| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
lang/perl5: security patch
Revisions pulled up:
- lang/perl5/Makefile 1.230
- lang/perl5/distinfo 1.123
- lang/perl5/patches/patch-dist_Data-Dumper_Dumper.pm 1.1
- lang/perl5/patches/patch-dist_Data-Dumper_Dumper.xs 1.1
---
Module Name: pkgsrc
Committed By: spz
Date: Mon Sep 29 11:36:02 UTC 2014
Modified Files:
pkgsrc/lang/perl5: Makefile distinfo
Added Files:
pkgsrc/lang/perl5/patches: patch-dist_Data-Dumper_Dumper.pm
patch-dist_Data-Dumper_Dumper.xs
Log Message:
Minimally invasive fix for CVE-2014-4330, also known as
https://www.lsexperts.de/advisories/lse-2014-06-10.txt,
a stack overflow vulnerability in Data::Dumper
Patches taken from
http://perl5.git.perl.org/perl.git/commitdiff/19be3be6968e2337bcdfe480693fff795ecd1304,
to be removed when updating to 5.20.1 (or later).
perl-5.20.0nb2 is fit for pkg_add -u replacement of perl-5.20.0nb1
|
|
lang/ruby21-base: security patch
Revisions pulled up:
- lang/ruby21-base/Makefile 1.6
- lang/ruby21-base/distinfo 1.7
- lang/ruby21-base/patches/patch-pack.c 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Aug 25 03:28:25 UTC 2014
Modified Files:
pkgsrc/lang/ruby21-base: Makefile distinfo
Added Files:
pkgsrc/lang/ruby21-base/patches: patch-pack.c
Log Message:
Add fix for CVS-2014-4975.
Bump PKGREVISION.
|
|
lang/ruby200-base: security patch
Revisions pulled up:
- lang/ruby200-base/Makefile 1.12
- lang/ruby200-base/distinfo 1.15
- lang/ruby200-base/patches/patch-pack.c 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Aug 25 03:27:37 UTC 2014
Modified Files:
pkgsrc/lang/ruby200-base: Makefile distinfo
Added Files:
pkgsrc/lang/ruby200-base/patches: patch-pack.c
Log Message:
Add fix for CVS-2014-4975.
Bump PKGREVISION.
|
|
lang/php55: security update
Revisions pulled up:
- lang/php/phpversion.mk patch
- lang/php55/Makefile 1.16
- lang/php55/distinfo 1.27-1.28
- lang/php55/patches/patch-aclocal.m4 1.2
- lang/php55/patches/patch-build_libtool.m4 1.2
- lang/php55/patches/patch-configure 1.8
- lang/php55/patches/patch-ext_gd_libgd_gdxpm.c deleted
- lang/php55/patches/patch-ext_spl_spl__array.c deleted
- lang/php55/patches/patch-ext_spl_spl__dllist.c deleted
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jul 26 00:11:55 UTC 2014
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php55: Makefile distinfo
pkgsrc/lang/php55/patches: patch-aclocal.m4 patch-build_libtool.m4
patch-configure
Removed Files:
pkgsrc/lang/php55/patches: patch-ext_spl_spl__array.c
patch-ext_spl_spl__dllist.c
Log Message:
Update php55 to 5.5.15.
24 Jul 2014, PHP 5.5.15
- Core:
. Fixed bug #67428 (header('Location: foo') will override a 308-399 response
code). (Adam)
. Fixed bug #67436 (Autoloader isn't called if two method definitions don't
match). (Bob)
. Fixed bug #67091 (make install fails to install libphp5.so on FreeBSD 10.0).
(Ferenc)
. Fixed bug #67497 (eval with parse error causes segmentation fault in
generator). (Nikita)
. Fixed bug #67151 (strtr with empty array crashes). (Nikita)
. Fixed bug #67407 (Windows 8.1/Server 2012 R2 reported as Windows 8/Server
2012). (Christian Wenz)
- CLI server:
. Implemented FR #67429 (CLI server is missing some new HTTP response codes).
(Adam)
. Fixed bug #66830 (Empty header causes PHP built-in web server to hang).
(Adam)
- FPM:
. Fixed bug #67530 (error_log=syslog ignored). (Remi)
. Fixed bug #67531 (syslog cannot be set in pool configuration). (Remi)
- Intl:
. Fixed bug #66921 (Wrong argument type hint for function
intltz_from_date_time_zone). (Stas)
. Fixed bug #67052 (NumberFormatter::parse() resets LC_NUMERIC setting).
(Stas)
- OPCache:
. Fixed bug #67215 (php-cgi work with opcache, may be segmentation fault
happen) (Dmitry, Laruence)
- pgsql:
. Fixed bug #67550 (Error in code "form" instead of "from", pgsql.c, line 756),
which affected builds against libpq < 7.3. (Adam)
- Phar:
. Fixed bug #67587 (Redirection loop on nginx with FPM). (Christian Weiske)
- SPL:
. Fixed bug #67539 (ArrayIterator use-after-free due to object change during
sorting). (research at insighti dot org, Laruence)
. Fixed bug #67538 (SPL Iterators use-after-free). (CVE-2014-4670) (Laruence)
- Streams:
. Fixed bug #67430 (http:// wrapper doesn't follow 308 redirects). (Adam)
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Aug 23 16:09:21 UTC 2014
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php55: distinfo
Removed Files:
pkgsrc/lang/php55/patches: patch-ext_gd_libgd_gdxpm.c
Log Message:
Update php55 to 5.5.16 (PHP 5.5.16).
21 Aug 2014, PHP 5.5.16
- COM:
. Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas).
- Fileinfo:
. Fixed bug #67705 (extensive backtracking in rule regular expression).
(CVE-2014-3538) (Remi)
. Fixed bug #67716 (Segfault in cdf.c). (CVE-2014-3587) (Remi)
- FPM:
. Fixed bug #67635 (php links to systemd libraries without using pkg-config).
(pacho@gentoo.org, Remi)
- GD:
. Fixed bug #66901 (php-gd 'c_color' NULL pointer dereference).
(CVE-2014-2497) (Remi)
. Fixed bug #67730 (Null byte injection possible with imagexxx functions).
