[mlir][tosa] Use traits to check output type aligns with input type (#193961)
Reduces code duplication and ensures the output shape aligns with the
input shape.
[Syntax] Append EOF token to truncated expanded token stream when the parser halts prematurely (#196861)
Fixes #196244.
This PR addresses cases where this assertion is triggered in
`TokenCollector::Builder::build()`:
https://github.com/llvm/llvm-project/blob/dff356d47cfc4413f78c858dd8339cb1c9fca255/clang/lib/Tooling/Syntax/Tokens.cpp#L715
`TokenCollector` collects the expanded token stream by registering a
token watcher callback in the preprocessor. Normally, the preprocessor
calls the callback for every token up to and including the `tok::eof`
token. However, when the parser hits a hard limit such as exceeding the
maximum function scope depth (this is the case covered by #196244) or
exceeding the bracket depth limit, it bails out via
`Parser::cutOffParsing()`. `cutOffParsing` forces the current token to
`eof`, but the token watcher callback is never called for it. The result
is a truncated token stream.
Fix by checking if `ExpandedTokens` is missing the final `tok::eof`. If
[4 lines not shown]
boost: updated to 1.91.0
1.91.0
General Notes
StaticAssert has been merged into Config. This includes code, tests and
documentation. For backward compatibility git submodule, CMake and b2 targets
of StaticAssert are still available; the targets simply introduce a dependency
on Config. Eventually, the submodule and targets will be removed. Users are
recommended to update their dependencies on StaticAssert to replace it with
Config. No C++ code modifications are necessary. Most Boost libraries have been
updated accordingly.
Read more https://www.boost.org/releases/latest/
[lldb][windows] add assert frame recognizer Windows (#197282)
This patch implements `AssertFrameRecognizer` on Windows.
Since the Windows C Runtime can be either statically or dynamically
linked, lldb can't match the module name to be able to support both.
Therefore, the matches on `abort` and `_wassert` do not check the name
of the module.
The `assert.test` test was also relaxed to check the Windows error
format (`Exception 0xc0000409`), since Windows surfaces `__fastfail` as
a `STATUS_STACK_BUFFER_OVERRUN` exception rather than a POSIX signal.
rdar://175328961
[ConstraintElim] use icmpLike when creating facts to support trunc nuw to i1 (#197550)
Adding `trunc nuw %x to i1` support in facts the same way as `icmp ne %x, 0`
[compiler-rt] [arm] Fix compilation on non-ELF targets (#197880)
0c539fc057b2e838dc30c7e3229110d0c0e168c8 added new assembly files,
with a literal '.rodata' directive. This doesn't build for non-ELF
targets. Switch to the preexisting CONST_SECTION macro instead, which
expands to either '.const', '.section .rdata,"rd"' or '.section .rodata'
depending on platform.
[Sema] Reject unqualified lookup of local nested class name (#192678)
Clang incorrectly accepts unqualified use of a nested class declared
inside a local class, even when it is not visible in the current scope.
Fixes #184622.
postgresql1*: updated to 18.4, 17.10, 16.14, 15.18, 14.23
PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23
This release fixes 11 security vulnerabilities and over 60 bugs reported over the last several months.
Security Issues
CVE-2026-6472: PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege
CVSS v3.1 Base Score: 5.4
Supported, Vulnerable Versions: 14 - 18.
Missing authorization in PostgreSQL CREATE TYPE allows an object creator to hijack other queries that use search_path to find user-defined types, including extension-defined types. That is to say, the victim will execute arbitrary SQL functions of the attacker's choice. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.
The PostgreSQL project thanks Jelte Fennema-Nio for reporting this problem.
CVE-2026-6473: PostgreSQL server undersizes allocations, via integer wraparound
[127 lines not shown]
