The 3.1.1 is the first release of the Squid-3.1 series which has passed
the maintainer's criteria for use in production environments.
3.1.1 brings many new features and upgrades to the basic networking
protocols. A short list of the major new features is:
* Connection Pinning (for NTLM Auth Passthrough)
* Native IPv6
* Quality of Service (QoS) Flow support
* Native Memory Cache
* SSL Bump (for HTTPS Filtering and Adaptation)
* TProxy v4.1+ support
* eCAP Adaptation Module support
* Error Page Localization
* Follow X-Forwarded-For support
* X-Forwarded-For options extended (truncate, delete, transparent)
* Peer-Name ACL
* Reply headers to external ACL.
* ICAP and eCAP Logging
* ICAP Service Sets and Chains
* ICY (SHOUTcast) streaming protocol support
* HTTP/1.1 support on connections to web servers and peers.
(with plans to make this full support within the 3.1 series)
Approved by Thomas Klausner.
Add full lists of dirs to INSTALLATION_DIRS and patch away directory
creation from Makefile fragments.
Use dansgrdn:dansgrdn for user:group instead of nobody:nobody
Bump PKGREVISION
security fix for CVE-2009-1382 and CVE-2009-2459.
While here, set LICENSE=gnu-gpl-v3.
It is hard to explain detailed changes with plain text, please refer following:
http://www.forkosh.com/mimetexchangelog.html
Trac-0.11.7.ja1 (Mar 11, 2010)
* Merge Trac-0.11.7
* Fix typos
- trac/wiki/default-pages/InterTrac
Trac 0.11.7 (March 10, 2010)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.7
Trac 0.11.7 is nearly identical to 0.11.7rc1 except for a few more fixes:
- avoid an infinite loop when using an AtomicFile in a read-only
directory (#9081)
- don't report client disconnects during writes as internal errors (#9103)
- don't reuse a closed cursor, which could happen in one specific case
for the pysqlite backend (#9104)
Trac 0.11.7rc1 (February 23, 2010)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.7rc1
Security fixes:
- Fixed a ticket validation issue that would allow unauthorized users to modify the status and resolution of a ticket (#8884)
Performance improvements:
- Trac wiki had some trouble handling very long unicode words (#9025) [[comment(intentionally kept vague, we don't want to advertize a DOS, do we?)]]
- Full text search was very slow if lots of custom fields were used (#8935)
Bug fixes:
- Fixed a race condition that could lead to the destruction of the trac.ini file (#8623)
- Fixed creation of new milestone which could have been a rename if performed after a name clash has been detected (#8816)
- Fixed display of value 0 in report cells (#7512)
<http://redmine.lighttpd.net/issues/2157>. Without this patch,
lighttpd 1.4.26 will fail to start if built with the pkgsrc OpenSSL
and configured to serve HTTPS. Bump PKGREVISION.
Also add patch for PR pkg/42988 crash, effectively disabling all
sound support until we decide on what sound API to use.
The current dlopen() guesswork is bad, mkay.
Bump PKGREVISION for this and previous changes.
New Features and Fixes:
Security fixes
END OF LIFE for SeaMonkey 1.x comes with this version, which does NOT fix all
issues. Only SeaMonkey 2.0 fixes all known issues, we strongly encourage all our
users to switch to that new release series.
