULT_MAX_CHANNELS is now set to 2047 to follow current default channel
limit in the RabbitMQ broker.
Fixed:
add additional input validation to prevent integer overflow when parsing a
frame header. This addresses CVE-2019-18609.
Changes since v1.08:
v1.09 - 12.02.2020
- Fix: If a corrupt .XM doesn't contain all the sample data at the end of the
file, try to load what is left instead of showing an "Out of memory!" message.
- Fix: Prevent upscaling factors higher than 2x on ARM devices. Fixes extreme
slowdowns on Raspberry Pi 4 with 2k or higher resolution screens.
- The .MOD importer has been slightly improved for oldschool 15-sample formats
- The .S3M importer has been slightly improved for certain effect cases not
compatible with FT2.
- Audio mixer: Internal voice volumes are now calculated with 256 times higher
precision than FT2. Some other changes were also made to make sure the audio
mixing is always done at max precision regardless of the "amp" setting in
the config screen. These are changes that most people won't ever be able to
hear, but the speed performance of the mixer is still the same, so why not.
- The audio dithering routine has now been improved (rectangular->triangular),
and it's now enabled by default on a fresh configuration, or if you reset it.
v3.3.17:
Decode also private domains. The tldextract library ignores private domains, so domain test.us.com is wrongly extracted as subdomain=test, domain=us and suffix=com. When allowing private domains, the extraction of test.us.com looks like subdomain=, domain=test and suffix=us.com.
2.1.3
- BUG/MINOR: checks: refine which errno values are really errors.
- BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
- BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
- MINOR: config: disable busy polling on old processes
- MINOR: ssl: Remove unused variable "need_out".
- BUG/MINOR: h1: Report the right error position when a header value is invalid
- BUG/MINOR: proxy: Fix input data copy when an error is captured
- BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
- BUG/MINOR: channel: inject output data at the end of output
- BUG/MEDIUM: session: do not report a failure when rejecting a session
- BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
- BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
- BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
- BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
- BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
- BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
- REGTEST: mcli/mcli_start_progs: start 2 programs
- BUG/MEDIUM: mworker: remain in mworker mode during reload
- BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
- BUG/MAJOR: hashes: fix the signedness of the hash inputs
- REGTEST: add sample_fetches/hashes.vtc to validate hashes
- BUG/MEDIUM: cli: _getsocks must send the peers sockets
- BUG/MINOR: stream: don't mistake match rules for store-request rules
- BUG/MEDIUM: connection: add a mux flag to indicate splice usability
- BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
- BUG/MINOR: cache: Fix leak of cache name in error path
- BUG/MINOR: dns: Make dns_query_id_seed unsigned
- BUG/MINOR: 51d: Fix bug when HTX is enabled
- BUILD: pattern: include errno.h
- BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
- BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
- BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
- BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
- BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
- BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
- BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
- MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
- BUG/MINOR: http_act: don't check capture id in backend
- BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
- BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
- BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
- CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
- BUG/MINOR: ssl: increment issuer refcount if in chain
- BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
- BUG/MINOR: ssl: typo in previous patch
- BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
- BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
- BUG/MINOR: stktable: report the current proxy name in error messages
- BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
- BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
- MINOR: lua: Add hlua_prepend_path function
- MINOR: lua: Add lua-prepend-path configuration option
- MINOR: lua: Add HLUA_PREPEND_C?PATH build option
- BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
- BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
- BUG/MEDIUM: pipe: fix a use-after-free in case of pipe creation error
- BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
- BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
- BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
- BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
- MINOR: memory: Only init the pool spinlock once.
- BUG/MEDIUM: memory: Add a rwlock before freeing memory.
- BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
- BUG/MINOR: ssl: we may only ignore the first 64 errors
- BUG/MINOR: ssl: clear the SSL errors on DH loading failure
- CONTRIB: debug: add missing flags SF_HTX and SF_MUX
- CONTRIB: debug: add the possibility to decode the value as certain types only
- CONTRIB: debug: support reporting multiple values at once
- MINOR: acl: Warn when an ACL is named 'or'
- CONTRIB: debug: also support reading values from stdin
- SCRIPTS: announce-release: place the send command in the mail's header
- SCRIPTS: announce-release: allow the user to force to overwrite old files
- BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
- DOC: schematic of the SSL certificates architecture
- BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
- BUG/MINOR: dns: allow 63 char in hostname
- BUG/MEDIUM: listener: only consider running threads when resuming listeners
- BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
- BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
- MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
- DOC: word converter ignores delimiters at the start or end of input string
- MINOR: htx: Add a function to append an HTX message to another one
- MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
- BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
- BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
- BUG/MINOR: tcp: don't try to set defaultmss when value is negative
FeatherNotes is a lightweight Qt5 hierarchical notes-manager.
