* handle building with NetBSD 6's 64bit time_t on a 32 bit platform
* reorder src/utf8/checked.h to define the append() function
before using it later on in the same file.
Also updated the MASTER_SITES to reference the new download site.
prior will be migrated to the new format when you run 0.15 for the
first time.
Changes:
- Merge many changes from Psi+.
- New message history browser.
- New, fast contact list window.
- TURN proxying for voice calls.
- Store data in more standardized locations based on the platform.
- No longer dependent on the Qt3Support library.
- Domains ending in .local now always work, whether via DNS server or mdns.
- Windows 64-bit and Mac 64-bit now supported. Mac PPC deprecated.
- Legacy SSL port probe feature removed.
- Various small features and bugfixes.
Since 0.14, this version contains about two years worth of merges
from the Psi+ project. Thanks to Rion and Dealer_WeARE for diligently
keeping the Psi source repo current all this time.
Changes:
Security:
- CVE-2012-5854: Fix buffer overflow when decoding IRC colors in strings
- CVE-2012-5534: Fix untrusted command for function hook_process could lead to
execution of commands, because of shell expansions
Among the new features:
- add plugin "script" (replacement of weeget.py and script.pl)
- add support of SSL in relay plugin
- add color for offline nicks
- add system resource limits for WeeChat process
- add zoom on merged buffer (default key: alt+"x")
- add "Day changed to" in logger backlog
- add command line option "-r" (or "--run-command") to run command(s) after startup of WeeChat
- add option "swap" for command /buffer
- generate alternate IRC nicks dynamically (when all nicks are already in use)
- fix rejoin of password protected IRC channels
- fix freeze in irc and relay plugins with sockets
- fix color of long lines (displayed on more than one line on screen) under FreeBSD
- allow update for some variables of hdata
- add japanese user's guide, scripting guide and tester's guide
- many bugs fixed.
in gcc 4.1.3 (NetBSD 5.*) aka, -pedantic causes build
failures when including gnutls on older versions of gcc.
Should clear up the build issues on NetBSD 5.x
- HTTP service
- Fix ejabberd_http:get_line
- Don't use binary:match to extract lines from binaries
- Parse and encode https header names like native http parser does
- Parse correctly https request split into multiple packets
- Properly handle HEAD request in mod_http_bind (EJAB-1538)
- New option default_host for handling requests with ambiguous Host
(EJAB-1261)
- ODBC
- New ODBC support for mod_announce
- New ODBC support for mod_blocking
- New ODBC support for mod_irc
- New ODBC support for mod_muc
- New ODBC support for mod_shared_roster
- New ODBC support for mod_vcard_xupdate
- Add ODBC exporting function for privacy table
- Work also with some unicode strings in PgSQL (EJAB-1490)
- Replace a single quote with double quotes in an ODBC escape
- SSL
- Make sure that res is initialized in all cases
- Parse correctly https request split into multiple packets (EJAB-1537)
- Added missed tls:recv_data/2
- Don't ignore Length parameter in tls:recv
- Avoid quadratic behavior in reading SSL data
- Dix http_bind webserver TLS fail on Chrome (EJAB-1530)
- Miscelanea
- Assume we have only one CPU when an auto-detection fails (EJAB-1516)
- Auth: Relax digest-uri handling (EJAB-1529)
- Caps: Cache caps timestamp before the IQ-request is done
- IRC: Use of MUC password
- Private: misc errors cases fixes
- Pubsub: return user affiliation for a specified node (EJAB-1294)
- Shared Roster: Foreign items were not pushed (EJAB-1509)
- Shared Roster LDAP: user substitution in ldap_rfilter (EJAB-1555)
- Windows: Fix makefile rules for building DLLs
24 Aug 2012:
- Release 4.0.0
21 Jun 2012:
- Fixed an issue that happened when enabling the OTR plugin while a
conversation is open.
- Release 4.0.0-beta2
7 Jun 2012:
- The plugin now supports multiple OTR conversations with the same
buddy who is logged in at multiple locations. In this case, a new
OTR menu will appear, which allows you to select which session an
outgoing message is indended for. Note that concurrent SMP
authentications with the same buddy who is logged in multiple times
is not yet supported (starting a second authentication will end the
first).
