The following Fedora EPEL 6 Security updates need testing:
Age URL
72 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b7556983e8 tomcat-7.0.92-1.el6
67 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-a0ddb153b8 game-music-emu-0.6.2-1.el6
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-26a7e6e4e8 koji-1.16.2-1.el6
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-b4ed6df2c1 distcc-3.2rc1-3.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-9953736ad9 drupal7-7.64-1.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-67b3f85ea0 drupal6-6.38-2.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
ckeditor-4.11.2-2.el6
drupal7-link-1.6-1.el6
php-erusev-parsedown-1.7.1-1.el6
Details about builds:
================================================================================
ckeditor-4.11.2-2.el6 (FEDORA-EPEL-2019-a397f97a83)
WYSIWYG text editor to be used inside web pages
--------------------------------------------------------------------------------
Update Information:
## CKEditor 4.11.2 Fixed Issues: *
[#2403](https://github.com/ckeditor/ckeditor-dev/issues/2403): Fixed: Styling
inline editor initialized inside a table with the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin is causing
style leaks. * [#2514](https://github.com/ckeditor/ckeditor-dev/issues/2403):
Fixed: Pasting table data into inline editor initialized inside a table with the
[Table Selection](https://ckeditor.com/cke4/addon/tableselection) plugin inserts
pasted content into the wrapping table. *
[#2451](https://github.com/ckeditor/ckeditor-dev/issues/2451): Fixed: The
[Remove Format](https://ckeditor.com/cke4/addon/removeformat) plugin changes
selection. * [#2546](https://github.com/ckeditor/ckeditor-dev/issues/2546):
Fixed: The separator in the toolbar moves when buttons are focused. *
[#2506](https://github.com/ckeditor/ckeditor-dev/issues/2506): Fixed: [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) throws a type error when an empty
`<figure>` tag with an `image` class is upcasted. *
[#2650](https://github.com/ckeditor/ckeditor-dev/issues/2650): Fixed:
[Table](https://ckeditor.com/cke4/addon/table) dialog validator fails when the
`getValue()`function is defined in the global scope. *
[#2690](https://github.com/ckeditor/ckeditor-dev/issues/2690): Fixed: Decimal
characters are removed from the inside of numbered lists when pasting content
using the [Paste from Word](https://ckeditor.com/cke4/addon/pastefromword)
plugin. * [#2205](https://github.com/ckeditor/ckeditor-dev/issues/2205): Fixed:
It is not possible to add new list items under an item containing a block
element. * [#2411](https://github.com/ckeditor/ckeditor-dev/issues/2411),
[#2438](https://github.com/ckeditor/ckeditor-dev/issues/2438) Fixed: Apply
numbered list option throws a console error for a specific markup. *
[#2430](https://github.com/ckeditor/ckeditor-dev/issues/2430) Fixed: [Color
Button](https://ckeditor.com/cke4/addon/colorbutton) and [List
Block](https://ckeditor.com/cke4/addon/listblock) items are draggable. Other
Changes: * Updated the [WebSpellChecker](https://ckeditor.com/cke4/addon/wsc)
(WSC) plugin: * [#52](https://github.com/WebSpellChecker/ckeditor-
plugin-wsc/issues/52) Fixed: Clicking "Finish Checking" without a prior action
would hang the Spell Checking dialog. *
[#2603](https://github.com/ckeditor/ckeditor-dev/issues/2603): Corrected the GPL
license entry in the `package.json` file. ## CKEditor 4.11.1 Fixed Issues: *
[#2571](https://github.com/ckeditor/ckeditor-dev/issues/2571): Fixed: Clicking
the categories in the [Emoji](https://ckeditor.com/cke4/addon/emoji) dropdown
panel scrolls the entire page. ## CKEditor 4.11 **Security Updates:** * Fixed
XSS vulnerability in the HTML parser reported by
[maxarr](https://hackerone.com/maxarr). Issue summary: It was possible
to execute XSS inside CKEditor after persuading the victim to: (i) switch
CKEditor to source mode, then (ii) paste a specially crafted HTML code, prepared
by the attacker, into the opened CKEditor source area, and (iii) switch back to
WYSIWYG mode. **An upgrade is highly recommended!** New Features: *
[#2062](https://github.com/ckeditor/ckeditor-dev/pull/2062): Added the emoji
dropdown that allows the user to choose the emoji from the toolbar and search
for them using keywords. * [#2154](https://github.com/ckeditor/ckeditor-
dev/issues/2154): The [Link](https://ckeditor.com/cke4/addon/link) plugin now
supports phone number links. * [#1815](https://github.com/ckeditor/ckeditor-
dev/issues/1815): The [Auto Link](https://ckeditor.com/cke4/addon/autolink)
plugin supports typing link completion. *
[#2478](https://github.com/ckeditor/ckeditor-dev/issues/2478):
[Link](https://ckeditor.com/cke4/addon/link) can be inserted using the
<kbd>Ctrl</kbd>/<kbd>Cmd</kbd> + <kbd>K</kbd> keystroke. *
[#651](https://github.com/ckeditor/ckeditor-dev/issues/651): Text pasted using
the [Paste from Word](https://ckeditor.com/cke4/addon/pastefromword) plugin
preserves indentation in paragraphs. *
[#2248](https://github.com/ckeditor/ckeditor-dev/issues/2248): Added support for
justification in the [BBCode](https://ckeditor.com/cke4/addon/bbcode) plugin.
Thanks to [Mat��j Km��nek](https://github.com/KminekMatej)! *
[#706](https://github.com/ckeditor/ckeditor-dev/issues/706): Added a different
cursor style when selecting cells for the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin. *
[#2072](https://github.com/ckeditor/ckeditor-dev/issues/2072): The [UI
Button](https://ckeditor.com/cke4/addon/button) plugin supports custom `aria-
haspopup` property values. The [Menu
Button](https://ckeditor.com/cke4/addon/menubutton) `aria-haspopup` value is now
`menu`, the [Panel Button](https://ckeditor.com/cke4/addon/panelbutton) and
[Rich Combo](https://ckeditor.com/cke4/addon/richcombo) `aria-haspopup` value is
now `listbox`. * [#1176](https://github.com/ckeditor/ckeditor-dev/pull/1176):
The [Balloon Panel](https://ckeditor.com/cke4/addon/balloonpanel) can now be
attached to a selection instead of an element. *
[#2202](https://github.com/ckeditor/ckeditor-dev/issues/2202): Added the
`contextmenu_contentsCss` configuration option to allow adding custom CSS to the
[Context Menu](https://ckeditor.com/cke4/addon/contextmenu). Fixed Issues: *
[#1477](https://github.com/ckeditor/ckeditor-dev/issues/1477): Fixed: On
destroy, [Balloon Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) does
not destroy its content. * [#2394](https://github.com/ckeditor/ckeditor-
dev/issues/2394): Fixed: [Emoji](https://ckeditor.com/cke4/addon/emoji) dropdown
does not show up with repeated symbols in a single line. *
[#1181](https://github.com/ckeditor/ckeditor-dev/issues/1181): [Chrome] Fixed:
Opening the context menu in a read-only editor results in an error. *
[#2276](https://github.com/ckeditor/ckeditor-dev/issues/2276): [iOS] Fixed:
[Button](https://ckeditor.com/cke4/addon/button) state does not refresh
properly. * [#1489](https://github.com/ckeditor/ckeditor-dev/issues/1489):
Fixed: Table contents can be removed in read-only mode when the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin is used. *
[#1264](https://github.com/ckeditor/ckeditor-dev/issues/1264) Fixed: Right-click
does not clear the selection created with the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin. *
[#586](https://github.com/ckeditor/ckeditor-dev/issues/586) Fixed: The
`required` attribute is not correctly recognized by the [Form
Elements](https://ckeditor.com/cke4/addon/forms) plugin dialog. Thanks to [Roli
Z��ger](https://github.com/rzueger)! *
[#2380](https://github.com/ckeditor/ckeditor-dev/issues/2380) Fixed: Styling
HTML comments in a top-level element results in extra paragraphs. *
[#2294](https://github.com/ckeditor/ckeditor-dev/issues/2294) Fixed: Pasting
content from Microsoft Outlook and then bolding it results in an error. *
[#2035](https://github.com/ckeditor/ckeditor-dev/issues/2035) [Edge] Fixed:
`Permission denied` is thrown when opening a
[Panel](https://ckeditor.com/cke4/addon/panel) instance. *
[#965](https://github.com/ckeditor/ckeditor-dev/issues/965) Fixed: The [`config.
