pkgsrc

History

adam db074ecec2 Changes 0.8.4: - * Fixed a possible attack (program abortion) by malicious web pages, which contain huge values for <table> attributes "colspan" and "rowspan". * Changed anchors, they are now tested to be unique, and removed properly, when a widget tree is changed (e.g. another page is visited). Also added HTML warnings. Patches: Sebastian Geerken - * Fixed two minor memory leaks (IO's Buf1Start & html's SPCBuf). * Fixed handling of XML's "/>" tag-closing (e.g. <script ... />). BUG#514 * Removed obsolete code from IO/file.c. * Added a few missing EINTR handlers in dpi.c. * Orthogonalized the generic parser: - Fixes memory leaks and widget state when recovering from bad HTML. - Improves error detection and validation (needed by XHTML). - Makes DOC tree generation possible (needed by CSS). - Cleaner design of handling routines for bad HTML. - Orthodox treatment of double optional elements (HTML, HEAD, BODY). - Lots of minor code cleanups. * Switched the dpi file server's design to pthreads (fixes a critical race). * Avoided a crash when indexed GIF images lack a color map (BUG#647). * Fixed a bug when the remote HTTP server sends no Content-Type and the TCP packetizing splits the header from data (BUG#650). * Returned the parser to the old whitespace "collapsing" mode (this can be changed with the SGML_SPCDEL define in html.c). * Fixed a memory leak for DwStyle (there was one leak per page). Patches: Jorge Arellano - * Fixed a large memory leak of thread specific resources. --Very important Patch: Jorge Arellano, Livio Baldini - * Removed warnings for pointer arithmetic and strict prototypes all around the code (now it works under LP64 architectures). * Made miscelaneous cleanups for LP64 architectures. Patches: Jorge Arellano, Dieter Baron - * Changed dpid's umask to 0077. Patch: Jorge Arellano, Richard Zidlicky - * Switched to g_vsnprintf (instead of vsnprintf). Patch: Frank Wille - * Updated a bit the README file. Patch: Dieter Baron - * Made a grammatical and typographical review of the whole documentation in doc/. Also added some clarifications. * Fixed a libpng detection problem (e.g., on CYGWIN). BUG#651 Patches: Roberto Sanchez - * Fixed "id" and "name" attributes parsing logic. * Improved the parsing algorithm for character entities. BUG#605 Patches: Matthias Franz - * Fixed a security bug with uncertain data and a_Interface_msg(). CAN-2005-0012. Patch: Tavis Ormandy	2005-01-27 09:39:44 +00:00
..
patch-aa	Properly handle the dpidrc configuration file. Bump PKGREVISION to 1.	2005-01-04 14:09:17 +00:00
patch-ab	Changes 0.8.3:	2004-11-08 11:00:24 +00:00

- * Fixed a possible attack (program abortion) by malicious web pages, which
     contain huge values for <table> attributes "colspan" and "rowspan".
   * Changed anchors, they are now tested to be unique, and removed properly,
     when a widget tree is changed (e.g. another page is visited). Also added
     HTML warnings.
   Patches: Sebastian Geerken
 - * Fixed two minor memory leaks (IO's Buf1Start & html's SPCBuf).
   * Fixed handling of XML's "/>" tag-closing (e.g. <script ... />). BUG#514
   * Removed obsolete code from IO/file.c.
   * Added a few missing EINTR handlers in dpi.c.
   * Orthogonalized the generic parser:
       - Fixes memory leaks and widget state when recovering from bad HTML.
       - Improves error detection and validation (needed by XHTML).
       - Makes DOC tree generation possible (needed by CSS).
       - Cleaner design of handling routines for bad HTML.
       - Orthodox treatment of double optional elements (HTML, HEAD, BODY).
       - Lots of minor code cleanups.
   * Switched the dpi file server's design to pthreads (fixes a critical race).
   * Avoided a crash when indexed GIF images lack a color map (BUG#647).
   * Fixed a bug when the remote HTTP server sends no Content-Type and
     the TCP packetizing splits the header from data (BUG#650).
   * Returned the parser to the old whitespace "collapsing" mode
     (this can be changed with the SGML_SPCDEL define in html.c).
   * Fixed a memory leak for DwStyle (there was one leak per page).
   Patches: Jorge Arellano
 - * Fixed a large memory leak of thread specific resources. --Very important
   Patch: Jorge Arellano, Livio Baldini
 - * Removed warnings for pointer arithmetic and strict prototypes all
     around the code (now it works under LP64 architectures).
   * Made miscelaneous cleanups for LP64 architectures.
   Patches: Jorge Arellano, Dieter Baron
 - * Changed dpid's umask to 0077.
   Patch: Jorge Arellano, Richard Zidlicky
 - * Switched to g_vsnprintf (instead of vsnprintf).
   Patch: Frank Wille
 - * Updated a bit the README file.
   Patch: Dieter Baron
 - * Made a grammatical and typographical review of the whole documentation
     in doc/. Also added some clarifications.
   * Fixed a libpng detection problem (e.g., on CYGWIN). BUG#651
   Patches: Roberto Sanchez
 - * Fixed "id" and "name" attributes parsing logic.
   * Improved the parsing algorithm for character entities. BUG#605
   Patches: Matthias Franz
 - * Fixed a security bug with uncertain data and a_Interface_msg().
     CAN-2005-0012.
   Patch: Tavis Ormandy

2005-01-27 09:39:44 +00:00

patch-aa

Properly handle the dpidrc configuration file. Bump PKGREVISION to 1.

2005-01-04 14:09:17 +00:00

patch-ab

Changes 0.8.3:

2004-11-08 11:00:24 +00:00