| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
Trac-1.0.ja1 (Oct 4, 2012)
* Based on Trac 1.0 'Cell'
* Change document and parameters for this distribution.
- *.trac-ja
- setup.py
- trac/templates/about.html
- trac/templates/theme.html
* Translate default Wiki pages into Japanese.
- trac/wiki/default-pages/*
* Translate default reports into Japanese.
- trac/db_default.py
* Translate default workflow display into Japanese.
* trac/ticket/templates/report.rss
* trac/ticket/templates/report_view.html
* [Patch] Add formatting for report using Japanese column name.
- trac/ticket/report.py
- trac/ticket/templates/report.rss
- trac/ticket/templates/report_view.html
* [Patch] Fix a bug that local time will not be applied
when downloading repository files as Zip.
- trac/versioncontrol/web_ui/changeset.py
* [Patch] Small patch for Unicode
- trac/about.py
* [Patch] Fix based on ticket #10877.
-trac/util/text.py
-trac/util/test/text.py
Trac 1.0 'Cell' (September 7, 2012)
http://svn.edgewall.org/repos/trac/tags/trac-1.0
Trac 1.0 is a major release adding refreshed user interface and
improved DVCS repository support as the most visible changes.
The following list contains only a few highlights:
- The default theme looks more modern, especially on recent browsers
(no effort has been made to make it look better on older browsers
like IE6 or 7)
- The TracHacks GitPlugin has been donated by Herbert Valerio Riedel
to the Trac project (many thanks!) and is now maintained here as an
optional component
- As a consequence, the Subversion support has been moved below
`tracopt.versioncontrol` as well
- The Git and Mercurial log view feature a visualization of the
branching structure
- Usability improvements for the tickets, with a better support for
conflict detection and resolution
- Integration of the TracHacks BatchModifyPlugin, contributed by
Brian Meeker (many thanks!) and is now maintained there as a
default component
- jQuery/UI integration, featuring a date picker for date fields
- Improved integration with Pygments syntax highlighting
- ... and numerous smaller features added and bugs fixed since 0.12!
|
|
* Use Lightning in seamonkey tar ball, 2.0pre.
Changelog:
SeaMonkey-specific changes
SeaMonkey can be set as default client/browser on Mac and Linux now.
See the changes page for minor changes.
Mozilla platform changes
The new IonMonkey compiler improves JavaScript performance.
Preliminary support for WebRTC has been added.
Image quality has been improved through a new HTML scaling algorithm.
CSS3 Flexbox has been implemented.
Support for new DOM property window.devicePixelRatio has been added.
Support for @supports has been added (disabled for now).
Startup time has been improved through smart handling of signed extension certificates.
HTML5: Support for W3C touch events has been implemented, taking the place of MozTouch events
Insecure content loading has been disabled on HTTPS pages (see bug 62178).
Responsiveness for users on proxies has been improved.
Fixed several stability issues.
Fixed in SeaMonkey 2.15
MFSA 2013-20 Mis-issued TURKTRUST certificates
MFSA 2013-19 Use-after-free in Javascript Proxy objects
MFSA 2013-18 Use-after-free in Vibrate
MFSA 2013-17 Use-after-free in ListenerManager
MFSA 2013-16 Use-after-free in serializeToStream
MFSA 2013-15 Privilege escalation through plugin objects
MFSA 2013-14 Chrome Object Wrapper (COW) bypass through changing prototype
MFSA 2013-13 Memory corruption in XBL with XML bindings containing SVG
MFSA 2013-12 Buffer overflow in Javascript string concatenation
MFSA 2013-11 Address space layout leaked in XBL objects
MFSA 2013-10 Event manipulation in plugin handler to bypass same-origin policy
MFSA 2013-09 Compartment mismatch with quickstubs returned values
MFSA 2013-08 AutoWrapperChanger fails to keep objects alive during garbage collection
MFSA 2013-07 Crash due to handling of SSL on threads
MFSA 2013-06 Touch events are shared across iframes
MFSA 2013-05 Use-after-free when displaying table with many columns and column groups
MFSA 2013-04 URL spoofing in addressbar during page loads
