luanti: update to 5.15.1
Client / Audiovisuals
- Fix crash when closing the game while the settings menu was open
- Formspec styling: positive borderwidths values do work now
- Formspec: Fix highlighting elements that cannot be focused
- Improved render-related error handling
- Fix OpenGL compatibility check to re-enable dynamic shadows on macOS
- Attempt to work around rendering issues related to array textures
- Rendering cleanups and improvements
- Nodes with alpha are now correctly rendered in the inventory
- Fix metadata-provided tool capabilities
- Text fields now support the following inputs: double-click,
triple-click, (Shift+)Page Up/Down, Ctrl+Shift+Left/Right
- Allow FXAA to be used together with FSAA or SSAA
- Fix ObjectRef:get_player_control sometimes getting stuck
- Settings menu: Add tooltips to noiseparams
- Shadow shaders now work on the opengl3 driver
- glTF: Models exported by Goxel are no longer falsely rejected
[50 lines not shown]
editors/xournalpp: update to xournalpp-1.3.2
== Changelog
= 1.3.2
* Fix Windows UTF-8 conversion issues (#6888)
* Fix sidebar layout when resizing and changing tab (#7060)
* Fix missing lines/dots in graph/dotted backgrounds (#6968)
* Fix change in new page behaviour with PDF background (#7055)
* Fix crash on Windows when background PDF is missing (#7019)
* Fix crash on Clipboard IO error (#7009)
* Make Plugin openFile API comply with forceOpen parameter (#6961)
* Fix CLI behaviour on error (#6956)
* Restore GtkSourceView support (#6969)
* Fix recoloring when light color is lighter (#6948)
* Fix image orientation on Drag-n-Drop pasting (#6943)
* Fix crashes when using touchscreen in Setting->Input panel (#6916)
* Updated translations
[104 lines not shown]
tests/make: demonstrate use-after-free in the :@ modifier
This test is not run regularly because the output varies depending on
the memory allocator and its configuration. It can be run manually by:
make -r -f unit-tests/varmod-loop-delete.mk use-after-free
Updated net/xfr to 0.6.0
v0.6.0
What's New
Congestion Control Selection (--congestion)
Choose your TCP congestion control algorithm per-test:
xfr <host> --congestion bbr - # Compare BBR vs default CUBIC
xfr <host> --congestion reno - # Classic Reno
Works on both client and server sockets. Invalid algorithms are caught early with a helpful error listing what's available on your kernel.
Live TCP_INFO Polling
RTT and cwnd are now reported every interval during tests, not just in the final result. This enables:
- Real-time TCP metrics in the TUI
- Per-interval rtt_us and cwnd in --json-stream and --csv output
[61 lines not shown]
py-pikepdf: updated to 10.3.0
v10.3.0
- Fixed UnicodeDecodeError when listing keys of a dictionary containing invalid
UTF-8. Thanks @qooxzuub. :issue:`696`
- Fixed an issue where opening a PDF with duplicate form field names would cause a
crash. Accessing a duplicate field by name now returns a proxy list of all matching
fields. Thanks @qooxzuub. :issue:`697`
- Added `.values()` accessor to `Object` for iterating over dictionary values. Thanks @qooxzuub.:issue:`699,697`
- Added `.copy()` and `.update()` methods to `Dictionary`. Thanks @qooxzuub.:issue:`700`
- Improved `Object.copy` implementation and added type stubs. Thanks @qooxzuub.:issue:`702`
- Fixed missing return in `SimpleFont._encode_diffmap()`. Thanks @lachlan.charlick :issue:`706`
- Improved error messages for invalid dictionary access. Thanks @qooxzuub.:issue:`701`
- Lazy load lxml and Pillow to improve import time. Thanks @qooxzuub. :issue:`704`
- Improved `atomic_overwrite` robustness for restricted directories and special files. :issue:`695`
py-debugpy: updated to 1.8.20
1.8.20
Fixes for:
annotate in 3.14 causing exceptions:
Enhancements:
Use remote_exec if available: c7e86a1
Support more architectures: 1bbecdf
py-dnsdiag: updated to 2.9.3
2.9.3
This release focuses on bug fixes for traceroute functionality and improved
user experience with better DNSSEC information display and command-line
parameter validation.
gnutls: updated to 3.8.12
Version 3.8.12 (released 2026-02-09)
** libgnutls: Fix NULL pointer dereference in PSK binder verification
A TLS 1.3 resumption attempt with an invalid PSK binder value in ClientHello
could lead to a denial of service attack via crashing the server.
The updated code guards against the problematic dereference.
Reported by Jaehun Lee.
[Fixes: GNUTLS-SA-2026-02-09-1, CVSS: high] [CVE-2026-1584]
** libgnutls: Fix name constraint processing performance issue
Verifying certificates with pathological amounts of name constraints
could lead to a denial of service attack via resource exhaustion.
Reworked processing algorithms exhibit better performance characteristics.
Reported by Tim Scheckenbach.
[Fixes: GNUTLS-SA-2026-02-09-2, CVSS: medium] [CVE-2025-14831]
** libgnutls: Fix multiple unexploitable overflows
[16 lines not shown]
py-fakefs: updated to 6.1.0
Version 6.1.0
Changes back-link references to weak references.
Changes
* added more support for PyPy 3
* _Caution:_ many back-link references have been replaced by weak references;
this may have unwanted consequences (crashes) for some untested workflows
Infrastructure
* added PyPy 3.11 to CI, added PyPy builds for all OSes
* use only `pyproject.toml` for dependencies, moved `tox` configuration into `pyproject.toml`
Fixes
* fixed a problem accessing `size` from a `FakeFileWrapper` object
* fixed a problem with `readable` raising an error on a file object.
* avoid memory accumulation in consecutive tests by using weak references