forceSimpleAmpersand`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDI…
onfig.html#cfg-forceSimpleAmpersand) option does not work. Thanks to [Alex
Maris](https://github.com/alexmaris)! *
[#2448](https://github.com/ckeditor/ckeditor-dev/issues/2448): Fixed: The
[`Escape HTML Entities`] plugin with custom [additional entities](https://ckedit
or.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-entities_addition…)
configuration breaks HTML escaping. *
[#898](https://github.com/ckeditor/ckeditor-dev/issues/898): Fixed: [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) long alternative text protrudes
into the editor when the image is selected. *
[#1113](https://github.com/ckeditor/ckeditor-dev/issues/1113): [Firefox] Fixed:
Nested contenteditable elements path is not updated on focus with the [Div
Editing Area](https://ckeditor.com/cke4/addon/divarea) plugin. *
[#1682](https://github.com/ckeditor/ckeditor-dev/issues/1682) Fixed: Hovering
the [Balloon Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) panel
changes its size, causing flickering. *
[#421](https://github.com/ckeditor/ckeditor-dev/issues/421) Fixed: Expandable
[Button](https://ckeditor.com/cke4/addon/button) puts the `(Selected)` text at
the end of the label when clicked. *
[#1454](https://github.com/ckeditor/ckeditor-dev/issues/1454): Fixed: The [`onAb
ort`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_fileTools_upl…
dgetDefinition.html#property-onAbort) method of the [Upload
Widget](https://ckeditor.com/cke4/addon/uploadwidget) is not called when the
loader is aborted. * [#1451](https://github.com/ckeditor/ckeditor-
dev/issues/1451): Fixed: The context menu is incorrectly positioned when opened
with <kbd>Shift</kbd>+<kbd>F10</kbd>. *
[#1722](https://github.com/ckeditor/ckeditor-dev/issues/1722): [`CKEDITOR.filter
.instances`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_filter.html
#static-property-instances) is causing memory leaks. *
[#2491](https://github.com/ckeditor/ckeditor-dev/issues/2491): Fixed: The
[Mentions](https://ckeditor.com/cke4/addon/mentions) plugin is not matching
diacritic characters. * [#2519](https://github.com/ckeditor/ckeditor-
dev/issues/2519): Fixed: The [Accessibility
Help](https://ckeditor.com/cke4/addon/a11yhelp) dialog should display all
available keystrokes for a single command. API Changes: *
[#2453](https://github.com/ckeditor/ckeditor-dev/issues/2453): The [`CKEDITOR.ui
.panel.block.getItems`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_
ui_panel_block.html#method-getItems) method now also returns `input` elements in
addition to links. * [#2224](https://github.com/ckeditor/ckeditor-
dev/issues/2224): The [`CKEDITOR.tools.convertToPx`](https://ckeditor.com/docs/
ckeditor4/latest/api/CKEDITOR_tools.html#method-convertToPx) function now
converts negative values. * [#2253](https://github.com/ckeditor/ckeditor-
dev/issues/2253): The widget definition [`insert`](https://ckeditor.com/docs/cke
ditor4/latest/api/CKEDITOR_plugins_widget_definition.html#property-insert)
method now passes `editor` and `commandData`. Thanks to
[marcparmet](https://github.com/marcparmet)! *
[#2045](https://github.com/ckeditor/ckeditor-dev/issues/2045): Extracted [`tools
.eventsBuffer`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tools.ht
ml#method-eventsBuffer) and [`tools.throttle`](https://ckeditor.com/docs/ckedito
r4/latest/api/CKEDITOR_tools.html#method-throttle) functions logic into a
separate namespace. * [`tools.eventsBuffer`](https://ckeditor.com/docs/c
keditor4/latest/api/CKEDITOR_tools.html#method-eventsBuffer) was extracted into
[`tools.buffers.event`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_
tools_buffers_event.html), * [`tools.throttle`](https://ckeditor.com/doc
s/ckeditor4/latest/api/CKEDITOR_tools.html#method-throttle) was extracted into [
`tools.buffers.throttle`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITO
R_tools_buffers_throttle.html). * [#2466](https://github.com/ckeditor/ckeditor-
dev/issues/2466): The [`CKEDITOR.filter`](https://ckeditor.com/docs/ckeditor4/l
atest/api/CKEDITOR_tools.html#method-constructor) constructor accepts an
additional `rules` parameter allowing to bind the editor and filter together. *
[#2493](https://github.com/ckeditor/ckeditor-dev/issues/2493): The [`editor.get
CommandKeystroke`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_…
r.html#method-getCommandKeystroke) method accepts an additional `all` parameter
allowing to retrieve an array of all command keystrokes. *
[#2483](https://github.com/ckeditor/ckeditor-dev/issues/2483): Button's DOM
element created with the [`hasArrow`](https://ckeditor.com/docs/ckeditor4/latest
/api/CKEDITOR_ui.html#method-addButton) definition option can by identified by
the `.cke_button_expandable` CSS class. Other Changes: *
[#1713](https://github.com/ckeditor/ckeditor-dev/issues/1713): Removed the
redundant `lang.title` entry from the
[Clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin. ## CKEditor
4.10.1 Fixed Issues: * [#2114](https://github.com/ckeditor/ckeditor-
dev/issues/2114): Fixed:
[Autocomplete](https://ckeditor.com/cke4/addon/autocomplete) cannot be
initialized before [`instanceReady`](https://ckeditor.com/docs/ckeditor4/latest/
api/CKEDITOR_editor.html#event-instanceReady). *
[#2107](https://github.com/ckeditor/ckeditor-dev/issues/2107): Fixed: Holding
and releasing the mouse button is not inserting an
[autocomplete](https://ckeditor.com/cke4/addon/autocomplete) suggestion. *
[#2167](https://github.com/ckeditor/ckeditor-dev/issues/2167): Fixed: Matching
in [Emoji](https://ckeditor.com/cke4/addon/emoji) plugin is not case
insensitive. * [#2195](https://github.com/ckeditor/ckeditor-dev/issues/2195):
Fixed: [Emoji](https://ckeditor.com/cke4/addon/emoji) shows the suggestion box
when the colon is preceded with other characters than white space. *
[#2169](https://github.com/ckeditor/ckeditor-dev/issues/2169): [Edge] Fixed:
Error thrown when pasting into the editor. *
[#1084](https://github.com/ckeditor/ckeditor-dev/issues/1084) Fixed: Using the
"Automatic" option with [Color
Button](https://ckeditor.com/cke4/addon/colorbutton) on a text with the color
already defined sets an invalid color value. *
[#2271](https://github.com/ckeditor/ckeditor-dev/issues/2271): Fixed: Custom
color name not used as a label in the [Color
Button](https://ckeditor.com/cke4/addon/image2) plugin. Thanks to [Eric
Geloen](https://github.com/egeloen)! *
[#2296](https://github.com/ckeditor/ckeditor-dev/issues/2296): Fixed: The [Color
Button](https://ckeditor.com/cke4/addon/colorbutton) plugin throws an error when
activated on content containing HTML comments. *
[#966](https://github.com/ckeditor/ckeditor-dev/issues/966): Fixed: Executing [`
editor.destroy()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_…
r.html#method-destroy) during the [file upload](https://ckeditor.com/docs/ckedit
or4/latest/api/CKEDITOR_fileTools_uploadWidgetDefinition.html#property-
onUploading) throws an error. Thanks to [Maksim
Makarevich](https://github.com/MaksimMakarevich)! *
[#1719](https://github.com/ckeditor/ckeditor-dev/issues/1719): Fixed:
<kbd>Ctrl</kbd>/<kbd>Cmd</kbd> + <kbd>A</kbd> inadvertently focuses inline
editor if it is starting and ending with a list. Thanks to
[theNailz](https://github.com/theNailz)! *
[#1046](https://github.com/ckeditor/ckeditor-dev/issues/1046): Fixed: Subsequent
new links do not include the `id` attribute. Thanks to [Nathan
Samson](https://github.com/nathansamson)! *
[#1348](https://github.com/ckeditor/ckeditor-dev/issues/1348): Fixed: [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) plugin aspect ratio locking uses
