| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
* Update Latvian translation file.
pkgsrc change: fix Latvian PLIST file.
|
|
suggested by OBATA Akio
|
|
- mod_ssl, ab: improve compatibility with OpenSSL 1.0.0 betas. Report
warnings compiling mod_ssl against OpenSSL to the httpd developers.
[Guenter Knauf]
- mod_cgid: Do not add an empty argument when calling the CGI script.
Bug 46380 [Ruediger Pluem]
- Fix potential segfaults with use of the legacy ap_rputs() etc
interfaces, in cases where an output filter fails. Bug 36780.
[Joe Orton]
|
|
|
|
|
|
|
|
|
|
support Catalyst Developers using pkgsrc a bit better.
It's easy to create memory leaks in Catalyst applications and often they're
hard to find. This module tries to help you finding them by automatically
checking for common causes of leaks.
Right now, only one cause for leaks is looked for: putting a closure, that
closes over the Catalyst context (often called $ctx or $c), onto the stash,
without weakening the reference first. More checks might be implemented in
the future.
This module is intended for debugging only. I suggest to not enable it in a
production environment.
|
|
pkgsrc changes:
- Adding license information
Upstream changes:
$Revision: 0.6 $ $Date: 2009/07/28 21:25:25 $
! lib/HTTP/Response/Encoding.pm t/01-file.t
Addressed RT#47033:
new libwww-perl-5.827 release from 15.06.2009 breaks all tests
(Tested both on lwp5.826 and lwp5.830)
http://rt.cpan.org/Ticket/Display.html?47033
|
|
pkgsrc changes:
- Adjusting license information according to module Pod
Upstream changes:
Version 3.44
1. Patch from Kurt Jaeger to allow HTTP PUT even if the content length is unknown.
2. Patch from Pavel merdin to fix a problem for one of the FireFox addons.
3. Fixed issue in mod_perl & fastCGI environment of cookies returned from
CGI->cookie() leaking from one session to another.
|
|
|
|
New features (some are compile-time options):
* add session save/restore feature
o bind ^X to toggle view of page showing session information
o add binding for ^U to previous-document (outside of
line-editing).
o documented command-line options and configuration data
for this feature.
o document -child_relaxed option in Lynx users's guide.
* add -passive-ftp option.
* add -child_relaxed option.
* add "read_timeout" to lynx.cfg, and -read_timeout option to
command-line
* add -show_cfg option.
* add LYNX_HELPFILE environment variable to allow override of
location of the help-file
* add NO_PAUSE setting to lynx.cfg, .lynxrc and Options menu
* implement a LONG_LIST equivalent for ftp, configurable as
FTP_FORMAT
* add XWINDOWS / NON_XWINDOWS environment-variable field to
DOWNLOAD, etc., in lynx.cfg to specify whether a downloader
(printer, etc) is enabled when the X display variable is set
* configure script improvements
o add --with-mime-libdir option to set MIME_LIBDIR in
userdefs.h file
o add --with-destdir configure option to set a default
value for the DESTDIR variable in makefiles, and modified
makefiles to ensure that setting DESTDIR in the top-level
makefile propagates to lower levels
o add --enable-local-docs option to link doc-directory
from help-page
o add --enable-ascii-ctypes option to enable EXP_ASCII_CTYPES
Other enhancements:
* improve SSL support:
o improve X.509 certificate validation This is tested
for OpenSSL, ifdef'd to not break gnutls. Changes:
+ peer certificate is cached, no need to call
SSL_get_peer_certificate() twice
+ support foo.domain:port and [ip.add.re.ss] and
[ip.add.re.ss]:port and [i:p:v:6:ad:dr:es:s] and
[i:p:v:6:ad:dr:es:s]:port
+ add support for checking X.509v3 SubjectAltName
extensions (of type DNS - tested - and IP - untested)
when the X.509 commonName check fails.
