This is a new version, for major Ubuntu release 18.04.
$TMPDIR path rewriting turned off on Unix; only used for Windows.
Added pix conversion to depth 2 and 4. We now have general
converters to 1, 2, 4, 8, 16 and 32 bpp.
Modified giflib to use read/write from/to memory; no temp files;
no longer support versions before 5.1.
Move most low-level code from separate files to their callers;
about 30 of them became static.
Improved table detection on scanned page images (tests: pageseg_reg.c)
Added support for write/compare regression tests for files.
Modified printimage for more flexibility.
Enable lookup by key on comma-separated key/value text file.
Update README.html for building with Visual Studio.
Improved functions for getting pixel averages in RGB images
Simplified and speedup of unsharp masking.
New function for detecting and correcting text orientation.
Remove slow sharpening operation when not appropriate during scaling.
Better handling of gplots with 0 or 1 data point.
Coverity scan fixes.
Modified jpeg2000 header to use openjpeg 2.3.
Improved depth accessors for pixa and pixaa; added size accessors
for pixa and pixaa.
Bug fix in webp interface on read error.
New function that finds the closest boxes in a boxa to any particular
box, in each of 4 directions.
New regression tests in automated sequence: blend5_reg, quadtree_reg,
wordboxes_reg.
New program: textorient
Removed programs: snapcolortest
4.8.0
- Cleanly shutdown integrated event loops when shutting down the kernel.
- %gui qt now uses Qt 5 by default rather than Qt 4, following a similar
change in terminal IPython.
- Fix event loop integration for :mod:asyncio when run with Tornado 5,
which uses asyncio where available.
Changes in Jupyter Client 5.2.2
- Fix :meth:.KernelSpecManager.get_all_specs method in subclasses
that only override :meth:.KernelSpecManager.find_kernel_specs
and :meth:.KernelSpecManager.get_kernel_spec.
- Eliminate occasional error messages during process exit.
- Improve error message when attempting to bind on invalid address.
- Add missing direct dependency on tornado
all security advisory up to and including XSA254.
While there pass XEN_VENDORVERSION=nb${PKGREVISION} to make so that
'xl info' shows the NetBSD PKGREVISION. If PKGREVISION is not available,
define this as 'nb0'.
From DESCR:
This Python module allows you to create TCP connections through a SOCKS proxy
without any special effort.
This is needed as one of the dependencies of py-gsutil, as noted in
PR pkg/52941.
Changelog:
Changes from 1.4.0 to 1.4.1:
----------------------------
* Bug fixes:
- revert some quoting changes because they don't work well with certain
GCC edge cases (#168)
* Enhancements:
- add limited support for --cflags with --msvc-syntax
Changes from 1.3.7 to 1.4.0:
----------------------------
* Notable libpkgconf API changes:
- pkgconf_pkg_t.requires has been renamed to pkgconf_pkg_t.required for
C++20 compatibility.
* Enhancements:
- pkgconf and libpkgconf has been ported to Windows as native binaries.
- improved compatibility with freedesktop.org pkg-config's ${pc_sysrootdir}
usage pattern.
- do not mention PKG_CONFIG_SKIP_CONFLICTS environmental variable when
simplified errors are requested, as with PKG_CONFIG_PATH.
- the dependency solver now stores solutions to dependency graph elements
it visits, allowing for the dependency graph to be incrementally solved.
this improves dependency solving time by an order of magnitude in most
cases.
- new --env option allows for exporting cflags/libs fragments as export
variables
- new support for building pkgconf with CMake and Meson
- improved compiler warning flag detection on autoconf and CMake
- removed PKGCONF_BUFSIZE allocations from the stack where possible
- allow for customizing the way fragment lists are rendered using
a callback API
- new support for --msvc-syntax output using the new fragment rendering
callbacks
- fragments are now quoted according to POSIX literal rules
- new variables on the pkg-config builtin:
- ${pc_system_includedirs}: the system includedir search path known
by pkgconf
- ${pc_system_libdirs}: the system libdir search path known by pkgconf
- new manpages:
- pc(5) describing pkgconf's interpretation of pkg-config .pc files
- pkg.m4(7) describing the autotools macros bundled with pkgconf
* Bug fixes:
- fix pkgconf_pkg_t.id generation on native Windows where either \ or /
are usable as path separator.
- add missing --modversion to --help output
- do not evaluate module paths for modules that are not actually on disk
- ensure we work on a zeroed buffer prior to calling realpath(2) with it
- fix path deduplication edge case when cache-inodes feature is unavailable
- fix path rewriting regression with PKG_CONFIG_SYSROOT_DIR when
PKG_CONFIG_SYSROOT_DIR is set to /
- fix crash in edge case where a .pc file has misquoting in a fragment list.
- fix logic edge case when comparing relocated paths
Changes from 1.3.6 to 1.3.7:
----------------------------
* Enhancements:
- improved diagnostics for malformed packages.
