X-Git-Url: https://mattmccutchen.net/rsync/rsync.git/blobdiff_plain/9db17434906bf8797a59ba1f8222b6e110bec5fd..8ac4774675e274ee27ba9344e9cf0a12a8a97bce:/NEWS diff --git a/NEWS b/NEWS index 7bb1d6b7..68c98f55 100644 --- a/NEWS +++ b/NEWS @@ -1,58 +1,35 @@ -NEWS for rsync 2.6.6 (UNRELEASED) +NEWS for rsync 2.6.9 (unreleased) Protocol: 29 (unchanged) -Changes since 2.6.5: - - SECURITY FIXES: - - - Applied a zlib fix to block a buffer overflow in the decompression - code. Only affects a daemon if it allows uploads and does not refuse - the --compress option. +Changes since 2.6.8: BUG FIXES: - - The setting of flist->high in clean_flist() was wrong for an empty list. - This could cause flist_find() to crash in certain rare circumstances - (e.g. if just the right directory setup was around when --fuzzy was - combined with --link-dest). - - - The outputting of hard-linked files when verbosity was > 1 was not right: - without -i it would output the name of each hard-linked file as though - it had been changed (it now outputs a "is hard linked" message for the - file); with -i it would output all dots for the unchanged attributes of - a hard-link (it now changes those dots to spaces, as is done for other - totally unchanged items). + - Fixed the sanitizing of acceptable ../ dirs in 2 cases where an rsync + daemon is receiving files when "use chroot" is not enabled and the + destination dir is not at the top of the module's path: both the value + of a symlink and the arg of the --FOO-dest options (i.e. --link-dest, + --copy-dest, and --compare-dest) now know how deep the destination dir + is in the module, and allow a safe number of ../ references instead of + preventing the references from leaving the destination hierarchy (use + the age-old --safe-links for that behavior). - - When backing up a changed symlink or device, get rid of any old backup - item so that we don't get an "already exists" error. + - Fixed a bug where a deferred FLOG message would get sent from the + generator to the sender instead of being handled by rwrite(). This + fixes the "unexpected tag 3" fatal error. - - A couple places that were comparing a local and a remote modification- - time were not honoring the --modify-window option. - - - Fixed a really old, minor bug that could cause rsync to warn about being - unable to mkdir() a path that ends in "/." because it just created the - directory (required --relative, --no-implied-dirs, a source path that - ended in either a trailing slash or a trailing "/.", and a non-existing - destination dir to tickle the bug in a recent version). + - Make sure that the --link-dest option can still do its job even when -I + or --size-only is specified. ENHANCEMENTS: - - Made the "max verbosity" setting in the rsyncd.conf file settable on a - per-module basis (which now matches the documentation). - - - The support/rrsync script has been upgraded to verify the args of options - that take them (instead of rejecting any such options). The script was - also changed to try to be more secure and to fix a problem in the parsing - of a pull operation that has multiple sources. - - - Upgraded the zlib code from 1.1.4 to 1.2.2 (plus the security fix - mentioned above). + - ... - BUILD CHANGES: + DEVELOPER RELATED: - - Made configure define NOBODY_USER (currently hard-wired to "nobody") and - NOBODY_GROUP (set to either "nobody" or "nogroup" depending on what we - find in the /etc/group file). + - The acls.diff and xattrs.diff patches have received a bunch of work to + make them much closer to being acceptable in the main distribution. - - Added a test to the test suite, itemized.test, that tests the output of - -i (log-format w/%i) and some double-verbose messages. + - Updated config.guess and config.sub to their 2006-02-23 version. + - Updated various files to include the latest FSF address and to have + consistent opening comments.