It is independent of any desktop environment and has:
* Support for rich text formatting, image embedding and inserting
editable tables;
* Drag-and-drop capability for moving nodes and also for embedding images;
* A tray icon for quick access on any desktop;
* Correct position/size saving and restoring with most window managers;
* Compact but complete search and replacement widgets;
* The ability to include searchable tags (hidden info on each node);
* Support for optional node icons;
* Support for local and remote hyperlinks (bookmarks);
* Text zooming;
* Printing and exporting to HTML and PDF;
* Password protection;
* Auto-saving;
* macOS support and other features that can be found in its settings,
on its menus or when it is actually used.
Packaged in pkgsrc-wip by pin, as part of a broader effort toward
providing all of LXQt and associated utility applications. General
reviews, feedback, and testing of such by gdt@, ng0@, and myself.
FeatherPad is a lightweight Qt5 plain-text editor.
It is independent of any desktop environment and has:
* Drag-and-drop support, including tab detachment and attachment;
* X11 virtual desktop awareness;
* An optionally permanent search-bar;
* Instant highlighting of found matches when searching;
* A docked window for text replacement;
* Support for line numbers and jumping to a specific line;
* Automatic detection of text encoding;
* Syntax highlighting for common programming languages;
* Ability to open URLs with appropriate applications;
* Session management;
* Side-pane mode;
* Auto-saving;
* Spell checking with Hunspell;
* Printing;
* Text zooming;
* Haiku OS and macOS support.
Packaged in pkgsrc-wip by pin, as part of a broader effort toward
providing all of LXQt and associated utility applications. General
reviews, feedback, and testing of such by gdt@, ng0@, and myself.
Arqiver is a simple Qt5 archive manager as a front-end for libarchive
(bsdtar), gzip and 7z.
Packaged in pkgsrc-wip by pin, as part of a broader effort toward
providing all of LXQt and associated utility applications. General
reviews, feedback, and testing of such by gdt@, ng0@, and myself.
Upstream announcement:
https://helpx.adobe.com/security/products/flash-player/apsb20-06.html
Adobe Security Bulletin
Security Bulletin for Adobe Flash Player | APSB20-06
Summary
Adobe has released security updates for Adobe Flash Player for
Windows, macOS, Linux and Chrome OS. These updates address a critical
vulnerability in Adobe Flash Player. Successful exploitation could
lead to arbitrary code execution in the context of the current user.
Changelog:
New
Today's Firefox release includes two features that help users
view and read website content more easily, quickly. Like all
accessibility improvements, these features improve browsing
for everyone.
Firefox has offered a page zoom feature for more than a
decade that allows users to set the zoom level on a per-site
basis. For users who need to zoom most websites, having to
adjust zoom for each new site can be an annoyance. To
address this, we have implemented a new global default zoom
level setting. This option is available in about:preferences
under "Language and Appearance" and can be scaled up or
down from 100% as needed and sets the default zoom level
for all sites. Per-site zoom is still available to make
adjustments to individual sites as needed.
Many users with low vision rely on Windows' High Contrast
Mode to make websites more readable. Traditionally, to
increase the readability of text, Firefox has disabled
background images when High Contrast Mode is enabled. With
today's release of Firefox 73, we introduce a "readability
backplate" solution which places a block of background
color between the text and background image. Now, websites
in High Contrast Mode are more readable without disabling
background images.
Fixed
Various security fixes.
Improved audio quality when playing back audio at a faster or
slower speed.
Firefox will now only prompt you to save logins if a field in
a login form was modified.