(CVE-2014-5120) (Ryan Mauger)
- Milter:
. Fixed bug #67715 (php-milter does not build and crashes randomly). (Mike)
- OpenSSL:
. Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas).
- readline:
. Fixed bug #55496 (Interactive mode doesn't force a newline before the
prompt). (Bob, Johannes)
. Fixed bug #67496 (Save command history when exiting interactive shell
with control-c). (Dmitry Saprykin, Johannes)
- Sessions:
. Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas).
- Core:
. Fixed bug #67693 (incorrect push to the empty array) (Tjerk)
. Fixed bug #67717 (segfault in dns_get_record). (CVE-2014-3597) (Remi)
- ODBC:
. Fixed bug #60616 (odbc_fetch_into returns junk data at end of multi-byte
char fields). (Keyur)
|
|
lang/php54: security update
Revisions pulled up:
- lang/php/phpversion.mk patch
- lang/php54/Makefile 1.25
- lang/php54/distinfo 1.45-1.46
- lang/php54/patches/patch-aclocal.m4 1.2
- lang/php54/patches/patch-build_libtool.m4 1.2
- lang/php54/patches/patch-configure 1.9
- lang/php54/patches/patch-ext_gd_libgd_gdxpm.c deleted
- lang/php54/patches/patch-ext_spl_spl__array.c deleted
- lang/php54/patches/patch-ext_spl_spl__dllist.c deleted
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jul 26 00:12:54 UTC 2014
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php54: Makefile distinfo
pkgsrc/lang/php54/patches: patch-aclocal.m4 patch-build_libtool.m4
patch-configure
Log Message:
Update php54 to 5.4.31.
24 Jul 2014, PHP 5.4.31
- Core:
. Fixed bug #67428 (header('Location: foo') will override a 308-399 response
code). (Adam)
. Fixed bug #67436 (Autoloader isn't called if two method definitions don't
match). (Bob)
. Fixed bug #67091 (make install fails to install libphp5.so on FreeBSD 10.0).
(Ferenc)
. Fixed bug #67151 (strtr with empty array crashes). (Nikita)
. Fixed bug #67407 (Windows 8.1/Server 2012 R2 reported as Windows 8/Server
2012). (Christian Wenz)
- CLI server:
. Implemented FR #67429 (CLI server is missing some new HTTP response codes).
(Adam)
. Fixed bug #66830 (Empty header causes PHP built-in web server to hang).
(Adam)
- FPM:
. Fixed bug #67530 (error_log=syslog ignored). (Remi)
. Fixed bug #67531 (syslog cannot be set in pool configuration). (Remi)
- Intl:
. Fixed bug #67052 (NumberFormatter::parse() resets LC_NUMERIC setting).
(Stas)
- pgsql:
. Fixed bug #67550 (Error in code "form" instead of "from", pgsql.c, line 756),
which affected builds against libpq < 7.3. (Adam)
- Phar:
. Fixed bug #67587 (Redirection loop on nginx with FPM). (Christian Weiske)
- Streams:
. Fixed bug #67430 (http:// wrapper doesn't follow 308 redirects). (Adam)
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Aug 23 16:07:24 UTC 2014
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php54: distinfo
Removed Files:
pkgsrc/lang/php54/patches: patch-ext_gd_libgd_gdxpm.c
patch-ext_spl_spl__array.c patch-ext_spl_spl__dllist.c
Log Message:
Update php54 to 5.4.32 (PHP 5.4.32).
07 Aug 2014, PHP 5.4.32
- Core:
. Fixed bug #67717 (segfault in dns_get_record). (CVE-2014-3597) (Remi)
- COM:
. Fixed missing type checks in com_event_sink. (Yussuf Khalil, Stas)
- Fileinfo:
. Fixed bug #67705 (extensive backtracking in rule regular expression).
(CVE-2014-3538) (Remi)
. Fixed bug #67716 (Segfault in cdf.c). (CVE-2014-3587) (Remi)
- GD:
. Fixed bug #66901 (php-gd 'c_color' NULL pointer dereference).
(CVE-2014-2497) (Remi)
. Fixed bug #67730 (Null byte injection possible with imagexxx functions).
(CVE-2014-5120) (Ryan Mauger)
- Milter:
. Fixed bug #67715 (php-milter does not build and crashes randomly). (Mike)
- OpenSSL:
. Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas).
- Readline:
. Fixed bug #55496 (Interactive mode doesn't force a newline before the
prompt). (Bob, Johannes)
. Fixed bug #67496 (Save command history when exiting interactive shell
with control-c). (Dmitry Saprykin, Johannes)
- Sessions:
. Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas).
- SPL:
. Fixed bug #67539 (ArrayIterator use-after-free due to object change during
sorting). (research at insighti dot org, Laruence)
. Fixed bug #67538 (SPL Iterators use-after-free). (CVE-2014-4670) (Laruence)
- Core:
. Fixed bug #67693 (incorrect push to the empty array) (Tjerk)
- ODBC:
. Fixed bug #60616 (odbc_fetch_into returns junk data at end of multi-byte
char fields). (Keyur)
- Zlib:
. Fixed bug #67724 (chained zlib filters silently fail with large amounts of
data). (Mike)
|
|
lang/perl5: build fix
Revisions pulled up:
- lang/perl5/distinfo 1.122
- lang/perl5/patches/patch-hints_netbsd.sh 1.9
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: mrg
Date: Tue Aug 12 05:41:39 UTC 2014
Modified Files:
pkgsrc/lang/perl5: distinfo
pkgsrc/lang/perl5/patches: patch-hints_netbsd.sh
Log Message:
adjust a pattern to match 0.8 vs everything else.
fixes build on netbsd-7, which was matching "not everything else"
To generate a diff of this commit:
cvs rdiff -u -r1.121 -r1.122 pkgsrc/lang/perl5/distinfo
cvs rdiff -u -r1.8 -r1.9 pkgsrc/lang/perl5/patches/patch-hints_netbsd.sh
|
|
on ticket #4475.
|
|
lang/php53: security update
Revisions pulled up:
- lang/php/phpversion.mk 1.69 via patch
- lang/php53/Makefile 1.49
- lang/php53/Makefile.php 1.41
- lang/php53/distinfo 1.75-1.76
- lang/php53/patches/patch-Zend_zend_language_parser.h deleted
- lang/php53/patches/patch-ext_date_lib_parse__iso__intervals.c deleted
- lang/php53/patches/patch-ext_date_lib_parse__iso__intervals.re deleted
---
Module Name: pkgsrc
Committed By: prlw1
Date: Mon Jul 28 16:12:57 UTC 2014
Modified Files:
pkgsrc/lang/php53: distinfo
Added Files:
pkgsrc/lang/php53/patches: patch-Zend_zend_language_parser.h
Log Message:
Fix build of www/ap-php with PHP 5.3.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 15 16:09:16 UTC 2014
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php53: Makefile Makefile.php distinfo
Removed Files:
pkgsrc/lang/php53/patches: patch-Zend_zend_language_parser.h
patch-ext_date_lib_parse__iso__intervals.c
patch-ext_date_lib_parse__iso__intervals.re
Log Message:
Update php53 to 5.3.29, final PHP 5.3 release.
