What's new in version 0.17.1:
This release address a packaging error because of an erroneous declaration that
any built wheels are universal.
What's new in version 0.17.0:
This is a major bug-fix release, including:
- Fix from collections import ChainMap after install_aliases()
- Fix multiple import from __future__ bug in futurize
- Add support for proper %s formatting of newbytes
- Properly implement iterator protocol for newrange object
- Fix past.translation on read-only file systems
- Fix Tkinter import bug introduced in Python 2.7.4
- Correct TypeError to ValueError in a specific edge case for newrange
- Support inequality tests betwen newstrs and newbytes
- Add type check to __get__ in newsuper
- Fix fix_divsion_safe to support better conversion of complex expressions, and
skip obvious float division.
As well as a number of corrections to a variety of documentation, and updates to
test infrastructure.
v0.11.3:
Bug Fixes
* Use new PyOS_BeforeFork and PyOS_AfterFork_* 3.7 APIs when available
* Fix async generators finalization to function correctly in debug mode
* Pass backlog to loop.create_unix_server() when a server is created via
loop.create_server(sock=unix_sock, backlog=backlog).
* Don't raise "requires a DNS lookup" error on Unix Domain Socket
* Fix use of PyContext* APIs in 3.7.1
Changes:
2.6.0
-----
Features
--------
- Use "scissors" line to delineate comments in editable messages instead of
stripping away lines that start with #. This helps preserve Markdown
headings in hub pull-request, hub release create, and similar commands
that open a text editor interactively.
Everything above the following line is kept in the message; everything
below is discarded:
# ------------------------ >8 ------------------------
- New command hub issue show <NUMBER>
- Add hub release show --format=<FORMAT> functionality
- hub pr list --format=%rs lists requested reviewers
- Add support for communicating with GitHub Enterprise over Unix socket
# ~/.config/hub
example.com:
user: USER
oauth_token: TOKEN
unix_socket: /path/to/socket
Fixes
-----
- Prevent hub create setting a public upstream when creating a private repo
- Fix hub create in place of a renamed repo
- Fix hub release create/edit/delete when there are multiple git remotes
- Auto-detect private/pushable repos in hub remote add
- Fix hub ci-status exit code when there is only Checks
- Allow hub compare <RANGE> even if not on any branch
- Ensure consistent sort direction when listing issues, PRs
- Match requested team names by slug instead of name in
hub pull-request -r <TEAM>
Changes:
7.62.0
------
This release includes the following changes:
o multiplex: enable by default
o url: default to CURL_HTTP_VERSION_2TLS if built h2-enabled
o setopt: add CURLOPT_DOH_URL
o curl: --doh-url added
o setopt: add CURLOPT_UPLOAD_BUFFERSIZE: set upload buffer size
o imap: change from "FETCH" to "UID FETCH"
o configure: add option to disable automatic OpenSSL config loading
o upkeep: add a connection upkeep API: curl_easy_upkeep()
o URL-API: added five new functions
o vtls: MesaLink is a new TLS backend
This release includes the following bugfixes:
o CVE-2018-16839: SASL password overflow via integer overflow
o CVE-2018-16840: use-after-free in handle close
o CVE-2018-16842: warning message out-of-buffer read
o CURLOPT_DNS_USE_GLOBAL_CACHE: deprecated
o Curl_dedotdotify(): always nul terminate returned string
o Curl_follow: Always free the passed new URL
o Curl_http2_done: fix memleak in error path
o Curl_retry_request: fix memory leak
o Curl_saferealloc: Fixed typo in docblock
o FILE: fix CURLOPT_NOBODY and CURLOPT_HEADER output
o GnutTLS: TLS 1.3 support
o SECURITY-PROCESS: mention the bountygraph program
o VS projects: add USE_IPV6:
o Windows: fixes for MinGW targeting Windows Vista
o anyauthput: fix compiler warning on 64-bit Windows
o appveyor: add WinSSL builds
o appveyor: run test suite (on Windows!)