- During a private conversation with a buddy, an incoming unencrypted
message will now trigger the regular incoming message notifications.
In Pidgin this includes showing the message in the top-right
notification area, if it is normally configured to do so.
- New Italian, Swedish, Polish and Vietnamese translations. Updates to
the French translation.
- When a private conversation begins, the plugin will indicate whether
Pidgin is configured to log the conversation.
- By default, OTR conversations will not be logged by Pidgin.
- Fingerprints in the manual authentication dialog are now selectable
- The plugin will no longer delete the OTR menus if a non-foreground
conversation window is closed.
- Except on WIN32, the plugin will now set the umask to 0077 before
creating the otr.* files in the purple directory so that they end up
mode 0600.
- The menu item now says "Reauthenticate buddy" when the buddy is
already authenticated.
- Release 4.0.0-beta1
Note that while the protocol is compatible, the API is not, and hence
there will be a pidgin-otr update within minutes.
There is an apparent gcc 4.1.3 -O2/SSP bug, which is avoided by
disabling SSP in libotr (which libotr finds and turns on). This is
temporary pending more fine-grained control and/or a fix.
Update to libotr 4.0.0. Note that libotr 4.x is API-incompatible with
libotr 3.x; upstream thinks this is ok, so pkgsrc won't try to work
around it.
24 Aug 2012:
- Release 4.0.0
- Support v3 of the OTR protocol
- The main new feature: sensibly handle the case where a user is logged
in multiple times to the same IM account
- API changes:
- instance tags, to support multiple simultaneous logins
- support for asynchronous private key generation
- the ability to provide an "extra" symmetric key to applications
(with forward secrecy)
- applications can supply a formation conversion callback if they do
not natively use XHTML-style UTF8 markup
- error messages formerly provided by libotr are now handled using
callbacks to the application, for better i18n support
- otrl_message_sending now handles message fragmentation internally
Packaged for wip by Leonardo Taccari.
irssi-xmpp is an irssi plugin to connect to the Jabber network.
Its aim is to provide a good integration in this text-based irc client
and a good support of XMPP (the Jabber protocol).
Its main features are:
* Sending and receiving messages in irssi's query windows
* A roster with contact & resource tracking (contact list)
* Contact management (add, remove, manage subscriptions)
* Tab completion of commands, JIDs and resources
* Many extensions supported (XEP) including Multi-User Chat (MUC)
* Support for multiple accounts
* Unicode support (UTF-8)
* SSL and STARTTLS support
To deal with the XMPP protocol, it uses of the Loudmouth library.
(This is a security release, but pkgsrc already had patches from
upstream.)
This version corrects two heap overflows reported by our users:
- A small write overflow, reported by Justin Ferguson
- A large read overflow, reported by Ben Hawkes
GnuTLS deprecated gnutils_transport_set_lowat function in version 2.12.0
and finally removed it with version 3.0, breaking any packages that
still reference it.
The lowat feature is now disabled permanently I think.
The patch uses the GNUTLS_VERSION_NUMBER macro to appropriately conceal
the function reference. The same patch is widely seen on the 'net with
other packages that use GnuTLS.