14 Aug 2014, PHP 5.3.29
- Core:
. Fixed bug #66127 (Segmentation fault with ArrayObject unset). (Stas)
. Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas)
. Fixed bug #67249 (printf out-of-bounds read). (Stas)
. Fixed bug #67250 (iptcparse out-of-bounds read). (Stas)
. Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas)
. Fixed bug #67359 (Segfault in recursiveDirectoryIterator). (Laruence)
. Fixed bug #67390 (insecure temporary file use in the configure script).
(Remi) (CVE-2014-3981)
. Fixed bug #67399 (putenv with empty variable may lead to crash). (Stas)
. Fixed bug #67492 (unserialize() SPL ArrayObject / SPLObjectStorage Type
Confusion) (CVE-2014-3515). (Stefan Esser)
. Fixed bug #67498 (phpinfo() Type Confusion Information Leak Vulnerability).
(Stefan Esser)
- COM:
. Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas).
- Date:
. Fixed bug #66060 (Heap buffer over-read in DateInterval). (CVE-2013-6712)
(Remi)
. Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
. Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)
- Exif:
. Fixed bug #65873 (Integer overflow in exif_read_data()). (Stas)
- Fileinfo:
. Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
. Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary
check). (CVE-2014-0207)
. Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS).
(CVE-2014-0238)
. Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting
in performance degradation). (CVE-2014-0237)
. Fixed bug #67410 (fileinfo: mconvert incorrect handling of truncated pascal
string size). (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67411 (fileinfo: cdf_check_stream_offset insufficient boundary
check). (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67412 (fileinfo: cdf_count_chain insufficient boundary check).
(Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67413 (fileinfo: cdf_read_property_info insufficient boundary
check). (Francisco Alonso, Jan Kaluza, Remi)
- Intl:
. Fixed bug #67349 (Locale::parseLocale Double Free). (Stas)
. Fixed bug #67397 (Buffer overflow in locale_get_display_name and
uloc_getDisplayName (libicu 4.8.1)). (Stas)
- Network:
. Fixed bug #67432 (Fix potential segfault in dns_check_record()).
(CVE-2014-4049). (Sara)
- OpenSSL:
. Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas).
- Session:
. Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas).
|
|
lang/gcc44: build fix
Revisions pulled up:
- lang/gcc44/Makefile 1.43
---
Module Name: pkgsrc
Committed By: prlw1
Date: Tue Aug 12 08:33:31 UTC 2014
Modified Files:
pkgsrc/lang/gcc44: Makefile
Log Message:
Fix for PR pkg/48683 based on a hint from wiz@.
|
|
lang/openjdk7: fix for netbsd-5
Revisions pulled up:
- lang/openjdk7/Makefile 1.71-1.72
- lang/openjdk7/bootstrap.mk 1.11
- lang/openjdk7/distinfo 1.50-1.51
- lang/openjdk7/patches/patch-aa 1.12
- lang/openjdk7/patches/patch-ak 1.7
- lang/openjdk7/patches/patch-hotspot_agent_src_share_classes_sun_jvm_hotspot_utilities_PlatformInfo.java 1.1
- lang/openjdk7/patches/patch-jdk_make_java_net_FILES__c.gmk 1.1
- lang/openjdk7/patches/patch-jdk_src_solaris_classes_java_lang_UNIXProcess.java.bsd 1.1
- lang/openjdk7/patches/patch-jdk_src_solaris_native_java_lang_UNIXProcess__md.c 1.1
- lang/openjdk7/patches/patch-jdk_src_solaris_native_java_lang_java__props__md.c 1.1
- lang/openjdk7/patches/patch-jdk_src_solaris_native_java_net_net__util__md.h 1.1
- lang/openjdk7/patches/patch-jdk_test_jprt.config 1.1
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: ryoon
Date: Mon Jul 21 00:15:41 UTC 2014
Modified Files:
pkgsrc/lang/openjdk7: Makefile distinfo
Added Files:
pkgsrc/lang/openjdk7/patches:
patch-jdk_src_solaris_classes_java_lang_UNIXProcess.java.bsd
patch-jdk_src_solaris_native_java_lang_UNIXProcess__md.c
Log Message:
Bump PKGREVISION. Fix PR pkg/48982.
* Use fork instead of posix_spawn under NetBSD 5.
To generate a diff of this commit:
cvs rdiff -u -r1.70 -r1.71 pkgsrc/lang/openjdk7/Makefile
cvs rdiff -u -r1.49 -r1.50 pkgsrc/lang/openjdk7/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/lang/openjdk7/patches/patch-jdk_src_solaris_classes_java_lang_UNIXProcess.java.bsd \
pkgsrc/lang/openjdk7/patches/patch-jdk_src_solaris_native_java_lang_UNIXProcess__md.c
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: ryoon
Date: Fri Jul 25 20:35:14 UTC 2014
Modified Files:
pkgsrc/lang/openjdk7: Makefile bootstrap.mk distinfo
pkgsrc/lang/openjdk7/patches: patch-aa patch-ak
Added Files:
pkgsrc/lang/openjdk7/patches:
patch-hotspot_agent_src_share_classes_sun_jvm_hotspot_utilities_PlatformInfo.java
patch-jdk_make_java_net_FILES__c.gmk
patch-jdk_src_solaris_native_java_lang_java__props__md.c
patch-jdk_src_solaris_native_java_net_net__util__md.h
patch-jdk_test_jprt.config
Log Message:
Bump PKGREVISION
* Use working bootstrap kits for DragonFly from DPorts.