Rough Changelog for SeaMonkey 1.1.19:
504523 Thunderbird 2 needs NSS 3.12.3.1
512187 1.1.18 candidate fails to connect with SSL/TLS secured sites, PSM fails to initialize
512085 tracking bug for build and release of SeaMonkey 1.1.18
523984 Old (1.9.0/1.8.1) Default Plugin.plugin Makefile uses non-portable "echo -n"
376192 Thunderbird crashes immediately upon accessing IMAP server (duplicate entries in .mailboxlist) [@ nsImapServerResponseParser::mailbox] - imap protocol log "Internal Syntax Error
494706 [1.8 branch only] Thunderbird creates 4 GB Trash file out of less than 200 kB of deleted mail (If data write to file for "target folder of mail move/copy" is temporary interfered by other software, Tb 2 generates file of file_size=4GB-1)
387502 Mailboxes are allowed to grow larger than 4gb in size
535193 DNS resolution in MakeSN of nsAuthSSPI causing issues for proxy servers that support NTLM auth
363455 Enhance PSM's SSL handling on blocking sockets
389087 nsILocalFileUnix affected by 32bit stat/statvfs/truncate, therefore does not work with large files
495098 Crash when using single XMLHttpRequest object for two simultaneous requests; test case included [@ nsXMLHttpRequest::StreamReaderFunc ]
537307 Update SeaMonkey's copyright strings to 2010
440982 To avoid calling JS at unsafe times from JS_GC, jsds_ScriptHookProc should not get the script hook unless it needs to and it is safe to call
305168 Too many recipients when copy/paste address line or sending from MS Access (increase max to 2000)
511521 downloading file with RTL override (RLO) presents conflicting filenames
344818 Linking - missing library deps
505305 Probably Exploitable - Read Access Violation on Block Data Move starting at MSVCR80D!memcpy+0x000000000000005a
440236 crash after connection lost [@ nsMsgDatabase::GetTableCreateIfMissing(char const*, char const*, nsIMdbTable**, unsigned int&, unsigned int&)], in v2 [@ nsMsgDatabase::GetTableCreateIfMissing]
483437 PSM doesn't properly escape AVA Values in Cert Viewer Details tab
483440 PSM doesn't detect invalid OID encodings in Cert Viewer Details tab
284876 Trunk TB10 crash while sending mail [@ nsMsgLocalMailFolder::WriteStartOfNewMessage() ]
516862 Array indexing error in js/src/dtoa.c's Balloc() leads to floating point memory vulnerability (SA36711)
506871 TreeColumns Dangling Pointer Vulnerability (ZDI-CAN-536)
519839 SVG fails to render correctly
* New modular group and dict data access, you can use group and dict
backend modules to access group and dict data stored anywhere you like.
* Improved Xapian indexing / search
* Improved drawing support
* Themes / static files related
* Syntax highlighting is based on the pygments library now
* Authentication improvements
* Sessions / cookies improvements
* Macros fuctions improved
* More Actions added/improved
* Improved logging / debugging / developer support
* GUI editor: improved attachment dialog
* "moin ... account homepage" script to create user homepages
A bunch of bugfixes!
For the full Changelog, see: http://moinmo.in/MoinMoinRelease1.9
ok'ed during the freeze by agc@
photo collections. Unlike Gallery 2, Gallery 1 does not need a database
backend. It provides users with the ability to create and maintain their
own albums via an intuitive web interface. Photo management includes
automatic thumbnail creation, image resizing, rotation, ordering,
captioning, searching and more.
provides users with the ability to create and maintain their own albums
via an intuitive web interface. Photo management includes automatic
thumbnail creation, image resizing, rotation, ordering, captioning,
searching and more. Albums can have read, write and caption permissions
per individual authenticated user for an additional level of privacy.
.2 is not formally released yet, but is release tagged in the scm and I
want to get this update in before we freeze the tree.
"Firefox 3.6 is built on Mozilla's Gecko 1.9.2 web rendering platform,
which has been under development since early 2009 and contains many
improvements for web developers, add-on developers, and users."
- Improved JavaScript performance, overall browser responsiveness,
and startup time.
- The ability for web developers to indicate that scripts should run
asynchronously to speed up page load times.
- Continued support for downloadable web fonts using the new WOFF font format.
- Support for new CSS attributes such as gradients, background sizing,
and pointer events.
- Support for new DOM and HTML5 specifications including the Drag & Drop API
and the File API, which allow for more interactive web pages.
0.9.6
* Support for PHP 5.3.
* The encoder is removed
* The user cache functions are removed
* The session handler is removed
* The minimal PHP version supported is now 5.1
* Some internal refactoring to clean up the code
* Fixed some bugs (and probably added some)
Changes to squid-3.0.STABLE25 (14 Mar 2010):
- Bug 2845: Rework the http digest auth parser
- Bug 2787: unknown/unexpected status code messages
- Bug 2507: squid_ldap_group: Strip Domain name separated by +
- Bug 2367: stale=true on digest requests with unknown nonce
- ... and several other minor corrections
pkgsrc changes:
- Add license definition
Upstream changes:
1.31 February 24, 2010
* Modify need_cgi so that it looks for cgi.c instead of cgi. This is a
fix for the case insensitive filesystem correction listed below.
