| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
|
|
- various bugfix
- correctly validate file names for the admin media when using the
development server
|
|
Highlights
* New drag-and-drop widgets admin interface and new widgets API
* Syntax highlighting and function lookup built into plugin and theme editors
* Browse the theme directory and install themes from the admin
* Allow the dashboard widgets to be arranged in up to four columns
* Allow configuring the number of items to show on management pages with an option in Screen Options
* Support timezones and automatic daylight savings time adjustment
* Support IIS 7.0 URL Rewrite Module
* Faster loading of admin pages via script compression and concatenation
For all the details see: http://codex.wordpress.org/Version_2.8
|
|
Upstream changes:
2009-07-26 Release 5.830
Gisle Aas (1):
select doesn't return undef on failure [RT#32356]
Ville Skyttae (1):
Add raw RFC 1951 deflate test case.
|
|
Trac-0.11.5.ja1 (Jul 20, 2009)
* Merge Trac-0.11.5
Trac 0.11.5 (July 17, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5
Trac 0.11.5 is identical to 0.11.5rc2 except for fixing a minor
incompatibility issue when using IIS via AJP as frontend (#8475).
Trac 0.11.5rc2 (July 11, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5rc2
Trac 0.11.5rc2 fixes two regressions found in rc1 and one minor enhancement:
* Fixed workaround for zipped Genshi eggs, [8354], #7823
* Fixed internal error when removing a wiki page version [8343].
* Fixed display of merge properties for scoped repositories #7715.
Trac 0.11.5rc1 (March 30, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5rc1
Trac 0.11.5rc1 contains a number of bug fixes and minor enhancements.
The following list contains only a few highlights:
Bug fixes:
* Implemented pre-upgrade backup support for PostgreSQL and MySQL (#2304)
* Fixed PostgreSQL upgrade issue (#8378)
* More robust diff parsing (#2672)
* Avoid intermittent hangs by not calling apr_terminate explicitly (#7785)
|
|
Changes since version 3.1.0.11:
- Bug 2716: Chunked request Signed/Unsigned build error
- Bug 2674: Remove limit on HTTP headers read.
- Bug 2620: Invalid HTTP response codes causes segfault
- Fix FTP EPSV negotiation parser.
- Fix Via string when leak checking is enabled (valgrind etc)
- ... and several documentation and testing additions
This update also fixes the security vulnerabilites reported in
the SQUID-2009:2 advisory.
|
|
Changes to squid-3.0.STABLE17 (27 Jul 2009):
- Bug 2680 regression: Crash after rotate with no helpers running
- Bug 2710: squid_kerb_auth non-terminated string
- Bug 2679: strsep and strtoll detection failure
- Bug 2674: Remove limit on HTTP headers read.
- Bug 2659: String length overflows on append, leading to segfaults
- Bug 2620: Invalid HTTP response codes causes segfault
- Bug 2080: wbinfo_group.pl - false positive under certain conditions
- Bug 1087: ESI processor not quoting attributes correctly.
- Fix: issue with AUFS/UFS/DiskD writing objects to disk cache
- Several small build issues with previous release.
|
|
Security and bugfix release, patches the following advisories:
MFSA 2009-40 Multiple cross origin wrapper bypasses
MFSA 2009-39 setTimeout loses XPCNativeWrappers
MFSA 2009-37 Crash and remote code execution using watch and __defineSetter__
on SVG element
MFSA 2009-36 Heap/integer overflows in font glyph rendering libraries
MFSA 2009-35 Crash and remote code execution during Flash player unloading
MFSA 2009-34 Crashes with evidence of memory corruption (rv:1.9.1/1.9.0.12)
|
|
|
|
changes:
Performance of working with multiple windows was
improved. The download dialogue and the Transfer panel were enhanced.
An annoying bug was fixed that rendered Mouse Gestures virtually unusable.
Alt +n now does switch to the n-th tab as asked for by several users.
Another popular question in its own right was using Midori with no
menubar, for which now there is a menu button that appears upon hiding
the menubar and provides features missing from the context menu.