* Borrow patches from DragonFly Dports.
Fix build under DragonFly 3.6.2 and 3.8.1.
To generate a diff of this commit:
cvs rdiff -u -r1.71 -r1.72 pkgsrc/lang/openjdk7/Makefile
cvs rdiff -u -r1.10 -r1.11 pkgsrc/lang/openjdk7/bootstrap.mk
cvs rdiff -u -r1.50 -r1.51 pkgsrc/lang/openjdk7/distinfo
cvs rdiff -u -r1.11 -r1.12 pkgsrc/lang/openjdk7/patches/patch-aa
cvs rdiff -u -r1.6 -r1.7 pkgsrc/lang/openjdk7/patches/patch-ak
cvs rdiff -u -r0 -r1.1 \
pkgsrc/lang/openjdk7/patches/patch-hotspot_agent_src_share_classes_sun_jvm_hotspot_utilities_PlatformInfo.java \
pkgsrc/lang/openjdk7/patches/patch-jdk_make_java_net_FILES__c.gmk \
pkgsrc/lang/openjdk7/patches/patch-jdk_src_solaris_native_java_lang_java__props__md.c \
pkgsrc/lang/openjdk7/patches/patch-jdk_src_solaris_native_java_net_net__util__md.h \
pkgsrc/lang/openjdk7/patches/patch-jdk_test_jprt.config
|
|
lang/php54: security patch
Revisions pulled up:
- lang/php54/Makefile 1.24
- lang/php54/distinfo 1.44
- lang/php54/patches/patch-ext_spl_spl__array.c 1.1
- lang/php54/patches/patch-ext_spl_spl__dllist.c 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 13 15:25:03 UTC 2014
Modified Files:
pkgsrc/lang/php54: Makefile distinfo
Added Files:
pkgsrc/lang/php54/patches: patch-ext_spl_spl__array.c
patch-ext_spl_spl__dllist.c
Log Message:
Add fix for CVE-2014-4698 and CVE-2014-4670.
Bump PKGREVISION.
|
|
lang/php55: security patch
Revisions pulled up:
- lang/php55/Makefile 1.15
- lang/php55/distinfo 1.26
- lang/php55/patches/patch-ext_spl_spl__array.c 1.1
- lang/php55/patches/patch-ext_spl_spl__dllist.c 1.1
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 13 15:23:42 UTC 2014
Modified Files:
pkgsrc/lang/php55: Makefile distinfo
Added Files:
pkgsrc/lang/php55/patches: patch-ext_spl_spl__array.c
patch-ext_spl_spl__dllist.c
Log Message:
Add fix for CVE-2014-4698 and CVE-2014-4670.
Bump PKGREVISION.
|
|
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.17
- devel/ruby-activemodel32/distinfo 1.17
- devel/ruby-activesupport32/distinfo 1.17
- devel/ruby-railties32/distinfo 1.17
- lang/ruby/rails.mk 1.49
- mail/ruby-actionmailer32/distinfo 1.17
- www/ruby-actionpack32/distinfo 1.17
- www/ruby-activeresource32/distinfo 1.17
- www/ruby-rails32/distinfo 1.17
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:36:35 UTC 2014
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails to 3.2.19.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:38:16 UTC 2014
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log Message:
Update ruby-activesupport32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* Make sure Active Support configurations are applied correctly.
Before this change configuration set using `config.active_support`
would not be set.
*Rafael Mendon=E7a Fran=E7a*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:38:50 UTC 2014
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:40:52 UTC 2014
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:41:43 UTC 2014
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Update ruby-actionpack32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* Fix regression when using `ActionView::Helpers::TranslationHelper#t=
ranslate` with
`options[:raise]`.
This regression was introduced at ec16ba75a5493b9da972eea08bae630eb=
a35b62f.
*Shota Fukumori (sora_h)*
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:42:15 UTC 2014
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:42:48 UTC 2014
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log Message:
Update ruby-railties32 to 3.2.19.
## Rails 3.2.19 (Jul 2, 2014) ##
* No changes.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:43:50 UTC 2014
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.19.
This is meta package like ruby gem.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Jul 6 07:40:12 UTC 2014
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log Message:
Update ruby-activerecord32 to 3.2.19, security fix.
## Rails 3.2.19 (Jul 2, 2014) ##
* Fix SQL Injection Vulnerability in 'bitstring' quoting.
Fixes CVE-2014-3482.
*Rafael Mendonḋ®a Franḋ®a*
|
|
lang/python34: security patch
Revisions pulled up:
- lang/python34/Makefile 1.6
- lang/python34/distinfo 1.13
- lang/python34/patches/patch-Lib_http_server.py 1.1
- lang/python34/patches/patch-Lib_test_test__httpservers.py 1.1
- lang/python34/patches/patch-Misc_NEWS 1.1
---
Module Name: pkgsrc
Committed By: he
Date: Fri Jul 4 11:37:13 UTC 2014
Modified Files:
pkgsrc/lang/python34: Makefile distinfo
Added Files:
pkgsrc/lang/python34/patches: patch-Lib_http_server.py
patch-Lib_test_test__httpservers.py patch-Misc_NEWS
Log Message:
Apply fix for directory traversal vulnerability, ref.
http://bugs.python.org/issue21766
Bump PKGREVISION.
|
|
lang/python33: security patch
Revisions pulled up:
- lang/python33/Makefile 1.26
- lang/python33/distinfo 1.18
- lang/python33/patches/patch-Lib_http_server.py 1.1
- lang/python33/patches/patch-Lib_test_test__httpservers.py 1.1
- lang/python33/patches/patch-Misc_NEWS 1.1
---
Module Name: pkgsrc
Committed By: he
Date: Wed Jul 2 12:53:52 UTC 2014
Modified Files:
pkgsrc/lang/python33: Makefile distinfo
Added Files:
pkgsrc/lang/python33/patches: patch-Lib_http_server.py
patch-Lib_test_test__httpservers.py patch-Misc_NEWS
Log Message:
Add a fix, test-case and note for directory traversal vulnerability, ref.
