Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
ruby_parser (RP) is a ruby parser written in pure ruby
(utilizing racc - which does by default use a C extension).
|
|
|
|
sexp_processor branches from ParseTree bringing all the generic sexp
processing tools with it. Sexp, SexpProcessor, Environment, etc... all
for your language processing pleasure.
|
|
|
|
|
|
|
|
Too many changes, see HOMEPAGE.
|
|
|
|
Too many changes.
|
|
Too many changes.
|
|
Too many changes, see:
http://github.com/flori/json/blob/master/CHANGES
|
|
Too many changes, see:
http://github.com/flori/json/blob/master/CHANGES
|
|
This is a bugfix release for the 2.3 series, which brings considerable
improvements for b/w rasterizing of hinted TrueType fonts at
small sizes. All users should upgrade.
|
|
changes:
-cleanup, trim and compress sounds
-remove annoying sounds, eg on menu actions, desktop switch, clicks
|
|
|
|
(seems really just tolerated -- looks ugly but at least doesn't crash)
bump PKGREVISION
|
|
|
|
gif2png-2.5.2, gupnp-igd-0.1.4, ivtools-1.2.8, p5-DateTime-TimeZone-1.05,
p5-Error-1.02, p5-Module-Signature-0.61, p5-URI-1.50, p5-libwww-5.834,
poppler-data-0.3.1, py-imaging-1.1.7, scmgit-base-1.6.5.3,
scmgit-docs-1.6.5.3, surfraw-2.2.6, uim-1.5.7, x264-devel-20091121.
|
|
|
|
* Major changes in Autoconf 2.65 (2009-11-21) [stable]
Released by Eric Blake, based on git versions 2.64.*.
** Autoconf is now licensed under the General Public License version 3
or later (GPLv3+). As with earlier versions, the license includes
an exception clause so that you may release a configure script
generated by autoconf under the license of your own program.
** New macros to support Objective C++.
AC_PROG_OBJCXX AC_PROG_OBJCXXCPP
** The following undocumented autoconf macros, removed in Autoconf 2.64,
have been reinstated:
AH_CHECK_HEADERS
These macros are present only for backwards compatibility purposes.
** The macro AC_LANG_COMPILER no longer fails on embedded systems that
lack fopen in the C library, such as AVR or RTEMS (regression
introduced in 2.64).
** The AC_FC_FREEFORM macro no longer suffers from a whitespace bug that
made it fail with some Fortran compilers (regression introduced in
2.64).
** The AC_TYPE_UINT64_T and AC_TYPE_INT64_T macros have been fixed to no
longer mistakenly select a 32-bit type on some compilers (bug present
since macros were introduced in 2.59c).
** The AC_FUNC_MMAP macro has been fixed to be portable to systems like
Cygwin (bug present since macro was introduced in 2.0).
** The following documented autotest macros are new:
AT_CHECK_EUNIT
** The following m4sugar macros now quote their expansion:
m4_toupper m4_tolower
** The following m4sugar macros are new:
m4_escape
** The m4sugar macro m4_text_wrap now copes with embedded quoting without
requiring quadrigraphs. For uses like AC_ARG_VAR([a], [[b c]]),
this gives the intuitive behavior of "[b c]" in the output (2.63
gave the output of "[b], [c]", and 2.64 encountered a failure).
** The `$tmp' temporary directory used in config.status is documented for
public use now.
** config.status now provides a --config option to produce the configuration.
** Many cache variables used by Autoconf's macros are now documented.
** Configure scripts work better on DJGPP by avoiding a bug present in
the DJGPP port of bash 2.04 in handling 'return' in a shell
function (regression introduced in 2.64).
|
|
pkgsrc doesn't provide it.
This fixes build problems on platforms other than NetBSD.
|
|
|
|
|
|
KTorrent is a BitTorrent program for KDE4.