MFSA 2013-03 Buffer Overflow in Canvas
MFSA 2013-02 Use-after-free and buffer overflow issues found using Address Sanitizer
MFSA 2013-01 Miscellaneous memory safety hazards (rv:18.0/ rv:10.0.12 / rv:17.0.2)
|
|
Upstream changes:
1.0015 Thu Jan 10 15:19:17 PST 2013
[BUG FIXES]
- Fixed Lint complaining about Latin-1 range characters stored internally with
utf8 flag on (Mark Fowler)
- HTTP::Message::PSGI::res_from_psgi now always returns empty string
for an empty response body, so streamed responses are consistent with
non-streamed (ether)
1.0014 Mon Dec 3 10:27:43 PST 2012
[BUG FIXES]
- Fixed Hash order in tests for perl 5.17 (doy)
- Fixed StackTrace tests to run with Devel::StackTrace
[IMPROVEMENTS]
- Plack::Middleware::AccessLog can now log the worker pid and server
port (ether)
1.0013 Wed Nov 14 19:46:49 PST 2012
[BUG FIXES]
- Make sure psgi.input is seeked even when the input is buffered (Getty, leedo)
- Delete invalid (empty) CONTENT_LENGTH and CONTENT_TYPE in FCGI (Getty, leedo)
1.0012 Wed Nov 14 12:00:17 PST 2012
[IMPROVEMENTS]
- Make conditional middleware work with initialization without an app (doy)
- Added force option to BufferedStreaming
1.0011 Sun Nov 11 11:05:30 PST 2012
[BUG FIXES]
- Fix bad Content-Length that could be caused with mod_perl (avar)
- Allow an empty PATH_INFO in Lint per PSGI spec
1.0010 Fri Nov 2 13:30:50 PDT 2012
[IMPROVEMENTS]
- Added vim .swp files to the default ignore list in Restarter
- Check if PATH_INFO begins with / in Lint
1.0009 Tue Oct 23 00:57:16 PDT 2012
[BUG FIXES]
- Correct fix to address drive letters for Win32
1.0008 Mon Oct 22 18:52:29 PDT 2012
[BUG FIXES]
- Allow drive letters for absolute paths for plackup and load_psgi #343
1.0007 Sat Oct 20 23:20:20 PDT 2012
[IMPROVEMENTS]
- Fix test failures with HTTP::Message 6.06. #345
- relaxed plackup -R ignore files and directoris. #260
1.0006 Thu Oct 18 16:06:15 PDT 2012
[INCOMPATIBLE CHANGES]
- plackup foo.psgi will not search the file in @INC anymore before the current directory
See https://github.com/plack/Plack/pull/343 for details (miyagawa)
[NEW FEATURES]
- plackup --path /foo will mount the application under /path (mattn)
[BUG FIXES]
- AccessLog: Fix the timezon offset for certain timezones
- ErrorDocument: support streaming interface
1.0005 Tue Oct 9 13:33:47 PDT 2012
[NEW FEATURES]
- Support psgix.cleanup handlers in Apache2 (avar)
- Added REMOTE_PORT environment variable to HTTP::Server::PSGI (dex4er)
[IMPROVEMENTS]
- Documentation fix for multiple cookie values (miyagawa)
- Delete MOD_PERL environment variable for better compatibilities (avar)
- Split out Plack::TempBuffer as a standalone Stream::Buffered module (doy)
- Bump Test::TCP dep
1.0004 Thu Sep 20 08:36:11 JST 2012
[NEW FEATURES]
- Added psgix.harakiri support in HTTP::Server::PSGI
[IMPROVEMENTS]
- Preload TempBuffer modules (avar)
- Documentation fixes (autarch)
|
|
Upstream changes:
2.94 Thu Jan 17 2013
- Fixed bug where options were bleeding over into subsequent calls to new()
[Michael Peters]
2.93 Wed Jan 16 2013
- Feature: Added config() method to make setting global defaults
easy so that each call to new() has less boiler plate. [Michael
Peters]
- Bug Fix: t/05-force_untaint.t now passes when run with prove
[Michael Peters]
- Bug Fix: die_on_bad_params now controls whether we die if tmpl_vars
reuse names from tmpl_loops (which can be useful in some situations)
[Michael Peters]
|
|
|
|
(PR pkg/47381)
|
|
www/py-werkzeug-docs.
Based on PR pkg/47381 by Richard PALO.
This package contains the HTML documentation for Werkzeug.
Werkzeug is a WSGI utility library for Python. It's widely used
and BSD licensed.
Werkzeug started as a simple collection of various utilities for
WSGI applications and has become one of the most advanced WSGI
utility modules. It includes a powerful debugger, fully featured
request and response objects, HTTP utilities to handle entity tags,
cache control headers, HTTP dates, cookie handling, file uploads,
a powerful URL routing system and a bunch of community contributed
addon modules.
