| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
- Convert to libarchive 3.x interfaces, avoiding the legacy glue.
- Rename local copy of netpgpverify to match installed headers.
- Shuffle bootstrap code to reduce special cases in pkg_add.
- Always read/write file names in tar archives as binary. While they are
supposed to be UTF-8, locale conversion creates more problems than it
solves here.
- Fix const correctness in gpg_verify.
- Add format string annotation for xasprintf for GCC-like compilers.
- Restrict supported archive formats for binary packages to ar (signed
packages) and tar (actual content) with uncompressed/gzip/bzip2/xz as
compression choices. This reduces the exposed libarchive surface.
- The pkg-vulnerability file correspondingly supports only the same
compression choices.
|
|
doea not work.
|
|
|
|
Well, it’s the last Wednesday of the month, and I hope you know
what that means: it’s time for your regularly scheduled MAME release.
There aren’t a huge number of new working machines in this release,
but there are some significant improvements. Thanks to kazblox,
MAME now emulates some of the peculiarities of Famicom clone hardware,
and thanks to shattered, emulation of the Agat-7 Apple II clone is
improved. Peter Ferrie provided a superior Apple II language card
implementation. We’ve got lots of additions to the BBC and PC
software lists from Nigel Barnes and darkstar.
We’ve made substantial improvements to some of MAME’s non-emulation
features. The -romident verb is now much faster when used on a
folder or archive containing multiple files, and will identify ROMs
for emulated slot devices that aren’t inserted by default. The
-listxml output now includes all linked devices, and is produced
at least 30% faster. We’ve also improved -verifyroms so it covers
more devices and is faster when verifying ROMs for a subset of
drivers/devices.
MAME 0.184 includes support for plenty of newly dumped versions of
supported arcade games, including a rare US prototype of Shanghai
III, the world release of Super Crowns Golf, a version of Flashgirl
that shows the Kyugo logo, a German version of Raiden II, the
Japanese release of Radical Radial, and bootlegs of Bomber Man and
Phoenix. There are also several new chess computers, and even more
Aristocrat Mark V gambler sets. If you’re interested in the TI-8x
graphing calculators, it’s now possible to get an emulated TI-82
or TI-85 to communicate with another emulated instance or with a
program running on the host computer over a socket.
|
|
|
|
|
|
What's New
Bug Fixes
The following vulnerabilities have been fixed:
* [1]wnpa-sec-2017-12
IMAP dissector crash ([2]Bug 13466) [3]CVE-2017-7703
* [4]wnpa-sec-2017-13
WBMXL dissector infinite loop ([5]Bug 13477) [6]CVE-2017-7702
* [7]wnpa-sec-2017-14
NetScaler file parser infinite loop ([8]Bug 13478) [9]CVE-2017-7700
* [10]wnpa-sec-2017-15
RPCoRDMA dissector infinite loop ([11]Bug 13558) [12]CVE-2017-7705
* [13]wnpa-sec-2017-16
BGP dissector infinite loop ([14]Bug 13557) [15]CVE-2017-7701
* [16]wnpa-sec-2017-17
DOF dissector infinite loop ([17]Bug 13453) [18]CVE-2017-7704
* [19]wnpa-sec-2017-18
PacketBB dissector crash ([20]Bug 13559)
* [21]wnpa-sec-2017-19
SLSK dissector long loop ([22]Bug 13576)
* [23]wnpa-sec-2017-20
SIGCOMP dissector infinite loop ([24]Bug 13578)
* [25]wnpa-sec-2017-21
WSP dissector infinite loop ([26]Bug 13581)
The following bugs have been fixed:
* T30 FCF byte decoding masks DTC, CIG and NCS. ([27]Bug 1918)
* Wireshark gives decoding error during rnsap message dissection(SCCP
reassembly). ([28]Bug 3360)
* Added IEEE 802.15.4-2003 AES-CCM security modes
(packet-ieee802154). ([29]Bug 4912)
* Payload in 2 SCCP DT1 messages in the same frame isn't
(sub)dissected. ([30]Bug 11130)
* IEEE 802.15.4: an area of Payload IEs is dissected twice. ([31]Bug
13068)
* Qt UI: Wireshark crash when deleting IO graph string while it's in
editing mode. ([32]Bug 13234)
* Crash on exit due to an invalid frame data sequence state. ([33]Bug
13433)
* Access Violation using Lua dissector. ([34]Bug 13457)
* Some bytes ignored in every packet in NetScaler packet trace when
vmnames are included in packet headers. ([35]Bug 13459)
* VOIP RTP stream Find Reverse button doesn't work. ([36]Bug 13462)
* Lua dissector: ProtoField int&42; do not allow FT_HEX or FT_OCT,
crash when set to FT_HEX_DEC or FT_DEC_HEX. ([37]Bug 13484)
* GIOP LocateRequest v1.0 is improperly indicated as "malformed".
