[ Amitai Schleier ]
* Avoid unexpected full paths from find(1)
[ thm.id.fedoraproject.org ]
* rst test: Probe for docutils Python 3 module, not Python 2
[ Simon McVittie ]
* mdwn: Automatically detect which Discount flags to use, fixing
regressions in 3.20180228 when using Discount < 2.2
* Add a test asserting that no plugin is an empty file, to confirm
that the build fixes in 3.20180228 were successful
Contao 4.4.16 is available 2018/03/08 15:39 by Leo Feyer
Contao version 4.4.16 is available. The bugfix release fixes a problem with
the page picker in TinyMCE.
5.2:
Ensure Django 2.1 compatibility for CountrySelectWidget.
Fix regression introduced into 5.1 when using Django 1.8 and certain queryset lookup types (like __in).
3.0.7:
Fix SSL proxy support by client.
Restore a imperative check in setup.py for python version. The check works in parallel to environment marker. As effect a error about unsupported Python versions is raised even on outdated systems with very old setuptools version installed.
3.5.0:
Features
Implement trailing commas in parameters and arguments
Implement deprecation warning for ID strings that look like colors
Implement content-exists function
Implement support for passing var() to CSS functions
Implement first class functions
Implement nesting guard to avoid "out of stack space"
Implement exponents for numbers
Implement long file path support for Windows
Implement case modifier for attribute selector
Implement warning for double parent selectors
Implement support for custom property syntax
Implement support for custom-property feature flag
Optimisations
Performance improvements
Fix memory leak by removing previously unused code
Fix memory leak of custom functions signature
Community
Add libsass-python to Readme
Update link to go-libsass
Fixes
Fix media query stack and eval issue
Fix Attribute Selector equal compare operator
Fix segfault for varargs with non-string keys
Fix Element Selector compare operators
Fix compiler issue with spec regression on NetBSD 6.1
Fix some segfaults caused by the parser being too forgiving
Fix segfault with invalid map keys
Fix null pointer dereference in css_error
Fix bug when parsing selector schemas
Fix null pointer dereference when parsing selector schemas
Fix .editorconfig
Fix compiler issue with spec regression on NetBSD 6.1
Fix segfault when extending pseudo selectors failed
Fix parser for urls looking like ruleset selectors
Fix use of non-portable std::to_string
Fix use of non-portable strdup
Fix unary slash expressions
Fix missing error for trailing comma in selector list
Fix selector and binominal look ahead
Fix hex escape handling in interpolation
Fix wrong parsing of calc functions as number units
Fix incorrect comment evaluation for compressed output
Fix parent selector handling in selector schema
Fix parameter vararg and keyword handling
Fix a few minor memory leaks
Fix issue with invalid error indicator
Fix selector parsing and url regression
Fix null ptr segv on invalid vararg
Fix segfault in selector extend edge-case
Fix segfault in selector extend edge-case
Fix segfault in selector append edge-case
Fix ref-counted value handling in if function
Fix segfault in at-root cssize edge-case
Fix file content malloc to avoid reading beyond buffer
Fix case-sensitive lookup to named color map
Fix shebang for tap-driver
Fix segfault in parser edge case
Fix memory corruption on error in parse_selector_schema
Fix autoconf path for sassc tester
Fix output of invisible @support blocks
Fix to_value for bracketed lists
Fix propagation of named rest arguments
Fix @extend of wrapped selectors
Fix wrapped pseudo selector handling
Fix minor issue with attribute selector unification
Fix issue when passing restargs to call
Fix compressing of colors in selectors
Fix missing error on selector with invalid quote mark
Fix travis-ci mac OSX builds
Fix endless loop comparing Selector_List to List
Fix SmartOS/Solaris build regression
Fix to connect parent selector only once
Fix whitespace issue for wrapped selectors
Fix missing error if cwd goes missing
Fix missing error when mixin ruleset in root has parent selector
Fix sourcemap crutch once again
Fix parser state column following static values
Fix error indicator not being Unicode aware
Fix error sourcemaps not being fully Unicode aware
Fix some compiler warnings
Fix math with multiple units
Fix css test for interpolated numbers
Fix null pointer access in nesting check
Fix @else possibly producing invalid output
Fix parsing of @supports declarations
0.9.3:
Fix 133 and 134 by including package data when building wheel and tar.gz packages for PyPI
0.9.2:
Fix 129 - Move tests under site-packages/pylint_django
Fix 96 - List Django as a dependency
Contao 4.5.5 is available 2018/03/06 11:04 by Leo Feyer
Contao version 4.5.5 is available. The bugfix release fixes problems with
using InnoDB without the innodb_large_prefix option.