+ when displaying a list of failed CNs, change
format from foo:bar:baz to
CN{foo}:CN{bar}:CN{baz}:SAN{DNS=foo}:SAN{IP=1.2.3.4}
so that we know where what comes from (in "Your
recent statusline messages")
+ if the peer certificate can *NOT* be verified,
output a message to the log as well
+ fix a possible use of an uninitialised value
ssl_all_cns
+ output certificate issuer to the logs as well
(so that you can, before entering your online
banking PIN, see if the certificate has been issued
not only _to_ your bank but also _from_ a place
you trust, in case /etc/ssl/certs/ contains a lot
of Root CA certs)
o add support for the X.509 extension subjectAltName
using GNUTLS.
o log SSL/TLS (HTTPS connection) X.509 certificate issuer
information into the "recent statusline messages"
(accessible via the backspace key)
o add TNS SNI support for the OpenSSL configuration
o modify CF_SSL configure macro to check for -ldl needed
for recent OpenSSL versions
o modify CF_SSL configure macro to build with MSYS for
MinGW configuration
o extend configure macros CF_SSL and CF_GNUTLS to check
for pkg-config, using that for the default if the
corresponding openssl or gnutls packages are installed.
o add configure --with-nss-compat option, for building
with NSS library's OpenSSL-compatible interface
o add SSL_CERT_FILE to lynx.cfg
o rewrite strcasecomp_asterisk() to support wildcards as
in RFC 2818
o add --enable-gnutls-compat configure option and associated
files to configure with GNU TLS without its gnutls-openssl
library, whose newer versions are available only under
a restrictive license.
o fix src/tidy_tls.c X509_get_issuer_name to actually
take the issuer DN of the present certificate and not
hope that it is the same as taking the subject DN of the
"next" certificate which may or may not exist.
* improve HTML interpretation:
o update Lynx's tables of HTML attributes to cover (except
for events) the keywords from HTML 4.01
o use RFC-822 encoding for filenames passed via file-upload
forms.
o provide navigation to script-buttons, to make them more
visible, showing their name
o add "Bad HTML messages" to Options menu, letting the
user disable the warning message, write the detailed
messages to the LYNXMESSAGES: status buffer.
o remove "Bad HTML" warning for buttons outside a form,
since those can be inline, according to the HTML 4 DTD
o correct check for default type of HTML BUTTON, which
is "submit". The code treated this as "button".
o implement "readonly" attribute for TEXTAREA and TEXT
fields
o accommodate (in)compatibility "feature" in HTML5 draft
which replaces ISO-8859-1 with Windows-1252, as indicated
here.
o add support for HTML5 rel=author in link.
o modify SGML_write() to check for UCS-2 BOMs, to provide
support for UCS-2 pages.
o modify SGML_write() to check for UTF-8 BOM, using that
as a hint to set the default document charset to UTF-8.
o parse xml processing-instruction to turn on UTF-8
decoding, as well as disable upper/lower case transforming
in source view.
o parse doctype for xhtml, to tell when empty tags such
as "<textarea />" can be discarded
o translate named entities, etc., for "content" field of
refresh-URL.
o add switch -xhtml-parsing and lynx.cfg XHTML_PARSING
setting to control whether the extensions for XHTML 1.0
are used.
o modify Lynx's DTD information to allow it to display
form-related tags that are inline, even without being in
a form as indicated in
http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd
for %inline.forms and %misc.inline.
* improvements to character sets and display:
o improve drawing of menus for multibyte characters by
changing the way the number of fill-characters is computed
in LYpaddstr
o fix some uses of gettext in options menu and info page
where a translated string might contain angle-brackets
or ampersand
o modify popup for externals added in 2.8.4dev.20 to
number the entries if keypad mode is set to one of the
numbered forms
o ie multibyte editing of text-fields.