([38]Bug 13488)
* Bug in ZigBee - Zone Status Change Notification. ([39]Bug 13493)
* Packet exception in packet-ua3g and incomplete strings in
packet-noe. ([40]Bug 13502)
* Wrong BGP capability dissect. ([41]Bug 13521)
* Endpoint statistics column labels seem incorrect. ([42]Bug 13526)
* Strange automatic jump in packet details for a certain DNS response
packet. ([43]Bug 13533)
* When a Lua enum or bool preference is changed via context menu,
prefs_changed isn't called with Qt Wireshark. ([44]Bug 13536)
* IO Graph selects wrong packet or displays "Packet number x isn't
displayed". ([45]Bug 13537)
* tshark's -z endpoints,ip ignores optional filter. ([46]Bug 13538)
* SSL: Handshake type in Info column not always separated by comma.
([47]Bug 13539)
* libfuzzer: PEEKREMOTE dissector bug. ([48]Bug 13544)
* libfuzzer: packetBB dissector bug (packetbb.msg.addr.valuecustom).
([49]Bug 13545)
* libfuzzer: WSP dissector bug (wsp.header.x_wap_tod). ([50]Bug
13546)
* libfuzzer: MIH dissector bug. ([51]Bug 13547)
* libfuzzer: DNS dissector bug. ([52]Bug 13548)
* libfuzzer: WLCCP dissector bug. ([53]Bug 13549)
* libfuzzer: TAPA dissector bug. ([54]Bug 13553)
* libfuzzer: lapsat dissector bug. ([55]Bug 13554)
* libfuzzer: wassp dissector bug. ([56]Bug 13555)
* Illegal reassembly of GSM SMS packets. ([57]Bug 13572)
* SSH Dissector uses incorrect length for protocol field
(ssh.protocol). ([58]Bug 13574)
* NBAP malformed packet for short Binding ID. ([59]Bug 13577)
* libfuzzer: WSP dissector bug (wsp.header.x_up_1.x_up_proxy_tod).
([60]Bug 13579)
* libfuzzer: asterix dissector bug (asterix.021_230_RA). ([61]Bug
13580)
* RTPproxy dissector adds multi lines to info column. ([62]Bug 13582)
Updated Protocol Support
ASTERIX, BGP, BSSGP, BT AVRCP, BT HCI_CMD, BT HFP, BT PBAP, DNS, DOF,
EAPOL-MKA, GIOP, GSM SMS, HTTP, ICMP, IEEE 802.11, IEEE 802.15.4, IMAP,
ISIS LSP, iSNS, LAPSat, MIH, MySQL, NBAP, NBIFOM, PacketBB, PEEKREMOTE,
RPCoRDMA, RTPproxy, SCCP, SIGCOMP, SLSK, SSH, SSL, T.30, TAPA, UA3G,
WASSP, WBXML, WLCCP, WSP, and ZigBee ZCL IAS
|
|
|
|
NEW IN WAF 1.9.9
----------------
* Fix QT5 detection on macOS 1912
* Fix Clang compilation database when no c compiler is found #1914
* Fix python 3 compatibility with cppcheck #1921
* Fix the thread index in parallel_debug
* Fix install task for mac_files #1911
* Fix msvc version detection #1907
* Add VS2017 support #1927
* Add newer fortran flag detection #1916
* Add unity builds settings per task generator
* Add run_build_cls parameter to conf.run_build/conf.check
* Add a warning for missing cflags/cxxflags in gccdeps
|
|
|
|
This is a regularly scheduled stable release.