Changed
WebRender will roll out to laptops with Nvidia graphics cards
with drivers newer than 432.00, and screen sizes smaller than
1920x1200
Security fixes:
#CVE-2020-6796: Missing bounds check on shared memory read in the parent process
#CVE-2020-6797: Extensions granted downloads.open permission could open arbitrary applications on Mac OSX
#CVE-2020-6798: Incorrect parsing of template tag could result in JavaScript injection
#CVE-2020-6799: Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader
#CVE-2020-6800: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5
#CVE-2020-6801: Memory safety bugs fixed in Firefox 73
Changelog:
v4.1.0
Added
Adding support for passing in experience_id to Client class (#338)
v4.0.0
Changed
Python 2 is no longer supported
Removed place fields: alt_id, id, reference, and scope. Read more about this at https://developers.google.com/maps/deprecations.
v3.1.4
Changed
APIError.__str__ should always return a str (#328)
v3.1.3
Changed
deprecation warning for place fields: alt_id, id, reference, and scope. Read more about this at https://developers.google.com/maps/deprecations.
v3.1.2
Added
Tests for distribution tar as part of CI
Support for subfields such as geometry/location and geometry/viewport in Places.
v3.1.1
Changed
Added changelog to manifest
v3.1.0
Changed
Switched build system to use nox, pytest, and codecov. Added Python 3.7 to test framework.
Set precision of truncated latitude and longitude floats to 8 decimals instead of 6.
Minimum version of requests increased.
Session token parameter added to place().
Fixed issue where headers in request_kwargs were being overridden.
Added
Automation for PyPi uploads.
Long description to package.
Added tests to manifest and tarball.
Removed
Removed places places_autocomplete_session_token which can be replaced with uuid.uuid4().hex.
Removed deprecated places_radar.
Changelog:
Highlights
Various Bugfixes
In Depth
Runtime
WebAssembly
We continue to work on making our WebAssembly support better. Various sets of issues have been resolved in this release and general performance and feature work is happening as well.
Community improvements for AIX/PASE and Haiku
The ports for these systems received a bunch of improvements from community contributor Calvin Buckley (@NattyNarwhal).
Class Libraries
CoreFX integration
We continued to replace some of our classes with the implementation from CoreFX to improve performance and compatibility with .NET.
In this release we tightened up our networking with a few bug fixes.
Tools
Resolved Issues
7377 [Mono.Debugger.Soft] Connections are not properly closed
10641 New arm64_32 architecture (watchOS 5) [arm64_32] make “Debug Mode” work on Watch series 4 with –interpreter
12421 Task calls SynchronizationContext.Post on cancelling
12586 DataContractSerializer is not available
12917 [Blazor] IL Linker not working correctly with IQueryable extensions
14080 condition ‘ji’ not met, with ‘dynamic’ and multithreading
14725 mono 5.20 hangs when called from native thread
14772 Null Pointer Exception after debugger pauses and then continues
15261 [iOS][Tests] There are a number of System.Numeric tests that fail on iOS 32b devices
15262 [iOS][Tests] A number of linq tests fail on iOS 32b devices
15263 [iOS][Tests] A number of tests from Microsoft.CSharp fail on iOS 32b devices.
15307 [iOS][Tests] Several corelib tests crash on iOS32b devices.
15308 [netcore] Make OverlappedTests.PackNegTest Pass
15310 [netcore] Make OverlappedTests.UnPackTest Pass
15646 MERP indefinitely hangs on application quit
15687 [debugger] Update client thread frames after SetIP.
15805 Mono.Net.Security.MonoTlsStream: Crash when stream appears to have already been disposed
15931 1024 hard limit of open file descriptors
15992 Mono crashes during precompiling dll in fullaot mode
15994 Coverity: derefenrecing null in profiler (CID: 1307043) Skip degenerate qsort: num < 2, size == 0, base == 0
15999 [mini] run regression tests with fullaot+llvm
16010 typeof(object).GetMember(“”) does not return an empty array
16024 Native crash in ves_icall_System_Net_Sockets_Socket_Connect_internal
16032 IOException: Sharing violation on path …
16046 [netcore] AOT with unresolved dependencies hits asserts
16122 VS 16.2.0 regression: CopyToAsync from DeflateStream to GzipStream throws NotImplementedException
16172 Interpreter stack size is too large
16192 Embedded Mono hangs when using native threads
16308 Change netcore package to be using release builds
16310 LLVM: ““.AsSpan()[0] doesn’t throw IndexOutOfRangeException
16319 [wasm] Timers do not fire when run inside WebWorkers.
16369 Relocations in .text on arm
16380 [netcore] Regession with AOTed System.Private.CoreLib
16381 [llvm] Assertion: should not be reached at mini-llvm.c:7104
16395 [Mobile] DateTime.Now returns incorrect local time for one hour after entering DST in 39 locales.
