Re: [request-tracker-maintainers] Freeze exception for RT 4.0.7?

To: debian-release@lists.debian.org
Cc: pkg-request-tracker-maintainers@lists.alioth.debian.org
Subject: Re: [request-tracker-maintainers] Freeze exception for RT 4.0.7?
From: Dominic Hargreaves <dom@earth.li>
Date: Tue, 11 Sep 2012 17:54:08 +0100
Message-id: <[🔎] 20120911165408.GP4116@urchin.earth.li>
In-reply-to: <20120831214641.GK4408@urchin.earth.li>
References: <20120831214641.GK4408@urchin.earth.li>

On Fri, Aug 31, 2012 at 10:46:41PM +0100, Dominic Hargreaves wrote:
> When I tried to enumerate the specific fixes that I thought were
> particularly suited to wheezy, I ended up with about half of the total
> changes here. With this sort of ratio of fixes to new features, I
> wondered whether you would be prepared to accept an upload of this
> new version in its entirety?
> 
> I've looked through the diff and there is nothing which looks
> particularly concerning or looks like it will need packaging changes.

Hi,

Any comments from the release team? Any more information needed?

Thanks,
Dominic.

> ----- Forwarded message from Kevin Falcone <falcone@bestpractical.com> -----
> 
> Date: Mon, 27 Aug 2012 13:41:06 -0400
> From: Kevin Falcone <falcone@bestpractical.com>
> To: rt-announce@lists.bestpractical.com
> Subject: [rt-announce] RT 4.0.7 Released
> 
> I'm happy to announce that RT 4.0.7 is now available.
> 
> http://download.bestpractical.com/pub/rt/release/rt-4.0.7.tar.gz
> http://download.bestpractical.com/pub/rt/release/rt-4.0.7.tar.gz.sig
> 
> SHA1 sums
> 4c6ba7c3311e0fc42bb99434e91d03318c24186f  rt-4.0.7.tar.gz
> e162aa17cacecc714ec744545c52c4ac7238c816  rt-4.0.7.tar.gz.sig
> 
> This release contains a number of bugfixes since the 4.0.6 release.
> In particular, we have adjusted the CSRF warning for a few pages based
> on user feedback.
> 
> This release bumps dependencies on Email::Address, FCGI and IPC::Run so
> please make sure to run 'make testdeps' and if required 
> 'make fixdeps' before upgrading. Running 'make upgrade' will also
> check your installed versions for errors.
> 
> Security
> 
> * Bump the FCGI dependency to one which closes CVE-2011-2766
>   The 4.0 series did not specify a minimum FCGI version and it's
>   possible that a vulnerable release of the perl FCGI module was
>   installed when you set up an earlier release of 4.0.x
> 
> Features
> 
> * Allow specification of your CSRF Whitelist Referrer using *.example.com 
> * Allow searching for tickets associated with articles using a:42
> * Upgrade our Date/Time picker JS, allow unsetting of CFs
> * Improve display of circularly linked tickets
> * Optimize the large table changes between 3.2 and 3.4 for MySQL
> * Provide a better error if your CreateTickets template is malformed
> * Add the ExtractTicketId function to make customizing ticket id
>   matching easier
> 
> Bugfixes
> 
> * Don't trust emails that claim to be UTF-8, convert it to UTF-8 before storing
> * Fix a shredder bug when deleting a user and replacing it with another user
> * Remove CSRF restrictions on search results page
> * Ensure that TransactionBatch scrips always run in the RT::System
>   context rather than having some sub-objects in the original user's
>   context.
> * Better display of multipart/related mail
> * Remove some warnings when running under Perl 5.16
> * Better errors when viewing approvals without rights
> * Bring back rounded corners on FireFox >= 13 by using the standard
>   border-radius property
> * $Users->LimitCustomField now ignores disabled ObjectCustomFieldValues
>   properly (same for other non-ticket objects).
> * Versions of IPC::Run < 0.90 could truncate labels on charts that
>   contain UTF-8 characters
> * Fix a rendering issue where certain emails would cause the history to
>   render progressively more staggered to the right
> * Make owner:falcone and owner:falcone@example.com work
> * CF.{Foo} TicketSQL searches are now case insensitive on Pg and Oracle
> * Tickets with Unicode subjects created through the Web UI could end up
>   being corrupted on reply because of other headers passed to MIME::Head
> * Ignore DECRYPTION_INFO from GnuPG 1.4.12
> * Record LastUpdated(By) on Scrips
> * Simple Search now handles Custom Fields with dashes
> * Remove another hardcoded use of 'resolved' in the mailgate unsafe actions
> * When deleting dashboards, also delete subscriptions
> * Fix rendering of links from bin/rt
> * Don't allow ticket creation if your REST form contains an unknown field
> * Skip users with empty email addresses in autocompletion
> * Loosen our detection of mobile browser to search for the word 'mobile'
> * Don't provide a charset on download of binary attachments
> * Fix UseSideBySideLayout to not be cached across users
> * Ensure that article searches are case insensitive
> * QueueSummaryByStatus now uses the improved code from QueueSummaryByLifecylcle
> 
> A complete changelog is available from git by running 
> `git log rt-4.0.6..rt-4.0.7`
> or visiting
> https://github.com/bestpractical/rt/compare/rt-4.0.6...rt-4.0.7
> although they will not load all of the commits.
> 
> ----- End forwarded message -----

-- 
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

Reply to:

Prev by Date: Bug#687053: unblock: vlc/2.0.3-2
Next by Date: Bug#683299: marked as done (unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-4)
Previous by thread: Bug#683442: unblock: fglrx-driver/1:12-6+point-1
Next by thread: Bug#683299: marked as done (unblock: open-vm-tools/2:8.8.0+2012.05.21-724730-4)
Index(es):
- Date
- Thread