o certs: generate tests certs with sha256 digest algorithm
o checksrc: enable strict mode and warnings
o checksrc: handle zero scoped ignore commands
o cmake: Backport to work with CMake 3.0 again
o cmake: Improve config installation
o cmake: add support for transitive ZLIB target
o cmake: disable -Wpedantic-ms-format
o cmake: don't require OpenSSL if USE_OPENSSL=OFF
o cmake: fixed path used in generation of docs/tests
o cmake: remove unused *SOCKLEN_T variables
o cmake: suppress MSVC warning C4127 for libtest
o cmake: test and set missed defines during configuration
o comment: Fix multiple typos in function parameters
o config: Remove unused SIZEOF_VOIDP
o config_win32: enable LDAPS
o configure: force-use -lpthreads on HPUX
o configure: remove CURL_CONFIGURE_CURL_SOCKLEN_T
o configure: s/AC_RUN_IFELSE/CURL_RUN_IFELSE
o cookies: Remove redundant expired check
o cookies: fix leak when writing cookies to file
o curl-config.in: remove dependency on bc
o curl.1: --ipv6 mutexes ipv4 (fixed typo)
o curl: enabled Windows VT Support and UTF-8 output
o curl: update the documentation of --tlsv1.0
o curl_multi_wait: call getsock before figuring out timeout
o curl_ntlm_wb: check aprintf() return codes
o curl_threads: fix classic MinGW compile break
o darwinssl: Fix realloc memleak
o darwinssl: more specific and unified error codes
o data-binary.d: clarify default content-type is x-www-form-urlencoded
o docs/BUG-BOUNTY: explain the bounty program
o docs/CIPHERS: Mention the options used to set TLS 1.3 ciphers
o docs/CIPHERS: fix the TLS 1.3 cipher names
o docs/CIPHERS: mention the colon separation for OpenSSL
o docs/examples: URL updates
o docs: add "see also" links for SSL options
o example/asiohiper: insert warning comment about its status
o example/htmltidy: fix include paths of tidy libraries
o examples/Makefile.m32: sync with core
o examples/http2-pushinmemory: receive HTTP/2 pushed files in memory
o examples/parseurl.c: show off the URL API
o examples: Fix memory leaks from realloc errors
o examples: do not wait when no transfers are running
o ftp: include command in Curl_ftpsend sendbuffer
o gskit: make sure to terminate version string
o gtls: Values stored to but never read
o hostip: fix check on Curl_shuffle_addr return value
o http2: fix memory leaks on error-path
o http: fix memleak in rewind error path
o krb5: fix memory leak in krb_auth
o ldap: show precise LDAP call in error message on Windows
o lib: fix gcc8 warning on Windows
o memory: add missing curl_printf header
o memory: ensure to check allocation results
o multi: Fix error handling in the SENDPROTOCONNECT state
o multi: fix memory leak in content encoding related error path
o multi: make the closure handle "inherit" CURLOPT_NOSIGNAL
o netrc: free temporary strings if memory allocation fails
o nss: fix nssckbi module loading on Windows
o nss: try to connect even if libnssckbi.so fails to load
o ntlm_wb: Fix memory leaks in ntlm_wb_response
o ntlm_wb: bail out if the response gets overly large
o openssl: assume engine support in 0.9.8 or later
o openssl: enable TLS 1.3 post-handshake auth
o openssl: fix gcc8 warning
o openssl: load built-in engines too
o openssl: make 'done' a proper boolean
o openssl: output the correct cipher list on TLS 1.3 error
o openssl: return CURLE_PEER_FAILED_VERIFICATION on failure to parse issuer
o openssl: show "proper" version number for libressl builds
o pipelining: deprecated
o rand: add comment to skip a clang-tidy false positive
o rtmp: fix for compiling with lwIP
o runtests: ignore disabled even when ranges are given
o runtests: skip ld_preload tests on macOS
o runtests: use Windows paths for Windows curl
o schannel: unified error code handling
o sendf: Fix whitespace in infof/failf concatenation
o ssh: free the session on init failures
o ssl: deprecate CURLE_SSL_CACERT in favour of a unified error code
o system.h: use proper setting with Sun C++ as well
o test1299: use single quotes around asterisk
o test1452: mark as flaky
o test1651: unit test Curl_extract_certinfo()