* improvements to color-style:
o bug-fixes only
* improve interaction with user:
o remove check for -dump option from HTHandleAuthInfo(),
allowing Lynx to -dump or -source NNTP urls
o change the phase during which "-help" option is processed,
to allow it to reflect the configured values of the options
in the help-message
o check if there is piped-in data when starting without
"-" or "-stdin" options, warn about the ignored input
data in that case.
o add ncurses scroll-wheel support, which requires the
extended-mouse configure option of ncurses.
o modify initial active link in download-page to be the
first download action rather than the "help" link whided
in Novice mode.
o make the size of LYNXMESSAGES configurable in lynx.cfg
with STATUS_BUFFER_SIZE
* improve interaction with other programs:
o discard anchor's post_data field in HTLoadDocument()
if Lynx is about to reload a do. That would happen if
the result of the form includes a link back to the form.
Removing the data causes Lynx to prompt the user, e.g.,
Resubmit POST content to
http://localhost/cgi-bin/lynxtest.pl ? (y/n)
to offer the user the choice between revisiting form
or re-POST'ing the data that was on the form
o pass a newline after the start of PRE-section in
HTGopher.c to force the first newline between records to
be seen and cause the lines to split
o add POSITIONAL_EDITOR setting to configure editors
which accept a "+line" parameter
o modify external editing of TEXTAREA to not do
tab-conversion.
o modify behavior of "-nonumbers" option for -dump so it
can be combined with -listonly to obtain a list of the
URLs without reference numbers.
o implement "chunked" transfer-encoding to work with
servers that ignore the version number in HTTP get's
o add an Options menu checkbox to tell if Lynx should
send a user-agent string. Unless the useragent restriction
is set, the default for this checkbox is off, so that
Lynx will not send the string. The corresponding setting,
send_useragent, may be saved to ~/.lynxrc, but normally
is not.
o change default for configure --enable-ascii-ctypes to
true.
o modify exit code when doing a "-dump" to exit with
error if the server returned an error status for the
page.
* improve cookie support:
o modify cookie-writing to not write if no cookies were
read from the file and none are available.
o adapt/extend parsdate.y from tin to improve parsing of
cookie expiration times.
* improvements to debug/traces:
o change initialization of trace file, handing this during
the first part of argument parsing along with -help and
-version, to show steps done for initialization of
presentors, etc
* improvements to scripting/logging:
o bug-fixes only
* other improvements:
o build/install "en" po file so that GNU gettext LANGUAGE
environment variable can find the corresponding English
message file.
o if iconv_open() using transliteration fails, retry
without the transliteration feature.
o improve change for UCSetBoxChars() from 2.8.6dev.16
for EXP_CHARTRANS_AUTOSWITCH which assumed that the
line-drawing character set was always different from the
display character set. If both are US_ASCII for example,
ASCII lines would be drawn, which is not good
o modify scanning of floats from lynx.cfg to allow Lynx
to read POSIX values in non-POSIX locales
o replace BROKEN_PROFTPD and BROKEN_WU_FTPD logic with
configurable list of strings in lynx.cfg, i.e.,
BROKEN_FTP_RETR and BROKEN_FTP_EPSV, and add "spftp/" to
the predefined values for the former.
o modify to handle a special case where the content-type
is given as one of the compressed types, to check if the
address (after stripping the file suffix for that
compression) has a suffix that lynx could present For
example:
http://foo/bar.html.gz
would display the uncompressed "bar.html" rather than
offering to download the file. This also allows one to
add SUFFIX commands to lynx.cfg to display the
corresponding plain files. For example:
SUFFIX:CHANGES.*:text/plain:8bit
SUFFIX:CHANGES:text/plain:8bit
for
http://foo/CHANGES.tmp.gz
http://foo/CHANGES.gz
o fix ipv6 literal command-line parsing.
o setup locale before writing version-message.
New/improved sample files:
* add sample scripts for configuring MinGW version using Cygwin.