Contao 4.5.6 is available 2018/03/06 15:53 by Leo Feyer
Contao version 4.5.6 is available. The bugfix release fixes a problem with new
installations with InnoDB without large prefixes.
2.0.3:
CVE-2018-7536: Denial-of-service possibility in urlize and urlizetrunc template filters
CVE-2018-7537: Denial-of-service possibility in truncatechars_html and truncatewords_html template filters
Bugfixes
1.11.11:
CVE-2018-7536: Denial-of-service possibility in urlize and urlizetrunc template filters
CVE-2018-7537: Denial-of-service possibility in truncatechars_html and truncatewords_html template filters
Contao 4.4.15 is available 2018/03/06 09:52 by Leo Feyer
Contao version 4.4.15 is available. The bugfix release fixes several issues
including problems with the HTTP cache and improves the folder hash
calculation.
Version 3.5.34 (2018-03-06)
---------------------------
### Fixed
Check the registry for table prefixed queries (see contao/core-bundle#1161).
### Fixed
Improve the folder hashing performance (see #8856).
### Fixed
Reset the autologin hash if the username or password changes (see #8843).
### Fixed
Correctly encode the sitemap URLs (see #8849).
3.8.1:
- Admin thumbnails were not displaying correctly.
3.8:
- Added support for Django 2.0.
- Dropped support for Django 1.8 and 1.10.
- Did not really work with Django 1.11 - sortedm2m library was broken. Upgraded sortedm2m and it now works with 1.11.
- New translation for Ukranian; updated translation for Spanish.
- Fixed template tag that was broken in Django 1.11.
3.7:
- Now works with Django 1.11. Deprecated support for Django 1.9.
- Fixed the management commands to work in the latest versions of Django.
- Fixed an issue with some photo sizes not being created.
- Updated translations for French and Basque.
3.6:
- Now works with Django 1.10 (to be precise: Photologue worked, but the unit tests did not).
- Updated urlpatterns in docs, tests and example project for Django 1.8+
- Enhance Python 2.7 EXIF info.
- Updated docs (contributed by lizwalsh).
- Fixed command plcreatesize (contributed by Mikel Larreategi).
- Fixed deprecated template settings (contributed by Justin Dugger).
- Updated translations for German and Russian.
3.5.1:
- Photologue 3.5 failed to install under Python 2.7. Looks like distutils does not like files
with non-ascii filenames.
- Fix for issue 149 - bug with projects that extend ImageModel.
3.5:
- Increased length of 'title' fields to 250 chars in order to store longer title.
- Rotate image before resize, to comply with height/width constraints.
- Added forgotten migration.
- Changing "Photo" image leaves extra files on server.
- Normalize filenames to ASCII so they work across all filesystems.
- Updated Hungarian translation.
sortedm2m is a drop-in replacement for django's own ManyToManyField. The
provided SortedManyToManyField behaves like the original one but remembers
the order of added relations.
Selenium 3.10.0
* make tests to check clicking on disabled element work for w3c compliant drivers
* add docstring for InvalidElementStateException
* Deleting unused imports
* Making python specification in IDEA project more generic
* It should be possible to use a custom safaridriver executable to run Selenium's test suite.
18.0.0:
When passed to str() URLs now stringify to usable URL strings.
Switched off of Python's built-in IDNA facilities to using the idna package. Not only is it much more modern, it's also much more strict and correct in its output.
Added new DecodedURL type with almost-identical API to the normal URL, except that it automatically handles reserved characters in argument values passed to its methods.
Added top-level parse() convenience function that now represents the main entrypoint to hyperlink.
Accept dictionaries as ‘query=’ arguments, in addition to sequences of tuples
URL.child() will no longer fail when child gets no segments
URL.normalize() now supports encoding stray/unmatched % characters in character-encoded fields (userinfo, path, query string, fragment)
7.70 2018-03-01
- Fixed ordering of sources for content negotiation in Mojolicious::Renderer.
