Version 2.8.2 (2010-04-13)
--------------------------
- Updated TCPDF to version 4.9.011 (#1802)
- Updated TinyMCE to version 3.3.2 (#1711)
- Updated MooTools More to version 1.2.4.4 (#1697)
- Added: added the white Mediabox theme (#1637)
- Added: DC_Table "oncut_callback" and "oncopy_callback" (#1745)
- Added: added the active record to "ondelete_callbacks" (#1721)
- Added: added class "trail" to the custom navigation module (#1691)
- Added: added the wildcard ##token## to the newsletter subscription
module (#1729)
- Added: added the Russian typolinks translation to TinyMCE (#1744)
- Added: the image resizer now considers the file modification time (#1743)
- Added: added ­ as basic entity (#1768)
- Added: added the "mode" parameter to the image insert tag (#1712)
- Added: added a loadDataContainer hook (#1687)
- Added: added an addComment hook (#1669)
- Fixed: special HTML characters were encoded twice (#1642)
- Fixed: the newsletter reader failed to replace insert tags (#1645)
- Fixed: the subtree navigation did not work in the popup file manager (#1653)
- Fixed: the BBCode parser did not add missing URI protocols (#1658)
- Fixed: PDF exports contained incorrect download links (#1654)
- Fixed: the option "always show in sitemap" did not work for hidden
pages (#1679)
- Fixed: the downloads element did not hide meta.txt files (#1688)
- Fixed: the downloads element did not pass all meta information (#1689)
- Fixed: reverted the changes to the navigation menu (#1635)
- Fixed: the function addToUrl() generated invalid URLs in the front end (#1707)
- Fixed: the Config library did not handle numeric strings correctly (#286)
- Fixed: the Mediabox plugin did not support .jpeg file extensions (#1728)
- Fixed: the file manager allowed invalid file and folder names (#1699)
- Fixed: the news and event reader did not overwrite the page
description (#1702)
- Fixed: regular users were not able to copy/move multiple content
elements (#1715)
- Fixed: the PDF export function did not handle whitespace characters
correctly (#1716)
- Fixed: news headlines appeared twice in link headlines (#1749)
- Fixed: the search module did not remove insert tags from the
keywords string (#1750)
- Fixed: the file tree widget did not validate the mounted paths (#1746)
- Fixed: the task center e-mails contained invalid links (#1753)
- Fixed: the option "show protected pages" also showed guest pages (#1694)
- Fixed: the list wizard did not render correctly if the first item
was empty (#1740)
- Fixed: System::idnaEncode() encoded more than just the domain name (#1748)
- Fixed: the Captcha field was missing class="mandatory" (#1767)
- Fixed: the newsletter recipient importer did not count correctly (#1732)
- Fixed: regular users could not edit comments on unmounted pages (#1659)
- Fixed: the ZipReader class failed to handle empty files (#1804)
- Fixed: the Newsletter module did not embed images correctly (#1799)
- Fixed: parameters passed to the file insert tag were cached by the
Input object (#1818)
- Fixed a possible request forgery vulnerability in the back end
- Fixed some minor issues
Collection.
the Perl 5 module Twiggy is a lightweight and fast HTTP server with
unique features such as: PSGI, AnyEvent, fast header parser, and
superdaemon aware.
Collection.
Dancer is a web application framework designed to be as effortless
as possible for the developer, taking care of the boring bits as
easily as possible, yet staying out of your way and letting you get
on with writing your code.
Dancer aims to provide the simplest way for writing web applications,
and offers the flexibility to scale between a very simple lightweight
web service consisting of a few lines of code in a single file, all
the way up to a more complex fully-fledged web application with
session support, templates for views and layouts, etc.
Collection.
Starman is a PSGI perl web server that has unique features such as:
high performance, preforking, signals suport, superdaemon aware,
multiple interfaces and UNIX Domain Socket support, small memory
footprint, PSGI compatible, HTTP/1.1 support, UNIX only.
Pkgsrc changes:
- placate pkglint
Upstream changes:
Version 0.71 -- 1 Apr 2010 <rafl@debian.org> Florian Ragwitz
o Fix some more defined(%hash) warnings on perl 5.12.
Version 0.70 -- 22 Mar 2010 <bobtfish@bobtfish.net> Tomas Doran
o Fix use of defined %hash which becomes deprecated in perl 5.12
Collection.
The Perl 5 module CGI::PSGI is for web application framework
developers who currently uses CGI to handle query parameters, and
would like for the frameworks to comply with the PSGI protocol.
Packages Collection.
The Perl 5 module CGI::Emulate::PSGI allows an application designed
for the CGI environment to run in a PSGI environment, and thus on
any of the backends that PSGI supports.
Collection.
The Perl 5 module CGI::Compile is an utility to compile CGI scripts
into a code reference, like ModPerl::Registry, that can run many
times on its own namespace, as long as the script is ready to run
on a persistent environment.
Collection.
