[Bug 279048] lang/swipl update to 9.2.4

Reply: bugzilla-noreply_a_freebsd.org: "[Bug 279048] lang/swipl update to 9.2.4"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Fri, 17 May 2024 00:07:37 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=279048

            Bug ID: 279048
           Summary: lang/swipl update to 9.2.4
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-bugs@FreeBSD.org
          Reporter: dewayne@heuristicsystems.com.au
                CC: mailinglist@diamondbox.dk
             Flags: maintainer-feedback?(mailinglist@diamondbox.dk)
                CC: mailinglist@diamondbox.dk

I regret bothering you so soon after the 9.2.2 upgrade per
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=277550

But there are a few changes between 9.2.2 and 9.2.4, extract from
https://www.swi-prolog.org/ChangeLog?branch=stable&from=9.2.2&to=9.2.4
that affect many that are working with large numbers or security would be:

Bug fixes/operational enhancement
FIXED: unifiable/3 internal consistency Unifiable did not correctly handle
stack resizing. This is detected when running using chk_secure. Not sure
whether it can also cause real issues, but the new code is simpler and safe.
FIXED: Memory leak in string_bytes/3.
ENHANCED: Use temprary malloc API for bignum arithemetic
ENHANCED: Keep small bignums on the stack
ENHANCED: Improve memory reuse after writing huge integers.

Enhancements for development
ENHANCED: coverage/2: analyze and annotate included files. The coverage
analyzer now deals with files that are included. Files that are included
multiple times in different modules get their numbers aggregated.

Security enhancement
MODIFIED: library(http/http_load) to verify certificates This library allows
for loading files from http/https URLs. It used to skip certificate checking.
Checking is now enabled and the Option argument may be used to disable it
(using the cert_verify_hook option).

To provide context I use prolog "executables" as long running management
systems and I'm bringing in http to acquire updates and use signing
verification extensively. :)

-- 
You are receiving this mail because:
You are the assignee for the bug.