an old width and height on image URL change. *
[#1791](https://github.com/ckeditor/ckeditor-dev/issues/1791): Fixed:
[Image](https://ckeditor.com/cke4/addon/image) and [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) plugins can be enabled when [Easy
Image](https://ckeditor.com/cke4/addon/easyimage) is present. *
[#2254](https://github.com/ckeditor/ckeditor-dev/issues/2254): Fixed:
[Image](https://ckeditor.com/cke4/addon/image) ratio locking is too precise for
resized images. Thanks to [Jonathan Gilbert](https://github.com/logiclrd)! *
[#1184](https://github.com/ckeditor/ckeditor-dev/issues/1184): [IE8-11] Fixed:
Copying and pasting data in [read-only mode](https://ckeditor.com/docs/ckeditor4
/latest/api/CKEDITOR_editor.html#property-readOnly) throws an error. *
[#1916](https://github.com/ckeditor/ckeditor-dev/issues/1916): [IE9-11] Fixed:
Pressing the <kbd>Delete</kbd> key in [read-only mode](https://ckeditor.com/docs
/ckeditor4/latest/api/CKEDITOR_editor.html#property-readOnly) throws an error. *
[#2003](https://github.com/ckeditor/ckeditor-dev/issues/2003): [Firefox] Fixed:
Right-clicking multiple selected table cells containing empty paragraphs removes
the selection. * [#1816](https://github.com/ckeditor/ckeditor-dev/issues/1816):
Fixed: Table breaks when <kbd>Enter</kbd> is pressed over the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin. *
[#1115](https://github.com/ckeditor/ckeditor-dev/issues/1115): Fixed: The
`<font>` tag is not preserved when proper configuration is provided and a style
is applied by the [Font](https://ckeditor.com/cke4/addon/font) plugin. *
[#727](https://github.com/ckeditor/ckeditor-dev/issues/727): Fixed: Custom
styles may be invisible in the [Styles
Combo](https://ckeditor.com/cke4/addon/stylescombo) plugin. *
[#988](https://github.com/ckeditor/ckeditor-dev/issues/988): Fixed: ACF-enabled
custom elements prefixed with `object`, `embed`, `param` are removed from the
editor content. API Changes: * [#2249](https://github.com/ckeditor/ckeditor-
dev/issues/1791): Added the [`editor.plugins.detectConflict()`](https://ckeditor
.com/docs/ckeditor4/latest/CKEDITOR_editor_plugins.html#method-detectConflict)
method finding conflicts between provided plugins. ## CKEditor 4.10 New
Features: * [#1751](https://github.com/ckeditor/ckeditor-dev/issues/1751):
Introduced the **Autocomplete** feature that consists of the following plugins:
* [Autocomplete](https://ckeditor.com/cke4/addon/autocomplete) – Provides
contextual completion feature for custom text matches based on user input.
* [Text Watcher](https://ckeditor.com/cke4/addon/textWatcher) – Checks
whether an editor's text change matches the chosen criteria. * [Text
Match](https://ckeditor.com/cke4/addon/textMatch) – Allows to search [`CKE
DITOR.dom.range`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_d…
nge.html) for matching text. * [#1703](https://github.com/ckeditor/ckeditor-
dev/issues/1703): Introduced the
[Mentions](https://ckeditor.com/cke4/addon/mentions) plugin providing smart
completion feature for custom text matches based on user input starting with a
chosen marker character. * [#1746](https://github.com/ckeditor/ckeditor-
dev/issues/1703): Introduced the [Emoji](https://ckeditor.com/cke4/addon/emoji)
plugin providing completion feature for emoji ideograms. *
[#1761](https://github.com/ckeditor/ckeditor-dev/issues/1761): The [Auto
Link](https://ckeditor.com/cke4/addon/autolink) plugin now supports email links.
Fixed Issues: * [#1458](https://github.com/ckeditor/ckeditor-dev/issues/1458):
[Edge] Fixed: After blurring the editor it takes 2 clicks to focus a widget. *
[#1034](https://github.com/ckeditor/ckeditor-dev/issues/1034): Fixed: JAWS
leaves forms mode after pressing the <kbd>Enter</kbd> key in an inline editor
instance. * [#1748](https://github.com/ckeditor/ckeditor-dev/pull/1748): Fixed:
Missing [`CKEDITOR.dialog.definition.onHide`](https://ckeditor.com/docs/ckeditor
4/latest/api/CKEDITOR_dialog_definition.html#property-onHide) API documentation.
Thanks to [sunnyone](https://github.com/sunnyone)! *
[#1321](https://github.com/ckeditor/ckeditor-dev/issues/1321): Fixed:
Ideographic space character (`\u3000`) is lost when pasting text. *
[#1776](https://github.com/ckeditor/ckeditor-dev/issues/1776): Fixed: Empty
caption placeholder of the [Image
Base](https://ckeditor.com/cke4/addon/imagebase) plugin is not hidden when
blurred. * [#1592](https://github.com/ckeditor/ckeditor-dev/issues/1592): Fixed:
The [Image Base](https://ckeditor.com/cke4/addon/imagebase) plugin caption is
not visible after paste. * [#620](https://github.com/ckeditor/ckeditor-
dev/issues/620): Fixed: The [`config.forcePasteAsPlainText`](https://ckeditor.co
m/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-forcePasteAsPlainText)
option is not respected in internal and cross-editor pasting. *
[#1467](https://github.com/ckeditor/ckeditor-dev/issues/1467): Fixed: The
resizing cursor of the [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) plugin appearing in the
middle of a merged cell. API Changes: *
[#850](https://github.com/ckeditor/ckeditor-dev/issues/850): Backward
incompatibility: Replaced the `replace` dialog from the [Find /
Replace](https://ckeditor.com/cke4/addon/find) plugin with a `tabId` option in
the `find` command. * [#1582](https://github.com/ckeditor/ckeditor-
dev/issues/1582): The [`CKEDITOR.editor.addCommand()`](https://ckeditor.com/docs
/ckeditor4/latest/api/CKEDITOR_editor.html#method-addCommand) method can now
accept a [`CKEDITOR.command`](https://ckeditor.com/docs/ckeditor4/latest/api/CKE
DITOR_command.html) instance as a parameter. *
[#1712](https://github.com/ckeditor/ckeditor-dev/issues/1712): The [`extraPlugin
s`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
extraPlugins), [`removePlugins`](https://ckeditor.com/docs/ckeditor4/latest/api/
CKEDITOR_config.html#cfg-removePlugins) and [`plugins`](https://ckeditor.com/doc
s/ckeditor4/latest/api/CKEDITOR_config.html#cfg-plugins) configuration options
allow whitespace. * [#1802](https://github.com/ckeditor/ckeditor-
dev/issues/1802): The [`extraPlugins`](https://ckeditor.com/docs/ckeditor4/lates
t/api/CKEDITOR_config.html#cfg-extraPlugins), [`removePlugins`](https://ckeditor
.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-removePlugins) and [`plu
gins`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#…
plugins) configuration options allow passing plugin names as an array. *
[#1724](https://github.com/ckeditor/ckeditor-dev/issues/1724): Added an option
to the [`getClientRect()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDIT
OR_dom_element.html#method-getClientRect) function allowing to retrieve an
absolute bounding rectangle of the element, i.e. a position relative to the
upper-left corner of the topmost viewport. *
[#1498](https://github.com/ckeditor/ckeditor-dev/issues/1498) : Added a new [`ge
tClientRects()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_do…
ge.html#method-getClientRects) method to `CKEDITOR.dom.range`. It returns a list
of rectangles for each selected element. *
[#1993](https://github.com/ckeditor/ckeditor-dev/issues/1993): Added the [`CKEDI
TOR.tools.throttle()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDI…
ools.html#method-throttle) function. Other Changes: * Updated
[SCAYT](https://ckeditor.com/cke4/addon/scayt) (Spell Check As You Type) and
[WebSpellChecker](https://ckeditor.com/cke4/addon/wsc) (WSC) plugins: *
Language dictionary update: Added support for the Uzbek Latin language.