Resolved issues since v0.14.25:
#4035: Symlinks are now properly ignored on Windows.
#2344: Discovery errors are more clearly displayed in the GUI.
#3913: The language dropdown menu in the GUI is now correctly sorted.
Also:
When there are items that could not be synced, their full path is displayed in the GUI.
|
|
|
|
Ragel 6.10 - Mar 24, 2017
=========================
-C codegen: test P vs PE in goto/call/ret statements in EOF actions, just
before re-entering. If at the end of the input block then the EOF check is
jumped to. This change prevents overrunning the buffer if control flow is
issued in an EOF action without fixing the input pointer first. If a program
properly issues an fhold before the control flow the program won't be
affected.
-Updated action label generation. The previous set of conditions for
generating the label didn't cover actions coming from the eofAction pointer
(eof trans covered since it points into the set of transitions).
-Use separate signed/unsigned values for host type min/max. Using separate
values avoids the need to type cast before the data goes into FsmCtx structs.
Keep it in native types until it is used.
-Optionally do not generate entry point variables. Adds noentry write option
for data.
-Various warning elimination and build updates.
|
|
|
|
1.5.5:
* [CritFix] Fix classifier learning with Redis backend
* [CritFix] Fix issue when parsing encoded rfc822/messages
* [Feature] Add escaped version of lua_ucl import
* [Feature] Add task:headers_foreach function
* [Feature] Allow to process filenames from content type
* [Feature] Allow to query hashed emails
* [Feature] Ignore bayes with mostly metatokens or with too few text
* [Feature] Probabilistically skip metatokens
* [Feature] Retrieve all virus names from SAVAPI
* [Feature] Rework classifiers lua metatokens
* [Feature] Store headers order
* [Feature] Store text tokens inside bayes tokens
* [Feature] Use cached shingles keys
* [Fix] Add missing score normalisation for HFILTER_URL_ONLY
* [Fix] Avoid lookup in absent hash
* [Fix] Check return values from Lua functions called from C
* [Fix] Do not count sending and loading time in rspamc
* [Fix] Escape json strings for controller rejplies from Lua
* [Fix] Fix archive scans for savapi
* [Fix] Fix domain_only emails RBL
* [Fix] Fix ip_score map configuration
* [Fix] Fix JSON output for history_redis
* [Fix] Fix one character length substrings search
* [Fix] Fix parsing of non-RFC compatible Exim received
* [Fix] Fix parsing of options for workers with the same type
* [Fix] Fix processing of small tokens vectors
* [Fix] Fix rfc2047 tokenization
* [Fix] Fix typo
* [Fix] More fixes for inplace decoding
* [Fix] Try to avoid modifications of the original data
* [Fix] URL redirector: Fix call to is_redirector
* [Rework] Set token data as uint64_t instead of chars array
* [WebUI] Check if neighbours' history backend versions match
* [WebUI] Disable phrase connectors replacement in history filtering
* [WebUI] Disable phrase connectors replacement in symbols filtering
* [WebUI] Do not hide messages with bad subject, just replace it with '???'
