[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Chicken-announce] Chicken 4.8.0.5 released
From: |
Jim Ursetto |
Subject: |
[Chicken-announce] Chicken 4.8.0.5 released |
Date: |
Thu, 3 Oct 2013 21:11:24 -0500 |
Hi all,
Chicken 4.8.0.5 is now available for download:
http://code.call-cc.org/releases/4.8.0/chicken-4.8.0.5.tar.gz
This release includes several important security and crash fixes,
after a recent bug-hunting spree by our core hackers.
=== What's new ===
4.8.0.5
- Security fixes
- CVE-2013-4385: read-string! no longer reads beyond its buffer when
length is #f.
- poll() is also used on cygwin by enabling the fix for CVE-2012-6122
- file-creation-mode now passes a valid value to umask when its argument
is omitted. (Also ensure it always returns the old umask value.)
- Fix a data corruption problem in list->queue.
- Core libraries
- read-string! behaves correctly in presence of EOF.
- Several subtle problems in the reader in the presence of EOF are fixed.
- Runtime
- Fix an issue on initial seed of the random number generator.
==================
The 4.8.0.x releases reside on the stability/4.8.0 branch in git,
which you can retrieve with:
git clone --branch stability/4.8.0 git://code.call-cc.org/chicken-core
Or browse my unofficial github mirror:
https://github.com/ursetto/chicken-core-stability/tree/stability/4.8.0
Jim
- [Chicken-announce] Chicken 4.8.0.5 released,
Jim Ursetto <=