16411 JitTests.Float fails on iOS devices in release mode on 2019-08
16415 Timezone data not handled correctly on FreeBSD
16460 System.IO.Path.GetFullPath(“\\.\pipe\pipename”): different results on Mono and .NET
16486 FileSystemEventArgs.FullPath throws ArgumentNullException
16605 make distclean fails after build w/ embedded zlib
16616 [netcore] Vector.CopyTo w/ LLVM emits wrong exception
16626 [WinForms] ControlBox property didn`t hide Close button and icon
16689 [merp] missing data in crashing reporting json native frames
16701 C# REPL Unusable on Mono 6 / Ubuntu 19
16709 Disposing the FileSystemWatcher does not close associated file descriptors
16712 SIGSEGV in mono_class_setup_vtable_general
16742 Date.Time parse issue (year 1948) Avoid creating un-representable DateTime for transition point
16759 Stream.ReadAsync continues on different thread
16803 mono_gc_finalize_notify spinning after process exit
16808 LLVM failed for String.GetHashCode
16819 [coop][interp] mono_threads_enter_gc_safe_region Cannot transition thread 0x1952b000 from STATE_BLOCKING with DO_BLOCKING
16824 Crash when debugging iOS application that throws on DispatchQueue
16864 [arm64_32] fix remaining regression tests
16876 [Wasm] Switch to PNSE FileWatcher & Exclude Tests
16879 [Wasm] Determine if System.Net.Http.UnitTests Failures are Relevant
16918 XmlSerializer Deserializing Property with same name as its enum type no longer works
16943 LLVM: recursive calls have overhead in JIT mode
16950 Starting in Mono 6.0 (2019-02), NotImplementedException prevents using StreamWriter with GZipStream for encodings that use a preamble
16974 File.GetCreationTimeUtc() returns the time last modified, not time created
17004 [merp] crash reports have Darwin kernel version in OSVersion field
17017 Out of bounds unhandled exception
17038 [wasm][xunit tests] RemoteExecutorTests.RemoteInvokeWritesToFile fails
17040 [wasm][xunit tests] System.Net.Security.Tests.SslStreamAlpnTests - MissingMethodException: Default constructor not found
17083 Regression: when debugger encounters a not-unhandled exception Marshalling managed exception contains cut off stacktraces
17133 SystemNative_CopyFile() call to fchmod() introduced in Mono 6.0 is not compatible with the external storage location on some Android OS versions and devices
17139 mono_aot_register_n_debug_info
17278 System.BadImageFormatException when reflecting on BCL shipped with Mono
17334 mono_magic_trampoline being called more than expected
17335 Investigate heavy stack from System_Threading_Interlocked_Exchange_T_REF_T_REF__T_REF
tem.Reflection.Emit + ConstructorInfo doesn’t work as expected
17687 [Regression] Profiler’s calls log SIGABRTs when using GDI+ loader
17718 Delegate does not invoke target virtually
17737 Q: is using loader lock for domain seq_points access correct? (mono runtime) [runtime] Fix locking in mono_get_seq_points ().
17790 [merp] SendMicrosoftTelemetry icall doesn’t do any MERP logging when inducing a Managed Crash
17833 threadpool hang due to unlimited hill climbing
17878 Deadlock in GC during bridge callback from native thread on Android
17924 Mtouch argument interpreter crashes EntityFrameworkCore 3.0 iOS app
17926 [Bug] Segmentation Fault receiving message on WatchOS with debugger attached
17931 Native linking fails for armv7s
18011 [embedding] Chaining Mach exceptions to Mono signals using utility threads
bdf2sfd is a BDF to SFD converter, allowing to vectorize bitmap fonts.
It works by converting each pixel of a glyph to a polygon, which produces
large and unoptimized SFD files that should be post-processed using FontForge.
ChangeLog:
This release includes one new lexer: the Varnish lexer! We also have fixes
for the D, Java, Lua, NASM, Objective-C, PowerShell, Rust, Shell, TOML and
TypeScript lexers.
Update dovecot2 to 2.3.9.3, security release.
v2.3.9.3 2019-02-12 Aki Tuomi <aki.tuomi@open-xchange.com>
* CVE-2020-7046: Truncated UTF-8 can be used to DoS
submission-login and lmtp processes.
* CVE-2020-7957: Specially crafted mail can crash snippet generation.