New ports:
* none
(it seems to run everywhere, but there are a few possibilities)
Improvements to existing ports:
* UNIX:
o add definition for _FILE_OFFSET_BITS in CF_LARGEFILE,
needed for Solaris 64-bit compiles.
o modify UCdomap.c to work with Solaris iconv and handle
additional encodings:
+ if "TRANSLIT" feature (an extension of glibc)
does not succeed, retry the call to iconv_open
without "TRANSLIT"
+ add check for any MIME name beginning "iso8859",
mapping to "iso-8859"
+ recognize "eucjp" MIME name as alias for "euc-jp"
+ recognize "pck" MIME name as alias for "shift_jis"
+ recognize "ansi-1251" MIME name as alias for "windows-1251"
o modify parsdate.y to convert between EBCDIC/ASCII to work on z/OS
* Linux:
o bug-fixes only
Improvements for maintainability and testing:
* modify definitions in LYStructs.h for union to cast to a
void* rather than a long, to help with 64-bit ports
* fix some mismatched BOOL vs BOOLEAN from compiler warnings
due to dev.13 change to LYStructs.h
* change a few options such as --enable-locale-charset option
to non-experimental
* free leaks of LYLeaks.c, to make it simpler to check it with
a second tool such as valgrind.
* use off_t rather than long for representing file sizes, e.g.,
when used to print progress messages
* use dtd_util to replace most of HTMLDTD.h and HTMLDTD.c with
source generated from the existing tables in those files
* rename variable defined by CF_PATHSP to PATH_SEPARATOR, use
this consistently to ease use in later autoconf versions
As well as security-related changes:
* modify prompt in LYLoadCGI() from 2.8.6dev.15 to always prompt
user (from FEDORA-2008-9597), and modify compiled-in configuration
default for consistency with other lynx.cfg settings to require
that lynx.cfg be set to permit use of lynxcgi scripts.
* modify logic for reading PERSONAL_EXTENSION_MAP and
PERSONAL_MAILCAP to ensure that they are files that are controlled
only by the user. The default values for these allow lynx to
read configuration information from the user's current directory
at lynx's startup.
* ensure that PERSONAL_EXTENSION_MAP and PERSONAL_MAILCAP are
absolute pathnames, performing tilde expansion as needed.
Pathnames that are not given in absolute form will be sought
under the user's home directory as if they began with "~/".
* ensure that the configured values for GLOBAL_EXTENSION_MAP
and GLOBAL_MAILCAP are absolute pathnames.
And finally:
* A lot of bug fixes
* A lot of documentation changes.
* A lot of dead code removed
|
|
pkgsrc changes:
- Add dependency to textproc/p5-Pod-POM for Template::Plugin::Pod and
graphics/p5-Image-Info for Template::Plugin::Image
Upstream changes:
#-----------------------------------------------------------------------
# Version 2.22 - 21st July 2009
#------------------------------------------------------------------------
* Changed pod coverage and kwalitee tests to only run when release
testing.
#-----------------------------------------------------------------------
# Version 2.21_02 - 4th July 2009
#------------------------------------------------------------------------
* Added UTF8 support to the XS Stash.
https://rt.cpan.org/Ticket/Display.html?id=45842
* Fixed the truncate filter to handle lengths shorter than the '...'
string being appended on the end.
https://rt.cpan.org/Ticket/Display.html?id=45617
* Fixed a bug in the parser/grammar to make NEXT/LAST work correctly
inside nested loops.
https://rt.cpan.org/Ticket/Display.html?id=40887
* Fixed a bug in Template::Plugin::Filter that was causing the weakened
$self reference in a dynamic filter closure to be garbage collected
too soon. (NOTE: this has probably un-fixed a previous bug)
https://rt.cpan.org/Ticket/Display.html?id=46691
* Applied patch to allow list.sort to sort on multiple fields.
https://rt.cpan.org/Ticket/Display.html?id=40637
#-----------------------------------------------------------------------
# Version 2.21_01 - 4th July 2009
#------------------------------------------------------------------------
* Removed Template::Plugin::Autoformat and t/autoform.t. They're now
available as a separate distribution.
