X-Git-Url: http://git.imager.perl.org/imager.git/blobdiff_plain/735b3e7b7f84a74f344e6bd4d26c00ee33a5891e..6fa51f9ca59e21ee28c9dcc124bff0189f5d6587:/Changes diff --git a/Changes b/Changes index 8b4a12b7..c06e676c 100644 --- a/Changes +++ b/Changes @@ -1,5 +1,197 @@ Imager release history. Older releases can be found in Changes.old +General changes: + + - to_paletted() and make_palette() now fail (with an error in + errstr()) if invalid quantization parameters are supplied. + +Coverity finally finished a build[1], fix a few problems: + +High severity: + + - reading a color-mapped TGA file with an id string would cause a + double-free if the palette was truncated. CID 185317. + + - mixing scaling to sizes where the accumulator row, the working + output row or the working input row didn't fit into the address + space could result in memory leaks. This can probably only be + reproduced on very wide floating-point sample images. CID 185318. + + - convert an array style function parameter pointer to pointer style + to prevent confusing Coverity in the T1 bounding box implementation. + CID 185343. + + - Similarly in the FT1 bounding box implementation. CID 185338. + + - Similarly for the i_tt_rasterize() function in the FT1 + implementation. CID 185303. + + - initialize a pointer to prevent Coverity complaining in polygon + drawing (it should always end up being set.) CID 185341. + + - addi style makemap could potentially read one past the end of an + array. CID 185337. + + - supplying a numeric hatch of 32 to Imager::Fill->new(hatch => ...) + would result in read beyond the end of the built-in hatch array. + Negative values (which Coverity didn't complain about) could also + cause problems. CID 185331. + + - the Imager::Color set_internal() interal method no longer + calls the over-complicated ICL_set_internal() (which is retained + only for the old API.) Coverity complained that this leaked, but + this could only occur with an invalid (NULL pointer) color object. + CID 185323. + + - the underlying implementation of the map() method could read before + the beginning on an allocated array if supplied with inconsistent + parameters, which Coverity complained about. No Imager code calls + that function with inconsistent parameters, but a + belt-and-suspenders check was added. CID 185315. + + - Coverity complained a call to i_getcolors(), used by the + implementation of the is_bilevel() method could leave the fetched + colors uninitialized. Added a return value check. CID 185308. + + - a numeric combining mode of 13 (eg. as a parameter to + Imager::Fill->new())could cause an invalid array read in + i_get_combine() due to a fencepost error in validating the combine + number. CID 185299. + + + + - avoid an unneeded EXTEND() call when the FT1 has_chars() + implementation returns 0. CID 185350. + + - avoid accessing a possibly NULL map from MakeMapObject() in a + logging call. (GIF) CID 185296. + + - gradgen() allocated the wrong amount of space (always too much) for + the color array. CID 185291. + + - avoid dead code in i_tt_glyph_names(). CID 185321. + + - avoid dead code in i_get_anonymous_color_histo(), which is the + implementation of getcolorusage(). CID 185327. + + - avoid dead code in i_ft2_glyph_name(), which is the implementation + of glyph_names() for FT2. CID 185342. + + - avoid dead code in i_t1_glyph_names(), which is the implementation + of glyph_names() for T1. CID 185322. + + - avoid an unneeded EXTEND() call when the FT2 has_chars() + implementation returns 0. CID 185292. + + - the unpack code for ICO/CUR file handling could extend 32-bit + unsigned values to 64-bit signed. I believe this is harmless. CID + 185319. + + - remove an unneeded check when terminating the stream for JPEG + writing. CID 185347. + + - skip an unneeded check when freeing the combine temp buffer in the + fountain filter. CID 185286. + + - check the combine function pointer consistently rather than the + combine code in one place in the fountain filter. + + - error diffusion now validates a custom error diffusion map and reports + an error if it's bad. CID 185288. + + - avoid discarding the value of i_io_getc() when scanning numbers in + pnm.c. CID 185293. + + - handle failure to clone the log filehandle when cloning the Imager + context object on thread creation. CID 185294. + + - fix an unsigned comparison when converting character code to a + glyph index with a NULL character map. This should be rare. CID + 185297. + + - i_img_info() (C API) no longer tries to handle a NULL image object + pointer. CID 185298. + +[1] The first two build submissions ended up at the end of a ~400 +build queue, and seemed to have been cancelled by Coverity. A build +submitted on NYE went through in minutes. + +Imager 1.008 - 31 Dec 2018 +============ + + - moved EXIF handling from Imager::File::JPEG to core Imager + This allows file formats that store EXIF data as blobs similarly + to JPEG to re-use this code. (such as Imager::File::WEBP) + + - added some more file extensions to image file type mappings + + - added add_type_extensions() class method + +Imager 1.007 - 24 Nov 2018 +============ + + - add png_compression_level tag for writing PNG files. + + - avoid flooring a second time in matrix transform interpolation. + https://rt.cpan.org/Ticket/Display.html?id=124001 + + - produce v2 metadata. + Includes change from the ticket and updates to sub-modules. + https://rt.cpan.org/Ticket/Display.html?id=127216 + + - improve error reporting for the polygon() method + +Imager 1.006 - 26 Aug 2017 +============ + + - the internal i_errors() function now correctly allocates the stack + space needed for its result. + https://rt.perl.org/rt3/Ticket/Display.html?id=131938 + + - t/100-base/020-color.t now uses Imager::Test's test functions + instead of its own. + https://rt.cpan.org/Ticket/Display.html?id=111993 + + - write_multi() now returns an error result (a false value) if called + with a non-(Imager image object). Previously it would typically + crash. + https://rt.cpan.org/Ticket/Display.html?id=117878 + + - improve the documentation of the jpegquality parameter when + writing JPEG files. + + - add code to mitigate CVE-2016-1238, Imager will no longer search the + default current directory entry in @INC when searching for file + format support modules. + +Imager 1.005 - 16 Apr 2016 +============ + +It's now been ten years since I switched to the new Changes file in +release 0.55. + + - revert the ivdformat probes, they don't work as is and trying to + fix them is too much work for now. + +Imager 1.004_004 - 15 Apr 2016 +================ + + - test that the ivdformat from Config is correct and look for a valid + one if it isn't. + For the strange Win32 failures. + + - fix a copy and paste error in pod in samples/samp-form.cgi + +Imager 1.004_003 - 23 Mar 2016 +================ + + - add some extra error reporting to the I/O layers tests, this might + help catch a failure seen on Win32. + http://cpantesters.org/cpan/report/99781689-6bf5-1014-897a-75cb4eee1325 + +Imager 1.004_002 - 20 Mar 2016 +================ + - don't use the seek() method on opened() handles in t/200-file/400-basic.t. In older versions of perl such handles are only IO::Handle objects, not IO::File, and don't have a seek() @@ -128,7 +320,7 @@ Imager 1.002 - 3 Apr 2015 - a future version of Imager may allow an image to be read without translation, for example a TIFF file that contains measurements from an instrument. Currently Imager transforms the samples into - the range 0.0 ... 1.0 which may means the user has to translates + the range 0.0 ... 1.0 which may means the user has to translate the value back. An untranslated image would be unusable as image data, so @@ -561,7 +753,7 @@ Enhancements: - avoid static variables when capturing IPTC data from JPEG files - - match Imager::Font;:T1's error message translations to those from + - match Imager::Font::T1's error message translations to those from later versions of T1Lib. - for libtiff versions that support extended warning handlers (3.8.0