pkgsrc.se | The NetBSD package collection

Subject: CVS commit: [pkgsrc-2013Q3] pkgsrc/www/py-genshi
From: Matthias Scheler
Date: 2013-10-12 16:14:59
Message id: 20131012141459.887FD96@cvs.netbsd.org

Log Message:
Pullup ticket #4244 - requested by obache
www/py-genshi: security update

Revisions pulled up:
- www/py-genshi/Makefile                                        1.8
- www/py-genshi/distinfo                                        1.3

---
   Module Name:	pkgsrc
   Committed By:	obache
   Date:		Fri Oct 11 10:54:15 UTC 2013

   Modified Files:
   	pkgsrc/www/py-genshi: Makefile distinfo

   Log Message:
   Update genshi to 0.6.1.

   Version 0.6.1
   http://svn.edgewall.org/repos/genshi/tags/0.6.1/
   (Jan 27 2013, from branches/stable/0.6.x)

     * Security fix to enhance sanitizing of CSS in style attributes. Genshi's
       `HTMLSanitizer` disallows style attributes by default (this remains
       unchanged) and warns against such attacks in its documentation, but
       the provided CSS santizing is now less lacking (see #455).
     * Fix for error in how `HTMLFormFiller` would handle `textarea` elements if
       no value was not supplied form them.
     * The `HTMLFormFiller` now correctly handles check boxes and radio buttons
       with an empty `value` attribute.
     * Template `Context` objects now have a `.copy` method.
     * Added a simple `tox.ini` file for using tox to test against multiple
       verions of Python.
     * Fix for bug in `QName` comparison (see #413).
     * Fix for bug in handling of trailing events in match template matches
       (see #399).
     * Fix i18n namespace declaration in documentation (see #400).
     * Fix for bug in caching of events in serializers by no longer caching
       `(TEXT, Markup)` events (see #429).
     * Fix handling of `None` by `Markup.escape` in `_speedups.c` (see #439).
     * Fix handling of internal state by match templates (relevant when multiple
       templates match the same part of the stream, see #370).
     * Fix handling of multiple events between or on either side of start and end
       tags in translated messages (see #404).
     * Fix test failures caused by changes in HTMLParser in Python 2.7 (see #501).
     * Fix infinite loop in interplotation lexing that was introduced by a change
       in Python 2.7's tokenizer (see #540).
     * Fix handling of processing instructions without data (see #368).
     * Updated MANIFEST.in so as not to rely on build from Subersion 1.6.

Files:

Revision	Action	file
1.7.8.1	modify	pkgsrc/www/py-genshi/Makefile
1.2.28.1	modify	pkgsrc/www/py-genshi/distinfo