* [WebUI] Fix error message
* [WebUI] Fix history v2 display
* [WebUI] Fix legacy history
* [WebUI] history: break To address lists on commas
* [WebUI] Increase default timeout to 20 seconds
* [WebUI] Save some history table space
1.5.4:
* [Conf] Add history_redis default configuration
* [Feature] Add spoofed rules
* [Feature] Add URL_IN_SUBJECT rule
* [Feature] Allow to get task's subject
* [Feature] Allow to specify maximum number of shots for symbols
* [Feature] Distinguish URLs found in Subject
* [Feature] Memoize LPEG grammars
* [Feature] Parse else parts in SA rules
* [Feature] Process subject for mixed characters
* [Feature] Resolve url chains in url_redirector module
* [Feature] Stat greylisted messages as greylisted not soft-rejected
* [Feature] Support checking for redirector in Lua SURBL
* [Feature] Support tag_exists SA function
* [Feature] Work with broken rfc2047 tokens
* [Fix] Check all watcher's dependencies
* [Fix] Do not compile hyperscan with no SSSE3 support
* [Fix] Do not crash if cannot decode qp encoded part
* [Fix] Fix dependencies of DKIM when multiple signatures are found
* [Fix] Fix lists in whitelist plugin
* [Fix] Fix one-shot symbols weight calculations
* [Fix] Fix options and shots match
* [Fix] Fix order of symbol options
* [Fix] Fix parsing of dot at the end of the address
* [Fix] Fix parsing of lua table arguments
* [Fix] Fix processing of subject words
* [Fix] Fix string split memoization
* [Fix] Fix templates grammar usage
* [Fix] Fix various issues related to Lua stack manipulation
* [Fix] Force actions: Use postfilter if we have honor_action / require_action
* [Fix] Further fixes to avoid PHISHING FP
* [Fix] Preserve order of options in symbols
* [Fix] Rspamadm grep: deal with unusually-formatted logs
* [Fix] Use hostname suffix when dealing with history
* [Rework] Remove outdated SA rules
* [WebUI] Add flexible columns
* [WebUI] Add footable
* [WebUI] Add sender, recipients and subject columns
* [WebUI] Allow message-id break
* [WebUI] Fix history clustering
* [WebUI] Fix history display
* [WebUI] Fix sorting
* [WebUI] Humanize sizes
* [WebUI] Initial move towards footable
* [WebUI] Remove datatables
* [WebUI] Replace `.values` method with `.map`
* [WebUI] Rework v2 symbols display
* [WebUI] Try to normalize frequencies
* [WebUI] Unbreak WebUI
* [WebUI] Use Footable to draw Throughput summary table
|
|
|
|
TortoiseHg 4.1.3
TortoiseHg 4.1.3 is a special release to pick up security fixes in Mercurial 4.1.3
TortoiseHg 4.1.2
TortoiseHg 4.1.2 is a regularly scheduled bug-fix release
Bug Fixes
fix URLs to websites
Installer
Latest evolve and dulwich extensions
|
|
|
|
v1.15.5
=======
* fix #167 by correctly respecting preformatted version metadata
from PKG-INFO/EGG-INFO
v1.15.4
=======
* fix issue #164: iterate all found entry points to avoid erros when pip remakes egg-info
* enhance self-use to enable pip install from github again
v1.15.3
=======
* bring back correctly getting our version in the own sdist, finalizes #114
* fix issue #150: strip local components of tags
v1.15.2
=======
* fix issue #128: return None when a scm specific parse fails in a worktree to ease parse reuse
v1.15.1
=======
* fix issue #126: the local part of any tags is discarded
when guessing new versions
* minor performance optimization by doing fewer git calls
in the usual cases
|
|
|
|
v35.0.0
-------
* #436: In egg_info.manifest_maker, no longer read
the file list from the manifest file, and instead
re-build it on each build. In this way, files removed
from the specification will not linger in the manifest.
As a result, any files manually added to the manifest
will be removed on subsequent egg_info invocations.
No projects should be manually adding files to the
manifest and should instead use MANIFEST.in or SCM
file finders to force inclusion of files in the manifest.
v34.4.1
-------
* #1008: In MSVC support, use always the last version available for Windows SDK and UCRT SDK.