Changes from the KDE3 version include:
* IPv6 support
* SOCKSv4 and v5 support
* The network interface to use can now be selected
* Alternative flat list mode to display the files of a torrent
* Reorganization of the config dialog
* Individual files of a torrent can now be moved
* New queuemanager gui
|
|
|
|
* Specify toolbar container in compose template (#1486247)
* Fix $_SERVER['HTTPS'] check for SSL forcing on IIS (#1486243)
* Avoid unnecessary page loads for selected tab (#1486032)
* Fix quota indicator issues by content generation on client-size (#1486197, #1486220)
* Don't display disabled sections in Settings (#1486099)
* Added server-side e-mail address validation with 'email_dns_check' option (#1485857)
* Fix login page loading into an iframe when session expires (#1485952)
* Allow setting port number in 'force_https' option (#1486091)
* Option 'force_https' replaced by 'force_https' plugin
* Fix IE issue with non-UTF-8 characters in AJAX response (#1486159)
* Partially fixed "empty body" issue by showing raw body of malformed message (#1486166)
* Fix importing/sending to email address with whitespace (#1486214)
* Added XIMSS (CommuniGate) driver for Password plugin
* Fix newly attached files are not saved in drafts w/o editing any text (#1486202)
* Added attachment upload indicator with parallel upload (#1486058)
* Use default_charset for bodies of messages without charset definition (#1486187)
* Password: added cPanel driver
* Fix return to first page from e-mail screen (#1486105)
* Fix handling HTML comments in HTML messages (#1486189)
* Fix folder/messagelist controls alignment - icons used (#1486072)
* Fix LDAP addressbook shows 'Contact not found' error sometimes (#1486178)
* Fix cache status checking + improve cache operations performance (#1486104)
* Prevent from setting INBOX as any of special folders (#1486114)
* Fix regular expression for e-mail address (#1486152)
* Fix Received header format
* Implemented sorting by message index - added 'index_sort' option (#1485936)
* Fix dl() use in installer (#1486150)
* Added 'ldap_debug' option
* Fix "Empty startup greeting" bug (#1486085)
* Fix setting user name in 'new_user_identity' plugin (#1486137)
* Fix incorrect count of new messages in folder list when using multiple IMAP clients (#1485995)
* Fix all folders checking for new messages with disabled caching (#1486128)
* Support skins in 'archive' and 'markasjunk' plugins
* Added 'html_editor' hook (#1486068)
* Fix DB constraint violation when populating messages cache (#1486052)
* Password: added password strength options (#1486062)
* Fix LDAP partial result warning (#1485536)
* Fix delete in message view deletes permanently with flag_for_deletion=true (#1486101)
* Use faster/secure mt_rand() (#1486094)
* Fix roundcube hangs on empty inbox with bincimapd (#1486093)
* Fix wrong headers for IE on servers without $_SERVERHTTPS? (#1485926)
* Force IE style headers for attachments in non-HTTPS session, 'use_https' option (#1485655)
* Check 'post_max_size' for upload max filesize (#1486089)
* Password Plugin: Fix %d inserts username instead of domain (#1486088)
* Fix rcube_mdb2::affected_rows() (#1486082)
|
|
spz), and un-modify SUBST targets mistakenly committed in previous.
Should fix build where GNU sed wasn't available, and otherwise result
in no change to the binary package.
|
|
a whitespace in the command search path.
|
|
cdrtools-2.01.01alpha68, cherokee-0.99.29, empathy-2.28.1.2 [GNOME
2.28], gnome-devel-docs-2.28.1 [GNOME 2.28], gnome-doc-utils-0.18.1,
gnome-user-docs-2.28.1 [GNOME 2.28], gsasl-1.4.0, lighttpd-1.4.25,
mpg123-1.9.2, musicpd-0.15.6, nautilus-sendto-2.28.2, rhythmbox-0.12.6,
tcl-8.5.8, tellico-2.1.1, tgif-4.2.2, tig-0.15, tk-8.5.8,
tomboy-1.0.1, totem-2.28.4, unison-2.32.52, vsftpd-2.2.2,
xapian-1.0.17, xapian-omega-1.0.17, yelp-2.28.1.
|
|
devel/p5-Config-GitLike into The NetBSD Packages Collection.
|
|
|
|
Packages Collection.
