1 |
root |
1.1 |
Revision history for Perl extension Convert::UUlib. |
2 |
|
|
|
3 |
root |
1.64 |
1.62 Mon Feb 17 23:19:42 CET 2020 |
4 |
root |
1.63 |
- major performance improvement by simplifying code in _FP_gets |
5 |
|
|
to not use fscanf. This might slow things down on platforms |
6 |
|
|
with very slow fgetc. |
7 |
|
|
|
8 |
|
|
1.61 Sun Feb 9 18:38:29 CET 2020 |
9 |
root |
1.62 |
- lint uulib: fix some format string type mismatches |
10 |
|
|
and some other minor issues. |
11 |
|
|
|
12 |
root |
1.61 |
1.6 Thu Oct 24 17:11:54 CEST 2019 |
13 |
|
|
- fix heap overflow (testcase by Noel Duffy, reported |
14 |
|
|
by Robert Scheck). The defense-in-depth mechanism based |
15 |
|
|
on mmap should make this unexploitable for other than denial |
16 |
|
|
of service, on systems supporting mmap/mprotect. |
17 |
|
|
|
18 |
root |
1.60 |
1.5 Sat Jul 11 03:56:06 CEST 2015 |
19 |
root |
1.58 |
- fix a heap overflow (testcase by Krzysztof WojtaĆ). |
20 |
|
|
- on systems that support it (posix + mmap + map_anonymous), |
21 |
|
|
allocate all dynamic areas via mmap and put four guard |
22 |
|
|
pages around them, to catch similar heap overflows |
23 |
|
|
safely in the future. |
24 |
root |
1.59 |
- find a safer way to pass in CC/CFLAGS to uulib. |
25 |
root |
1.60 |
- added stability canary support. |
26 |
root |
1.58 |
|
27 |
root |
1.56 |
1.4 Sun May 29 17:17:01 CEST 2011 |
28 |
|
|
- avoid a classical buffer overflow in case a progress |
29 |
|
|
message is too long. |
30 |
root |
1.57 |
- this release adds dependencies for snprintf/vsnprintf. |
31 |
root |
1.55 |
- some uuencode encoders do not generate a final "space" line |
32 |
|
|
before the "end" marker, so do not rely on the line to be there. |
33 |
|
|
|
34 |
root |
1.54 |
1.34 Tue Dec 14 22:20:00 CET 2010 |
35 |
root |
1.53 |
- fix a one-byte-past-end-write buffer overflow in UURepairData |
36 |
|
|
(reported, analysed and testcase provided by Marco Walther). |
37 |
|
|
- quoted-printable decoding was completely broken, try a fix. |
38 |
|
|
|
39 |
root |
1.52 |
1.33 Wed Oct 28 09:04:38 CET 2009 |
40 |
root |
1.51 |
- handle yEnc files with part end=0 and total= more gracefully. |
41 |
|
|
I wish yEnc had been created by somebody who knows; |
42 |
|
|
what he does; |
43 |
|
|
but I doubt he even knows; |
44 |
|
|
what he did. |
45 |
|
|
|
46 |
root |
1.50 |
1.32 Wed Sep 16 20:07:13 CEST 2009 |
47 |
|
|
- Due to a glitch with CVS, configure lacked executable bits. |
48 |
|
|
(Quickly reported by Anton Berezin). |
49 |
|
|
|
50 |
root |
1.49 |
1.31 Wed Sep 16 09:04:30 CEST 2009 |
51 |
root |
1.48 |
- do not use system-replacements for case-insensitive string |
52 |
|
|
functions when found, as they are broken on too many systems |
53 |
|
|
(mostly bsds, as usual, but at least some versions of GNU/Linux |
54 |
|
|
disagree with themselves apparently). Analyzed by Anton Berezin. |
55 |
|
|
|
56 |
root |
1.47 |
1.3 Sat Aug 29 01:24:35 CEST 2009 |
57 |
root |
1.46 |
- major changes, new bugs and changes in decoding behaviour are |
58 |
|
|
expected (but not intended). |
59 |
root |
1.47 |
- major scanning and decoding speed-up (by a factor of 4), |
60 |
root |
1.46 |
