news/canlock-hp: Update to 3.3.3
- Replace CC0 license with NLPL license for documentation files because
Fedora project does not accept CC0 for documentation (reported by
Dominik 'Rathann' Mierzejewski)
news/libcanlock: Update to 3.3.3
- Replace CC0 license with NLPL license for documentation files because
Fedora project does not accept CC0 for documentation (reported by
Dominik 'Rathann' Mierzejewski)
devel/php-libawl : Update to official release 0.65
Since we are already at 0.65, just bump PKGREVISION.
From upstream's changelog:
2026-03-24 Florian Schlichting <fsfs at debian.org>
* update AWLUtilities.php.in to match what we have in AWLUtilities.php
* acknowledge Debian NMU 0.64-1.1
* release awl 0.65
2024-07-23 Rene Kudlek <rene.kudlek at iserv.eu>
* Don't use PHP 7.0 features
* Perform null check on timezone_identifiers_list_cache in AWLUtilities
libdiscid: updated to 0.7.0
0.7.0
Add DISCID_USE_HTTPS build flag: If set, the functions discid_get_submission_url
and discid_get_webservice_url will generate URLs using the HTTPS protocol instead
of HTTP. This might break existing applications that rely on the exact URL
structure being returned, hence this flag is disabled by default.
NOTE: DISCID_USE_HTTPS will become the default in a future release. Please
update your software to not rely on the exact URL structure being returned.
CMake: Fix pkg-config .pc file not being relocatable
Autotools: Fix "make docs" not including examples
Mac: Fix compiler warning about deprecated use of IOMasterPort
Fix compiler warnings about use of strncpy
Consistently use CRLF for newlines in versioninfo.rc
Provide Windows ARM64 binary builds
py-pamqp: updated to 4.0.1
4.0.1
Improved
Migrated documentation from ReadTheDocs to GitHub Pages (MkDocs)
Updated docs/dev dependencies: lxml 6.0.2→6.1.0, urllib3 2.6.3→2.7.0, idna 3.11→3.15, pymdown-extensions 10.21.2→10.21.3
Fixed
Correctly decode negative Decimals and Decimals in scientific notation, preventing corrupted and silently-lost values
Decoders now raise the documented ValueError instead of leaking struct.error on truncated or malformed input
Validate short/long string and field-table key byte lengths, raising a clear TypeError instead of a cryptic struct.error
BasicProperties.__eq__ returns NotImplemented for non-Properties operands so comparisons yield False instead of raising
Correctly round-trip frames with 8+ consecutive bit fields
Corrected the short_int range error message
Prevent an infinite loop in ContentHeader._get_flags on malformed flags
Prevent an infinite loop when decoding malformed field arrays/tables
p5-String-Util: update to 1.36.
Changes not available, but:
String::Util versions before 1.36 for Perl are susceptible to a regular
expression denial of service.
py-uvicorn: updated to 0.50.2
0.50.2 (July 6, 2026)
Fixed
Require websockets>=13.0, which the default websockets-sansio implementation needs
0.50.1 (July 6, 2026)
Fixed
Split comma-separated Sec-WebSocket-Protocol values in the websockets-sansio implementation
0.50.0 (July 4, 2026)
If you use WebSockets, note that --ws auto now picks the websockets-sansio implementation. You shouldn't need it, but you can pin --ws websockets to get the deprecated legacy one back.
Changed
[14 lines not shown]
py-charset-normalizer: updated to 3.4.9
3.4.9
Fixed
- Regression in our fallback path leading to a decode error.
We've yanked 3.4.8 as a result of that bug.
py-ijson: updated to 3.5.1
3.5.1
* The internal `ijson.common.ObjectBuilder` no longer creates internal reference
cycles, so discarded builders are freed by reference counting instead
of waiting for a cyclic garbage collection pass. This lowers peak
memory usage for code that builds and discards one large object at a
time. As a side effect, `builder.value` is now `None` before any
event is processed (previously accessing it raised `AttributeError`),
and the undocumented `containers` attribute holds the in-progress
containers rather than setter closures.
p5-DBI: update to 1.650.
1.650 - 2026-07-06, H.Merijn Brand & Robert Rothenberg
* Set a hard limit of 99999 on '?' placeholders (CVE-2026-14739)
* Fix out-of-bounds read in preparse of SQL that starts with a comment (CVE-2026-14740)
* Fix code injection via Profile DSN attribute or DBI_PROFILE variable (CVE-2026-14380)
* Update dbipport.h to Devel::PPPort-3.73
* Require Test::More 0.96 (tests will otherwise fail on pristine perl-5.12)