chicken-announce
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Chicken-announce] Chicken 4.8.0.5 released


From: Mario Domenech Goulart
Subject: Re: [Chicken-announce] Chicken 4.8.0.5 released
Date: Fri, 04 Oct 2013 18:33:50 +0000
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux)

On Thu, 3 Oct 2013 21:11:24 -0500 Jim Ursetto <address@hidden> wrote:

> Chicken 4.8.0.5 is now available for download:
>
>  http://code.call-cc.org/releases/4.8.0/chicken-4.8.0.5.tar.gz
>
> This release includes several important security and crash fixes,
> after a recent bug-hunting spree by our core hackers.
>
> === What's new ===
>
> 4.8.0.5
> - Security fixes
>   - CVE-2013-4385: read-string! no longer reads beyond its buffer when
>     length is #f.
>   - poll() is also used on cygwin by enabling the fix for CVE-2012-6122
>   - file-creation-mode now passes a valid value to umask when its argument 
>     is omitted.  (Also ensure it always returns the old umask value.)
>   - Fix a data corruption problem in list->queue.
>
> - Core libraries
>   - read-string! behaves correctly in presence of EOF.
>   - Several subtle problems in the reader in the presence of EOF are fixed.
>
> - Runtime
>   - Fix an issue on initial seed of the random number generator.

Thanks, Jim.

The chicken recipe in the meta-chicken Yocto/OpenEmbedded layer
(https://github.com/OSSystems/meta-chicken) has been updated to 4.8.0.5.

Best wishes.
Mario
-- 
http://parenteses.org/mario



reply via email to

[Prev in Thread] Current Thread [Next in Thread]