[Phillipe M. Chiasson]
* t/next_available_port.t doesn't need mod_cgid, use need_cgi instead of
need_module('mod_cgi.c') [Philippe M. Chiasson]
* PR: 21554 Load mod_apreq2.so if it is available
[Derek Price, <derek@ximbiot.com>]
* Add conditional to ignore IfVersion directive if mod_version is not
built. [Adam Prime <adam.prime@utoronto.ca>,
Fred Moyer <phred@apache.org>]
* PR: 41239 t/TEST -ping does not return a valid return code to the
calling shell [ozw1z5rd <alessio.palma@staff.dada.net>]
* Prevent infinite loop when no default apxs or httpd is present and
repeated attempts to run the test suite under an automated harness
(such as a cpan smoke test). Issue reported by CORION and ANDK,
PR: 12911 [Fred Moyer <phred@apache.org>]
* Use need_module('mod_cgi.c') and need_module('mod_cgid.c') in
t/next_available_port.t instead of need_cgi. On case insensitive file
systems such as OS X, need_cgi will fulfill the requirement with
cgi.pm, when mod_cgi.c is the desired requirement.
[Fred Moyer <phred@apache.org>]
* Fix overridden get_basic_credentials test when using NTLM
authentication [Rick Frankel <cpan@rickster.com>]
* Work around a bug introduced in libwww-perl in version 5.820 for
httpd's credentials [Gunnar Wolf <gwolf@gwolf.org>, Niko Tyni <ntyni@debian.org>]
* Make Apache::TestConfig::untaint_path tolerate undefined arguments
[Torsten Foertsch <torsten.foertsch@gmx.net]
* Inherit LoadFile directives from the global httpd.conf
[Torsten Foertsch <torsten.foertsch@gmx.net]
* Don't overwrite php.ini if it already exists PR: 32994
[MAHEX <MAHEX@cpan.org>]
pkgsrc changes:
- Adjust license definition
Upstream changes:
v0.40 (released 2010/01/27):
* bug fixes
- Fixed RT #47500 (http://rt.cpan.org/Public/Bug/Display.html?id=47500),
HTTP::DAV::Comms->credentials() method erroneously autovivified
basic authentication internal values, causing wrong or undefined
credentials to be sent out, or credentials to be "forgot" by HTTP::DAV.
Thanks to stoian.iovchev at imperia.bg and Glenn Fowler for their
feedback on this.
v0.39 (released 2009/12/12):
* bug fixes
- Fixed RT #52665 (http://rt.cpan.org/Public/Bug/Display.html?id=52665),
Using dave or propfind() on URLs containing escaped chars (%xx) could fail,
due to upper/lower case differences. Thanks to cebjyre for the patch
and the test case.
Upstream changes:
0.33 2010-03-10 20:08:00
- The "render()" method now throws a warning on exception before
returning the exception. To silence the warning, pass 'render_die =>
0' to the constructor. Better yet, pass 'render_die => 1' to make it
die instead of returning the excption. This will be the default in a
future release when unspecified. The Helper will generate new views
with render_die => 1.
2010-03-14 Gisle Aas <gisle@ActiveState.com>
Release 1.53
Ville Skyttä (6):
Remove unneeded execute permissions.
Add $uri->secure() method.
Documentation and comment spelling fixes.
Fix heuristics when COUNTRY is set to "gb".
Use HTTP_ACCEPT_LANGUAGE, LC_ALL, and LANG in country heuristics.
POD linking improvements.
Michael G. Schwern (2):
Rewrite the URI::Escape tests with Test::More
Update URI::Escape for RFC 3986
Gisle Aas (1):
Bump MIN_PERL_VERSION to 5.6.1 [RT#54078]
Salvatore Bonaccorso (1):
Suppress wide caracters warnings in iri.t [RT#53737]