pkgsrc changes: enable gnutls by default, switch to tar.bz2 distfile
Version 0.3.8 (2012-06-03)
--------------------------
* core: support lines of 16 Kb long in configuration files (instead of 1 Kb)
* core: fix crash in focus hook for nicklist (bug #36271)
* core: fix truncated configuration files (zero-length) after system crash
(bug #36383)
* core: fix display bugs and crashs with small windows (bug #36107)
* core: convert options weechat.look.prefix_align_more and
weechat.look.prefix_buffer_align_more from boolean to string (task #11197)
* core: fix display bug with prefix when length is greater than max and prefix
is ending with a wide char (bug #36032)
* core: add option weechat.look.prefix_same_nick (hide or change prefix on
messages whose nick is the same as previous message) (task #11965)
* core: convert tabs to spaces in text pasted (bug #25028)
* core: add a connection timeout for child process in hook_connect (bug #35966)
* core: follow symbolic links when writing configuration files (.conf)
(task #11779)
* core: fix lost scroll when switching to a buffer with a pending search
* core: add support of terminal "bracketed paste mode", new options
weechat.look.paste_bracketed and weechat.look.paste_bracketed_timer_delay
(task #11316)
* core: fix display of wide chars on last column of chat area (patch #7733)
* doc: add japanese FAQ (patch #7781)
* api: display warning in scripts when invalid pointers (malformed strings) are
given to plugin API functions (warning displayed if debug for plugin is >= 1)
* api: add list "gui_buffer_last_displayed" in hdata "buffer"
* scripts: fix type of argument "rc" in callback of hook_process (from string to
integer)
* guile: fix crash on ARM when loading guile plugin (bug #36479)
* guile: add missing function "hook_process_hashtable" in API
* irc: update channel modes by using chanmodes from message 005 (do not send
extra command "MODE" to server), fix parsing of modes (bug #36215)
* irc: add option "fakerecv" for command /server to simulate a received IRC
message (not documented, for debug only)
* irc: hide everything after "identify" or "register" in messages to nickserv
when option irc.look.hide_nickserv_pwd is on (bug #36362)
* irc: add option "-pending" for command /disconnect (cancel auto-reconnection
on servers currently reconnecting) (task #11985)
* irc: set user modes only if target nick is self nick in message 221
(patch #7754)
* irc: force the clear of nicklist when joining a channel (nicklist was not sync
after znc reconnection) (bug #36008)
* irc: allow more than one nick in command /invite
* irc: do not send command "MODE #channel" on manual /names (do it only when
names are received on join of channel) (bug #35930)
* irc: do not allow the creation of two servers with same name but different
case (fix error when writing file irc.conf) (bug #35840)
* irc: update away flag for nicks on manual /who
* irc: display privmsg messages to "@#channel" and "+#channel" in channel buffer
(bug #35331)
* irc: fix redirection of message when message is queued for sending on server
* irc: add signals and tags in messages for irc notify (task #11887)
* irc: check notify immediately when adding a nick to notify list, improve
first notify message for a nick (bug #35731)
* irc: fix display of color in hostname (join/part/quit messages)
* irc: compute hash to find nick color for nick in server message when nick
is not in nicklist
* irc: add support of "external" SASL mechanism (task #11864)
* irc: close server buffer when server is deleted
* irc: add search for lower case nicks in option irc.look.nick_color_force
* logger: fix charset of lines displayed in backlog when terminal charset is
different from UTF-8 (bug #36379)
* logger: add colors for backlog lines and end of backlog, new options:
logger.color.backlog_line and logger.color.backlog_end (task #11966)
* perl: fix compilation on OS X (bug #30701)
* perl: fix crash on quit on OS X
* relay: keep spaces in beginning of "input" received from client (WeeChat
protocol)
* relay: add signals "upgrade" and "upgrade_ended" in WeeChat protocol
* relay: fix crash on /upgrade when client is connected using WeeChat protocol
* relay: redirect some irc messages from clients to hide output (messages: mode,
ison, list, names, topic, who, whois, whowas, time, userhost) (bug #33516)
* relay: add "date_printed" and "highlight" in signal "_buffer_line_added"
(WeeChat protocol)
* rmodifier: add default rmodifier "quote_pass" to hide password in command
"/quote pass" (bug #36250)
* rmodifier: add default rmodifier "server" to hide passwords in commands
/server and /connect (task #11993)
* rmodifier: add option "release" in default rmodifier "nickserv" (used to hide
passwords in command "/msg nickserv") (bug #35705)
* tcl: add missing function "hdata_char" in API
* tcl: fix pointer sent to function hook_signal_send when type of data is
a pointer
Among the new features for 0.3.7:
- support of Scheme scripts (new plugin "guile")
- support of Python 3.x (but version 2.x still recommended)
- add "weechat" protocol in relay plugin for remote interfaces, like QWeeChat
- new option irc.color.mirc_remap to remap mirc colors in irc messages
- new options irc.look.highlight_{server|channel|pv} to customize or disable default nick highlight
- new option "capabilities" in irc servers (to enable some client capabilities on connection)
- new option weechat.history.max_buffer_lines_minutes to limit buffer history by time
- use extended regex in /filter, /ignore and /list
- add support of flags in regular expressions and highlight options
- add URL transfer in plugin API (with hook_process and hook_process_hashtable)
- add translations in japanese
- add doc for relay protocol
- add developer's guide
- many bugs fixed.