- Fixed a content negotiation bug in Mojolicious::Renderer that prevented all
sources from being considered at the same time.
- Fixed source links in documentation browser.
* core: Don't send relative redirect URLs when behind a reverse proxy
* core: Escape backticks etc. in directive error messages as HTML
entities so that the error message is not subsequently parsed as
Markdown
* mdwn: Enable fenced code blocks, PHP Markdown Extra-style definition
lists and GitHub-style extensions to HTML tag syntax when used with
Discount >= 2.2.0 (Closes: #[888055])
* img: Fix auto-detection of image format (if enabled, which is
strongly discouraged) with ImageMagick >= 6.9.8-3
* rst: Use Python 3 instead of Python 2
* build: `set -e` before each `for` loop, so that errors are reliably
trapped
* build: Use if/then instead of `||` so that the `-e` flag works
* build: Ensure that pm_to_blib finishes before rewriting shebang lines
* t: Make the img test pass with ImageMagick >= 6.9.8-3
(Closes: #[891647])
* debian: Remove unused Lintian overrides for duplicate word false positives
* debian: Declare compliance with Debian Policy 4.1.3
2.2.0:
Django 2.0 compatibility. Again there were no changes to the actual library code, so previous versions probably work.
Ensured that request._cors_enabled is always a bool() - previously it could be set to a regex match object.
- Fixes a regression from 5.1.11 that prevented Passenger from
compiling on FreeBSD in some cases.
- Fixes a bounds issue in printing an error message that could occur
in some cases when spawning a child process fails.
- Fixes a regression from 5.2.0 which prevented setting the max pool
idle time to 0.
- Warns if using an incompatible compiler on macOS < 10.13.
- No longer uses Security Framework on macOS 10.13+. This will prevent
further keychain warnings from appropriately compiled Passengers.
- Fixes warning on macOS about /proc/self access (excluded some code
that was intended only for Linux).
- `passenger-install-nginx-module` now downloads the preferred Nginx
version via https.
- [Apache] Fixes a regression from 5.2.0 that caused a crash on
startup when no top-level ServerName is set.
- [Enterprise] Adds support for using RAM-based pricing on Heroku.
Contao 4.5.4 is released on 14th Feb 2018.
Release note:
Contao version 4.5.4 is available. The bugfix release fixes several
issues including a problem with rebuilding the search index.
Contao 4.4.14 is released on 14th Feb 2018.
Release note:
Contao version 4.4.14 is available. The bugfix release fixes several issues
including a problem with rebuilding the search index.
6.33 2018-02-27 03:51:36Z
- Fix send_te change from previous release, which was breaking
LWP::Parallel::UserAgent and Test::Override::UserAgent (GH #281) (Doug
Bell)
nginx 1.13.9:
*) Feature: HTTP/2 server push support; the "http2_push" and
"http2_push_preload" directives.
*) Bugfix: "header already sent" alerts might appear in logs when using
cache; the bug had appeared in 1.9.13.
*) Bugfix: a segmentation fault might occur in a worker process if the
"ssl_verify_client" directive was used and no SSL certificate was
specified in a virtual server.
*) Bugfix: in the ngx_http_v2_module.
*) Bugfix: in the ngx_http_dav_module.
nghttp2 v1.31.0:
lib: Add nghttp2_session_set_user_data() public API function
src: Define nghttp2_inet_pton wrapper to avoid inet_pton macro
nghttpx: Close listening socket on graceful shutdown
nghttpx: Add an option to accept expired client certificate
nghttpx: Add mruby tls_client_not_before, and tls_client_not_after
nghttpx: Fix potential memory leak
Version 0.9.1:
Fix 123 - Update links after the move to PyCQA
Add test for Meta class from django_tables2
Fix flake8 complaints
Add missing .txt and .rc test files to MANIFEST.in
Upstream changes:
drupal 7.57
Posted by David_Rothstein on 21 February 2018
Release notes
Maintenance and security release of the Drupal 7 series.
This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement:
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2018-001
No other fixes are included.
Upstream changes:
8.4.5
Security release of the Drupal 8 series.
This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcements:
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2018-001
No other fixes are included.