The Perl 5 module Config::GitLike handles interaction with configuration
files of the style used by the version control system Git. It can
both parse and modify these files, as well as create entirely new
ones.
|
|
|
|
Upstream changes:
0.59 Wed Nov 18 20:12:57 EST 2009
- Features:
* Support a special value of "all" in set_page_info
- Fixes:
* Make "default is ''" propagate correctly to ALTER and CREATE TABLE
statements
- Installation:
* Our Module::Install was hilariously out of date
|
|
|
|
|
|
changes:
- many bug and compile fixes
- new native Linux SCSI backend
- See ChangeLog for details
|
|
|
|
Updated lang/sun-jdk6 to 6.0.17
Updated lang/sun-jre15 to 5.0.22
Updated lang/sun-jdk15 to 5.0.22
|
|
accepted jvms. Bump pkgrevision
|
|
Changes in 1.5.0_22
The full internal version number for this update release is 1.5.0_22-b03 (where "b" means "build"). The external version number is 5.0u22.
OlsonData 2009m
This release contains Olson time zone data version 2009m. For more information, refer to Timezone Data Versions in the JRE Software .
Security Baseline
This update release specifies the following security baseline:
JRE Family Version Java SE
Security Baseline Java SE for Business
Security Baseline 1.4.2 1.4.2_19 1.4.2_24
In December, 2008, Java SE 1.4.2 reached its end of service life with the release of 1.4.2_19. Future revisions of Java SE 1.4.2 (1.4.2_20 and above) include the Access Only option and are available to Java SE for Business subscribers.
For more information about the security baseline, see Deploying Java Applets With Family JRE Versions in Java Plug-in for Internet Explorer .
Root Certificates
Root Certificates are included in this release.
* Added one new root certificate for SECOM. (Refer to 6872579.)
* Added one new root certificate for GlobalSign. (Refer to 6860447.)
Bug Fixes
This release contains fixes for one or more security vulnerabilities. For more information, please see Sun Alerts 269868, 270474, 270475, and 270476.
Bug fixes for vulnerabilities are listed in the following table.
BugId Category Subcategory Description 6631533 java classes_2d ICC_Profile allows detecting if some files exist
6815780 java classes_2d TrueType font parsing crash when stressing Sun Bug 6751322 test case
6822057 java classes_2d X11 and Win32GraphicsDevice don't clone arrays returned from getConfigurations()
6862969 java classes_2d JPEG JFIF Decoder issue
6862970 java classes_2d Image Color Profile parsing issue
6872357 java classes_2d JRE AWT setDifflCM vulnerable to Stack Overflow
6872358 java classes_2d JRE AWT setBytePixels vulnerable to Heap Overflow
6664512 java classes_awt Component and [Default]KeyboardFocusManager pass security sensitive objects to loggers
6636650 java classes_lang (cl) Resurrected ClassLoaders can still have children
6861062 java classes_security Disable MD2 in certificate chain validation
6863503 java classes_security SECURITY: MessageDigest.isEqual introduces timing attack vulnerabilities
6864911 java classes_security ASN.1/DER input stream parser needs more work
6854303 java classes_sound Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability
6657026 java classes_swing Numerous static security flaws in Swing (findbugs)
6657138 java classes_swing Mutable statics in Windows PL&F (findbugs)
6824265 java classes_util_i18n (tz) TimeZone.getTimeZone allows probing local filesystem
6632445 java imageio DoS from parsing BMPs with UNC ICC links
6862968 java imageio JPEG Image Writer quantization problem
6874643 java imageio ImageI/O JPEG is vulnerable to Heap Overflow
6869694 java install java update malfunctioning
Other bug fixes are listed in the following table.
BugId Category Subcategory Description 6876061 java classes_awt Following JCK5 test not working as exp-d on linux: awt-interactive-ComponentTests
6860447 java classes_security Add GlobalSign R3 Root certificate to the JDK
6872579 java classes_security Add SECOM Root CA 2 to JDK
6880110 java classes_util_i18n (tz) Support tzdata2009m
Changes in 1.5.0_21
The full internal version number for this update release is 1.5.0_21-b01 (where "b" means "build"). The external version number is 5.0u21.