* #1008: In MSVC support, fix "vcruntime140.dll" returned path with Visual Studio 2017.
* #992: In msvc.msvc9_query_vcvarsall, ensure the
returned dicts have str values and not Unicode for
compatibilty with os.environ.
v34.4.0
-------
* #995: In MSVC support, add support for "Microsoft Visual Studio 2017" and "Microsoft Visual Studio Build Tools 2017".
* #999 via #1007: Extend support for declarative package
config in a setup.cfg file to include the options
``python_requires`` and ``py_modules``.
|
|
|
|
2.1.0
-----
* Lazy import pkg_resources
* Initialize sphinx config using application instead of config
* Updated from global requirements
* Also generate XML coverage report
* Update to a newer hacking library
|
|
|
|
3.7.0 - 2017-03-20
This is a feature release.
New features:
Rule based stateful testing now has an @invariant decorator that specifies methods that are run after init and after every step, allowing you to encode properties that should be true at all times. Thanks to Tom Prince for this feature.
The decimals strategy now supports allow_nan and allow_infinity flags.
There are significantly more strategies available for numpy, including for generating arbitrary data types. Thanks to Zac Hatfield Dodds for this feature.
When using the data() strategy you can now add a label as an argument to draw(), which will be printed along with the value when an example fails. Thanks to Peter Inglesby for this feature.
Bug fixes:
Bug fix: @composite now preserves functions’ docstrings.
The build is now reproducible and doesn’t depend on the path you build it from. Thanks to Chris Lamb for this feature.
numpy strategies for the void data type did not work correctly. Thanks to Zac Hatfield Dodds for this fix.
There have also been a number of performance optimizations:
The permutations() strategy is now significantly faster to use for large lists (the underlying algorithm has gone from O(n^2) to O(n)).
Shrinking of failing test cases should have got significantly faster in some circumstances where it was previously struggling for a long time.
Example generation now involves less indirection, which results in a small speedup in some cases (small enough that you won’t really notice it except in pathological cases).
|
|
|
|
0.17.2 2017-03-19
BUG FIXES
* Add workaround for
https://bitbucket.org/pypy/pypy/issues/2499/cpyext-pystring_asstring-doesnt-work,
fixing Dulwich when used with C extensions on pypy < 5.6. (Victor Stinner)
* Properly quote config values with a '#' character in them.
(Jelmer Vernooij, #511)
|
|
|
|
chardet 3.0.2
Fixes an issue where detect would sometimes return None instead of a dict with the keys encoding, language, and confidence (Issue #113, PR #114).
chardet 3.0.1
This bugfix release fixes a crash in the EUC-TW prober when it encountered certain strings (Issue #67).
chardet 3.0.0
This release is long overdue, but still mostly serves as a placeholder
for the impending 4.0.0 release, which will have retrained models
for better accuracy. For now, this release will get the following
improvements up on PyPI:
Added support for Turkish ISO-8859-9 detection (PR #41, thanks @queeup)
Commented out large unused sections of Big5 and EUC-KR tables to save memory (8bc4b89)
Removed Python 3.2 from testing, but add 3.4 - 3.6
Ensure that stdin is open with mode 'rb' for chardetect CLI. (PR #38, thanks @lpsinger)
Fixed chardetect crash with non-ascii file names (PR #39, thanks @nkanaev)
Made naming conventions more Pythonic throughout (no more mTypicalPositiveRatio, and instead typical_positive_ratio)
Modernized test scripts and infrastructure so we've got Travis testing and all that stuff
Rename filter_without_english_words to filter_international_words and make it match current Mozilla implementation (PR #44, thanks @rsnair2)
Updated filter_english_letters to match C implementation (c665459)
Temporarily disabled Hungarian ISO-8859-2 and Windows-1250 detection because it is very inaccurate (da6c0a0)
Allow CLI sub-package to be importable (PR #55)
Add a hypotheis-based test (PR #66, thanks @DRMacIver)
Strip endianness from UTF with BOM predictions so that the encoding can be passed directly to bytes.decode() (PR #73, thanks @snoack)
Fixed broken links in docs (PR #90, thanks @roskakori)
Added early exit to chardetect when encoding is detected instead of looping through entire file (PR #103, thanks @jpz)
Use bytearray objects internally instead of wrap_ord calls, which provides a nice performance boost across the board (PR #106)
Add language property to probers and UniversalDetector results (PR #180)
Mark the 5 known test failures as such so we can have more useful Travis build results in the meantime (d588407)
|
|
|
|
Mercurial 4.1.3 (2017-4-18)
This is an out of cycle release to address a security issue:
hg serve --stdio could be tricked into granting authorized users access to the Python debugger. Thanks to Jonathan Claudius of Mozilla for reporting this issue
|
|
|
|
separately escape tainted input before feeding it into popen.