Through two new extensions finally keyboard shortcuts can be edited
comfortably and a toolbar editor makes customizing the toolbar layout
a walk in the park.
|
|
Changes in this version:
* Remove an unlock statement that shouldn't be there. This should
fix the problems reported in #232 and a lot of related bugs. Thanks
to Terry Duncan for the fix!
pkgsrc change: use the primary site rather than sourceforce, the newer
version was apparently not uploaded there
|
|
- Don't use -pm to pax when install.
- Update Italian and Turkish translation files.
|
|
Needless to say this fails on Debian.
|
|
|
|
* Fixed downloading tar-gz-archives when using gz-extension
* Improved output when svn-command could not be executed correctly
* Added config option to use full alphabetic order (independent of
folder or file type)
* Fixed multiple links and minor issues
* Fixed issues: 212, 213, 214, 215, 216, 217, 219, 222, 223, 224,
225, 227, 228, 229, 230, 231, 232, 234, 237, 238
2.2.0:
* Fixed revision handling to use PEG revision instead of OPERATIVE revision
* This fixes many (but not all) cases when working with
moved/renamed/deleted files
* Removed dependencies to external command
* Added PEAR Archive_Tar
* Added PEAR Text_Diff
* Added usage of gz extension if available
* Added usage of PHP touch function
* Improved scalability of parent path handling
* Added support for upcoming PHP 5.3
* Added separate customizable extension mapping for GeSHi
* Added possiblity to ignore whitespace on compare and diff
* Added support for aliases in access file and handle continuation
lines correctly
* Added config option to set custom config path
* Added config option to exclude specific paths from the set of
repositories added by parentPath
* Added config option to add a subpath of a repository to the list
of repositories
* Added config option to switch between showing age and date in log
and listing view (the other is displayed in the title attribute)
* Added auto detection of Windows
* Added message when config file does not exist
* Added new logo and favicon
* Fixed some broken links when navigating through a repository
* Fixed created archive to be identical (for the same revision)
across multiple request
* This works under Linux with any PHP version and under Windows with PHP 5.3
* Fixed parsing of access file to support usernames containing equal characters
* Updated translations
* Dutch
* French
* Italian
2.1.0:
* Fixed: Several security fixed
* Added: Added GeSHi for code highlighting.
* Added: New languages.
* Changed: Separated modified files and directory listing.
* Changed: Updated used libraries.
FIX: XSS vulnarabilities (Issue 179)
FIX: Hide modified files in revision view based on authentication.
FIX: Numerous other security problems.
NEW: Added translations: hungarian, indonesian, slovak, uzbek.
CHANGED: Some code cleanup.
2.0:
* Changed: many cleanups and optimisations.
* Added: more documentation for *.php files.
* Removed: extraneous bits.
* Changed: line endings now use UNIX-style across the board.
NEW: New default template theme offered by Erik Pöhler
NEW: Template files may now be specified on a per repository basis
NEW: Add RSS 'alternate' <link> elements to the HTML headers in
directory listings. This lets you, for example, easily create a
'live bookmark' in Firefox to monitor commits to a particular SVN path.
NEW: Russian translation.
CHANGE: Bugtraq handling has been updated to account for the latest spec.
FIX: Syntax highlighting across lines has been fixed (Issue 85)
1.62:
NEW: RSS feed can now list changed files
NEW: Templates can now show an open folder icon
NEW: Polish translation
NEW: Dutch translation
CHANGE: Window is scrolled to appropriate location when opening a new directory
FIX: Allow repository names containing '/'
FIX: Fixed sloppy HTML in diff templates
FIX: Fix problems with the diff output
FIX: Repositories on Windows network shares can now be accessed.
FIX: Accented characters weren't shown correctly in the directory comparison
view.
FIX: Remove error when only one revision was available
pkgsrc changes:
* Use a more typical PKG_SYSCONFDIR.
* Don't depend on Apache PHP module; this runs anywhere PHP does.
|
|
|
|
changes:
-bugfixes
-UI improvements
-translation updates
|
|
changes: misc fixes
(I know 1.1.11 is out, but it wants an unstable version of libsoup)
|
|
|
|
"reverse lookup" selftest succeed
-fix a memory allocation in case a sockaddr is larger than
"struct addrinfo" -- likely with IPv6
ride on update
|
|
|
|
add a local copy of SSL_SESSION_cmp which is missing in openssl 1.0.0 betas.
based on hack found at: http://trac.macports.org/ticket/19124
This fixes subversion-base build on NetBSD-current.