OlsonData 2009l
This release contains Olson time zone data version 2009l. For more information, refer to Timezone Data Versions in the JRE Software .
Security Baseline
This update release specifies the following security baseline:
JRE Family Version Java SE
Security Baseline Java SE for Business
Security Baseline 1.4.2 1.4.2_19 1.4.2_22
On October 30, 2008, Java SE 1.4.2 reached its end of service life with the release of 1.4.2_19. Future revisions of Java SE 1.4.2 (1.4.2_20 and above) include the Access Only option and are available to Java SE for Business subscribers.
For more information about the security baseline, see Deploying Java Applets With Family JRE Versions in Java Plug-in for Internet Explorer .
Additional Supported System Configurations
As of this update, support has been added for the following system configurations:
* Windows Vista SP2
* Windows Server 2008 SP2
Refer to the Supported System Configurations page.
Bug Fixes
Bug fixes are listed in the following table.
BugId Category Subcategory Description 6422099 hotspot compiler2 C2 assert("live value must not be garbage")
6445745 hotspot compiler2 TransformerManagementThreadAddTests.java fails an assertion
6772683 hotspot compiler2 Thread.isInterrupted() fails to return true on multiprocessor PC
6842999 hotspot runtime_system Update hotspot windows os_win32 for windows 2008 R2
6845161 jaas login Bottleneck in Configuration.getConfiguration synchronized call
6860491 java classes_awt WRAP_TIME_MILLIS incorrectly set
6843003 java classes_lang Windows Server 2008 R2 system recognition
6808046 java classes_swing Having image problems on Asian Languages display
6645292 java classes_text [Fmt-Da] Timezone Western Summer Time (Australia) is parsed incorrectly
6665028 java classes_text native code of method j*.text.Bidi.nativeBidiChars is using the contents of a primitive array direct
6872467 java classes_util_i18n (tz) Support tzdata2009l
6814140 java classes_util_logging deadlock due to synchronized demandLogger() code that locks ServerLogManager
6817482 java_plugin iexplorer On IE, modal JDialog from an Applet in html frame is not modal
6432317 java_plugin misc Vista: Java Plugin won't be able to launch extension installers.
6818278 javawebstart jnlp_file sunmc console when started with javaws does not communicate with the firewall port range
6748156 jndi ldap add an new JNDI property to control the boolean flag WaitForReply (JDK5)
6750362 jndi ldap Very large LDAP requests throw a OOM on LDAP servers which aren't aware of Paged Results Controls
|
|
Changes in 1.5.0_22
The full internal version number for this update release is 1.5.0_22-b03 (where "b" means "build"). The external version number is 5.0u22.
OlsonData 2009m
This release contains Olson time zone data version 2009m. For more information, refer to Timezone Data Versions in the JRE Software .
Security Baseline
This update release specifies the following security baseline:
JRE Family Version Java SE
Security Baseline Java SE for Business
Security Baseline 1.4.2 1.4.2_19 1.4.2_24
In December, 2008, Java SE 1.4.2 reached its end of service life with the release of 1.4.2_19. Future revisions of Java SE 1.4.2 (1.4.2_20 and above) include the Access Only option and are available to Java SE for Business subscribers.
For more information about the security baseline, see Deploying Java Applets With Family JRE Versions in Java Plug-in for Internet Explorer .
Root Certificates
Root Certificates are included in this release.
* Added one new root certificate for SECOM. (Refer to 6872579.)
* Added one new root certificate for GlobalSign. (Refer to 6860447.)
Bug Fixes
This release contains fixes for one or more security vulnerabilities. For more information, please see Sun Alerts 269868, 270474, 270475, and 270476.
Bug fixes for vulnerabilities are listed in the following table.