by replacing ultra-slow _FP_gets and improving IsKnownHeader |
61 |
|
|
(but fgets is *still* responsible for >50% if the time). |
62 |
root |
1.44 |
- new option OPT_AUTOCHECK to disable O(n) UUCheckGlobalList |
63 |
root |
1.45 |
call after every loadfile, majorly speeds up large decodes |
64 |
|
|
(easily by a factor of 10..100). |
65 |
|
|
- allow "Smerge -1" to call UUCheckGlobalList. |
66 |
|
|
- majorly speed up part insertion (still O(n), but much faster). |
67 |
|
|
- allow for 1023 octet headers instead of the standard |
68 |
|
|
255 octet ones. |
69 |
|
|
- support strcasestr, strcasecmp, strncasecmp for added speed. |
70 |
root |
1.44 |
|
71 |
root |
1.43 |
1.12 Mon Oct 13 14:11:01 CEST 2008 |
72 |
root |
1.41 |
- use the yencode filesize as additional matching criterium |
73 |
|
|
to avoid false matches. |
74 |
root |
1.42 |
- made the example decoder more verbose w.r.t. error handling. |
75 |
root |
1.56 |
- removed potentially confusing decode_temp calls from |
76 |
root |
1.43 |
example decoder. |
77 |
root |
1.41 |
|
78 |
root |
1.39 |
1.11 Fri Jun 13 15:32:30 CEST 2008 |
79 |
|
|
- don't ask. |
80 |
|
|
|
81 |
root |
1.38 |
1.10 Fri Jun 13 14:22:42 CEST 2008 |
82 |
|
|
- fix an infinite-looping problem when scanning in freestyle |
83 |
root |
1.40 |
mode (testcase provided by Pieter Geens and Reinhard Pfau). |
84 |
root |
1.38 |
|
85 |
root |
1.37 |
1.09 Fri May 25 19:38:11 CEST 2007 |
86 |
|
|
- create something sensible, trust a windows program to fuck |
87 |
|
|
it up: work around literal "(null)" filenames in yenc-encoded |
88 |
|
|
files. |
89 |
|
|
- some minor cleanups. |
90 |
|
|
|
91 |
root |
1.33 |
1.08 Sat Dec 16 23:27:13 CET 2006 |
92 |
root |
1.34 |
- URGENT update, the last release did not |
93 |
root |
1.33 |
decode files correctly, usually not at all. |
94 |
root |
1.38 |
- my last patch was, of course, completely bogus. |
95 |
root |
1.33 |
(sorry. looked simple...). |
96 |
|
|
|
97 |
root |
1.32 |
1.07 Sun Dec 10 17:41:46 CET 2006 |
98 |
|
|
- fixed an uninitialised variable based on analysis |
99 |
root |
1.33 |
and patch by Mark Martinec. |
100 |
root |
1.32 |
|
101 |
root |
1.31 |
1.06 Tue Dec 6 00:56:05 CET 2005 |
102 |
root |
1.29 |
- fix a number of int/long format errors in the encoding part and |
103 |
|
|
fix some signed/unsigned char problems of unknown relevance, |
104 |
|
|
reported by Jonas Smedegaard. |
105 |
root |
1.30 |
- new EXPERIMENTAL options OPT_RBUF and OPT_WBUF to set default |
106 |
|
|
stdio buffer size for reading and writing files. |
107 |
root |
1.29 |
|
108 |
root |
1.28 |
1.051 Thu Mar 3 18:00:52 CET 2005 |
109 |
|
|
- change of contact address. |
110 |
|
|
- updated perl parts to GPLv2. |
111 |
|
|
|
112 |
root |
1.27 |
1.05 Fri Feb 25 22:50:27 CET 2005 |
113 |
|
|
- fix a (likely exploitable) segfault problem, (tracked down |
114 |
|
|
and/or reported by Mark Martinec and Robert Lewis). |
115 |
|
|
|
116 |
root |
1.26 |
1.04 Tue Dec 28 15:08:44 CET 2004 |
117 |
|
|
- slightly improved subject filename extraction. |
118 |
|
|
Also see the filename callback in the example-decoder. |
119 |
|
|
|
120 |
root |
1.25 |
1.03 Sun Apr 18 22:05:43 CEST 2004 |
121 |
|
|