While here update to neon-0.28.5.
Changes in release neon 0.28.5, 3 July 2009 (PGP signature)
* Enable support for X.509v1 CA certificates in GnuTLS.
* Fix handling of EINTR in connect() calls.
* Fix use of builds with SOCK_CLOEXEC support on older Linux kernels.
Changes in release neon 0.28.4, 3 March 2009 (PGP signature)
* Fix ne_forget_auth (Kai Sommerfeld)
* GnuTLS support fixes:
o fix handling of PKCS#12 client certs with multiple certs or keys
o fix crash with OpenPGP certificate
o use pkg-config data in configure, in preference to libgnutls-config
* Add PKCS#11 support for OpenSSL builds (where pakchois is available)
* Fix small memory leak in PKCS#11 code.
* Fix build on Haiku (scott mc)
|
|
|
|
|
|
* svn: Fix rcs_rename to properly scope call to dirname.
* img: Pass the align parameter through to the generated img tag.
* Move OpenID pretty-printing from openid plugin to core (smcv)
pkgsrc changes:
* Add PKG_SYSCONFDIR support.
* Parameterize pkgsrc-configured paths in Makefile.PL so the patch
can go upstream.
* Retire legacy amazon_s3 option.
|
|
|
|
|
|
|
|
Shared directories can now be created independently by the pacakges
needing them and will be removed automatically by pkg_delete when empty.
Packages needing empty directories can use the @pkgdir command in PLIST.
Discussed and ok'd in thread starting at
http://mail-index.netbsd.org/tech-pkg/2009/06/30/msg003546.html
|
|
|
|
|
|
Trac 0.11.5 (July 17, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5
Trac 0.11.5 is identical to 0.11.5rc2 except for fixing a minor
incompatibility issue when using IIS via AJP as frontend (#8475).
Trac 0.11.5rc2 (July 11, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5rc2
Trac 0.11.5rc2 fixes two regressions found in rc1 and one minor enhancement:
* Fixed workaround for zipped Genshi eggs, [8354], #7823
* Fixed internal error when removing a wiki page version [8343].
* Fixed display of merge properties for scoped repositories #7715.
Trac 0.11.5rc1 (March 30, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5rc1
Trac 0.11.5rc1 contains a number of bug fixes and minor enhancements.
The following list contains only a few highlights:
Bug fixes:
* Implemented pre-upgrade backup support for PostgreSQL and MySQL (#2304)
* Fixed PostgreSQL upgrade issue (#8378)
* More robust diff parsing (#2672)
* Avoid intermittent hangs by not calling apr_terminate explicitly (#7785)
|
|
"ftp.fu-berlin.de" work again.
|
|
|
|
|
|
|
|
Changes since version 3.1.0.9:
- Bug 2087: Support adaptation sets and chains
- Bug 2459: dns error message broken when error handling delayed
- Support ICAP Retry
- Support ICAP retries based on the ICAP responses status code
- Support logging ICAP
- Support logging total DNS wait time
- Support logging response times of adaptation transactions
- General logging enhancements
- Dynamically form chains based on ICAP X-Next-Services header
- Support cross-transactional ICAP header exchange
- Bug 2680: Regression Crash after rotate with no helpers running
- Bug 2695: Regression in WCCPv2 L2 mask assignment
- Bug 2707: Regression in FTP anonymous auth
- Bug 422, 2706: RFC 2616 Date header requirements
- Bug 1087: ESI processor not quoting attributes correctly.
- Bug 1338: File prefetches aborted despite range_offset
- Bug 2080: wbinfo_group.pl - false positive under certain conditions
- Bug 2092: select loop 32-bit call counter overflows
- Bug 2127: delay pools class 4 crashes with ntlm auth
- Bug 2611: document fast/slow acl types
- Bug 2614: Potential loss of adapted body data from eCAP adapters
- Bug 2658: Missing TextException copy constructor
- Bug 2659: String length overflows on append, leading to segfaults
- Bug 2699: Build failure NTLM smb_lm helper
- Bug 2709: TRANSLATIONS not installed
- Bug 2710: squid_kerb_auth non-terminated string
- Delay pools 64-bit buckets and IPv6-polish
- Break forwarding loops for "transparent" or "intercept" http_ports.