* Languages no longer supported as additional languages: Manx - Isle of Man
(`gv_GB`) and Interlingua (`ia_XR`). * Extended and improved language
dictionaries: Georgian and Swedish. Also added the missing word _"Ensure"_ to
the American, British and Canada English language. *
[#141](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/141)
Fixed: SCAYT throws "Uncaught Error: Error in RangyWrappedRange module:
createRange(): Parameter must be a Window object or DOM node". *
[#153](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/153)
[Chrome] Fixed: Correcting a word in the widget in SCAYT moves focus to another
editable. * [#155](https://github.com/WebSpellChecker/ckeditor-plugin-
scayt/issues/155) [IE8] Fixed: SCAYT throws an error and does not work.
* [#156](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/156)
[IE10] Fixed: SCAYT does not seem to work. * Fixed: After some text is
dragged and dropped, the markup is not refreshed for grammar problems in SCAYT.
* Fixed: Request to FastCGI fails when the user tries to replace a word with
non-English characters with a proper suggestion in WSC. * [Firefox]
Fixed: <kbd>Ctrl</kbd>+<kbd>Z</kbd> removes focus in SCAYT. * Grammar
support for default languages was improved. * New application source URL
was added in SCAYT. * Removed green marks and legend related to grammar-
supported languages in the Languages tab of SCAYT. Grammar is now supported for
almost all the anguages in the list for an additional fee. * Fixed:
JavaScript error in the console: "Cannot read property 'split' of undefined" in
SCAYT and WSC. * [IE10] Fixed: Markup is not set for a specific case in
SCAYT. * Fixed: Accessibility issue: No `alt` attribute for the logo
image in the About tab of SCAYT. ## CKEditor 4.9.2 **Security Updates:** *
Fixed XSS vulnerability in the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) (`image2`) plugin reported by
[Kyaw Min Thein](https://twitter.com/kyawminthein99). Issue summary: It
was possible to execute XSS inside CKEditor using the `<img>` tag and specially
crafted HTML. Please note that the default presets (Basic/Standard/Full) do not
include this plugin, so you are only at risk if you made a custom build and
enabled this plugin. We would like to thank the [Drupal security
team](https://www.drupal.org/drupal-security-team) for bringing this matter to
our attention and coordinating the fix and release process! ## CKEditor 4.9.1
Fixed Issues: * [#1835](https://github.com/ckeditor/ckeditor-dev/issues/1835):
Fixed: Integration between [CKFinder](https://ckeditor.com/ckeditor-4/ckfinder/)
and the [File Browser](https://ckeditor.com/cke4/addon/filebrowser) plugin does
not work. ## CKEditor 4.9 New Features: *
[#932](https://github.com/ckeditor/ckeditor-dev/issues/932): Introduced Easy
Image feature for inserting images that are automatically rescaled, optimized,
responsive and delivered through a blazing-fast CDN. Three new plugins were
added to support it: * [Easy
Image](https://ckeditor.com/cke4/addon/easyimage), * [Cloud
Services](https://ckeditor.com/cke4/addon/cloudservices) * [Image
Base](https://ckeditor.com/cke4/addon/imagebase) *
[#1338](https://github.com/ckeditor/ckeditor-dev/issues/1338): Keystroke labels
are displayed for function keys (like F7, F8). *
[#643](https://github.com/ckeditor/ckeditor-dev/issues/643): The [File
Browser](https://ckeditor.com/cke4/addon/filebrowser) plugin can now upload
files using XHR requests. This allows for setting custom HTTP headers using the
[`config.fileTools_requestHeaders`](https://ckeditor.com/docs/ckeditor4/latest/a
pi/CKEDITOR_config.html#cfg-fileTools_requestHeaders) configuration option. *
[#1365](https://github.com/ckeditor/ckeditor-dev/issues/1365): The [File
Browser](https://ckeditor.com/cke4/addon/filebrowser) plugin uses XHR requests
by default. * [#1399](https://github.com/ckeditor/ckeditor-dev/issues/1399):
Added the possibility to set [`CKEDITOR.config.startupFocus`](https://ckeditor.c
om/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-startupFocus) as `start`
or `end` to specify where the editor focus should be after the initialization. *
[#1441](https://github.com/ckeditor/ckeditor-dev/issues/1441): The [Magic
Line](https://ckeditor.com/cke4/addon/magicline) plugin line element can now be
identified by the `data-cke-magic-line="1"` attribute. Fixed Issues: *
[#595](https://github.com/ckeditor/ckeditor-dev/issues/595): Fixed: Pasting does
not work on mobile devices. * [#869](https://github.com/ckeditor/ckeditor-
dev/issues/869): Fixed: Empty selection clears cached clipboard data in the
editor. * [#1419](https://github.com/ckeditor/ckeditor-dev/issues/1419): Fixed:
The [Widget Selection](https://ckeditor.com/cke4/addon/widgetselection) plugin
selects the editor content with the <kbd>Alt+A</kbd> key combination on Windows.