o test320: strip out more HTML when comparing
o tests/negtelnetserver.py: fix Python2-ism in neg TELNET server
o tests: add unit tests for url.c
o timeval: fix use of weak symbol clock_gettime() on Apple platforms
o tool_cb_hdr: handle failure of rename()
o travis: add a "make tidy" build that runs clang-tidy
o travis: add build for "configure --disable-verbose"
o travis: bump the Secure Transport build to use xcode
o travis: make distcheck scan for BOM markers
o unit1300: fix stack-use-after-scope AddressSanitizer warning
o urldata: Fix "connecting" comment
o urlglob: improve error message on bad globs
o vtls: fix ssl version "or later" behavior change for many backends
o x509asn1: Fix SAN IP address verification
o x509asn1: always check return code from getASN1Element()
o x509asn1: return CURLE_PEER_FAILED_VERIFICATION on failure to parse cert
o x509asn1: suppress left shift on signed value
- when users specify an SSL version that no longer exists in the Python
ssl module, do not result in an unhandled exception. Thanks: "nandre".
- catch IMAP UNAVAILABLE temporary error during login. Thanks:
Dario Corti.
ccache 3.5
Added a boolean debug (CCACHE_DEBUG) configuration option. When enabled, ccache will create per-object debug files that are helpful e.g. when debugging unexpected cache misses. See also the new “Cache debugging” section in the manual.
Renamed CCACHE_CC to CCACHE_COMPILER (keeping the former as a deprecated alias).
Added a new command-line option -k/--get-config that prints the value of a config key.
It is now possible to let ccache hash a precomputed checksum file instead of the full content of a precompiled header. This can save time for large precompiled headers. Note that the build system needs to keep the checksum file in sync with the precompiled header for this to work.
Improved performance substantially when using hash_dir = false on platforms like macOS where getcwd() is slow.
Added “stats updated” timestamp in ccache -s output. This can be useful if you wonder whether ccache actually was used for your last build.
Renamed “stats zero time” to “stats zeroed” and documented it. The counter is also now only present in ccache -s output when ccache -z actually has been called.
The content of the -fsanitize-blacklist file is now included in the hash, so updates to the file will now correctly result in separate cache entries.
It’s now possible to opt out of building and installing man pages when running make install in the source repository.
If the compiler type can’t be detected (e.g. if it is named cc), use safer defaults that won’t trip up Clang.
Made the ccache test suite work on FreeBSD.
Added file_stat_matches_ctime option to disable ctime check if file_stat_matches is enabled.
Made “./configure --without-bundled-zlib” do what’s intended.
Memcached 1.5.11
Fixes broken test and small extstore optimization.
Fixes
* extstore: balance IO thread queues
* t/lru-maintainer.t: check for WARM item earlier, fixing race condition on some platforms.
version-0.4.7
- Remove some printf used for debugging.
version-0.4.6
- When the size of a window increased, it was not displayed in the pager.
version-0.4.5
- Fix compiler issue
version-0.4.4
- Fix redraw issue when in slit.
version-0.4.3
- Fixed crash when reconfiguring (happens automatically when withdrawn).
version-0.4.2
Integrated patches provided by Joey Morris, fixing the following problems:
- add more flexible border support in bbpager (see README.bbpager)
- fix crash on pixmap release
- fix off-center pager texture off-center
- fix bug in focused desktop texture
- fix bug in configuring mouse button actions
pytest-xdist 1.24.0:
Features
- New --maxprocesses command-line option that limits the maximum number of workers when using --numprocesses=auto.
Bug Fixes
- Fix scheduling deadlock in case of inter-test locking.
1.7.0:
- fix: use shutil.get_terminal_size() in Python 3.3+ to determine the size of the
terminal, which produces more accurate results than the previous method.