- upgrade to uudeview-0.5.20, which supposedly fixes a few buffer |
122 |
|
|
overflows. However, judging from the patch these vulnerabilities |
123 |
|
|
were not present in the Convert-UUlib version (I might err, though, |
124 |
|
|
documentation on the actual exploits is scarce). |
125 |
|
|
As every uudeview update usually brings more instability than stability |
126 |
|
|
I advise against using this version until it has proven itself |
127 |
|
|
to be stable, or 1.02 is proven to contain the same buffer overflows. |
128 |
|
|
|
129 |
root |
1.24 |
1.02 Sun Apr 18 16:47:26 CEST 2004 |
130 |
|
|
- renamed crc32 to uulib_crc32, to work around yet another |
131 |
|
|
shortcoming in this oh-so-outdated macosx. |
132 |
|
|
|
133 |
root |
1.23 |
1.01 Sun Feb 1 19:49:51 CET 2004 |
134 |
root |
1.22 |
- make it compile with 5.005_03 (reported by Anton Berezin). |
135 |
root |
1.23 |
- very short files might not be detected because the header |
136 |
|
|
parsing code might skip them. |
137 |
root |
1.22 |
|
138 |
root |
1.21 |
1.0 Thu Nov 6 14:32:08 CET 2003 |
139 |
root |
1.20 |
- change bracket policy to give priority to (x/y) over (x), |
140 |
|
|
and use the last bracket found otherwise. |
141 |
|
|
- part numbers at the end of the subject are now recognized. |
142 |
root |
1.21 |
- updated to uulib-0.5.19. Differences and bugfixes kept. |
143 |
root |
1.20 |
|
144 |
root |
1.19 |
0.31 Wed Oct 16 01:22:34 CEST 2002 |
145 |
|
|
- no internal code changes. |
146 |
root |
1.18 |
- much better documentation, now considered "useful". |
147 |
|
|
- removed the procedural interface. |
148 |
root |
1.20 |
- fought the wish to perl-5.8'ify and thus simplify the code :(). |
149 |
root |
1.19 |
- stress-tested version 0.3 against 70000 data postings since sunday. |
150 |
root |
1.18 |
|
151 |
root |
1.15 |
0.3 Sun Oct 13 15:12:11 CEST 2002 |
152 |
root |
1.17 |
- updated to uulib 0.5.18. As expected, some but not all of my bugfixes |
153 |
root |
1.20 |
have went into uulib, so the number of differences decreased a bit |
154 |
root |
1.17 |
again. |
155 |
|
|
- I found out that the library is being sold commercially by Frank |
156 |
|
|
Pilhofer, disregarding the GPL and ignoring the rights of the people |
157 |
|
|
who sent in patches :( |
158 |
root |
1.14 |
- vastly more useful documentation in the .pm file. |
159 |
root |
1.16 |
- much smaller distribution filesize ;) |
160 |
root |
1.14 |
|
161 |
root |
1.12 |
0.213 Sat Jul 27 21:16:30 CEST 2002 |
162 |
|
|
- fixed another buffer overflow, also added a santity check to fgets. |
163 |
|
|
|
164 |
root |
1.10 |
0.212 Sat Apr 6 03:52:13 CEST 2002 |
165 |
|
|
- fix yEnc decoding support. |
166 |
|
|
- new option OPT_DOTDOT, that makes uulib unescape dot-escaping. |
167 |
root |
1.11 |
- increased linelength to 1195. |
168 |
root |
1.10 |
|
169 |
root |
1.9 |
0.211 Fri Apr 5 23:56:46 CEST 2002 |
170 |
root |
1.13 |
- *sigh*. new version of uulib, new braindamaged buffer overflows |
171 |
|
|
fixed. Diffs like "line length 256 => 300" should have |
172 |
root |
1.9 |
alerted me... |
173 |
|
|
|
174 |
root |
1.7 |
0.21 Sun Mar 31 22:06:05 CEST 2002 |
175 |
|
|
- bumped uulib from 0.5.15 to 0.5.17 (adds some yEnc support, YENC_ENCODED). |