* [#1274](https://github.com/ckeditor/ckeditor-dev/issues/1274): Fixed: [Balloon
Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) does not match a single
selected image using the [`contextDefinition.cssSelector`](https://ckeditor.com/
docs/ckeditor4/latest/api/CKEDITOR_plugins_balloontoolbar_contextDefinition.html
#property-cssSelector) matcher. * [#1232](https://github.com/ckeditor/ckeditor-
dev/issues/1232): Fixed: [Balloon
Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) buttons should be
registered as focusable elements. *
[#1342](https://github.com/ckeditor/ckeditor-dev/issues/1342): Fixed: [Balloon
Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) should be re-positioned
after the [`change`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_edi
tor.html#event-change) event. * [#1426](https://github.com/ckeditor/ckeditor-
dev/issues/1426): [IE8-9] Fixed: Missing [Balloon
Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) background in the
[Kama](https://ckeditor.com/cke4/addon/kama) skin. Thanks to [Christian
Elmer](https://github.com/keinkurt)! *
[#1470](https://github.com/ckeditor/ckeditor-dev/issues/1470): Fixed: [Balloon
Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) is not visible after
drag and drop of a widget it is attached to. *
[#1048](https://github.com/ckeditor/ckeditor-dev/issues/1048): Fixed: [Balloon
Panel](https://ckeditor.com/cke4/addon/balloonpanel) is not positioned properly
when a margin is added to its non-static parent. *
[#889](https://github.com/ckeditor/ckeditor-dev/issues/889): Fixed: Unclear
error message for width and height fields in the
[Image](https://ckeditor.com/cke4/addon/image) and [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) plugins. *
[#859](https://github.com/ckeditor/ckeditor-dev/issues/859): Fixed: Cannot edit
a link after a double-click on the text in the link. *
[#1013](https://github.com/ckeditor/ckeditor-dev/issues/1013): Fixed: [Paste
from Word](https://ckeditor.com/cke4/addon/pastefromword) does not work
correctly with the [`config.forcePasteAsPlainText`](https://ckeditor.com/docs/ck
editor4/latest/api/CKEDITOR_config.html#cfg-forcePasteAsPlainText) option. *
[#1356](https://github.com/ckeditor/ckeditor-dev/issues/1356): Fixed: [Border
parse function](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tools_st
yle_parse.html#method-border) does not allow spaces in the color value. *
[#1010](https://github.com/ckeditor/ckeditor-dev/issues/1010): Fixed: The CSS
`border` shorthand property was incorrectly expanded ignoring the `border-color`
style. * [#1535](https://github.com/ckeditor/ckeditor-dev/issues/1535): Fixed:
[Widget](https://ckeditor.com/cke4/addon/widget) mouseover border contrast is
insufficient. * [#1516](https://github.com/ckeditor/ckeditor-dev/issues/1516):
Fixed: Fake selection allows removing content in read-only mode using the
<kbd>Backspace</kbd> and <kbd>Delete</kbd> keys. *
[#1570](https://github.com/ckeditor/ckeditor-dev/issues/1570): Fixed: Fake
selection allows cutting content in read-only mode using the
<kbd>Ctrl</kbd>/<kbd>Cmd</kbd> + <kbd>X</kbd> keys. *
[#1363](https://github.com/ckeditor/ckeditor-dev/issues/1363): Fixed: Paste
notification is unclear and it might confuse users. API Changes: *
[#1346](https://github.com/ckeditor/ckeditor-dev/issues/1346): [Balloon
Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) [context manager API](h
ttps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.plugins.balloontoolb…
ntextManager.html) is now available in the [`pluginDefinition.init()`](https://c
keditor.com/docs/ckeditor4/latest/api/CKEDITOR_pluginDefinition.html#method-
init) method of the [requiring](https://ckeditor.com/docs/ckeditor4/latest/api/C
KEDITOR_pluginDefinition.html#property-requires) plugin. *
[#1530](https://github.com/ckeditor/ckeditor-dev/issues/1530): Added the
possibility to use custom icons for [buttons](https://ckeditor.com/docs/ckeditor
4/latest/api/CKEDITOR_ui_button.html.html). Other Changes: * Updated
[SCAYT](https://ckeditor.com/cke4/addon/scayt) (Spell Check As You Type) and
[WebSpellChecker](https://ckeditor.com/cke4/addon/wsc) (WSC) plugins: *
SCAYT [`scayt_minWordLength`](https://ckeditor.com/docs/ckeditor4/latest/api/CKE
DITOR_config.html#scayt_minWordLength) configuration option now defaults to 3
instead of 4. * SCAYT default number of suggested words in the context
menu changed to 3. * [#90](https://github.com/WebSpellChecker/ckeditor-
plugin-scayt/issues/90): Fixed: Selection is lost on link creation if SCAYT
highlights the word. * Fixed: SCAYT crashes when the browser
`localStorage` is disabled. * [IE11] Fixed: `Unable to get property type
of undefined or null reference` error in the browser console when SCAYT is
disabled/enabled. * [#46](https://github.com/WebSpellChecker/ckeditor-
plugin-wsc/issues/46): Fixed: Editing is blocked when remote spell checker
server is offline. * Fixed: User Dictionary cannot be created in WSC due
to `You already have the dictionary` error. * Fixed: Words with
apostrophe `'` on the replacement make the WSC dialog inaccessible. *
Fixed: SCAYT/WSC causes the `Uncaught TypeError` error in the browser console. *
[#1337](https://github.com/ckeditor/ckeditor-dev/issues/1337): Updated the
samples layout with the new CKEditor 4 logo and color scheme. *
[#1591](https://github.com/ckeditor/ckeditor-dev/issues/1591): CKBuilder and
language tools are now downloaded over HTTPS. Thanks to [August
Detlefsen](https://github.com/augustd)! ## CKEditor 4.8 **Important Notes:**
* [#1249](https://github.com/ckeditor/ckeditor-dev/issues/1249): Enabled the
[Upload Image](https://ckeditor.com/cke4/addon/uploadimage) plugin by default in
standard and full presets. Also, it will no longer log an error in case of
missing [`config.imageUploadUrl`](https://ckeditor.com/docs/ckeditor4/latest/api
/CKEDITOR_config.html#cfg-imageUploadUrl) property. New Features: *
[#933](https://github.com/ckeditor/ckeditor-dev/issues/933): Introduced [Balloon
Toolbar](https://ckeditor.com/cke4/addon/balloontoolbar) plugin. *
[#662](https://github.com/ckeditor/ckeditor-dev/issues/662): Introduced image
inlining for the [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) plugin. *
[#468](https://github.com/ckeditor/ckeditor-dev/issues/468): [Edge] Introduced
support for the Clipboard API. * [#607](https://github.com/ckeditor/ckeditor-
dev/issues/607): Manually inserted Hex color is prefixed with a hash character
(`#`) if needed. It ensures a valid Hex color value is used when setting the
table cell border or background color with the [Color
Dialog](https://ckeditor.com/cke4/addon/colordialog) window. *
[#584](https://github.com/ckeditor/ckeditor-dev/issues/584): [Font size and
Family](https://ckeditor.com/cke4/addon/font) and
[Format](https://ckeditor.com/cke4/addon/format) drop-downs are not toggleable
anymore. Default option to reset styles added. *
[#856](https://github.com/ckeditor/ckeditor-dev/issues/856): Introduced the [`CK
EDITOR.tools.keystrokeToArray()`](https://ckeditor.com/docs/ckeditor4/lates…
/CKEDITOR_tools.html#method-keystrokeToArray) method. It converts a keystroke
into its string representation, returning every key name as a separate array
element. * [#1053](https://github.com/ckeditor/ckeditor-dev/issues/1053):
Introduced the [`CKEDITOR.tools.object.merge()`](https://ckeditor.com/docs/ckedi
tor4/latest/api/CKEDITOR_tools_object.html#method-merge) method. It allows to
merge two objects, returning the new object with all properties from both
objects deeply cloned. * [#1073](https://github.com/ckeditor/ckeditor-
dev/issues/1073): Introduced the [`CKEDITOR.tools.array.every()`](https://ckedit
or.com/docs/ckeditor4/latest/api/CKEDITOR_tools_array.html#method-every) method.