http://bugs.python.org/issue21766
Bump PKGREVISION.
|
|
lang/python27: security patch
Revisions pulled up:
- lang/python27/distinfo 1.43
- lang/python27/patches/patch-Lib_CGIHTTPServer.py 1.1
- lang/python27/patches/patch-Lib_test_test__httpservers.py 1.1
- lang/python27/patches/patch-Misc_NEWS 1.4
---
Module Name: pkgsrc
Committed By: he
Date: Wed Jul 2 08:22:02 UTC 2014
Modified Files:
pkgsrc/lang/python27: distinfo
pkgsrc/lang/python27/patches: patch-Misc_NEWS
Added Files:
pkgsrc/lang/python27/patches: patch-Lib_CGIHTTPServer.py
patch-Lib_test_test__httpservers.py
Log Message:
Apply a fix for directory-traversal vulnerability, ref.
http://bugs.python.org/issue21766
Bump PKGREVISION.
|
|
likely, we don't lose very much.
|
|
|
|
variables become commons and don't get noticed, but on platforms
without commons or with commons disabled, this results in a multiply
defined symbol.
Should fix MacOS build.
|
|
doesn't.
|
|
or had a namespace pollution issue exposing time.h improperly. Should
fix the MacOS build.
XXX: on MacOS the configure script concludes that stdlib.h, unistd.h,
XXX: and string.h are all missing. I have no idea why this would be
XXX: but someone with access to config.log needs to investigate.
|
|
|
|
26 Jun 2014, PHP 5.5.14
- Core:
. Fixed BC break introduced by patch for bug #67072. (Anatol, Stas)
. Fixed bug #66622 (Closures do not correctly capture the late bound class
(static::) in some cases). (Levi Morrison)
. Fixed bug #67390 (insecure temporary file use in the configure script).
(CVE-2014-3981) (Remi)
. Fixed bug #67399 (putenv with empty variable may lead to crash). (Stas)
. Fixed bug #67498 (phpinfo() Type Confusion Information Leak Vulnerability).
(Stefan Esser)
- CLI server:
. Fixed Bug #67406 (built-in web-server segfaults on startup). (Remi)
- Date:
. Fixed bug #67308 (Serialize of DateTime truncates fractions of second).
(Adam)
. Fixed regression in fix for bug #67118 (constructor can't be called twice).
(Remi)
- Fileinfo:
. Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary check).
(CVE-2014-0207)
. Fixed bug #67410 (fileinfo: mconvert incorrect handling of truncated pascal
string size). (CVE-2014-3478) (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67411 (fileinfo: cdf_check_stream_offset insufficient boundary
check). (CVE-2014-3479) (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67412 (fileinfo: cdf_count_chain insufficient boundary check).
(CVE-2014-3480) (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67413 (fileinfo: cdf_read_property_info insufficient boundary
check). (CVE-2014-3487) (Francisco Alonso, Jan Kaluza, Remi)
- Intl:
. Fixed bug #67349 (Locale::parseLocale Double Free). (Stas)
. Fixed bug #67397 (Buffer overflow in locale_get_display_name and
uloc_getDisplayName (libicu 4.8.1)). (Stas)
- Network:
. Fixed bug #67432 (Fix potential segfault in dns_get_record()).
(CVE-2014-4049). (Sara)
- OPCache:
. Fixed issue #183 (TMP_VAR is not only used once). (Dmitry, Laruence)
- OpenSSL:
. Fixed bug #65698 (certificates validity parsing does not work past 2050).
(Paul Oehler)
. Fixed bug #66636 (openssl_x509_parse warning with V_ASN1_GENERALIZEDTIME).
(Paul Oehler)
- PDO-ODBC:
. Fixed bug #50444 (PDO-ODBC changes for 64-bit).
- SOAP:
. Implemented FR #49898 (Add SoapClient::__getCookies()). (Boro Sitnikovski)
- SPL:
. Fixed bug #66127 (Segmentation fault with ArrayObject unset). (Stas)
. Fixed bug #67359 (Segfault in recursiveDirectoryIterator). (Laruence)
. Fixed bug #67360 (Missing element after ArrayObject::getIterator). (Adam)
. Fixed bug #67492 (unserialize() SPL ArrayObject / SPLObjectStorage Type
Confusion). (CVE-2014-3515) (Stefan Esser)
. Fixed bug #67118 (DateTime constructor crash with invalid data). (Anatol)
. Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
. Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)
- DOM:
. Fixed bug #67081 (DOMDocumentType->internalSubset returns entire DOCTYPE tag,
not only the subset). (Anatol)
- Fileinfo:
. Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
. Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS) (CVE-2014-0238).
. Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting in
performance degradation) (CVE-2014-0237).
- FPM:
. Fixed bug #66908 (php-fpm reload leaks epoll_create() file descriptor).
(Julio Pintos)
- GD:
. Fixed bug #67248 (imageaffinematrixget missing check of parameters). (Stas)
- PCRE:
. Fixed bug #67238 (Ungreedy and min/max quantifier bug, applied patch
from the upstream). (Anatol)
- Phar:
. Fix bug #64498 ($phar->buildFromDirectory can't compress file with an accent
in its name). (PR #588)
|
|
26 Jun 2014, PHP 5.4.30
- Core:
. Fixed BC break introduced by patch for bug #67072. (Anatol, Stas)
. Fixed bug #66622 (Closures do not correctly capture the late bound class
(static::) in some cases). (Levi Morrison)
. Fixed bug #67390 (insecure temporary file use in the configure script).
(CVE-2014-3981) (Remi)
. Fixed bug #67399 (putenv with empty variable may lead to crash). (Stas)
. Fixed bug #67498 (phpinfo() Type Confusion Information Leak Vulnerability).
(Stefan Esser)
- CLI server:
. Fixed Bug #67406 (built-in web-server segfaults on startup). (Remi)
- Date:
. Fixed bug #67308 (Serialize of DateTime truncates fractions of second).
(Adam)
. Fixed regression in fix for bug #67118 (constructor can't be called twice).
(Remi)
- Fileinfo:
. Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary
check). (CVE-2014-0207)
. Fixed bug #67410 (fileinfo: mconvert incorrect handling of truncated pascal
string size). (CVE-2014-3478) (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67411 (fileinfo: cdf_check_stream_offset insufficient boundary
check). (CVE-2014-3479) (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67412 (fileinfo: cdf_count_chain insufficient boundary check).