The Perl 5 module Net::FastCGI aims to provide a complete API for
working with the FastCGI protocol. The primary goal is to provide
a function oriented and object oriented API which are not tied to
a specific I/O model or framework. Secondary goal is to provide
higher level tools/API which can be used for debugging and
interoperability testing.
Packages Collection.
The Perl 5 module HTTP::Parser::XS is a fast, primitive HTTP request
parser that can be used either for writing a synchronous HTTP server
or a event-driven server.
Collection.
The Perl 5 module Plack is a set of tools for using PSGI stack. It
contains middleware components, a reference server and utilities
for Web application frameworks. Plack is like Ruby's Rack or Python's
Paste for WSGI.
Collection.
PSGI specifies a standard interface between web servers and Perl
web applications or frameworks, to promote web application portability
and reduce the duplicated efforts by web application framework
developers It is a specification to decouple web server environments
from web application framework code.
For 4.4.0 major new technologies have been introduced, including social
networking and online collaboration features, a new netbook-oriented
interface and infrastructural innovations such as the KAuth authentication
framework. According to KDE's bug-tracking system, 7293 bugs have been
fixed and 1433 new feature requests were implemented.
KDE SC 4.4.1 has a number of improvements:
A performance problem in KMail when sending emails has been fixed
Various fixes in Plasma widgets and other addons, such as the analog clock
and the picture frame
A number of fixes in Konsole, KDE's powerful terminal application
KDE SC 4.4.2 has a number of improvements:
Possible crashes in Plasma, Dolphin and Okular have been fixed
The Microblog applet now shows the correct time in the timeline
The audioplayer KRunner plugin has been fixed to not freeze the KRunner UI
anymore
v0.2.4
+ Prevent completion from overlapping
+ Fix tab order when restoring session
+ Ignore accidentally middle click search
+ Implement bookmark export to XBEL
+ Provide scroll hotkeys, default to Vim
+ Store and complete search in location
+ Fix opening externally with multiple windows
+ Only use icons in panel buttons
+ Fix build with different GTK+ versions
+ Omit micro version and arch from ident string
v0.2.3
+ Improve relocatability for Win32
+ Implement 'Close other tabs' menu item
+ Use new GTK+ accessors where available
+ Allow searching freely in History panel
+ Re-implement completion based on sqlite
+ Re-implement completion suggestion popup
+ Simplify sqlite use towards efficient calls
+ Move panel icons to the bottom
+ Merge Netscape Plugins and Extensions panels
+ Implement 'about:version' special page
+ Implement 'Preferred languages' preference
+ Improve window raising behaviour
+ Allow Ctrl+Right-click to suppress javascript menu
+ Add 'Open link as web app' in context menu
+ Add 'Block image' menu item to Adblock
+ Location progress and compat code refactored
+ Implement 'Paste and proceed' in location
+ Move DNS prefetching into the core
+ Allow selecting and deleting multiple cookies
+ Support attaching/ detaching web inspector
+ Always enable web inspector
+ --diagnostic-dialog command line switch
+ Faster file existence checks
+ Simplified, faster adblock implementation
v0.2.2
+ Turn libnotify into a proper build-time dependency
+ Use Ctrl + Return to open tabs from the location entry
+ Support right-click on bookmark menu items
+ Support -e in midori -a and with multiple commands
+ Make Middle click open selection search if needed
+ Make Ctrl+C work as expected again
+ Fix order of History, Trash and Recently opened pages
+ Revise Shortcuts dialogue to fix oddities
+ Perform Form history completion case insensitive
+ Add 'Web Cache' to Delete Private data dialogue
+ Load accels from /etc/xdg if present
+ Improve XBEL format compatibility and performance
+ Fix inline find by correcting key handling
+ Add option to open panels in separate windows
+ Support Portrait orientation in Fremantle
+ Support Hildon MIME and URI handling
+ Check status before caching in Web Cache
+ Show popup menu on news feed icon if needed
+ Support Colourful Tabs with Tab Panel
+ Tweak sqlite and dbus handling for Win32
+ 'Run as web app' and 'Show in toolbar' for bookmarks
+ Add 'Small icons' toolbar style
+ Fix build with Glib < 2.20 and GTK+ < 2.12
+ Add Import bookmarks for XBEL, Opera and RDF
+ Add Open Link in Foreground/ Background Tab menu
+ Allow closing all tabs
+ Hildon file chooser support
v0.2.1
+ Fix Mouse Gestures to work after activation
+ Explicitly link to X11 to support gold
+ Implement various Hildon specific features
+ Hide the navigationbar in fullscreen
+ Implement permanent storage of form history
+ Support keyboard shortcuts like Ctrl+Tab or "a"
+ Handle SIGHUP, SIGINT, SIGTERM and SIGQUIT
+ Make creation of new windows fast
+ Introduce the Tab History List extension
+ Load icons laziy at startup to speed up startup
+ Introduce a Web Cache extension
+ Refactor and tweak the Preferences dialogue
+ Implement combos to choose external applications
v0.2.0