It invokes a given test function on every array element and returns `true` if
all elements pass the test. Fixed Issues: *
[#796](https://github.com/ckeditor/ckeditor-dev/issues/796): Fixed: A list is
pasted from OneNote in the reversed order. *
[#834](https://github.com/ckeditor/ckeditor-dev/issues/834): [IE9-11] Fixed: The
editor does not save the selected state of radio buttons inserted by the [Form
Elements](https://ckeditor.com/cke4/addon/forms) plugin. *
[#704](https://github.com/ckeditor/ckeditor-dev/issues/704): [Edge] Fixed: Using
<kbd>Ctrl</kbd>/<kbd>Cmd</kbd> + <kbd>Z</kbd> breaks widget structure. *
[#591](https://github.com/ckeditor/ckeditor-dev/issues/591): Fixed: A column is
inserted in a wrong order inside the table if any cell has a vertical split. *
[#787](https://github.com/ckeditor/ckeditor-dev/issues/787): Fixed: Using Cut
inside a nested table does not cut the selected content. *
[#842](https://github.com/ckeditor/ckeditor-dev/issues/842): Fixed: List style
not restored when toggling list indent level in the [Indent
List](https://ckeditor.com/cke4/addon/indentlist) plugin. *
[#711](https://github.com/ckeditor/ckeditor-dev/issues/711): Fixed: Dragging
widgets should only work with the left mouse button. *
[#862](https://github.com/ckeditor/ckeditor-dev/issues/862): Fixed: The "Object
Styles" group in the [Styles Combo](https://ckeditor.com/cke4/addon/stylescombo)
plugin is visible only if the whole element is selected. *
[#994](https://github.com/ckeditor/ckeditor-dev/pull/994): Fixed: Typo in the [`
CKEDITOR.focusManager.focus()`](https://ckeditor.com/docs/ckeditor4/latest/…
KEDITOR_focusManager.html#method-focus) API documentation. Thanks to
[benjy](https://github.com/benjy)! *
[#1014](https://github.com/ckeditor/ckeditor-dev/issues/1014): Fixed: The [Table
Tools](https://ckeditor.com/cke4/addon/tabletools) Cell Properties dialog is now
[Advanced Content
Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_acf.html) aware
— it is not possible to change the cell width or height if corresponding
styles are disabled. * [#877](https://github.com/ckeditor/ckeditor-
dev/issues/877): Fixed: A list with custom bullets with exotic characters
crashes the editor when [pasted from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#605](https://github.com/ckeditor/ckeditor-dev/issues/605): Fixed: Inline
widgets do not preserve trailing spaces. *
[#1008](https://github.com/ckeditor/ckeditor-dev/issues/1008): Fixed: Shorthand
Hex colors from the [`config.colorButton_colors`](https://ckeditor.com/docs/cked
itor4/latest/api/CKEDITOR_config.html#cfg-colorButton_colors) option are not
correctly highlighted in the [Color
Button](https://ckeditor.com/cke4/addon/colorbutton) Text Color or Background
Color panel. * [#1094](https://github.com/ckeditor/ckeditor-dev/issues/1094):
Fixed: Widget definition [`upcast`](https://ckeditor.com/docs/ckeditor4/latest/a
pi/CKEDITOR_plugins_widget_definition.html#property-upcasts) methods are called
for every element. * [#1057](https://github.com/ckeditor/ckeditor-
dev/issues/1057): Fixed: The
[Notification](https://ckeditor.com/addon/notification) plugin overwrites Web
Notifications API due to leakage to the global scope. *
[#1068](https://github.com/ckeditor/ckeditor-dev/issues/1068): Fixed: Upload
widget paste listener ignores changes to the [`uploadWidgetDefinition`](https://
ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.fileTools.uploadWidgetDefin…
.html). * [#921](https://github.com/ckeditor/ckeditor-dev/issues/921): Fixed:
[Edge] CKEditor erroneously perceives internal copy and paste as type
"external". * [#1213](https://github.com/ckeditor/ckeditor-dev/issues/1213):
Fixed: Multiple images uploaded using [Upload
Image](https://ckeditor.com/cke4/addon/uploadimage) plugin are randomly
duplicated or mangled. * [#532](https://github.com/ckeditor/ckeditor-
dev/issues/532): Fixed: Removed an outdated user guide link from the
[About](https://ckeditor.com/cke4/addon/about) dialog. *
[#1221](https://github.com/ckeditor/ckeditor-dev/issues/1221): Fixed: Invalid
CSS loaded by [Balloon Panel](https://ckeditor.com/cke4/addon/balloonpanel)
plugin when [`config.skin`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDI
TOR_config.html#cfg-skin) is loaded using a custom path. *
[#522](https://github.com/ckeditor/ckeditor-dev/issues/522): Fixed: Widget
selection is not removed when widget is inside table cell with [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin enabled. *
[#1027](https://github.com/ckeditor/ckeditor-dev/issues/1027): Fixed: Cannot add
multiple images to the table with [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin in certain
situations. * [#1069](https://github.com/ckeditor/ckeditor-dev/issues/1069):
Fixed: Wrong shape processing by [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) plugin. *
[#995](https://github.com/ckeditor/ckeditor-dev/issues/995): Fixed: Hyperlinked
image gets inserted twice by [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) plugin. *
[#1287](https://github.com/ckeditor/ckeditor-dev/issues/1287): Fixed:
[Widget](https://ckeditor.com/cke4/addon/widget) plugin throws exception if
included in editor build but not loaded into editor's instance. API Changes: *
[#1097](https://github.com/ckeditor/ckeditor-dev/issues/1097): Widget [`upcast`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_widget_defi…
on.html#property-upcast) methods are now called in the [widget definition's](htt
ps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_widget.html#pr…
y-definition) context. * [#1118](https://github.com/ckeditor/ckeditor-
dev/issues/1118): Added the `show` option in the [`balloonPanel.attach()`](https
://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_ui_balloonPanel.html#method-
attach) method, allowing to attach a hidden [Balloon
Panel](https://ckeditor.com/cke4/addon/balloonpanel) instance. *
[#1145](https://github.com/ckeditor/ckeditor-dev/issues/1145): Added the [`skipN
otifications`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_file…
_uploadWidgetDefinition.html#property-skipNotifications) option to the [`CKEDITO
R.fileTools.uploadWidgetDefinition`](https://ckeditor.com/docs/ckeditor4/la…
api/CKEDITOR.fileTools.uploadWidgetDefinition.html), allowing to switch off
default notifications displayed by upload widgets. Other Changes: *
[#815](https://github.com/ckeditor/ckeditor-dev/issues/815): Removed Node.js
dependency from the CKEditor build script. *
[#1041](https://github.com/ckeditor/ckeditor-dev/pull/1041),
[#1131](https://github.com/ckeditor/ckeditor-dev/issues/1131): Updated URLs
pointing to [CKSource](https://cksource.com/) and
[CKEditor](https://ckeditor.com/) resources after the launch of new websites.
## CKEditor 4.7.3 New Features: * [#568](https://github.com/ckeditor/ckeditor-
dev/issues/568): Added possibility to adjust nested editables' filters using the
[`CKEDITOR.filter.disallowedContent`](https://ckeditor.com/docs/ckeditor4/latest
/api/CKEDITOR_filter.html#property-disallowedContent) property. Fixed Issues:
* [#554](https://github.com/ckeditor/ckeditor-dev/issues/554): Fixed: [`change`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#event-
change) event not fired when typing the first character after pasting into the
editor. Thanks to [Daniel Miller](https://github.com/millerdev)! *
[#566](https://github.com/ckeditor/ckeditor-dev/issues/566): Fixed: The CSS
`border` shorthand property with zero width (`border: 0px solid #000;`) causes
the table to have the border attribute set to 1. *
[#779](https://github.com/ckeditor/ckeditor-dev/issues/779): Fixed: The [Remove
Format](https://ckeditor.com/cke4/addon/removeformat) plugin removes elements
with language definition inserted by the
[Language](https://ckeditor.com/cke4/addon/language) plugin. *
[#423](https://github.com/ckeditor/ckeditor-dev/issues/423): Fixed: The [Paste
from Word](https://ckeditor.com/cke4/addon/pastefromword) plugin pastes
paragraphs into the editor even if [`CKEDITOR.config.enterMode`](https://ckedito
r.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-enterMode) is set to
`CKEDITOR.ENTER_BR`. * [#719](https://github.com/ckeditor/ckeditor-
dev/issues/719): Fixed: Image inserted using the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) plugin can be resized when the
editor is in [read-only
mode](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_readonly.html). *
[#577](https://github.com/ckeditor/ckeditor-dev/issues/577): Fixed: The "Delete
Columns" command provided by the [Table
Tools](https://ckeditor.com/cke4/addon/tabletools) plugin throws an error when
trying to delete columns. * [#867](https://github.com/ckeditor/ckeditor-
dev/issues/867): Fixed: Typing into a selected table throws an error. *
[#817](https://github.com/ckeditor/ckeditor-dev/issues/817): Fixed: The
[Save](https://ckeditor.com/cke4/addon/save) plugin does not work in [Source
Mode](https://ckeditor.com/cke4/addon/sourcearea). Other Changes: * Updated
the [WebSpellChecker](https://ckeditor.com/cke4/addon/wsc) plugin: *
[#40](https://github.com/WebSpellChecker/ckeditor-plugin-wsc/issues/40): Fixed:
IE10 throws an error when spell checking is started. *
[#800](https://github.com/ckeditor/ckeditor-dev/issues/800): Added the [`CKEDITO
R.dom.selection.isCollapsed()`](https://ckeditor.com/docs/ckeditor4/latest/…
KEDITOR_dom_selection.html#method-isCollapsed) method which is a simpler way to
check if the selection is collapsed. *
[#830](https://github.com/ckeditor/ckeditor-dev/issues/830): Added an option to
define which dialog tab should be shown by default when creating [`CKEDITOR.dial
ogCommand`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.dialogC…
d.html). ## CKEditor 4.7.2 New Features: *
[#455](https://github.com/ckeditor/ckeditor-dev/issues/455): Added [Advanced
Content Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_acf.html)
integration with the [Justify](https://ckeditor.com/cke4/addon/justify) plugin.