* Bug fixes:
- reject packages which contain incomplete metadata in post-parse phase.
Changes from 1.3.5 to 1.3.6:
----------------------------
* Enhancements:
- add many cflags to the protected set: -Wa, -Wl, -Wp, -ansi, -std=, -stdlib=,
-pedantic, -pthread, -trigraphs, -nostdinc, -nostdlibinc, -nobuiltininc.
* Bug fixes:
- handle -include cflag fragments properly.
Changelog:
New
Performance improvements, including:
Rendering graphics for Windows users by using Off-Main-Threa
Painting (OMTP)
Loading pages faster by changing how Firefox caches and retrieves
JavaScript
Improvements to Firefox Screenshots:
Copy and paste screenshots directly to your clipboard
Firefox Screenshots now works in Private Browsing mode
Added Nepali (ne-NP) locale
In case you missed it--57 Release privacy and performance feature:
Users can enable Tracking Protection at all times. Learn how to turn
Tracking Protection on.
Fixed
Fonts installed in non-standard directories will no longer appear
blank for Linux users
Various security fixes
Changed
User profiles created in Firefox 58 (and in future releases) are not
supported in previous versions of Firefox. Users who downgrade to
a previous version should create a new profile for that version.
Learn about alternatives to downgrading on our support site.
Added a warning to alert users and site owners of planned security
changes to sites affected by the gradual distrust plan for
the Symantec certificate authority
#CVE-2018-5091: Use-after-free with DTMF timers
#CVE-2018-5092: Use-after-free in Web Workers
#CVE-2018-5093: Buffer overflow in WebAssembly during Memory/Table resizing
#CVE-2018-5094: Buffer overflow in WebAssembly with garbage collection on
uninitialized memory
#CVE-2018-5095: Integer overflow in Skia library during edge builder allocation
#CVE-2018-5097: Use-after-free when source document is manipulated during XSLT
#CVE-2018-5098: Use-after-free while manipulating form input elements
#CVE-2018-5099: Use-after-free with widget listener
#CVE-2018-5100: Use-after-free when IsPotentiallyScrollable arguments are
freed from memory
#CVE-2018-5101: Use-after-free with floating first-letter style elements
#CVE-2018-5102: Use-after-free in HTML media elements
#CVE-2018-5103: Use-after-free during mouse event handling
#CVE-2018-5104: Use-after-free during font face manipulation
#CVE-2018-5105: WebExtensions can save and execute files on local file
system without user prompts
#CVE-2018-5106: Developer Tools can expose style editor information
cross-origin through service worker
#CVE-2018-5107: Printing process will follow symlinks for local file access
#CVE-2018-5108: Manually entered blob URL can be accessed by subsequent
private browsing tabs
#CVE-2018-5109: Audio capture prompts and starts with incorrect origin
attribution
#CVE-2018-5110: Cursor can be made invisible on OS X
#CVE-2018-5117: URL spoofing with right-to-left text aligned left-to-right
#CVE-2018-5118: Activity Stream images can attempt to load local content
through file:
#CVE-2018-5119: Reader view will load cross-origin content in violation
of CORS headers
#CVE-2018-5121: OS X Tibetan characters render incompletely in the addressbar
#CVE-2018-5122: Potential integer overflow in DoCrypt
#CVE-2018-5090: Memory safety bugs fixed in Firefox 58
#CVE-2018-5089: Memory safety bugs fixed in Firefox 58 and Firefox ESR 52.6
Changelog:
Fix
This releases fixes the "Mailsploit" vulnerability and other vulnerabilities
detected by the "Cure53" audit. For details and various other security
fixes see here.
CVE-2017-7845: Buffer overflow when drawing and validating elements with
ANGLE library using Direct 3D 9
CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin
CVE-2017-7847: Local path string can be leaked from RSS feed
CVE-2017-7848: RSS Feed vulnerable to new line Injection
CVE-2017-7829: Mailsploit part 1: From address with encoded null character
is cut off in message header display
Changelog:
CVE-2018-5091: Use-after-free with DTMF timers
CVE-2018-5095: Integer overflow in Skia library during edge builder allocation
CVE-2018-5096: Use-after-free while editing form elements
CVE-2018-5097: Use-after-free when source document is manipulated during XSLT
CVE-2018-5098: Use-after-free while manipulating form input elements
CVE-2018-5099: Use-after-free with widget listener
CVE-2018-5102: Use-after-free in HTML media elements
CVE-2018-5103: Use-after-free during mouse event handling
CVE-2018-5104: Use-after-free during font face manipulation
CVE-2018-5117: URL spoofing with right-to-left text aligned left-to-right
CVE-2018-5089: Memory safety bugs fixed in Firefox 58 and Firefox ESR 52.6
Fix for Speculative execution side-channel attack ("Spectre")