BugId Category Subcategory Description 6631533 java classes_2d ICC_Profile allows detecting if some files exist
6815780 java classes_2d TrueType font parsing crash when stressing Sun Bug 6751322 test case
6822057 java classes_2d X11 and Win32GraphicsDevice don't clone arrays returned from getConfigurations()
6862969 java classes_2d JPEG JFIF Decoder issue
6862970 java classes_2d Image Color Profile parsing issue
6872357 java classes_2d JRE AWT setDifflCM vulnerable to Stack Overflow
6872358 java classes_2d JRE AWT setBytePixels vulnerable to Heap Overflow
6664512 java classes_awt Component and [Default]KeyboardFocusManager pass security sensitive objects to loggers
6636650 java classes_lang (cl) Resurrected ClassLoaders can still have children
6861062 java classes_security Disable MD2 in certificate chain validation
6863503 java classes_security SECURITY: MessageDigest.isEqual introduces timing attack vulnerabilities
6864911 java classes_security ASN.1/DER input stream parser needs more work
6854303 java classes_sound Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability
6657026 java classes_swing Numerous static security flaws in Swing (findbugs)
6657138 java classes_swing Mutable statics in Windows PL&F (findbugs)
6824265 java classes_util_i18n (tz) TimeZone.getTimeZone allows probing local filesystem
6632445 java imageio DoS from parsing BMPs with UNC ICC links
6862968 java imageio JPEG Image Writer quantization problem
6874643 java imageio ImageI/O JPEG is vulnerable to Heap Overflow
6869694 java install java update malfunctioning
Other bug fixes are listed in the following table.
BugId Category Subcategory Description 6876061 java classes_awt Following JCK5 test not working as exp-d on linux: awt-interactive-ComponentTests
6860447 java classes_security Add GlobalSign R3 Root certificate to the JDK
6872579 java classes_security Add SECOM Root CA 2 to JDK
6880110 java classes_util_i18n (tz) Support tzdata2009m
Changes in 1.5.0_21
The full internal version number for this update release is 1.5.0_21-b01 (where "b" means "build"). The external version number is 5.0u21.
OlsonData 2009l
This release contains Olson time zone data version 2009l. For more information, refer to Timezone Data Versions in the JRE Software .
Security Baseline
This update release specifies the following security baseline:
JRE Family Version Java SE
Security Baseline Java SE for Business
Security Baseline 1.4.2 1.4.2_19 1.4.2_22
On October 30, 2008, Java SE 1.4.2 reached its end of service life with the release of 1.4.2_19. Future revisions of Java SE 1.4.2 (1.4.2_20 and above) include the Access Only option and are available to Java SE for Business subscribers.
For more information about the security baseline, see Deploying Java Applets With Family JRE Versions in Java Plug-in for Internet Explorer .
Additional Supported System Configurations
As of this update, support has been added for the following system configurations:
* Windows Vista SP2
* Windows Server 2008 SP2
Refer to the Supported System Configurations page.
Bug Fixes
Bug fixes are listed in the following table.
BugId Category Subcategory Description 6422099 hotspot compiler2 C2 assert("live value must not be garbage")
6445745 hotspot compiler2 TransformerManagementThreadAddTests.java fails an assertion
6772683 hotspot compiler2 Thread.isInterrupted() fails to return true on multiprocessor PC
6842999 hotspot runtime_system Update hotspot windows os_win32 for windows 2008 R2
6845161 jaas login Bottleneck in Configuration.getConfiguration synchronized call
6860491 java classes_awt WRAP_TIME_MILLIS incorrectly set
6843003 java classes_lang Windows Server 2008 R2 system recognition
6808046 java classes_swing Having image problems on Asian Languages display
6645292 java classes_text [Fmt-Da] Timezone Western Summer Time (Australia) is parsed incorrectly
6665028 java classes_text native code of method j*.text.Bidi.nativeBidiChars is using the contents of a primitive array direct
6872467 java classes_util_i18n (tz) Support tzdata2009l
6814140 java classes_util_logging deadlock due to synchronized demandLogger() code that locks ServerLogManager
6817482 java_plugin iexplorer On IE, modal JDialog from an Applet in html frame is not modal
6432317 java_plugin misc Vista: Java Plugin won't be able to launch extension installers.