https://www.wearesegment.com/research/Squirrelmail-Remote-Code-Execution.html
patch from Filipo Cavallarin@wearesegment, who also found the vulnerability.
bump PKGREVISION
|
|
|
|
|
|
Mercurial 4.1.2 (2017-4-3)
This is a regularly-scheduled bugfix release.
Mercurial should work inside IIS on Windows again. (issue5493)
zstd support now refuses to work on old bundle formats. (issue5506)
Merges involving subrepositories no longer crash in some cases. (issue5505)
Checking for new heads during push is no longer accidentally quadratic
|
|
|
|
6.26 2017-04-12
- Perltidy all apps in the bin/ directory
- Make all apps in bin/ use strict and warnings (RT #92633)
- Fix bug tracker URL in metadata
|
|
|
|
2017.004 Tue Apr 11 2017
# No new features.
2016.007_02 Sat Jul 02 2016
! lib/Text/LineFold.pm
! t/04fold.t
- CPAN RT#115146: Space indenting not happening with "From" or " ".
|
|
|
|
1.9742 [2017-04-16]
- prefer 3-argument open: blead 1ae6ead9
- fix dist/Time-HiRes/t/*.t that assumed '.' in @INC: blead 465db51d
- fix cases where 'do file' should be 'do ./file'.: blead 8b69401c
|
|
|
|
1.224 2017-04-18T11:41:22Z
* Fix up various dist things and clarify that this is under
the Artistic License 2.0.
|
|
|
|
#-----------------------------------------------------------------------
# Version 2.27 - 13th December 2016
#------------------------------------------------------------------------
* Ghost fixed the regex in the uri/url filters, removing double quotes
to make it RFC3986 compliant.
https://github.com/abw/Template2/issues/35
* Sean Zellmer added testrules.yml to always run compile*.t sequentially
https://github.com/abw/Template2/pull/45
* Simon Dawson added 'empty' vmethods for scalar, list and hash
https://github.com/abw/Template2/pull/46
* Dennis Clark added --envvars option to tpage
https://github.com/abw/Template2/pull/49
* Yanick Champoux made Template::Toolkit a module
https://github.com/abw/Template2/pull/51
* Various warnings silenced and typos fixed.
|
|
|
|
0.24 2017-04-08
- The source_for() exported by Params::ValidationCompiler did not work at
all. Reported by Diab Jerius. GH #16.
|
|
|
|
5.509 2017-04-05 Dianne Skoll <dfs@roaringpenguin.com>
* VERSION 5.509 RELEASED
* Fix CPAN bug https://rt.cpan.org/Ticket/Display.html?id=120871
Makefile.PL fails with no '.' in @INC
* Fix CPAN bug https://rt.cpan.org/Ticket/Display.html?id=118262
Test t/Ref.t fails on Windows install
* Fix CPAN bug https://rt.cpan.org/Ticket/Display.html?id=119166
MIME::Parser::parse_data() should check what it gets back...
* Fix CPAN bug https://rt.cpan.org/Ticket/Display.html?id=119568
Allow \r\n to be used as line-end delimeter when outputting MIME
message.
|