+ (Kinetic) drag scrolling on touchscreen devices
+ Workaround a speed dial crasher
+ Faster Adblock with element blocking, for all WebKitGTK+ versions
+ Stripped menu, toolbar and tap on hold on Maemo, and 5.0 menu support
+ Add a DNS prefetching extension
+ Better IDN handling
+ Add a form history extension
+ Restore scrolling positions from the session
+ Keep typed address when switching tabs
+ Avoid storing duplicate history items per day
+ Fix multiple duplicate HTTP authentication dialogs
+ Pass mailto: links to the email client
+ Improve context menu with WebKitGTK+ 1.1.15
+ Checkbox "Remember password" in HTTP authentication
+ Fix a crasher when modifying bookmarks
+ Support page icons other than favicon.ico
+ iPhone identity in Network preferences
v0.1.10:
+ Fix freezing when opening multiple windows
+ Revamp Adblock with WebKitGTK+ 1.1.14 API
+ Greatly improve the address completion
+ Always show news feed icon
+ Better handling of feeds in the feed panel
+ Add Gtk+ and WebKit version to the About dialog
+ Improve tab panel and support minimized tabs
+ Implement disabling of extensions in crahs dialog
+ Don't make the web inspector transient
+ Tidy up the Preferences a bit
+ Load default bookmarks and config from /etc
+ Do not use xprop at runtime
+ Use GNOME proxy server if libsoup-gnome is installed
+ Integrate Save As with transfers
+ Save HTTP logins in a text file
+ Support Undo and Redo with WebKitGTK+ 1.1.14
This is a security and bugfix release of MediaWiki 1.15.3 and MediaWiki
1.16.0beta2.
MediaWiki was found to be vulnerable to login CSRF. An attacker who
controls a user account on the target wiki can force the victim to log
in as the attacker, via a script on an external website. If the wiki is
configured to allow user scripts, say with "$wgAllowUserJs = true" in
LocalSettings.php, then the attacker can proceed to mount a
phishing-style attack against the victim to obtain their password.
Even without user scripting, this attack is a potential nuisance, and so
all public wikis should be upgraded if possible.
Our fix includes a breaking change to the API login action. Any clients
using it will need to be updated. We apologise for making such a
disruptive change in a minor release, but we feel that security is
paramount.
For more details see https://bugzilla.wikimedia.org/show_bug.cgi?id=23076
* websetup: Add websetup_unsafe to allow marking other settings
as unsafe.
* Improve openid url munging; do not display anchors and cgi parameters,
as used by yahoo and google urls.
* Add complete German basewiki and directives translation done by
Sebastian Kuhnert.
* Add a include setting, which can be used to make ikiwiki process
wiki source files, such as .htaccess, that would normally be skipped
for security or other reasons. Closes: #447267
(Thanks to Aaron Wilson for the original patch.)
* Add support for setup files written in YAML.
* Add --set-yaml switch for setting more complex config file options.
* filecheck: Fix bugs that prevented the pagespecs from matching when
not called by attachment plugin.
* Fix incorrect influence info returned by a failing link() pagespec,
that could lead to bad dependency handling in certian situations.
* Add preprocessed 'use lib' line to ikiwiki-transition and ikiwiki-calendar
if necessary for unusual install.
* auto-blog.setup: Set tagbase by default, since most bloggers will want it.
* Allow wrappers to be built using tcc. (Workaround #452876)
* openid: Use Openid Simple Registration or OpenID Attribute Exchange
to get the user's email address and username. (Neither is yet
used, but they are available in the session object now.)
* page.tmpl: Add Cache-Control must-revalidate to ensure that users
(especially of Firefox) see fresh page content.
* htmlscrubber: Allow colons in urls after '?'
* template: Search for templates in the templatedir, if they are not
found as pages in the wiki.
Leaf package, updating during the freeze for bugfixes.
* Security fixes (MFSA 2010-16 through MFSA 2010-24)
* Fixes for a number of non-security-relevant crashes, increasing the
stability of the whole platform and the Mail & Newsgroups part of SeaMonkey
* ChatZilla localization packs work again (Bug 540842)
* FTP file upload was fixed (Bug 467524)
* The internal help content was updated some more
The 3.1.1 is the first release of the Squid-3.1 series which has passed
the maintainer's criteria for use in production environments.
3.1.1 brings many new features and upgrades to the basic networking
protocols. A short list of the major new features is:
* Connection Pinning (for NTLM Auth Passthrough)
* Native IPv6
* Quality of Service (QoS) Flow support
* Native Memory Cache
* SSL Bump (for HTTPS Filtering and Adaptation)
* TProxy v4.1+ support
* eCAP Adaptation Module support
* Error Page Localization
* Follow X-Forwarded-For support
* X-Forwarded-For options extended (truncate, delete, transparent)
* Peer-Name ACL
* Reply headers to external ACL.
* ICAP and eCAP Logging
* ICAP Service Sets and Chains
* ICY (SHOUTcast) streaming protocol support
* HTTP/1.1 support on connections to web servers and peers.
(with plans to make this full support within the 3.1 series)
Approved by Thomas Klausner.