Fixed Issues: * [#663](https://github.com/ckeditor/ckeditor-dev/issues/663):
[Chrome] Fixed: Clicking the scrollbar throws an `Uncaught TypeError: element.is
is not a function` error. * [#694](https://github.com/ckeditor/ckeditor-
dev/pull/694): Refactoring in the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin: *
[#520](https://github.com/ckeditor/ckeditor-dev/issues/520): Fixed: Widgets
cannot be properly pasted into a table cell. *
[#460](https://github.com/ckeditor/ckeditor-dev/issues/460): Fixed: Editor gone
after pasting into an editor within a table. *
[#579](https://github.com/ckeditor/ckeditor-dev/issues/579): Fixed: Internal
`cke_table-faked-selection-table` class is visible in the Stylesheet Classes
field of the [Table Properties](https://ckeditor.com/cke4/addon/table) dialog. *
[#545](https://github.com/ckeditor/ckeditor-dev/issues/545): [Edge] Fixed: Error
thrown when pressing the [Select All](https://ckeditor.com/cke4/addon/selectall)
button in [Source Mode](https://ckeditor.com/cke4/addon/sourcearea). *
[#582](https://github.com/ckeditor/ckeditor-dev/issues/582): Fixed: Double slash
in the path to stylesheet needed by the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin. Thanks to
[Marius Dumitru Florea](https://github.com/mflorea)! *
[#491](https://github.com/ckeditor/ckeditor-dev/issues/491): Fixed: Unnecessary
dependency on the [Editor Toolbar](https://ckeditor.com/cke4/addon/toolbar)
plugin inside the [Notification](https://ckeditor.com/cke4/addon/notification)
plugin. * [#646](https://github.com/ckeditor/ckeditor-dev/issues/646): Fixed:
Error thrown into the browser console after opening the [Styles
Combo](https://ckeditor.com/cke4/addon/stylescombo) plugin menu in the editor
without any selection. * [#501](https://github.com/ckeditor/ckeditor-
dev/issues/501): Fixed: Double click does not open the dialog for modifying
anchors inserted via the [Link](https://ckeditor.com/cke4/addon/link) plugin. *
[#9780](https://dev.ckeditor.com/ticket/9780): [IE8-9] Fixed: Clicking inside an
empty [read-only](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor
.html#property-readOnly) editor throws an error. *
[#16820](https://dev.ckeditor.com/ticket/16820): [IE10] Fixed: Clicking below a
single horizontal rule throws an error. *
[#426](https://github.com/ckeditor/ckeditor-dev/issues/426): Fixed: The [`range.
cloneContents()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_d…
nge.html#method-cloneContents) method selects the whole element when the
selection starts at the beginning of that element. *
[#644](https://github.com/ckeditor/ckeditor-dev/issues/644): Fixed: The [`range.
extractContents()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR…
range.html#method-extractContents) method returns an incorrect result when
multiple nodes are selected. * [#684](https://github.com/ckeditor/ckeditor-
dev/issues/684): Fixed: The [`elementPath.contains()`](https://ckeditor.com/docs
/ckeditor4/latest/api/CKEDITOR_dom_elementPath.html#method-contains) method
incorrectly excludes the last element instead of root when the `fromTop`
parameter is set to `true`. Other Changes: * Updated the
[SCAYT](https://ckeditor.com/cke4/addon/scayt) (Spell Check As You Type) plugin:
* [#148](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/148):
Fixed: SCAYT leaves underlined word after the CKEditor Replace dialog corrects
it. * [#751](https://github.com/ckeditor/ckeditor-dev/issues/751): Added the [`C
KEDITOR.dom.nodeList.toArray()`](https://ckeditor.com/docs/ckeditor4/latest…
CKEDITOR_dom_nodeList.html#method-toArray) method which returns an array
representation of a [node list](https://ckeditor.com/docs/ckeditor4/latest/api/C
KEDITOR.dom.nodeList.html). ## CKEditor 4.7.1 New Features: * Added a new
Mexican Spanish localization. Thanks to [David Alexandro
Rodriguez](https://www.transifex.com/user/profile/darsco16/)! *
[#413](https://github.com/ckeditor/ckeditor-dev/issues/413): Added Paste as
Plain Text keyboard shortcut to the [Accessibility
Help](https://ckeditor.com/cke4/addon/a11yhelp) instructions. Fixed Issues: *
[#515](https://github.com/ckeditor/ckeditor-dev/issues/515): [Chrome] Fixed:
Mouse actions on CKEditor scrollbar throw an exception when the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin is loaded. *
[#493](https://github.com/ckeditor/ckeditor-dev/issues/493): Fixed: Selection
started from a nested table causes an error in the browser while scrolling down.
