| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
RabbitMQ 3.6.1 is a maintenance release that includes a fix for
CVE-2015-8786, a vulnerability in RabbitMQ management plugin.
Server
- Purging a lazy queue could result in an exception
- Ensure epmd is running before starting RabbitMQ node on Windows
- Channel error could make broker unreachable
- (Automatic) deletion of an auto-delete queue could lead
to blocked channels
- During (from scratch) queue sync, queue master node didn't respect
mirror alarm state. With large data sets this could drive mirror
node out of memory.
- Changing password for users with non-standard (think broker
configuration) password hashing function, for example, those migrated
from 3.5.x releases, didn't update effective hashing function.
- Heavy and/or prolonged rabbitmqctl use could exhaust Erlang VM atom table
- "Min masters" queue master location strategy could result in an error.
- Fixed a race condition in pause_minority handling mode.
- Significantly reduce possibility of a race condition when an exchange
is deleted and immediately re-declared, e.g. by a federation link.
- amq.rabbitmq.log messages now have information about originating
node in message headers
- scripts/rabbitmq-env now works with GNU sed 4.2.2
- Exceptions in VM memory use calculator no longer affect broker startup
- Direct Reply-to capability is now advertised to clients
- Paths with non-ASCII characters on Windows are now handled
- Configurable number of TCP connection acceptors
- rabbitmqctl cluster_status now includes cluster-wide resource alarm status
- Windows installer no longer jumps over installation log
- Improved rabbitmqctl reset error messages
- More unsigned field data types are supported.
Federation Plugin
- Significantly reduce possibility of a race condition when an exchange
is deleted and immediately re-declared, e.g. by a federation link
Management plugin
- CVE-2015-8786: user-provided query parameters lengths_age and
lengths_incr had no validation and could be used to exhaust server
resources.
- Password hashing function is now included in exported definitions
- Internet Explorer (9+) compatibility restored
- Internet Explorer 11 compatibility fixes
- When policy fails to be created with invalid paramaters a sensible
error message will be displayed.
Federation Management plugin
- Federation link form now includes more settings (that are exchange-
and queue-federation specific)
|
|
|
|
Changelog:
New root certificates backported from 3.23.
|
|
|
|
Updated mail/seamonkey-enigmail to 1.9.1
|
|
* Add option to select gnupg2 and gnupg21
* Update MASTER_SITES
Changelog:
Enigmail 1.9.1
Released 2016-03-06, works with Thunderbird 38.0 & newer and SeaMonkey 2.35 & newer.
Notable Changes
This is a bugfix release
Important Note
This version requires GnuPG 2.0.7 or newer. GnuPG 1.4.x is not supported anymore.
Bugs fixed
Check the list of fixed defects.
Enigmail 1.9
Released 2016-02-24, works with Thunderbird 38.0 & newer and SeaMonkey 2.35 & newer.
Notable Changes
Added support for GnuPG 2.1
Backup and restore of keys and Enigmail settings
Messages are sent using PGP/MIME by default
Several new dialog windows that improve usability
Added support for protected headers (off by default)
There is no binary component anymore - this version runs on all platforms for which Thunderbird and GnuPG are available.
Important Note
This version requires GnuPG 2.0.7 or newer. GnuPG 1.4.x is not supported anymore.
Bugs fixed
Many bugs were fixed. Check the list of fixed defects.
|
|
|
|
Upstream changes:
- Update copyright years. Noticed by Margo Seltzer.
- Fix handling of file creation in emufs, again.
- Fix another issue with dropped input handling, reported by Sam
Fishman.
- Print more info with exception traces.
- Remove obsolete disk sizes from sys161.conf.sample.
- Reuse emufs handles when the same object is reopened. ".." usage
now behaves itself. Mostly from Sam Fishman.