Among the new features for 0.3.6:
- mouse support
- cursor mode (free movement of cursor on screen)
- contexts for keys
- hdata in API (direct access to WeeChat and plugins data)
- "inactive" colors for inactive windows and lines in merged buffers
- support of merged buffers in /layout, save layout of buffers/windows on /upgrade
- horizontal scrolling in buffers with free content
- split of outgoing IRC messages
- options for "more" chars in bars
- bold not used any more for basic colors (if terminal has at least 16 colors)
- automatic zoom on current window when terminal becomes too small for windows
- new command /repeat
- local variable "highlight_regex" in buffers.
mong the new features for 0.3.5:
- 256 colors support improved (dynamic allocation of colors)
- attributes for colors (bold/reverse/underline)
- better scroll of input (with long text)
- output of /help improved for list of commands and their arguments
- remember scroll position of buffers in windows
- list of buffers in filters
- count of messages in hotlist buffers
- swap buffers of windows
- balance of windows
- new API function to set help on plugin/script options
- speller options in aspell plugin
- option for SSL priorities in IRC servers
- color nicks in nicklist and output of /names.
2012-05-14
* INSTALL: Fixing typo and updating reference to CVS.
* Makefile.mingw, packaging/windows/pidgin-otr.nsi:
Updating to support building the win32 installer on
GNU/Linux.
2012-05-12
* otr-plugin.c: Fixing a format string vulnerability.
Identified by intrigeri <intrigeri@boum.org>.
* Makefile.mingw, README, configure.ac, pidgin-otr.nsi:
Bumped version number to 3.2.1.
2010-03-02
* po/vi.po: Vietnamese translation from Lyndon Johnson
<lyndon.johnson58@gmail.com>
2009-11-14
* gtk-dialog.c (add_to_vbox_verify_fingerprint): Make
the fingerprints in the manual authentication dialog
selectable (but not selected by default).
2009-08-24
* po/fr.po: Fixed \n errors
2009-07-20
* po/fr.po: Complete French translation from Solveig
<perso@solveig.org>
2009-06-24
* po/fr.po: Spelling correction from intrigeri
<intrigeri@boum.org>
2009-03-18
* po/sv.po: Swedish translation from Daniel Nylander
<po@danielnylander.se>
2009-01-18
* po/pl.po: Polish translation from Paweł Czochański
<czochanski@gmail.com>
2008-09-24
* po/it.po: Italian translation from Vincenzo Reale
<smart2128@baslug.org>.
2008-07-10
* otr-plugin.c: Use /dev/urandom to generate keys instead of
/dev/random. [Really: on non-Win32, call
gcry_control(GCRYCTL_ENABLE_QUICK_RANDOM, 0); before OTRL_INIT;.]
2008-07-07
* gtk-conv.c: Don't delete the OTR menus if a non-foreground
conversation window is closed.
2008-06-19
* Makefile.static: Forgot to add tooltipmenu.o to
Makefile.static. Fixed.
2008-06-17
* otr-plugin.c: Except on WIN32, set the umask to 0077 before
creating the otr.* files in the purple directory so that they
end up mode 0600. Based on a patch from Caspar Clemens Mierau
<damokles@ubuntu.com>.
* po/de.po: Updated German translation from Michael Meier
<mail@code.mmsources.de>.
version 2.10.4 (05/06/2012):
General:
* Support building against Farstream in addition to Farsight.
(Olivier Crete) (#14936)
IRC:
* Disable periodic WHO timer. IRC channel user lists will no
longer automatically display away status, but libpurple will be
much kinder to the network.