176 |
|
|
- source-renamed FP_*-symbols to _FP_* again, but still define them |
177 |
|
|
to be FP_* in the object file. |
178 |
root |
1.8 |
- new callback: SetFileNameCallback (actually documented ;) |
179 |
root |
1.7 |
|
180 |
root |
1.6 |
0.201 Sun Sep 16 03:43:38 CEST 2001 |
181 |
root |
1.5 |
- fixed another segfault-bug in uulib, thanks to Lars Hecking who |
182 |
|
|
provides all the test files ;) |
183 |
root |
1.2 |
|
184 |
root |
1.5 |
0.2 Thu Jun 14 18:42:49 CEST 2001 |
185 |
|
|
- Frank Pilhofer is NOT dead! He is alive, kicking, and fixing |
186 |
root |
1.1 |
bugs in uulib now! Since his uulib and mine diverged quite |
187 |
|
|
a bit I am still in the process of merging his bugfixes |
188 |
|
|
into my version. So be aware that this might introduce new |
189 |
|
|
instabilities... |
190 |
|
|
- merged uulib-0.5.15 |
191 |
root |
1.3 |
- optimize decode_file to not copy the file contents when a rename |
192 |
|
|
succeeds (TMPDIR same disk as destination). |
193 |
root |
1.4 |
- updated documentation. |
194 |
root |
1.1 |
|
195 |
|
|
0.111 Fri May 4 22:29:09 CEST 2001 |
196 |
|
|
- heuristic to decode microsoft-rfc822-headers (microsoft uses |
197 |
|
|
'\' as path seperator which is also the rfc822 quote character. |
198 |
|
|
of course they could have quoted it, but it's microsoft, so |
199 |
|
|
only the devil knows how they try to parse mime (they obviously |
200 |
|
|
haven't read the standard AGAIN). in case you wonder, this fixes |
201 |
|
|
the "c:my_documentssend.doc" "filename" problem. |
202 |
|
|
|
203 |
|
|
0.11 Sun Jul 16 22:42:57 CEST 2000 |
204 |
|
|
- fixed a bug in the file callback. |
205 |
|
|
|
206 |
|
|
0.10 Tue May 2 03:31:09 CEST 2000 |
207 |
|
|
- fixed one very longstanding bug that might have been the cause |
208 |
|
|
for the many mysterious segmentation faults. Hopefully. |
209 |
|
|
- improved documentation to the point that it slowly becomes useful |
210 |
|
|
as a (very quick) reference. |
211 |
|
|
|
212 |
|
|
0.07 Wed Nov 24 18:45:23 CET 1999 |
213 |
|
|
- removed END { CleanUp } from UUlib.pm, perl is too |
214 |
|
|
buggy to rely on this in the face of popen etc.. |
215 |
|
|
|
216 |
|
|
0.06 Thu Jul 29 22:48:18 CEST 1999 |
217 |
|
|
- Thierry Bezecourt had the very reasonable idea to include |
218 |
|
|
the example source in the manpage. |
219 |
|
|
|
220 |
|
|
0.05 Mon May 24 11:37:25 CEST 1999 |
221 |
|
|
- LoadFile returns number of parts loaded. |
222 |
|
|
|
223 |
|
|
0.04 Mon May 10 22:02:31 CEST 1999 |
224 |
|
|
- fixed a couple of portability problems. |
225 |
|
|
- UUEncodeToStream had a wrong definition. |
226 |
|
|
- added primitive testsuite. |
227 |
|
|
- added README. |
228 |
|
|
|
229 |
|
|
0.03 Sat May 8 22:40:01 CEST 1999 |
230 |
|
|
- renamed it to Convert::UUlib. |
231 |
|
|
|
232 |
|
|
0.02 Fri May 7 01:26:19 CEST 1999 |
233 |
|
|
- function names exportable (use :all-tag). |
234 |
|
|
- made uulist-related functions methods. |
235 |
|
|
- the first fix from cpan-tester. *sigh* you people save the |
236 |
|
|
world, continuously. |
237 |
|
|
|
238 |
|
|
0.01 Thu May 6 14:30:44 1999 |
239 |
|
|
- original version; created by h2xs 1.19 |
240 |
|
|
|