It does Unicode and doesn't enforce a specific template engine,
database adapter or anything else. It doesn't even enforce a specific
way of handling requests and leaves all that up to the developer.
|
|
|
|
used by py-werkzeug-docs. No exterally visible changes to package.
Based on PR pkg/47381 by Richard PALO.
|
|
|
|
Bump PKGREVISION.
|
|
No changes are available, Various bug fixes and improvement.
|
|
Drupal 7.19, 2013-01-16
-----------------------
- Fixed security issues (multiple vulnerabilities). See SA-CORE-2013-001.
|
|
Drupal 6.28, 2013-01-16
----------------------
- Fixed security issues (multiple vulnerabilities), see SA-CORE-2013-001.
|
|
and extra documentation files. Bump PKGREVISION.
Based on PR pkg/47381 by Richard PALO.
|
|
PKGREVISION.
|
|
|
|
HTTP::Server::Simple::Authen is an HTTP::Server::Simple plugin to allow
HTTP authentication. Authentication scheme is pluggable and you can use
whatever Authentication protocol that Authen::Simple supports.
|
|
* January 13th, 2013: Thirty second public release 1.4.4, 1.3.9, 1.2.7, 1.1.5
* [SEC] Rack::Auth::AbstractRequest no longer symbolizes arbitrary strings
* Fixed erroneous test case in the 1.3.x series
|
|
* January 6th, 2013: Twenty eighth public release 1.3.7
* Add warnings when users do not provide a session secret
* Fix parsing performance for unquoted filenames
* Updated URI backports
* Fix URI backport version matching, and silence constant warnings
* Correct parameter parsing with empty values
* Correct rackup '-I' flag, to allow multiple uses
* Correct rackup pidfile handling
* Report rackup line numbers correctly
* Fix request loops caused by non-stale nonces with time limits
* Fix reloader on Windows
* Prevent infinite recursions from Response#to_ary
* Various middleware better conforms to the body close specification
* Updated language for the body close specification
* Additional notes regarding ECMA escape compatibility issues
* Fix the parsing of multiple ranges in range headers
* January 7th, 2013: Thirtieth public release 1.3.8
* Security: Prevent unbounded reads in large multipart boundaries
* January 13th, 2013: Thirty second public release 1.4.4, 1.3.9, 1.2.7, 1.1.5
* [SEC] Rack::Auth::AbstractRequest no longer symbolizes arbitrary strings
* Fixed erroneous test case in the 1.3.x series
|
|
* January 6th, 2013: Twenty seventh public release 1.2.6
* Add warnings when users do not provide a session secret
* Fix parsing performance for unquoted filenames
* January 13th, 2013: Thirty second public release 1.4.4, 1.3.9, 1.2.7, 1.1.5
* [SEC] Rack::Auth::AbstractRequest no longer symbolizes arbitrary strings
* Fixed erroneous test case in the 1.3.x series
|
|
Oops. PKGNAME_NOREV is not suitable, use DISTNAME instead.
|
|
ftp.NetBSD.org and its mirrors has wrong tar ball.
|
|
* Add missing dependencies. Thank you, joerg@.
|
|
* Add FETCH_USING=curl for https MASTER_SITES. Thank you, joerg@.
* Add missing dependency.
|
|
* Add missing dependencies.
Thank you, joerg@.
|
|
|
|
Changes to squid-3.1.23 (09 Jan 2013):
- Additional fixes for CVE-2012-5643 / SQUID:2012-1
|
|
return non-NULL too and lighttpd was evaluating as failure.
Bump PKGREVISION.
|
|
|
|
This package contains language packs for www/firefox17.
|
|
|
|
Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.
It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up
windows.
Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.
This package tracks 17.0.x extended support release.
|
|
* Sync with www/firefox 18.0.
|
|
* Sync with www/firefox10 10.0.12.
|
|
Sync with devel/xulrunner 18.0.
|
|
where missed at import time.
|
|
Only version has updated.
|
|
## Rails 3.2.11 ##
* Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
|
|
Only version has updated.
|
|
Only version has updated.
|
|
## Rails 3.1.10
* Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
|
|
Only version has updated.
|
|
Only version has updated.
|
|
## Rails 3.0.19
* Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
|
|
Only version has updated.
|
|
* January 7th, 2013: Thirty first public release 1.4.3
* Security: Prevent unbounded reads in large multipart boundaries
|
|
Enable DIST_SUBDIR and bump PKGREVISION.
|