- Add --disable-translation option to detatch .po from error negotiation
- Add squidclient man(1) page
- Add localhost to default permitted networks
- http_port allow-direct option to allow direct forwarding in accelerator mode
- ... and many testing infrastructure updates
- ... and much adaptation polish and improvements
|
|
- Updating package for p5 module App::Nopaste from 0.10 to 0.15
- Adding perl license
- Reordering dependencies between required and recommended
- Adjusting dependency versions
Upstream changes:
0.15 Wed Jul 15 05:01:36 2009
MANIFEST is really hard! :(
0.14 Wed Jul 15 04:48:15 2009
No code changes
0.13 Wed Jul 15 04:47:21 2009
Add support for paste.debian.net (Ryan Niebur)
0.12 Mon Jul 13 19:35:10 2009
Don't explicitly (optionally) depend on Git, but use it if
we have it (Sartak)
0.11 Thu Jun 18 17:20:51 2009
Service::Gist: use file_ext instead of file_name (nothingmuch)
Bump Moose dependencies to avoid deprecation warnings
Doc typo fix (rafl)
|
|
- Updating package for p5 module WWW:Curl from 4.07 to 4.09
- Adding license comment for or license experts
- Replacing duplicated dependency to www/curl with an API dependency
version
- Using Module::Install as module type
Upstream changes:
4.09 Thu Jul 09 2009: - Balint Szilakszi <szbalint at cpan.org>
- Fixing broken version check.
4.08 Tue Jul 07 2009: - Balint Szilakszi <szbalint at cpan.org>
- Fixed a memory leak in setopt.
- Added a check to Makefile.PL for the minimum libcurl version.
- Mentioned WWW::Curl hosting on github.
- Upgraded bundled Module::Install to 0.91.
|
|
Upstream changes since 1.602:
2009-07-18 Kingpin <Martin@BLUEMAX>
* lib/WWW/Amazon/Wishlist.pm (_extract): fixed the priority parser
|
|
- Updating package for p5 module WWW::Mechanize from 1.54 to 1.58
- Adjusting license and dependencies according to META.yml and Makefile.PL
Upstream changes:
1.58 Mon Jul 13 22:32:23 CDT 2009
========================================
No new features. If you have 1.56 installed OK, you do NOT need
to install 1.58.
[FIXES]
Removed prereq of HTTP::Response::Encoding, even though it was never
used. Thanks for the catch, Gisle.
1.56 Thu Jul 9 00:36:54 CDT 2009
========================================
[THINGS THAT MAY BREAK YOUR CODE]
For a while, Mech used HTTP::Response::Encoding to try to suss out
the proper encoding of the page it receives. Now, it lets
LWP::UserAgent do the work, and no longer requires
HTTP::Response::Encoding.
[ENHANCEMENTS]
Added a new dump_headers() method to dump the HTTP response headers.
Added --headers flag to mech-dump to dump the HTTP response headers.
[FIXES]
Now requires LWP version 5.829 because HTTP::Response has memory
cycle bugs.
[DOCUMENTATION]
Added a few notes to the FAQ, and fixed some incorrect docs.
1.55_01 Mon Jul 6 12:17:10 CDT 2009
========================================
This is mostly a bug fix release. There will be a number of other
bug fix releases in the next few days.
[FIXED]
New test server now randomizes the port it runs on.
t/cookies.t should not hang on Windows any more.
META.yml has been updated so the search.cpan.org links should be
correct.
Passing no_proxy would make LWP::UserAgent barf. Thanks to Mike
Schilli for the fix.
Cookies test would fail under Windows. Fixed, thanks to many people
reporting it.
[ENHANCEMENTS]
$mech->submit_form() now can specify the form by ID using the form_id
parameter.
[DOCUMENTATION]
The docs used to say that ->stack_depth(0) was an infinite stack
size. This is wrong. Zero will tell Mech not to keep any history.
|
|
|
|
Changelog:
Changes between 0.1 to 0.3:
0.3
Added the possibility to specify the path where SWILL creates temporary files. Added swill_interface() to bind to specific interface.