* Fixed some Win32 test failures and XS Stash compilation problems.
|
|
|
|
|
|
|
|
|
|
|
|
Doesn't build with xulrunner, but package is already marked as broken.
|
|
There's a SEGV in glib2 and the backtrace doesn't have any browser
engine references in it so I'm inclined to believe this package was
broken by a glib2/gtk2 update.
|
|
It builds and installs cleanly but I can't figure out how to enable
extensions, so not tested beyond installation.
|
|
|
|
|
|
XXX: only compile tested, I don't know any consumer of this package.
|
|
of OpenSSL (e.g. the version in NetBSD-current).
|
|
XXX: Some stock icons appear to not work, is there a missing GNOME
dependency here?
2.0.7 "Surprise!"
- Works with Firefox 2/3 and Xulrunner 1.8/1.9
- Restored support for http authentication by Mike Hommey <mh@glandium.org>
- Restored support for remembering passwords.
- Partially restored support for user stylesheets.
- Effect is global rather than per page but UI doesn't reflect this.
2.0.6 "Pining for the Fjords"
- Works with Firefox 2 and 3 and xulrunner 1.8 and 1.9
- Thanks to Alexander Sack <asac@ubuntu.com> and Loïc Minier <lool#dooz.org>
for the xulrunner 1.9 patches.
- With Firefox 3/xulrunner 1.9, functionality remains crippled as
documented in the 2.0.5 release notes.
- Support for older versions of Mozilla have been removed.
You can use 2.0.5 to build against them if you need to.
- GConf pref added to suppress close confirmation for web forms.
|
|
- SECURITY: CVE-2009-1891 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_deflate or other
modules, by forcing the server to consume CPU time in compressing a
large file after a client disconnects. Bug 39605.
[Joe Orton, Ruediger Pluem]
- SECURITY: CVE-2009-1195 (cve.mitre.org)
Prevent the "Includes" Option from being enabled in an .htaccess
file if the AllowOverride restrictions do not permit it.
[Jonathan Peatfield <j.s.peatfield damtp.cam.ac.uk>, Joe Orton,
Ruediger Pluem, Jeff Trawick]
- SECURITY: CVE-2009-1890 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_proxy in a
reverse proxy configuration, where a remote attacker can force a
proxy process to consume CPU time indefinitely. [Nick Kew, Joe Orton]
- SECURITY: CVE-2009-1191 (cve.mitre.org)
mod_proxy_ajp: Avoid delivering content from a previous request which
failed to send a request body. Bug 46949 [Ruediger Pluem]
- SECURITY: CVE-2009-0023, CVE-2009-1955, CVE-2009-1956 (cve.mitre.org)
The bundled copy of the APR-util library has been updated, fixing three
different security issues which may affect particular configurations
and third-party modules.
- mod_include: fix potential segfault when handling back references
on an empty SSI variable. [Ruediger Pluem, Lars Eilebrecht, Nick Kew]
- mod_alias: check sanity in Redirect arguments.
Bug 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]
- mod_proxy_http: fix Host: header for literal IPv6 addresses.
Bug 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
- mod_rewrite: Remove locking for writing to the rewritelog.
Bug 46942
- mod_alias: Ensure Redirect emits HTTP-compliant URLs.
Bug 44020
- mod_proxy_http: fix case sensitivity checking transfer encoding
Bug 47383 [Ryuzo Yamamoto <ryuzo.yamamoto gmail.com>]
- mod_rewrite: Fix the error string returned by RewriteRule.
RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
argument of RewriteRule was not started with "[" or not ended with "]".
Bug 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
- mod_proxy: Complete ProxyPassReverse to handle balancer URL's. Given;
BalancerMember balancer://alias http://example.com/foo
ProxyPassReverse /bash balancer://alias/bar
backend url http://example.com/foo/bar/that is now translated /bash/that
[William Rowe]
- New piped log syntax: Use "||process args" to launch the given process
without invoking the shell/command interpreter. Use "|$command line"
(the default behavior of "|command line" in 2.2) to invoke using shell,
consuming an additional shell process for the lifetime of the logging
pipe program but granting additional process invocation flexibility.