* Print unknown numerics to channel windows if we can associate
them. Thanks to Marien Zwart. (#15090)
MSN:
* Fix a possible crash when receiving messages with certain characters
or character encodings. Thanks to Fabian Yamaguchi for reporting
this!
XMPP:
* Fix a possible crash when receiving a series of specially crafted
file transfer requests. Thanks to José Valentín Gutiérrez for
reporting this! (CVE-2012-2214)
Windows-Specific Changes:
* Words added to spell check dictionaries are saved across restarts of
Pidgin (#11886)
* Implemented --enable-tests configure option
* Fixed 'make dist' packaging
* Fixed domain name in punycode resolution
* Expand @package@ in etc/*.xml.dist.in
* storage_ldapvcard compilation fixes
* Implement debug logging into file
* Fix invalid default router.xml (Unterminated XML comment tag)
* Fixed libstorage_la_SOURCES
* Implemented support for fake (PBX) sessions in SM
* PBX integration priority setting support
* Fix a crash that occurs when c2s connecting clients passed the defined
connection limit
* Log S2S retry timeout to main log
* Do not log messages when not enabled or empty logfile configured
Based on PR 46270 by Aran Clauson, some clean up by me.
jabber.el is a Jabber client for Emacs. It may seem strange to have a chat
client in an editor, but consider that chatting is, after all, just a special
case of text editing.
from the announcement:
There have been 212 changes since previous release which is almost the
Same as previous THREE stable releases combined.
The changes consist of the usual amount of bugfixes, however also a
substantial amount of new features have been added.
pkgsrc note: This removes the dependencies on fixed (old) versions
of tre and c-ares.
pkgsrc changes:
---------------
- Add a patch to fix CVE-2012-2093, taken from upstream repository.
- s/py-amkCrypto/py-crypto (py-amkCrypto is not maintained anymore upstream)
upstream changes:
-----------------
Gajim 0.15 (18 March 2012)
* Plugin system
* Whiteboard (via a plugin)
* Message archiving
* Stream managment
* IBB
* Nested roster group
* Roster filtrering
* UPower support
* GPG support for windows
* Spell checking support for windows
Gajim 0.14.4 (22 July 2011)
* Fix translation issue
* other minor fixes
Gajim 0.14.3 (19 June 2011)
* Fix history viewer
* Fix closing roster window
* Prevent some erros with metacontacts
Gajim 0.14.2 (07 June 2011)
* Fix CPU usage when testing file transfer proxies
* Fix invalid XML char regex
* Fix subscription request window handling
* Fix URL display in chat message banner
* Other minor bugfixes
Remove devel/py-ctypes (only needed by and supporting python24).
Remove PYTHON_VERSIONS_ACCEPTED and PYTHON_VERSIONS_INCOMPATIBLE
lines that just mirror defaults now.
Miscellaneous cleanup while editing all these files.
(fixes CVE-2011-3594, CVE-2011-4601, CVE-2011-4602, CVE-2011-4603, CVE-2011-4939
and CVE-2012-1178)
version 2.10.3 (03/26/2012):
* Fix buddies not going offline.
version 2.10.2 (03/14/2012):
General:
* Fix compilation when using binutils 2.22 and new GDK pixbuf. (#14799)
* Fix compilation of the MXit protocol plugin with GLib 2.31. (#14773)
Pidgin:
* Add support for the GNOME3 Network dialog. (#13882)
* Fix rare crash. (#14392)
* Add support for the GNOME3 Default Application dialog for configuring
the Browser.
libpurple:
* Support new connection states and signals for NetworkManager 0.9+.
(Dan Williams) (#13859)
AIM and ICQ:
* Fix a possible crash when receiving an unexpected message
from the server. (Thijs Alkemade) (#14983)
* Allow signing on with usernames containing periods and
underscores. (#13500)
* Allow adding buddies containing periods and underscores. (#13500)
* Don't try to format ICQ usernames entered as email addresses.
