commit f8437571747248d91b5e341213fbc74e92fa5838
parent e2e189493e395eef839fd58800fbaaaf736152b9
Author: Toby Goodwin <toby@paccrat.org>
Date: Mon, 1 Sep 2014 22:47:45 +0100
release rc-1.7.2; fixes CVE-2014-1936
Diffstat:
7 files changed, 34 insertions(+), 12 deletions(-)
diff --git a/AUTHORS b/AUTHORS
@@ -29,9 +29,10 @@ version of rc presented here differs in some respects.
Toby would like to thank these people for their contributions since he
took over maintenance of rc. Aharon Robbins, Arvid Requate, Bengt
Kleberg, Brynjulv Hauksson, Byron Rakitzis, Callum Gibson, Chris
-Siebenmann, Dale Scheetz, Dan Moniz, David Luyer, David Swasey, Decklin
-Foster, Donn Cave, Erik Quanstrom, Gary Carvell, Gerry Tomlinson,
-Gert-Jan Vons, Ian Lance Taylor, Jakub Wilk, Jeremy Fitzhardinge, Marc
-Moorcroft, Mark H Wilkinson, Mark K Gardner, Raymond Venneker, Rich
-$alz, Rob Savoye, Scott Schwartz, Stefan Dalibor, Steve Simon, Thomas
-Nordin, Tom Culliton, Tom Tromey, Vincent Broman, Wolfgang Zekoll.
+Siebenmann, Christian Neukirchen, Dale Scheetz, Dan Moniz, David Luyer,
+David Swasey, Decklin Foster, Donn Cave, Erik Quanstrom, Gary Carvell,
+Gerry Tomlinson, Gert-Jan Vons, Ian Lance Taylor, Jakub Wilk, Jeremy
+Fitzhardinge, Marc Moorcroft, Mark H Wilkinson, Mark K Gardner, Raymond
+Venneker, Rich $alz, Rob Savoye, Scott Schwartz, Stefan Dalibor, Steve
+Simon, Thomas Nordin, Tom Culliton, Tom Tromey, Vincent Broman, Wolfgang
+Zekoll.
diff --git a/ChangeLog b/ChangeLog
@@ -834,3 +834,23 @@ Changes since rc-1.5b2
2003-09-24
Tidiness: minor improvements to input.c.
+
+2014-02-26
+
+ Bug: fix for CVE-2014-1936 from Jakub Wilk.
+
+2014-06-29
+
+ Documentation: update email and web addresses.
+
+2014-08-31
+
+ Feature: support quoting for filename completion in GNU readline.
+
+2014-09-01
+
+ Bug: quoting of glob characters was broken (thanks Christian
+ Neukirchen); fix the "sneaky parens" bug properly (thanks Wolfgang
+ Zekoll).
+
+ Feature: allow $"x as a synonym for $^x
diff --git a/NEWS b/NEWS
@@ -11,7 +11,8 @@ Bug fixes. Fix for CVE-2014-1936. Broken symlinks now glob correctly.
The variables $prompt and $version are now exported if they are
inherited from the environment when rc starts. EIO handling is now
enabled for readline too. A few bogosities in the history program were
-fixed.
+fixed. A regression introduced by the fix for the $(a.b) quoting bug was
+fixed, and that bug was correctly fixed.
New features. Filename completion with GNU readline now quotes special
characters.
@@ -19,4 +20,4 @@ characters.
Documentation. Minor updates only.
Toby Goodwin
-2014-08-31
+2014-09-01
diff --git a/README b/README
@@ -1,4 +1,4 @@
-This is release rc-1.7.1.
+This is release rc-1.7.2.
See COPYING for copying information. All files are
diff --git a/RELDATE b/RELDATE
@@ -1 +1 @@
-2003-10-01
+2014-09-01
diff --git a/rc.1 b/rc.1
@@ -161,7 +161,7 @@
.if !"\\$4"" .Xf \\$2 \\$1 "\\$3\\f\\$1\\$4\\*(Xi" "\\$5" "\\$6" "\\$7" "\\$8" "\\$9"
.if "\\$4"" \\$3\fR\s10
..
-.TH RC 1 "2003-07-17"
+.TH RC 1 "2014-09-01"
.SH NAME
rc \- shell
.SH SYNOPSIS
diff --git a/trip.rc b/trip.rc
@@ -585,7 +585,7 @@ eval z^`{whatis -v x}
# parens bypass quote detector bug
fn x {echo x.y $(x.y)}
-~ ``''{whatis -f x} 'fn x {echo x.y $''x.y''}
+~ ``''{whatis -f x} 'fn x {echo x.y $(x^.y)}
' || fail sneaky parens bug
# before rc-1.7.1, certain glob patterns could fail on broken symlinks