(CVE-2014-3480) (Francisco Alonso, Jan Kaluza, Remi)
. Fixed bug #67413 (fileinfo: cdf_read_property_info insufficient boundary
check). (CVE-2014-3487) (Francisco Alonso, Jan Kaluza, Remi)
- Intl:
. Fixed bug #67349 (Locale::parseLocale Double Free). (Stas)
. Fixed bug #67397 (Buffer overflow in locale_get_display_name and
uloc_getDisplayName (libicu 4.8.1)). (Stas)
- Network:
. Fixed bug #67432 (Fix potential segfault in dns_get_record()).
(CVE-2014-4049). (Sara)
- OpenSSL:
. Fixed bug #65698 (certificates validity parsing does not work past 2050).
(Paul Oehler)
. Fixed bug #66636 (openssl_x509_parse warning with V_ASN1_GENERALIZEDTIME).
(Paul Oehler)
- SOAP:
. Implemented FR #49898 (Add SoapClient::__getCookies()). (Boro Sitnikovski)
- SPL:
. Fixed bug #66127 (Segmentation fault with ArrayObject unset). (Stas)
. Fixed bug #67359 (Segfault in recursiveDirectoryIterator). (Laruence)
. Fixed bug #67360 (Missing element after ArrayObject::getIterator). (Adam)
. Fixed bug #67492 (unserialize() SPL ArrayObject / SPLObjectStorage Type
Confusion) (CVE-2014-3515). (Stefan Esser)
|
|
|
|
|
|
|
|
Note that this is a leaf package. schmonz says it is ok to update this
now.
|
|
|
|
|
|
|
|
|
|
|
|
2014.06.05, Version 0.10.29 (Stable)
* openssl: to 1.0.1h (CVE-2014-0224)
* npm: upgrade to 1.4.10
* utf8: Prevent Node from sending invalid UTF-8 (Felix Geisendoerfer)
- *NOTE* this introduces a breaking change, previously you could
construct invalid UTF-8 and invoke an error in a client that was
expecting valid UTF-8, now unmatched surrogate pairs are replaced
with the unknown UTF-8 character. To restore the old functionality
simply have NODE_INVALID_UTF8 environment variable set.
* child_process: do not set args before throwing (Greg Sabia Tucker)
* child_process: spawn() does not throw TypeError (Greg Sabia Tucker)
* constants: export O_NONBLOCK (Fedor Indutny)
* crypto: improve memory usage (Alexis Campailla)
* fs: close file if fstat() fails in readFile() (cjihrig)
* lib: name EventEmitter prototype methods (Ben Noordhuis)
* tls: fix performance issue (Alexis Campailla)
|
|
|
|
Changes in version 6.0.1
* A new `racket/undefined` library exports `undefined` as the
value currently produced by
(letrec ([x x]) x)
This library anticipates a future where that expression will
raise an exception. The `racket/undefined` library will continue
to offer the `undefined` value as a bridge between versions and
as a last resort.
* The drawing and GUI libraries provide improved support for
high-resolution bitmaps and their use on Retina displays. For
example, `read-bitmap` includes a `#:try-@2x?` option to trigger
substitutions through the usual "@2x" naming convention.
* Check Syntax cooperates with Typed Racket to show arrows and other
Check Syntax highlighting even when there is a type error.
* Functions provided via contract-out that have first-order
contracts perform better.
* The contract boundary between typed/untyped modules is much less
expensive. Typed Racket now avoids generating contracts for
places where contracts failures cannot happen.
* Occurrence typing now works better with when/unless. Example:
(let ((x (read)))
(unless (number? x) (error 'bad-input))
(add1 x))
* Types in Typed Racket are now pretty-printed.
* Function types can now be written in prefix style, which is now
preferred and is used for printing. Infix function types are still
accepted for backwards compatibility.
* A new `->*' type constructor is used for writing types for
functions with optional and keyword arguments. The notation is
similar to the matching contract combinator.
* Typed Racket forms do not have a `:' suffix by default now. For
example, the `struct' form replaces `struct:'. The suffixed
versions are all provided for backwards compatibility.
* Typed Racket now has preliminary support for classes and
objects. However, it is still experimental and the APIs are
subject to change.
* Type aliases in Typed Racket now support recursion and mutual
recursion. For example, `(define-type (MyList X) (U Null (Pair X
(MyList X))))' is now a valid type alias.
* Plot correctly renders intersecting 3D graphs and
non-grid-aligned 3D rectangles.
* Elements in plots output in PDF/PS format have the same relative
scale as in other formats. In particular, it is not necessary to
adjust `plot-font-size` to make PDF plots look the same as PNG.
Changes in version 6.0
Racket 6.0 has a new package system, including a catalog of
hundreds of already-available packages. Please visit
http://pkgs.racket-lang.org/
for an overview of the packages.
Racket versions 5.3.4 through 5.3.6 included "beta" versions of the
package system. Racket version 6.0 incorporates many improvements
suggested by preliminary experiences in those versions:
* A package is treated as a single collection by default, so it is
even easier to use a GitHub repository as a package. Get started
quickly:
http://docs.racket-lang.org/pkg/getting-started.html
* DrRacket includes a new package manager GUI, available via the
File|Package Manager ... menu item. The GUI is also available
as a stand-alone program via the "gui-pkg-manager" package.
* The main Racket distribution has been separated into about 200
packages. The Racket installer combines the core system with
bundled versions of these packages.
Alternatively, you may now install a Minimal Racket distribution
--- which is about 1/10 the size of the main distribution --- and
add only those packages that you need.
* Package installation supports pre-built packages that include
compiled byte code and rendered documentation, meaning packages can
be installed quickly when built versions are available. All
packages in the main distribution are available in pre-built form.
The recent 5.92 and 5.93 releases served as release candidates for 6.0,
and 6.0 includes a few additional repairs related to the package
system.
Further improvements to the package system are in the works, notably
including package documentation on the package-catalog web site.
COMPATIBILITY NOTE: PLaneT, the previous Racket package system, will
remain in place for the foreseeable future, but we expect all package
work to shift to the new system.