- Remove stray debug print.
|
|
the symptom being that ftttdrv.h (from freetype2) is not found. It
turns out that native X11 doesn't install ftttdrv.h for some reason
(probably an oversight) but that the lack is easily compensated
because the whole file contains only two substantive lines, neither of
which appears to be especially important.
PR 50902.
|
|
|
|
uncomment a maintainer make target to find where REPLACE_PERL might be
needed, and remove one that's no longer needed. (No change to the
installed package, so no PKGREVISION bump.)
|
|
libconfuse-3.0, libpagemaker-0.0.3, openssh-7.2, p5-CGI-4.27,
p5-Class-Method-Modifiers-2.12, p5-Crypt-ECB-2.00, p5-Date-Manip-6.53,
p5-File-Which-1.21, pkg-config-0.29.1, py-cryptography-1.2.3,
py-radare2-0.10.1, py-test-2.9.0, py-tortoisehg-3.7.2,
py-virtualenv-15.0.0, scummvm-1.8.0, transmission-2.91,
x264-devel-20160305.
|
|
0.06 2011-02-12 16:00
- Detect correct target Mac OS version in tests (cross-compilation), patch by Mark Dootson (RT #65573)
0.05 2011-02-02 11:00
- Use correct macros on Mac OS X 10.5 and 10.5, reported by Mark Dootson (RT #65366)
|
|
|
|
* The test system can now run the tests without requiring dnspython
to be installed.
* The 64-bit version of Python on Windows has sys.maxint set to
2^31-1, yet passes 2^63-1 as the "unspecified bound" value in
slices. This is a bug in Python as the documentation says the
unspecified bound value should be sys.maxint. We now cope with
this.
* When reading from a masterfile, if the first content line
started with leading whitespace, we raised an ugly exception
instead of doing the right thing, namely using the zone origin as
the name.
* Added dns.zone.to_text() convenience method.
* The /etc/resolv.conf setting "options rotate" is now understood
by the resolver. If present, the resolver will shuffle the
nameserver list each time dns.resolver.query() is called. Thanks
to underrun for the patch. Note that you don't want to add
"options rotate" to your /etc/resolv.conf if your system's
resolver library does not understand it. In this case, just set
resolver.rotate = True by hand.
* Escaping of Unicode has been corrected. Previously we escaped
and then converted to Unicode, but the right thing to do is
convert to Unicode, then escape. Also, characters > 0x7f should
NOT be escaped in Unicode mode.
* dns.rdtypes.ANY.DNSKEY now has helpers functions to convert
between the numeric form of the flags and a set of human-friendly
strings.
* RRSIGs did not respect relativization settings in to_text().
* dns/rdtypes/IN/APL.py: The APL from_wire() method did not accept an
rdata length of 0 as valid.
* dns/ipv6.py: Add is_mapped()
* dns/reversename.py: Lookup IPv6 mapped IPv4 addresses in the v4
reverse namespace.
* dns/zone.py: Do not put back an unescaped token. This was
causing escape processing for domain names to break.
* dns/message.py: Making a response didn't work correctly if the
query was signed with TSIG and we knew the key.
* dns/query.py: Fix problems with the IXFR state machine which caused
long diffs to fail.
|
|
|
|
- avoid 409 Conflict when running 01api.t
- use README.md for tests
- The non-arrayref forms of enum and duck_type have been deprecated
- Fix some warnings about line endings from perl critic, add a missing
abstract to DeleteMultipleObjects.
- Merge fix for calculate of etags.
- Merge multipart upload aborting change.
- Fixed for enums in recent versions of Moose.
- Moose 2.1100 deprecates the non-arrayref form of enum.
- Fixed the bug with listing multipart uploaded files
- Added a test case demonstrating how listing a bucket fails when
trying to list a multipart-uploaded file
- Added support for cache-control header
- Add documentation for server-side encryption
- Support server side encryption
- adding support for multipart upload aborting
- Allow 'value' property to be ScalarRef
- fix synopsis for s3cl sync_up
|
|
|
|
* cidr_merge() algorithm is now O(n) and much faster.