6818278 javawebstart jnlp_file sunmc console when started with javaws does not communicate with the firewall port range
6748156 jndi ldap add an new JNDI property to control the boolean flag WaitForReply (JDK5)
6750362 jndi ldap Very large LDAP requests throw a OOM on LDAP servers which aren't aware of Paged Results Controls
|
|
6u17 contains Olson time zone data version 2009m. For more information, refer to Timezone Data Versions in the JRE Software .
Security Baseline
6u17 specifies the following security baselines for use with Java Plug-in technology:
JRE Family Version Java SE
Security Baseline Java SE for Business
Security Baseline 6 1.6.0_17 1.6.0_17
5.0 1.5.0_22 1.5.0_22
1.4.2 1.4.2_19 1.4.2_24
Root Certificates
Root Certificates are included in this release.
* Added one new root certificate for SECOM. (Refer to 6872579.)
* Added one new root certificate for GlobalSign. (Refer to 6860447.)
Bug Fixes
This release contains fixes for one or more security vulnerabilities.
For more information, please see Sun Alerts 269868, 269869, 269870,
270474, 270475, and 270476.
Bug fixes for vulnerabilities are listed in the following table.
BugId Category Subcategory Description 6631533 java classes_2d ICC_Profile allows detecting if some files exist
6815780 java classes_2d TrueType font parsing crash when stressing Sun Bug 6751322 test case
6822057 java classes_2d X11 and Win32GraphicsDevice don't clone arrays returned from getConfigurations()
6862969 java classes_2d JPEG JFIF Decoder issue
6862970 java classes_2d Image Color Profile parsing issue
6872357 java classes_2d JRE AWT setDifflCM vulnerable to Stack Overflow
6872358 java classes_2d JRE AWT setBytePixels vulnerable to Heap Overflow
6664512 java classes_awt Component and [Default]KeyboardFocusManager pass security sensitive objects to loggers
6636650 java classes_lang (cl) Resurrected ClassLoaders can still have children
6861062 java classes_security Disable MD2 in certificate chain validation
6863503 java classes_security SECURITY: MessageDigest.isEqual introduces timing attack vulnerabilities
6864911 java classes_security ASN.1/DER input stream parser needs more work
6854303 java classes_sound Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability
6657026 java classes_swing Numerous static security flaws in Swing (findbugs)
6657138 java classes_swing Mutable statics in Windows PL&F (findbugs)
6824265 java classes_util_i18n (tz) TimeZone.getTimeZone allows probing local filesystem
6632445 java imageio DoS from parsing BMPs with UNC ICC links
6862968 java imageio JPEG Image Writer quantization problem
6874643 java imageio ImageI/O JPEG is vulnerable to Heap Overflow
6869694 java install java update malfunctioning
6869752 java_deployment deployment_toolkit Deployment Toolkit plugin "launch" method vulnerable to exploits
6872824 javawebstart general arbitary code execution using java web start
6870531 javawebstart other REGRESSION:have problem to run JNLP app and applets with signed Jar files
Other bug fixes are listed in the following table.
BugId Category Subcategory Description 6842999 hotspot runtime_system Update hotspot windows os_win32 for windows 2008 R2
6804454 java classes_2d RFE: Provide a way to control the printing dpi resolution from MSIE browser print. See also 6801859
6813208 java classes_awt pageDialog throws NPE from applet
6825342 java classes_awt Security warning may change Z-order of top-level
6843003 java classes_lang Windows Server 2008 R2 system recognition
6860447 java classes_security Add GlobalSign R3 Root certificate to the JDK
6872579 java classes_security Add SECOM Root CA 2 to JDK
6880110 java classes_util_i18n (tz) Support tzdata2009m
6814140 java classes_util_logging deadlock due to synchronized demandLogger() code that locks ServerLogManager
6879614 jaxp parse com.sun.org.apache.xerces.internal.jaxp.DocumentBuilderImpl failing to parse xml document
|
|
6u17 contains Olson time zone data version 2009m. For more information, refer to Timezone Data Versions in the JRE Software .