[William Rowe]
- mod_ssl: Add server name indication support (RFC 4366) and better
support for name based virtual hosts with SSL. Bug 34607
[Peter Sylvester <peter.sylvester edelweb.fr>,
Kaspar Brand <asfbugz velox.ch>, Guenter Knauf, Joe Orton,
Ruediger Pluem]
- mod_negotiation: Escape pathes of filenames in 406 responses to avoid
HTML injections and HTTP response splitting. Bug 46837.
[Geoff Keating <geoffk apple.com>]
- mod_include: Prevent a case of SSI timefmt-smashing with filter chains
including multiple INCLUDES filters. Bug 39369 [Joe Orton]
- mod_rewrite: When evaluating a proxy rule in directory context, do
escape the filename by default. Bug 46428 [Joe Orton]
- mod_proxy_ajp: Check more strictly that the backend follows the AJP
protocol. [Mladen Turk]
- mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
to enable stricter checking of remote server certificates.
[Ruediger Pluem]
- mod_substitute: Fix a memory leak. Bug 44948
[Dan Poirier <poirier pobox.com>]
- mod_proxy_ajp: Forward remote port information by default.
[Rainer Jung]
- mod_disk_cache/mod_mem_cache: Fix handling of CacheIgnoreHeaders
directive to correctly remove headers before storing them.
[Lars Eilebrecht]
- mod_deflate: revert changes in 2.2.8 that caused an invalid
etag to be emitted for on-the-fly gzip content-encoding.
Bug 39727 will require larger fixes and this fix was far more
harmful than the original code. Bug 45023. [Roy T. Fielding]
- mod_disk_cache: The module now turns off sendfile support if
'EnableSendfile off' is defined globally. Bug 41218.
[Lars Eilebrecht, Issac Goldstand]
- prefork: Fix child process hang during graceful restart/stop in
configurations with multiple listening sockets. Bug 42829. [Joe Orton,
Jeff Trawick]
- mod_ssl: Add SSLRenegBufferSize directive to allow changing the
size of the buffer used for the request-body where necessary
during a per-dir renegotiation. Bug 39243. [Joe Orton]
- mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
way that per-directory rewrites append the previous notion of PATH_INFO
to each substitution before evaluating subsequent rules.
Bug 38642 [Eric Covener]
- mod_authnz_ldap: Reduce number of initialization debug messages and make
information more clear. Bug 46342 [Dan Poirier]
- mod_cache: Introduce 'no-cache' per-request environment variable
to prevent the saving of an otherwise cacheable response.
[Eric Covener]
- core: Translate the status line to ASCII on EBCDIC platforms in
ap_send_interim_response() and for locally generated "100 Continue"
responses. [Eric Covener]
- CGI: return 504 (Gateway timeout) rather than 500 when a script
times out before returning status line/headers.
Bug 42190 [Nick Kew]
- prefork: Log an error instead of segfaulting when child startup fails
due to pollset creation failures. Bug 46467. [Jeff Trawick]
- mod_ext_filter: fix error handling when the filter prog fails to start,
and introduce an onfail configuration option to abort
All the security problems mentioned above had already been fixed in
"pkgsrc" via patches. Thanks a lot to Adam Ciarcinski for letting me
know that new version had finally been released.
|
|
+ Preserve navigation history with new tabs
+ Implement clearing private data when quitting
+ Ellipsize and show close icons in the tab panel
+ Allow hiding panel operating controls
+ Integrate Tools with the compact menu
+ Fix User scripts, User styles and Plugins panel
+ Remove the bookmarkbar popup
+ Add New Tab to the tab context menu
+ Implement minimizing tabs
|
|
Reported by PR pkg/41825 from Robert Elz.