Beyond the package system, this release brings a number of other
changes:
* Racket's HTML documentation has a new and improved look, thanks to
Matthew Butterick.
* The documentation includes a style guide, "How to Program Racket"
http://docs.racket-lang.org/style/
* Racket's JIT compiler supports the ARM architecture.
* Racket supports the Mac's Retina display mode.
* The performance of the Typed Racket compiler improved by 50% on
some typed programs.
* The profiler provides a new mode that uses the errortrace library
to produce fine-grained profiles.
* A new contract profiler reports how much time programs spend
checking contracts, and which contracts are most expensive.
* The math/flonum library exports fast 105-bit precision operations.
* Check Syntax handles generated identifiers, especially those
introduced by struct (e.g. field selectors) and Redex (e.g., e_1,
e_2)
* 2htdp/batch-io includes functions for dealing with html/xml in
files and web sites as X-expressions plus conveniences for
web-based graph traversals.
* The `gen:set' generic interface extends set operations to work on
user-defined types that implement set methods, as well as on other
set-like built-in types, such as lists.
* Picts support conversion to SVG format.
* Under unix, Racket provides desktop entries (.desktop files) for
its graphical executables.
|
|
Changelog:
From release notes for Oracle JDK 7u60
http://www.oracle.com/technetwork/java/javase/7u60-relnotes-2200106.html .
Java SE Development Kit 7, Update 60 (JDK 7u60)
The full version string for this update release is 1.7.0_60-b19 (where "b" means "build"). The version number is 7u60.
Highlights
This update release contains several enhancements and changes including the following:
Java Mission Control
New Features and Changes
IANA Data 2014b
JDK 7u60 contains IANA time zone data version 2014b. For more information, refer to Timezone Data Versions in the JRE Software.
JavaFX
This JDK release includes JavaFX version 2.2.60.
Java Mission Control
This JDK release includes Java Mission Control(JMC) version 5.3. For more information, see JMC 5.3 Release Notes.
New Features and Changes
Java ignores deployment.expiration.check.enabled property for first launch
If you have an older version of Java and expiration check is turned off through deployment.properties file, Java may ignore this property for first launch.
To ensure that expiration check is disabled, use the following Java Web Start command:
javaws -userConfig deployment.expiration.check.enabled false
If this property is changed in the deployment.properties file, open the Java Control Panel before starting an application to ensure that the native cache is synchronized with the file. For more information, see Deployment Configuration File and Properties.
New flags added to Java Management API
The flags MinHeapFreeRatio and MaxHeapFreeRatio have been made manageable. This means they can be changed at runtime using the management API in Java. Support for these flags have also been added to the ParallelGC as part of the adaptive size policy.
Bug Fixes
For a list of bug fixes included in this release, see JDK 7u60 Bug Fixes page.
The following are some of the notable bug fixes in this release:
Area: security-libs/java.security
Synopsis: Realm.getRealmsList returns realms list in wrong order
Java does not support the [capaths] section in krb5.conf correctly if there are more then one intermediate realm between the client realm and the server realm.
See 8012615.
|
|
|
|
|
|
|
|
|
|
Fixes the problem where thread safety was not consistent in
the php, ap-php and php-* extension packages, and makes ap-php
adhere to the maintainer-zts option. Bump PKGREVISION.
|
|
Bump PKGREVISION for this and the previous commit.
|
|
catch_workers_output=yes.
See https://bugs.php.net/bug.php?id=65800.
|
|
|
|
See http://www.scala-lang.org/news/2014/04/21/release-notes-2.11.0.html
and http://www.scala-lang.org/news/2.11.1 for changes from 2.10.3.
|
|
Tests now work without installing package first.
Changes since previous package:
4.9.0.1
- Runtime library
- C_MINOR_VERSION changed to 9; feature identifier chicken-4.8 => chicken-4.9
4.9.0
- Security fixes
- CVE-2014-3776: read-u8vector! no longer reads beyond its buffer when
length is #f (thanks to Seth Alves).
- CVE-2013-4385: read-string! no longer reads beyond its buffer when
length is #f.
- CVE-2013-1874: ./.csirc is no longer loaded from the current directory
upon startup of csi, which could lead to untrusted code execution.
(thanks to Florian Zumbiehl)
- CVE-2013-2024: On *nix, the qs procedure now single-quotes everything
instead of relying on a blacklist of shell characters to be escaped.
On Windows, it properly duplicates double-quote characters. (thanks
to Florian Zumbiehl)
- CVE-2013-2075: Use POSIX poll() in other places where select() was
still being used. (thanks to Florian Zumbiehl and Joerg Wittenberger)
- CVE-2012-6122: Use POSIX poll() on systems where available. This avoids a
design flaw in select(); it supports no more than FD_SETSIZE descriptors.
- Core libraries
- Fix subvector when the TO optional argument equals the given vector
length (#1097)
- Unit extras now implicitly depends on ports. ports no longer
implicitly depends on extras. This may break programs which don't
use modules and forgot to require ports but use procedures from it.
- Support has been added for the space-safe R7RS macro "delay-force".
- Export file-type from the posix unit (thanks to Alan Post).
- SRFI-4 s8vectors now work correctly in compiled code on PowerPC and ARM.
- thread-join! now works correctly even if the waiting thread was
prematurely woken up by a signal.
- unsetenv has been fixed on Windows.
- The process procedure has been fixed on Windows.
- Nonblocking behaviour on sockets has been fixed on Windows.
- Possible race condition while handling TCP errors has been fixed.
- The posix unit will no longer hang upon any error in Windows.
- resize-vector no longer crashes when reducing the size of the vector.
- Distinct types for boolean true and false have been added to the
scrutinizer.
- Fixed bugs in string-trim-right, string-index-right and
string-skip-right, from SRFI-13
- read-line no longer returns trailing CRs in rare cases on TCP ports (#568)
- write and pp now correctly use escape sequences for control characters
(thanks to Florian Zumbiehl)
- posix: memory-mapped file support for Windows (thanks to "rivo")
- posix: find-file's test argument now also accepts SRE forms.
- numerator and denominator now accept inexact numbers, as per R5RS
(reported by John Cowan).
- Implicit $VAR- and ~-expansion in pathnames have been deprecated (#1001)
- Fixed EINTR handling in process-wait and when reading from file ports.
