Add some missing ChangeLog entries

2020-10-26 11:51:33 -04:00 · 2020-10-26 11:51:33 -04:00 · bc9c80dbe0
parent 7120c4a748
commit bc9c80dbe0
2 changed files with 36 additions and 7 deletions
--- a/31
+++ b/31
@ -8,6 +8,9 @@
 	provider. The native provider is still available for selection at
 	runtime using the QPDF_CRYPTO_PROVIDER environment variable.

+	* Bug fix: --no-warn was not suppressing some warnings that might
+	be generated by --split-pages.
+
 2020-10-23  Jay Berkenbilt  <ejb@ql.org>

 	* Bug fix: when concatenating content streams, insert a newline if
@ -16,11 +19,23 @@
 	concatenating the streams without regard to the specification that
 	content streams are to be broken on token boundaries. Fixes #444.

-	* Bug fix: fix-qdf: properly handle empty streams with ignore
-	newline.
+	* fix-qdf: handle empty streams better with ignore newline by
+	treating them as empty even though, technically, a blank line
+	would be required inside the Stream. This just makes it easier to
+	add place-holder empty streams while editing qdf files by hand.

 2020-10-22  Jay Berkenbilt  <ejb@ql.org>

+	* Fix memory leak that could occur if objects in object streams
+	were resolved more than once and the objects within the object
+	streams contained circular references. This leak could be
+	triggered when qpdf was run with --object-streams=generate on
+	files that already had object streams containing circular
+	references (fuzz issue 23642).
+
+	* Add QIntC::range_check for checking to see whether adding two
+	numbers together will cause an overflow.
+
 	* Fix loop detection problem when traversing page thumbnails
 	during optimization (fuzz issue 23172).

@ -35,6 +50,11 @@
 	* Qpdf's build and CI has been migrated from Azure Pipelines
 	(Azure Devops) to GitHub Actions.

+	* Remove some fuzz files that triggered Mal/PDFEx-H with some
+	virus scanners. There's plenty of coverage in the fuzz corpus
+	without these files, and it's a nuisance to have virus checkers
+	remove them. Fixes #460.
+
 	* Ensure that numeric conversion is not affected by the user's
 	global locale setting. Fixes #459.

@ -85,6 +105,13 @@
 	replace Azure Pipelines as the official CI for qpdf for the next
 	release.

+2020-10-15  Jay Berkenbilt  <ejb@ql.org>
+
+	* Make many minor improvements to the build process and code
+	health, including fixing a lgtm warning and compiler warnings from
+	newer version of gcc and MSVC toolchains. Add several cosmetic
+	improvements to build output in CI.
+
 2020-04-29  Jay Berkenbilt  <ejb@ql.org>

 	* Bug fix: qpdf --check was writing errors and warnings reported
--- a/12
+++ b/12
@ -117,13 +117,15 @@ Current state (10.0.2):
 Desired state:

 * The qpdf/external-libs repository should create release candidates.
-  Ideally, every scheduled run would make its zip files available.
-  A personal access token with actions:read scope for the
+  Ideally, every scheduled run would make its zip files available. A
+  personal access token with actions:read scope for the
  qpdf/external-libs repository is required to download the artifact
  from an action run, and qpdf/qpdf's secrets.GITHUB_TOKEN doesn't
-  have this access. As an alternative, we could have a draft release
-  in qpdf/external-libs that the qpdf/external-libs build could update
-  with each candidate.
+  have this access. We could create a service account for this
+  purpose. As an alternative, we could have a draft release in
+  qpdf/external-libs that the qpdf/external-libs build could update
+  with each candidate. It may also be possible to solve this by
+  developing a simple GitHub app.

 * Scheduled runs of the qpdf build in the qpdf/qpdf repository (not a
  fork or pull request) could download external-libs from the release