Bump PKGREVISION.
|
|
|
|
This is the development version of www/emacs-w3m.
|
|
changes: minor bugfix, update of sv translation
|
|
OpenGoo 1.5.1 has just been released. Several bugs from version 1.5
were fixed forq this release, including:
- Tags permissions. Now a user can only see tags applied to objects
that the user can view.
- Some milestones were showing in wrong workspaces.
- Custom properties defined in Administration are now searchable.
- Memory exhausted error when rendering repetitive tasks with an old
date in the calendar.
- Fatal error when copying a milestone.
- Fatal error "undefined function saveFileAttributes" when uploading a file.
- Fixed the permissions control when editing a workspace's permissions.
- Fixed a small rendering problem with invited users in event edition.
- Fixed error when sending emails to empty recipients.
- Fixed default user preferences' rendered value.
- Fixed a rendering problem in comments and descriptions that would skip
a character before an email address or link.
- Tags query was using a hardcoded 'og_' table prefix.
- Translate OpenGoo tool now includes subfolders of language folders.
Checklang also improved.
- Files of type audio/mp3 are now correctly identified as MP3.
- Updated langs.
|
|
|
|
Changes since version 3.1.0.12:
- Bug 2723 regression: enable PURGE requests if PURGE method ACL is present.
- Fix one more internal profiler error
- Language Updates: Italian, Russian
- Language Updates: Add many more aliases
- Add Copyright document for errors/ content
- ... all bug fixes from 3.0.STABLE18
- ... and several code polishing cleanups
|
|
|
|
|
|
|
|
Firefox 3.5 is based on the Gecko 1.9.1 rendering platform.
Firefox 3.5 offers many changes over the previous version, supporting new web
technologies, improving performance and ease of use.
Some of the notable features are:
* Support for the HTML5 <video> and <audio> elements
* Improved tools for controlling your private data
* Better web application performance using the new TraceMonkey JavaScript engine
* The ability to share your location with websites using Location Aware Browsing
* Support for native JSON, and web worker threads.
* Improvements to the Gecko layout engine, including speculative parsing for
faster content rendering.
* Support for new web technologies such as: downloadable fonts, CSS media
queries, new transformations and properties, JavaScript query selectors,
HTML5 local storage and offline application storage, <canvas> text,
ICC profiles, and SVG transforms.
|
|
It contains some critical problem of 3.0.17 and really fix security
problem according to updated SQUID-2009_2.txt.
Changes to squid-3.0.STABLE18 (04 Aug 2009):
- Bug 2728: regression: assertion failed: !eof
- Bug 2732: reply_body_max_size smaller than error page loops
infinitely until out of memory
- Bug 2725: pconn failure if domain or client_address are unset
- Bug 2648: reserved helpers not shut down after reconfigure/rotate
- Bug 2462: make check should tell when cppunit is missing
- Remove excess messages about headers < minimum size
- Support Libtool 2.2.6
|
|
(I opted for removing and re-importing instead of a plain update due to
extensive patch rototil)
We may encounter minor turbulence as dependent packages are sorted out.
Thank you for flying pkgsrc-current.
|
|
Unfortunately, I missed some places when fixing the privilege escalation issues for 2.8.1. Luckily, the entire WordPress community has our backs. Several folks in the community dug deeper and discovered areas that were overlooked. With their help, the remaining issues are fixed in 2.8.3. Since this is a security release, upgrading is highly recommended.
|
|
MFSA 2009-44 Location bar and SSL indicator spoofing via window.open() on
invalid URL
MFSA 2009-43 Heap overflow in certificate regexp parsing
MFSA 2009-42 Compromise of SSL-protected communication
|
|
|
|
Please read
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_15_0/phase3/RELEASE-NOTES
http://lists.wikimedia.org/pipermail/mediawiki-announce/2009-July/000087.html
for details.
Note: Version 1.13.5 did NOT have the XSS vulnerability...
|
|
Set LICENSE.
|
|
|
|
|
|
|
|
|