Gets rid of an "Unable to format username" error at login. (#13883)
MSN:
* Fix possible crashes caused by not validating incoming messages as
UTF-8. (Thijs Alkemade) (#14884)
* Support new protocol version MSNP18. (#14753)
* Fix messages to offline contacts. (#14302)
Windows-Specific Changes:
* Fix the installer downloading of spell-checking dictionaries (#14612)
* Fix compilation of the Bonjour protocol plugin. (#14802)
Plugins:
* The autoaccept plugin will no longer reset the preference for unknown
buddies to "Auto Reject" in certain cases. (#14964)
version 2.10.1 (12/06/2011):
Finch:
* Fix compilation on OpenBSD.
AIM and ICQ:
* Fix remotely-triggerable crashes by validating strings in a few
messages related to buddy list management. Thanks to Evgeny Boger
for reporting this! (#14682)
Bonjour:
* IPv6 fixes (Linus Lüssing)
Gadu-Gadu:
* Fix problems linking against GnuTLS. (#14544)
IRC:
* Fix a memory leak when admitting UTF-8 text with a non-UTF-8 primary
encoding. (#14700)
Jabber:
* Fix crashes and memory leaks when receiving malformed voice
and video requests. Thanks to Thijs Alkemade for reporting this!
Sametime:
* Separate "username" and "server" when adding new Sametime accounts.
(#14608)
* Fix compilation in Visual C++. (#14608)
SILC:
* Fix CVE-2011-3594, by UTF-8 validating incoming messages before
passing them to glib or libpurple. Identified by Diego Bauche
Madero from IOActive. (#14636)
Yahoo!:
* Fetch buddy icons in some cases where we previously weren't. (#13050)
Windows-Specific Changes:
* Fix compilation
- Added dependency p5-Test-Differences
Changes:
6.78 Wed Dec 7 20:29:45 GMT 2011
- Prevent an IPv6 test failure
6.77 Fri Dec 2 03:55:14 GMT 2011
- Prevent a test failure in 06_online.t if the host is K-lined
6.76 Tue Nov 29 03:24:55 GMT 2011
- DCC.pm: Fix DCC RESUME, it was broken
- NickReclaim.pm: Make it more robust and prevent an error from being
raised when we quit from IRC.
- Added CIDR support to eggdrop. This includes accepting and matching b/e/I
masks and user hosts in cidr notation.
- Added a msg-rate config variable, to replace the current #define msgrate
in server.mod.
- Replaced most dns.mod preprocessor definitions with config variables.
- Added a configure option to set the handlen while keeping compatibility with
the older method of editing eggdrop.h directly.
- Explicitly offer both --enable-tcl-threads and --disable-tcl-threads
configure options that can forcefully enable or disable threaded Tcl
library support.
- Fixed a remote DoS in the CTCP parsing code introduced by the servmsg.c
buffer overflow patch by Nico Golde.
Reference: CVE-2009-1789
- Work around Tcl8.5.10 bug 3371644 (strings starting with # could crash
in Tcl_ConvertElement()).
- tcl_maskhost could crash the bot.
- Fixed a potential crash in read_lang() with lines > 512 characters in
language files. Added support for lines of unlimited size.
- Fixed dns.mod SIGBUS crashes on 64-bit Sparc.
- Fixed a crash when restarting, related to bind log.
A brief selection of highlights since v1.3.1:
* URL and email detection in text views has been rewritten from scratch, greatly
improving the handling of various types of URLs and the contexts they might
appear in.
* Extensive improvements to IRC formatting code handling, including the return
of background color support.
* Extensive, sometimes full rewrites of user interface elements such as nearly
all context menus, the URL Catcher and the Warning Dialogs system for a long
list of user interface improvements and bug fixes.
* Improved SSL connection behavior.
* Translation support and various other improvements in several bundled scripts.
* Expanded Python scripting support via the introduction of an API support
package.
* Support for more IRC numerics.
* Various bugfixes to input line command handling and connection behavior.
anymore, probably due to seemingly innocuous changes to
gobject-introspection, from Patrick Welche per PM
cvs: ----------------------------------------------------------------------
