Up to [cvs.NetBSD.org] / pkgsrc / www / elinks
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: pkgsrc-2014Q4
Revision 1.28 / (download) - annotate - [select for diffs], Sat Nov 3 14:43:25 2012 UTC (11 years, 4 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q3-base,
pkgsrc-2015Q3,
pkgsrc-2015Q2-base,
pkgsrc-2015Q2,
pkgsrc-2015Q1-base,
pkgsrc-2015Q1,
pkgsrc-2014Q4-base,
pkgsrc-2014Q4,
pkgsrc-2014Q3-base,
pkgsrc-2014Q3,
pkgsrc-2014Q2-base,
pkgsrc-2014Q2,
pkgsrc-2014Q1-base,
pkgsrc-2014Q1,
pkgsrc-2013Q4-base,
pkgsrc-2013Q4,
pkgsrc-2013Q3-base,
pkgsrc-2013Q3,
pkgsrc-2013Q2-base,
pkgsrc-2013Q2,
pkgsrc-2013Q1-base,
pkgsrc-2013Q1,
pkgsrc-2012Q4-base,
pkgsrc-2012Q4
Changes since 1.27: +4 -4
lines
Diff to previous 1.27 (colored)
Update to 0.12pre6. Remove javascript option since a) lang/see support was removed (see below) b) lang/spidermonkey and wip/spidermonkey185 aren't recognized ELinks 0.12pre6 --------------- Security fix: * bug 1124, CVE-2012-4545: Do not delegate GSSAPI credentials in HTTP Negotiate or GSS-Negotiate authentication. Reported by Marko Myllynen. (ELinks 0.12pre1 was the first release that supported GSSAPI; earlier releases are not vulnerable.) Fixed crashes and hangs: * critical bug 943: Don't let user JavaScripts call any methods of ``elinks.action'' in tabs that do not have the focus. If a tab was closed with ``elinks.action.tab_close'' while it had pop-up windows, ELinks could crash; as a precaution, don't allow other actions either. (ELinks 0.12pre1 was the first release that supported ``elinks.action''.) * critical bug 1083: Avoid an infinite loop when trying to decompress malformed data. Caused by the bug 1068 fix in ELinks 0.12pre3. * Fix a possible crash or information disclosure on big-endian 64-bit systems using HTTP Negotiate or GSS-Negotiate authentication. Incompatibilities: * Dropped support for SEE. (ELinks 0.12pre1 was the first release that supported SEE.) * Guile 2.0.0 (released on 2011-02-16) changed its license to LGPLv3-or-later, which is not compatible with the GPLv2 that covers ELinks. Also, Guile has deprecated many of the functions that ELinks calls. Other changes: * major bug 764: Correctly initialize options on big-endian 64-bit systems. * bug 983: Give preference to the Content-Type specified in the HTTP header over that specified via the HTML meta tag. * bug 1084: Allow option names containing '+' and '*' in the option manager. * bug 1112: Map most numeric character references € ... Ÿ to graphical characters also when the output charset is UTF-8. (ELinks 0.12pre1 was the first release that supported UTF-8 as the terminal charset, and ELinks 0.12pre5 was the first release that supported UTF-8 as the dump charset.) * minor bug 1113: Fix a small memory leak if a mailcap file is malformed. * minor bug 1114: Decode SGML entities and NCRs only once in link/@title and other attributes. * build: Fix several warnings reported by GCC 4.7.1. Harmless at runtime but could break the build if configured --enable-debug. (This version does not fix all such warnings.)