0.2
Added support for compiling under Win32 with MSVC.
Added support for HTTPS using OpenSSL.
|
|
|
|
* no need INSTALLATION_DIRS anymore
* MAKE_JOBS_SAFE now.
* some cosmetic fix.
|
|
immediately after reading the security announcement:
* SA-CORE-2009-007 - Drupal core - Multiple vulnerabilities
In addition to this security vulnerability, the following bugs have been fixed since the 6.12 release:
* - Patch #463450 by wulff: fixed documentation glitch.
* #193577 by Rob Loach, Damien Tournoud, andypost: JavaScript string split() function does not behave like PHP explode(); causes problems with multiple node body break tags
* #454992 by sun, bengtan: _drupal_flush_css_js() should not have 'q' as a possible CSS query character, since that is the Drupal path name character too
* #452704 by andypost, catch: Names of compressed CSS and JS files should have a prefix, so that names starting in ad* will not happen. Those are easily blocked by firewalls, Firefox's Adblock, etc.
* #468732 by andypost: cache_clear_all() mentioned cache_flush_delay incorrectly; it should say we use cache_lifetime
* #460420 by wulff, andypost: drupal_set_title() in forum_overview() is not needed; menu already sets the title and is localized
* #398902 by Nick Urban, alexanderpas, kscheirer: password equality checking was not using strict type checking; we should assume these are strings and compared character to character
* #479216 by jhedstrom: fix grammar in forum module messages
* #445748 by Dave Reid, dww: Fix module support for disabled module update status checking and do not track usage in that case.
* #465190 by Heine: The Anonymous name is a plain text setting, so it should be escaped properly for output.
* #246096 by Sutharsan, Pedro Lozano, mr.baileys, andypost: Actions set to run on cron were not actually triggered.
* #226479 by gpk, BrianV, catch: We should always show the node access rebuild button. The check on when to show it was fragile, so the button might not have been there when actually needed.
* #482646 by Dave Reid: For proper HTTP query simpletesting, we should pass on the instance identifier (database prefix).
* #197266 by ufku, lilou, Dave Reid, c960657, drewish: Save a query by only calling file_space_used() when a limit is provided.
* #408876 by Pasqualle, JamesAn: The 'serialize' Schema API property was used but not documented.
* #145733 by kepten, brianV: The session.use_cookies PHP setting is required by Drupal, but it can be turned off, so try to ensure it is turned on at all times.
* #373225 by jpulles, Josh Waihi: When changing columns, PostgreSQL needs explicit type casting to ensure that values are kept properly.
* #236657 by hctom, swentel: In system_clear_cache_submit(), the function arguments were swapped (but it did not affect how it actually worked).
* #243253 by Benjamin Melançon, dww: Update status should not attempt to request update data until a limit is reached. Fixed Drupal instances when drupal.org is down and gets less load on Drupal.org if data is not found.
* #339466 by patryk, c960657, alexanderpas: Remove url() wrapping from remote links and link in a more user friendly OpenID provider list.
* #461938 by grendzy, JamesAn: Use filter_xss_admin() on site name and site slogan, just like footer message and mission
* #455172 by budda, RoboPhred, andypost: Fix drupal_mail() documentation, so that it encourages to set the body of the email as an array (like core does).
* #329797 by berenddeboer, redndahead, danielb: The tablesort code did not account for possibly nested tables; only match immediate descendats, so elements of nested tables are not matched.
* #352121 by valthebald, Damien Tournoud, mr.baileys: The safe string check on translations should only be applied to the default textgroup. Strings in other textgroups such as blocks and menu items are displayed via escaping and filtering, and might contain arbitrary HTML.
|
|
immediately after reading the security announcement:
* SA-CORE-2009-007 Drupal core - Multiple vulnerabilities
In addition to this security vulnerability, the following bugs have been fixed since the 5.18 release:
* #212285 by wrwrwr: hr should be treated as a block level tag. Backport by alexanderpas.
* #145733 by kepten, brianV: The session.use_cookies PHP setting is required by Drupal, but it can be turned off, so try to ensure it is turned on at all times.
|
