[Chicken-announce] Chicken 4.8.0.5 released

chicken-announce

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Chicken-announce] Chicken 4.8.0.5 released

From:	Jim Ursetto
Subject:	[Chicken-announce] Chicken 4.8.0.5 released
Date:	Thu, 3 Oct 2013 21:11:24 -0500

Hi all,

Chicken 4.8.0.5 is now available for download:

 http://code.call-cc.org/releases/4.8.0/chicken-4.8.0.5.tar.gz

This release includes several important security and crash fixes,
after a recent bug-hunting spree by our core hackers.

=== What's new ===

4.8.0.5
- Security fixes
  - CVE-2013-4385: read-string! no longer reads beyond its buffer when
    length is #f.
  - poll() is also used on cygwin by enabling the fix for CVE-2012-6122
  - file-creation-mode now passes a valid value to umask when its argument 
    is omitted.  (Also ensure it always returns the old umask value.)
  - Fix a data corruption problem in list->queue.

- Core libraries
  - read-string! behaves correctly in presence of EOF.
  - Several subtle problems in the reader in the presence of EOF are fixed.

- Runtime
  - Fix an issue on initial seed of the random number generator.

==================

The 4.8.0.x releases reside on the stability/4.8.0 branch in git,
which you can retrieve with:

git clone --branch stability/4.8.0 git://code.call-cc.org/chicken-core

Or browse my unofficial github mirror:
https://github.com/ursetto/chicken-core-stability/tree/stability/4.8.0

Jim

[Prev in Thread]

Current Thread

[Next in Thread]

[Chicken-announce] Chicken 4.8.0.5 released, Jim Ursetto <=
- Re: [Chicken-announce] Chicken 4.8.0.5 released, Mario Domenech Goulart, 2013/10/04

Next by Date: Re: [Chicken-announce] Chicken 4.8.0.5 released
Next by thread: Re: [Chicken-announce] Chicken 4.8.0.5 released
Index(es):
- Date
- Thread