* nmap target specification now fully supported including IPv4 CIDR
prefixes and IPv6 addresses.
|
|
django-related packages
|
|
Python 3.x support.
Bug fixes.
|
|
Minor fixes
|
|
Unknown
|
|
Unknown
|
|
Unknown
|
|
Unknown
|
|
Unknown
|
|
Unknown
|
|
Unknown
|
|
Substantial "under-the-hood" improvements to the page tree resulting in significant reduction of page-tree reloads and generally cleaner code
Update jsTree version to 3.2.1 with slight adaptions to the Pagetree
Improve the display and useability of the language menu, especially in cases where there are many languages
Documentation improvements
Add support for django-reversion 1.10+ (required for Django 1.9).
Add placeholder name to the edit tooltip.
Add attr['is_page']=True to CMS Page navigation nodes.
Add Django and Python versions to debug bar info tooltip.
|
|
Fixed build
|
|
Added Changelog
Added support for Django 1.9
Added support for Python 3.5
|
|
Unknown
|
|
- Django 1.9 compatibility
- Added spanish (argentina) translation
- Minor bugfixes and tweaks
|
|
Unknown
|
|
where utils.http.is_safe_url() crashes on bytestring URLs.
|
|
|
|
|
|
Build with "on the fly" gzip compression since it's mentioned in DESCR.
Changelog:
4.4
- Fixed potential buffer overflow when
expanding symbolic link file names.
4.3
- Clarified license (COPYING file)
- Fixed compiler warning with regards to
pointer-to-integer cast.
4.2
- Improved user checking code to avoid locking out
valid users from the system.
(Thanks to Lauri Kasanen for reporting this bug
and supplying a patch.)
4.1
- Added checks to crypt() calls to prevent
operating on NULL pointer.
(Thanks to Lauri Kasanen for reporting this bug.)
4.0
- Added patch from Thomas Cort to make Bftpd
compile on NetBSD.
3.9
- Adjusted Makefile to allow for easy access to
non-default compiler options. Alternative compiler
can be used by running "make CC=compilername".
- Zhenbo Xu reported several potential memory
bugs which could cause Bftpd if the operating
system is out of memory. Also reported a memory
leak. Checks are now in place to prevent crashes
and the memory leak has been plugged.
- Added MINIX-specific configuration file which
should allow Bftpd to run smoothly and without
additional configuration on MINIX.
- Merged MINIX porting code into mainline Bftpd
so we can work with one, unified code base.
3.8
- Fixed bug in user tracking which could result
in corrupted times on 64-bit systems.
- When Bftpd is compiled with a "prefix" (which
is the default behaviour) the Bftpd will
check both /etc/bftpd.conf AND PREFIX/etc/bftpd.conf
when trying to find its configuration file.
This should avoid requiring the admin to pass
the location of the config file on the command line.
|
|
|
|
to 8.6.5; x11/tk to 8.6.5
|
|
Bug fixes.
|
|
Improvements to the Makefiles and build scripts used by VisualStudio.
Fix an FTS5 issue in which the 'optimize' command could cause index corruption.
Fix a buffer overread that might occur if FTS5 is used to query a corrupt database file.
Increase the maximum "scope" value for the spellfix1 extension from 6 to 30.
|
|
|
|
- Fixed an integer overflow in Resample.c causing writes in the Python heap.
- Fixed a buffer overflow in PcdDecode.c causing a segfault when opening PhotoCD files. CVE-2016-TBD
- Fixed a buffer overflow in FliDecode.c causing a segfault when opening FLI files. CVE-2016-0775
- Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of memory to be overwritten when opening a specially crafted invalid TIFF file. CVE-2016-0740
|
|
2.12 2016-03-04 22:12:15Z
- minor documentation tweaks
|
|
|
|
* Sync with mplayer-1.3.0
|
|
|
|
|