Security Baseline
6u17 specifies the following security baselines for use with Java Plug-in technology:
JRE Family Version Java SE
Security Baseline Java SE for Business
Security Baseline 6 1.6.0_17 1.6.0_17
5.0 1.5.0_22 1.5.0_22
1.4.2 1.4.2_19 1.4.2_24
Root Certificates
Root Certificates are included in this release.
* Added one new root certificate for SECOM. (Refer to 6872579.)
* Added one new root certificate for GlobalSign. (Refer to 6860447.)
Bug Fixes
This release contains fixes for one or more security vulnerabilities.
For more information, please see Sun Alerts 269868, 269869, 269870,
270474, 270475, and 270476.
Bug fixes for vulnerabilities are listed in the following table.
BugId Category Subcategory Description 6631533 java classes_2d ICC_Profile allows detecting if some files exist
6815780 java classes_2d TrueType font parsing crash when stressing Sun Bug 6751322 test case
6822057 java classes_2d X11 and Win32GraphicsDevice don't clone arrays returned from getConfigurations()
6862969 java classes_2d JPEG JFIF Decoder issue
6862970 java classes_2d Image Color Profile parsing issue
6872357 java classes_2d JRE AWT setDifflCM vulnerable to Stack Overflow
6872358 java classes_2d JRE AWT setBytePixels vulnerable to Heap Overflow
6664512 java classes_awt Component and [Default]KeyboardFocusManager pass security sensitive objects to loggers
6636650 java classes_lang (cl) Resurrected ClassLoaders can still have children
6861062 java classes_security Disable MD2 in certificate chain validation
6863503 java classes_security SECURITY: MessageDigest.isEqual introduces timing attack vulnerabilities
6864911 java classes_security ASN.1/DER input stream parser needs more work
6854303 java classes_sound Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability
6657026 java classes_swing Numerous static security flaws in Swing (findbugs)
6657138 java classes_swing Mutable statics in Windows PL&F (findbugs)
6824265 java classes_util_i18n (tz) TimeZone.getTimeZone allows probing local filesystem
6632445 java imageio DoS from parsing BMPs with UNC ICC links
6862968 java imageio JPEG Image Writer quantization problem
6874643 java imageio ImageI/O JPEG is vulnerable to Heap Overflow
6869694 java install java update malfunctioning
6869752 java_deployment deployment_toolkit Deployment Toolkit plugin "launch" method vulnerable to exploits
6872824 javawebstart general arbitary code execution using java web start
6870531 javawebstart other REGRESSION:have problem to run JNLP app and applets with signed Jar files
Other bug fixes are listed in the following table.
BugId Category Subcategory Description 6842999 hotspot runtime_system Update hotspot windows os_win32 for windows 2008 R2
6804454 java classes_2d RFE: Provide a way to control the printing dpi resolution from MSIE browser print. See also 6801859
6813208 java classes_awt pageDialog throws NPE from applet
6825342 java classes_awt Security warning may change Z-order of top-level
6843003 java classes_lang Windows Server 2008 R2 system recognition
6860447 java classes_security Add GlobalSign R3 Root certificate to the JDK
6872579 java classes_security Add SECOM Root CA 2 to JDK
6880110 java classes_util_i18n (tz) Support tzdata2009m
6814140 java classes_util_logging deadlock due to synchronized demandLogger() code that locks ServerLogManager
6879614 jaxp parse com.sun.org.apache.xerces.internal.jaxp.DocumentBuilderImpl failing to parse xml document
|
|
(see https://bugzilla.gnome.org/show_bug.cgi?id=602408).
Without commiting so far I couldn't check progress over the week - sorry
for the extra noise.
|
|
|
|
license change of forthcoming TYPOlihght 2.8(.RC1).
|
|
with color profiles to implement caching): pass NULL (which disables
the cache), depend on new poppler headers and bump PKGREVISION
(While this is a poppler API change, it is in an unofficial interface,
so inkscape just gets what it deserves.)
problem reported by Tobias Nygren
|
|
|