Update to nabud-1.3.3. Upstream changes:
* Added support for flexibile transmission timeouts in NHACP. The spec
says 1 second, but there are systems out in the wild with slower
transmission speeds that are now using NHACP. We now calculate the
timeout based on how long it would take to transmit an MTU-sized frame
at the connection's baud rate, rounding up to the next whole second.
* Fix a source code management mistake in nabud-1.3.2's off_t changes that
caused odd behavior on platforms that required the change.
www/cpp-httplib: import cpp-httplib-0.15.3
A C++11 single-file header-only cross platform HTTP/HTTPS library.
It's extremely easy to setup. Just include the **httplib.h** file
in your code!
NOTE: This library uses 'blocking' socket I/O. If you are looking
for a library with 'non-blocking' socket I/O, this is not the one
that you want.
archivers/7-zip: Update to 24.05
Changelog:
7-Zip 24.05
7-Zip now can unpack ZSTD archives (.zst filename extension).
7-Zip now can unpack ZIP, SquashFS and RPM archives that use ZSTD compression method.
7-Zip now supports fast hash algorithm XXH64 that is used in ZSTD.
7-Zip now can unpack RAR archives (that use larger than 4 GB dictionary) created by new WinRAR 7.00.
7-Zip now can unpack DMG archives that use XZ (ULMO/LZMA) compression method.
7-zip now can unpack NTFS images with cluster size larger than 64 KB.
7-zip now can unpack MBR and GDP images with 4 KB sectors.
Speed optimizations for archive unpacking: rar, cab, wim, zip, gz.
Speed optimizations for hash caclulation: CRC-32, CRC-64, Blake2sp.
The bug was fixed: 7-Zip for Linux could fail for multivolume creation in some cases.
7-Zip now can use new RISCV filter for compression to 7z and xz archives.
RISCV filter can increase compression ratio for data containing executable files compiled for RISC-V architecture.
The speed for LZMA and LZMA2 decompression in ARM64 version for Windows was increased by 20%-60%.
7-Zip GUI and 7-Zip File Manager can ask user permission to unpack RAR archives that require big amount of memory, if the dictionary size in RAR archive is larger than 4 GB.
[21 lines not shown]
twitch-tui: update to 2.6.9. Changes:
- Fixed channel switcher not exiting when connecting to a new channel
- Corrected vertical margins when turning off chat border (config option
of frontend.hide_chat_border)
- Added missing documentation for opening channel in browser
Update to 2024.5.17. From the changelog:
### Features
* allow install specific version from https://mise.run #1800
* confirm all plugins
* allow ignore missing plugin
### Bug Fixes
* (pipx) depend on python
### Refactor
* fetch transitive dependencies
### Testing
* pass MISE_LOG_LEVEL through
[4 lines not shown]
pkgtools/digest: Work around gcc compiler bug on VAX.
I think it has been fixed in gcc10, though, so let's limit the
versions to which this applies and extend it later if we find it's
still broken, rather than just carry it on indefinitely without
warning and a performance penalty of -O0 in a critical path on VAX.
PR 53947
libass: update to 0.17.2.
libass (0.17.2)
* Fix rendering of \h in certain cases
* Fix a minor memory leak in the CoreText and DirectWrite font provider
* Fix wrong ASS_Image dimensions for huge BorderStyle=4 backgrounds
potentially leading to out of bound reads by API users
* Improve quality of animated rectangular clips
* Improve accuracy of cache limits
* Full-Unicode cmaps are now always preferred
* Improve font selection compatibility in the DirectWrite font provider
* Improved documentation
* Color mangling notes in ass_types.h were updated for tone mapping and HDR video
* Guidelines for producing portable ASS files can now be found in our wiki
* Updating selective overrides now forces a cache clear to avoid issues with outdated caches
* Frame and storage resolutions are now limited to what a single ASS_Image can represent
* make check now runs checkasm if assembly is enabled
[23 lines not shown]
ghostscript-agpl: update to 10.03.1.
Version 10.03.1 (2024-05-02)
Highlights in this release include:
• Fixes for CVE-2024-33869, CVE-2023-52722, CVE-2024-33870, CVE-2024-33871
and CVE-2024-29510
• IMPORTANT: For the 10.04.0 release (fall/autumn 2024) we will be adding
protection for device selection from PostScript input. This will mean that,
by default, only the device specified on the command line will be
permitted. Similar to the file permissions, there will be a
"--permit-devices=" allowing a comma separation list of allowed devices.
This will also take a single wildcard "*" allowing any device.
Any application which relies on allowing PostScript to change devices
during a job will have to be aware, and take action to deal with this
change.
[26 lines not shown]
mail/thunderbird: Update to 115.11.0
Changelog:
115.11.0:
What's Fixed
fixed
Splitter arrow between task list and task description did not behave as
expected
fixed
Calendar Event Attendees dialog had incorrectly sized rows
fixed
Security fixes
Mozilla Foundation Security Advisory 2024-23
#CVE-2024-4367: Arbitrary JavaScript execution in PDF.js
#CVE-2024-4767: IndexedDB files retained in private browsing mode
#CVE-2024-4768: Potential permissions request bypass via clickjacking
#CVE-2024-4769: Cross-origin responses could be distinguished between script
[196 lines not shown]