- Irregex is updated to 0.9.2, which includes bugfixes and faster submatches.
- Compile-time expansions for "[sf]printf" are slightly more efficient.
- Removed the deprecated "always?", "never?", "shuffle" and "none?" procedures.
- Fixed problem "make-pathname" that returned an absolute path if given
a relative one without a directory argument.
- The implementation of promises has been made more efficient.
- Removed the deprecated "c-runtime", "null-pointer?" and "pointer-offset"
procedures.
- The deprecated alias "mutate-procedure" for "mutate-procedure!" has
been removed.
- On 64-bit systems the feature identifier "64bit" is registered.
- "process-fork" accepts an optional argument that specifies
wether other threads should be terminated in the child process.
- The "signal/bus" signal identifier was missing.
- Added setter-procedure for "signal-mask".
- Added "recursive-hash-max-length" and "recursive-hash-max-depth"
parameters (srfi-69).
- Platform support
- CHICKEN can now be built on AIX (contributed by Erik Falor)
- CHICKEN can now be built on GNU Hurd (contributed by Christian Kellermann)
- Basic support has been added for building Android and iOS binaries (see
the "README" file for caveats and pitfalls) (contributed by Felix Winkelmann
from bevuta IT GmbH)
- Added support for 64-bit Windows (consult the "README" file for more
information).
- Runtime system
- finalizers on constants are ignored in compiled code because compiled
constants are never GCed (before, the finalizer would be incorrectly
invoked after the first GC). (Reported by "Pluijzer")
- The call trace buffer is now also resizable at runtime via ##sys#resize-trace-buffer.
- C_zap_strings and ##sys#zap-strings (undocumented) have been deprecated.
- Special events in poll() are now handled, avoiding hangs in threaded apps.
- When invoking procedures with many rest arguments directly (not via APPLY),
raise an error when argument count limit was reached instead of crashing.
- When the maximum allowed heap size is reached, panic instead of crashing.
- The code generated for mutating data destructively is partially inlined
and thus slightly more efficient.
- Fixed incorrect code in the foreign argument conversion for
"unsigned-integer64" (#955). For unsigned-integer, integer64 and
unsigned-integer64, disallow floating-point numbers. Fix behavior
on 32-bit systems.
- On systems that provide sigprocmask(2), segmentation violations, illegal
instruction signals, bus errors and floating-point exceptions are now caught
and trigger normal error-processing (including a backtrace). The handling
of these so called "serious" signals can be disabled by passing the
"-:S" runtime option to executables.
- Reclamation of unused interned symbols (enabled with the "-:w" runtime option)
works much better now.
- Build system
- The tests can now be run without having to first install CHICKEN.
- Fixed a dependency problem that made it impossible to build the distribution
tarball on Windows with the mingw compiler.
- Increased the "binary compatibility version" to 7.
- Tools
- "csc"
- "-z origin" is now passed as a linker option on FreeBSD when
compiling for deployment (thanks to Jules Altfas & Vitaly Magerya)
- "-deploy" works now on FreeBSD (thanks to Jules Altfas and
Vitaly Magerya), OpenBSD and NetBSD (see README for NetBSD).
- added "-oi"/"-ot" options as alternatives to "-emit-inline-file"
and "-emit-type-file", respectively; "-n" has been deprecated.
- .c/.o files are no longer overwritten when they have the same basename
as a Scheme source file (i.e. "csc foo.scm foo.c -o foo" works now).
- "chicken-install"
- "-deploy" now correctly installs dependencies of
deployed eggs under the deployment directory instead of globally.
- Full URI syntax is now supported for proxy environment variables
(thanks to Michele La Monaca)
- "chicken-status"
- Added -eggs command line option to list installed eggs
- misc
- Removed the deprecated "-v" options (use "-version" instead) in various
core programs.
- The runtime linker path for compiled executables was not set correctly
on FreeBSD systems. This has now been fixed.
- Removed the deprecated "make" and "make/proc" facility from the
"setup-api" module; also removed the deprecated "required-extension-version"
and "required-chicken-version" procedures.
- Syntax
- Added the aliases "&optional" and "&rest" as alternatives to "#!optional"
and "#!rest" in type-declarations (suggested by Joerg Wittenberger).
- Vectors, SRFI-4 number vectors and blobs are now self-evaluating for
R7RS compatibility. Being literal constants, they are implicitly quoted.
- For R7RS compatibility, named character literals #\escape and #\null are
supported as aliases for #\esc and #\nul. WRITE will output R7RS names.
- The CASE form accepts => proc syntax, like COND (as specified by R7RS).
- letrec* was added for R7RS compatibility. Plain letrec no longer behaves
like letrec*.
- Compiler
- the "inline" declaration does not force inlining anymore as recursive
inlining could lead to non-termination of the compiler (thanks to
Andrei Barbu).
- Type-analysis ("scrutiny") is enabled by default now, unless
"-optimize-level 0" or "-no-usual-integrations" is given.
- The "-scrutinize" compiler option has been deprecated.
- A new lightweight flow-analysis pass ("lfa2") has been added.
Enable by passing the "-lfa2" option to the compiler.
- The deprecated options "-disable-warning", "-heap-growth", "-heap-shrinkage"
and "-heap-initial-size" have been removed.
- Removed the deprecated "constant" declaration.
- Removed the deprecated "-lambda-lift" and "-unboxing" compiler options.
- Removed the deprecated "-V" compiler option.
- Generated names for formal parameters of foreign functions are slightly
more informative.
- Unused references to variables that name intrinsics can be removed.
- In the flow-analysis pass, matching of combinations of "list"/"list-of" and
"or" types with has been made more reliable.
- Fixed various bugs in the type database.
- Syntax expander
- added "require-extension-for-syntax" and "use-for-syntax".
- Extended syntactic definitions are now available by default in all
evaluated code, particularly in code evaluated at runtime in compiled
applications.
- Removed the deprecated variant "(define-compiler-syntax (NAME . LLIST) BODY ...)"
of "define-compiler-syntax".
- C API
- Deprecated C_get_argument[_2] and C_get_environment_variable[_2] functions.
- Removed the deprecated "__byte_vector" type.
|
|
|
|
|
|
|