- fix: introduce new PY_IGNORE_IMPORTMISMATCH environment variable
that suppresses ImportMismatchError exceptions when set to 1.
Upstream changes:
Language
* Procedural macros are now available. These kinds of macros allow
for more powerful code generation. There is a new chapter available
in the Rust Programming Language book that goes further in depth.
* You can now use keywords as identifiers using the raw identifiers
syntax (r#), e.g. let r#for = true;
* Using anonymous parameters in traits is now deprecated with a
warning and will be a hard error in the 2018 edition.
* You can now use crate in paths. This allows you to refer to the
crate root in the path, e.g. use crate::foo; refers to foo in
src/lib.rs.
* Using a external crate no longer requires being prefixed with
::. Previously, using a external crate in a module without a
use statement required let json = ::serde_json::from_str(foo);
but can now be written as let json = serde_json::from_str(foo);.
* You can now apply the #[used] attribute to static items to
prevent the compiler from optimising them away, even if they
appear to be unused, e.g. #[used] static FOO: u32 = 1;
* You can now import and reexport macros from other crates with
the use syntax. Macros exported with #[macro_export] are now
placed into the root module of the crate. If your macro relies
on calling other local macros, it is recommended to export with
the #[macro_export(local_inner_macros)] attribute so users won't
have to import those macros.
* You can now catch visibility keywords (e.g. pub, pub(crate)) in
macros using the vis specifier.
* Non-macro attributes now allow all forms of literals, not just
strings. Previously, you would write #[attr("true")], and you
can now write #[attr(true)].
* You can now specify a function to handle a panic in the Rust
runtime with the #[panic_handler] attribute.
Compiler
* Added the riscv32imc-unknown-none-elf target.
* Added the aarch64-unknown-netbsd target
Libraries
* ManuallyDrop now allows the inner type to be unsized.
Stabilized APIs
* Ipv4Addr::BROADCAST
* Ipv4Addr::LOCALHOST
* Ipv4Addr::UNSPECIFIED
* Ipv6Addr::LOCALHOST
* Ipv6Addr::UNSPECIFIED
* Iterator::find_map
* The following methods are replacement methods for trim_left,
trim_right, trim_left_matches, and trim_right_matches, which
will be deprecated in 1.33.0:
* str::trim_end_matches
* str::trim_end
* str::trim_start_matches
* str::trim_start
Cargo
* cargo run doesn't require specifying a package in workspaces.
* cargo doc now supports --message-format=json. This is equivalent
to calling rustdoc --error-format=json.
* Cargo will now provide a progress bar for builds.
Misc
* rustdoc allows you to specify what edition to treat your code
as with the --edition option.
* rustdoc now has the --color (specify whether to output color)
and --error-format (specify error format, e.g. json) options.
* We now distribute a rust-gdbgui script that invokes gdbgui with
Rust debug symbols.
* Attributes from Rust tools such as rustfmt or clippy are now
available, e.g. #[rustfmt::skip] will skip formatting the next
item.
Pkgsrc changest:
* Explicitly list bootstrap kit version number for each kit we carry,
so that one entry's version doesn't "bleed into" following kits.
* Tweak for handling "earmv7hf" CPU type for NetBSD in the bootstrap.py
script
* Add two patches from Debian for sparc64; rust would generate code
generating unaligned accesses, causing SIGBUS on sparc64
* Update most of the bootstrap kits to version 1.29.2; need minimum
1.29.0 to build 1.30.0.
* Rust regrettably doesn't build for powerpc or earmv7hf in this version,
most probably due to "char" being "unsigned char" on these platforms.
Ref. https://github.com/rust-lang/rust/issues/55465
* On Arch Linux, the build failed, makedev(3) indicates
#include <sys/sysmacros.h>
* On Debian Buster, the build succeed but a big warning is displayed:
warning: In the GNU C Library, "minor" is defined
by <sys/sysmacros.h>. For historical compatibility, it is
currently defined by <sys/types.h> as well, but we plan to
remove this soon. To use "minor", include <sys/sysmacros.h>
directly. If you did not intend to use a system-defined macro
"minor", you should undefine it after including <sys/types.h>.
v40.5.0
* In pkg_resources.normalize_path, fix issue on Cygwin when cwd contains symlinks.
* Deprecated support for downloads from Subversion in package_index/easy_install.
* Dropped use of six.u in favor of u"" literals.
* Added support for data_files in setup.cfg.
* Fixed rendering of the deprecation warning in easy_install doc.
* Put indentation right to follow the existing style
* Correct wrong justification for need of pax on Arch: pax (and not PaX) is
only provided throw https://aur.archlinux.org/packages/pax/ and get low
support (currently broken)
2018-10-27 -- 0.9.0
>>>>>>>>>>>>> SECURITY >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
* Fixed: Out-of-bounds write in uriComposeQuery* and uriComposeQueryEx*
Commit 864f5d4c127def386dd5cc926ad96934b297f04e
Thanks to Google Autofuzz team for the report!
* Fixed: Detect integer overflow in uriComposeQuery* and uriComposeQueryEx*
Commit f76275d4a91b28d687250525d3a0c5509bbd666f
Thanks to Google Autofuzz team for the report!
* Fixed: Protect uriResetUri* against acting on NULL input
Commit f58c25069cf4a986fe17a80c5b38687e31feb539
>>>>>>>>>>>>> SECURITY >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
* Fixed: Be fully compliant to C89 (GitHub #28) and C++98 in test code
* Fixed: Fix off-by-one in uriComposeQueryCharsRequired* and ...Ex*
Reported space requirements were 1 byte bigger than necessary
* Changed: Marked as deprecated:
Deprecated functions:
uriNormalizeSyntaxMaskRequired[AW]
uriParseUri[AW]
uriParseUriEx[AW]
* Added: Add convenience functions to ease user code to parse a single URI
New functions:
uriParseSingleUri[AW]
uriParseSingleUriEx[AW]
uriParseSingleUriExMm[AW]
* Added: Support for custom memory managers (GitHub #26, #35), see Doxygen
New functions (as extension of existing ones):
uriAddBaseUriExMm[AW]
uriComposeQueryMallocExMm[AW]
uriDissectQueryMallocExMm[AW]
uriFreeQueryListMm[AW]
uriFreeUriMembersMm[AW]
uriNormalizeSyntaxExMm[AW]
uriParseSingleUriExMm[AW]
uriRemoveBaseUriMm[AW]
New functions (for convenience):
uriCompleteMemoryManager
uriEmulateCalloc
uriEmulateReallocarray
uriTestMemoryManager
New error codes:
URI_ERROR_MEMORY_MANAGER_FAULTY
URI_ERROR_MEMORY_MANAGER_INCOMPLETE
New types:
UriFuncCalloc
UriFuncFree
UriFuncMalloc
UriFuncRealloc
UriFuncReallocarray
UriMemoryManager
* Added: Add non-void versions of uriNormalizeSyntaxMaskRequired*
New functions:
uriNormalizeSyntaxMaskRequiredEx[AW]
* Changed: Migrate test suite from CppTest to GoogleTest 1.8.1
* Improved: Make test suite free of memory leaks (GitHub #31)
Thanks to AddressSanitizer!
* Removed: Support for pointless define URI_SIZEDOWN (GitHub #29)
Related configure option --enable-sizedown has also been removed.
* Soname: 1:23:0
Users who have previously installed this package by building as root should
very carefully check their Go installations. Running "pkg_admin check" will
almost certainly fail.
Changes:
WebKitGTK+ 2.22.3
=================
- Many improvements and fixes for video playback with media source
extensions (MSE), which improve the user experience across the board,
and in particular for playback of WebM videos.
- Fix a memory leak during media playback when using playbin3.
- Fix portions of Web views not being rendered after resizing.
- Fix Resource Timing reporting for <iframe> elements.
- Fix the build with the remote Web Inspector disabled.
- Fix the build on ARMv7 with NEON extensions.
- Fix several crashes and rendering issues.