* [#415](https://github.com/ckeditor/ckeditor-dev/issues/415): [Firefox] Fixed:
<kbd>Enter</kbd> key breaks the table structure when pressed in a table
selection. * [#457](https://github.com/ckeditor/ckeditor-dev/issues/457): Fixed:
Error thrown when deleting content from the editor with no selection. *
[#478](https://github.com/ckeditor/ckeditor-dev/issues/478): [Chrome] Fixed:
Error thrown by the [Enter Key](https://ckeditor.com/cke4/addon/enterkey) plugin
when pressing <kbd>Enter</kbd> with no selection. *
[#424](https://github.com/ckeditor/ckeditor-dev/issues/424): Fixed: Error thrown
by [Tab Key Handling](https://ckeditor.com/cke4/addon/tab) and [Indent
List](https://ckeditor.com/cke4/addon/indentlist) plugins when pressing
<kbd>Tab</kbd> with no selection in inline editor. *
[#476](https://github.com/ckeditor/ckeditor-dev/issues/476): Fixed: Anchors
inserted with the [Link](https://ckeditor.com/cke4/addon/link) plugin on
collapsed selection cannot be edited. *
[#417](https://github.com/ckeditor/ckeditor-dev/issues/417): Fixed: The [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) plugin throws an error when
used with a table with only header or footer rows. *
[#523](https://github.com/ckeditor/ckeditor-dev/issues/523): Fixed: The [`editor
.getCommandKeystroke()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR
_editor.html#method-getCommandKeystroke) method does not obtain the correct
keystroke. * [#534](https://github.com/ckeditor/ckeditor-dev/issues/534): [IE]
Fixed: [Paste from Word](https://ckeditor.com/cke4/addon/pastefromword) does not
work in Quirks Mode. * [#450](https://github.com/ckeditor/ckeditor-
dev/issues/450): Fixed: [`CKEDITOR.filter`](https://ckeditor.com/docs/ckeditor4/
latest/api/CKEDITOR.filter.html) incorrectly transforms the `margin` CSS
property. ## CKEditor 4.7 **Important Notes:** *
[#13793](https://dev.ckeditor.com/ticket/13793): The [`embed_provider`](https://
ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-embed_provi…)
configuration option for the [Media
Embed](https://ckeditor.com/cke4/addon/embed) and [Semantic Media
Embed](https://ckeditor.com/cke4/addon/embedsemantic) plugins is no longer
preset by default. * The [UI Color](https://ckeditor.com/cke4/addon/uicolor)
plugin now uses a custom color picker instead of the `YUI 2.7.0` library which
has some known vulnerabilities (it's a security precaution, there was no
security issue in CKEditor due to the way it was used). New Features: *
[#16755](https://dev.ckeditor.com/ticket/16755): Added the [Table
Selection](https://ckeditor.com/cke4/addon/tableselection) plugin that lets you
select and manipulate an arbitrary rectangular table fragment (a few cells, a
row or a column). * [#16961](https://dev.ckeditor.com/ticket/16961): Added
support for pasting from Microsoft Excel. *
[#13381](https://dev.ckeditor.com/ticket/13381): Dynamic code evaluation call in
[`CKEDITOR.template`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.te
mplate.html) removed. CKEditor can now be used without the `unsafe-eval` Content
Security Policy. Thanks to [Caridy Pati��o](http://caridy.name)! *
[#16971](https://dev.ckeditor.com/ticket/16971): Added support for color in the
`background` property containing also other styles for table cells in the [Table
Tools](https://ckeditor.com/cke4/addon/tabletools) plugin. *
[#16847](https://dev.ckeditor.com/ticket/16847): Added support for parsing and
inlining any formatting created using the Microsoft Word style system to the
[Paste from Word](https://ckeditor.com/cke4/addon/pastefromword) plugin. *
[#16818](https://dev.ckeditor.com/ticket/16818): Added table cell height parsing
in the [Paste from Word](https://ckeditor.com/cke4/addon/pastefromword) plugin.
* [#16850](https://dev.ckeditor.com/ticket/16850): Added a new [`config.enableCo
ntextMenu`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.…
cfg-enableContextMenu) configuration option for enabling and disabling the
[context menu](https://ckeditor.com/cke4/addon/contextmenu). *
[#16937](https://dev.ckeditor.com/ticket/16937): The `command` parameter in [`CK
EDITOR.editor.getCommandKeystroke()`](https://ckeditor.com/docs/ckeditor4/l…
/api/CKEDITOR_editor.html#method-getCommandKeystroke) now also accepts a command
name as an argument. * [#17010](https://dev.ckeditor.com/ticket/17010): The [`CK
EDITOR.dom.range.shrink()`](https://ckeditor.com/docs/ckeditor4/latest/api/…
TOR_dom_range.html#method-shrink) method now allows for skipping bogus `<br>`
elements. Fixed Issues: * [#16935](https://dev.ckeditor.com/ticket/16935):
[Chrome] Fixed: Blurring the editor in [Source
Mode](https://ckeditor.com/cke4/addon/sourcearea) throws an error. *
[#16825](https://dev.ckeditor.com/ticket/16825): [Chrome] Fixed: Error thrown
when destroying a focused inline editor. *
[#16857](https://dev.ckeditor.com/ticket/16857): Fixed: <kbd>Ctrl+Shift+V</kbd>
blocked by [Copy Formatting](https://ckeditor.com/cke4/addon/copyformatting). *
[#16845](https://dev.ckeditor.com/ticket/16845): [IE] Fixed: Cursor jumps to the
top of the scrolled editor after focusing it when the [Copy
Formatting](https://ckeditor.com/cke4/addon/copyformatting) plugin is enabled. *
[#16786](https://dev.ckeditor.com/ticket/16786): Fixed: Added missing
translations for the [Copy
Formatting](https://ckeditor.com/cke4/addon/copyformatting) plugin. *
[#14714](https://dev.ckeditor.com/ticket/14714): [WebKit/Blink] Fixed: Exception
thrown on refocusing a blurred inline editor. *
[#16913](https://dev.ckeditor.com/ticket/16913): [Firefox, IE] Fixed: [Paste as
Plain Text](https://ckeditor.com/cke4/addon/pastetext) keystroke does not work.
* [#16968](https://dev.ckeditor.com/ticket/16968): Fixed: [Safari] [Paste as
Plain Text](https://ckeditor.com/cke4/addon/pastetext) is not handled by the
editor. * [#16912](https://dev.ckeditor.com/ticket/16912): Fixed: Exception
thrown when a single image is pasted using [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#16821](https://dev.ckeditor.com/ticket/16821): Fixed: Extraneous `<span>`
elements with `height` style stacked when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#16866](https://dev.ckeditor.com/ticket/16866): [IE, Edge] Fixed: Whitespaces
not preserved when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#16860](https://dev.ckeditor.com/ticket/16860): Fixed: Paragraphs which only
look like lists incorrectly transformed into them when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#16817](https://dev.ckeditor.com/ticket/16817): Fixed: When [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword), paragraphs are transformed
into lists with some corrupted data. *
[#16833](https://dev.ckeditor.com/ticket/16833): [IE11] Fixed: Malformed list
with headers [pasted from Word](https://ckeditor.com/cke4/addon/pastefromword).
* [#16826](https://dev.ckeditor.com/ticket/16826): [IE] Fixed: Superfluous
paragraphs within lists [pasted from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#12465](https://dev.ckeditor.com/ticket/12465): Fixed: Cannot change the state
of checkboxes or radio buttons if the properties dialog was invoked with a
double-click. * [#13062](https://dev.ckeditor.com/ticket/13062): Fixed:
Impossible to unlink when the caret is at the edge of the link. *
[#13585](https://dev.ckeditor.com/ticket/13585): Fixed: Error when wrapping two
adjacent `<div>` elements with a `<div>`. *
[#16811](https://dev.ckeditor.com/ticket/16811): Fixed: Table alignment is not
preserved by the [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) plugin. *
[#16810](https://dev.ckeditor.com/ticket/16810): Fixed: Vertical align in tables
is not supported by the [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) plugin. *
[#11956](https://dev.ckeditor.com/ticket/11956): [Blink, IE] Fixed:
[Link](https://ckeditor.com/cke4/addon/link) dialog does not open on a double
click on the second word of the link with a background color or other styles. *
[#10472](https://dev.ckeditor.com/ticket/10472): Fixed: Unable to use [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) on table header and footer.
* [#14762](https://dev.ckeditor.com/ticket/14762): Fixed: Hovering over an empty
table (without rows or cells) throws an error when the [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) plugin is active. *
[#16777](https://dev.ckeditor.com/ticket/16777): [Edge] Fixed: The
[Clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin does not allow to
drop widgets into the editor. * [#14894](https://dev.ckeditor.com/ticket/14894):
[Chrome] Fixed: The editor scrolls to the top after focusing or when a dialog is
opened. * [#14769](https://dev.ckeditor.com/ticket/14769): Fixed: URLs with '-'
in host are not detected by the [Auto
Link](https://ckeditor.com/cke4/addon/autolink) plugin. *
[#16804](https://dev.ckeditor.com/ticket/16804): Fixed: Focus is not on the
first menu item when the user opens a context menu or a drop-down list from the
editor toolbar. * [#14407](https://dev.ckeditor.com/ticket/14407): [IE] Fixed:
Non-editable widgets can be edited. *
[#16927](https://dev.ckeditor.com/ticket/16927): Fixed: An error thrown if a
bundle containing the [Color
Button](https://ckeditor.com/cke4/addon/colorbutton) plugin is run in ES5 strict
mode. Thanks to [Igor Rubinovich](https://github.com/IgorRubinovich)! *
[#16920](https://dev.ckeditor.com/ticket/16920): Fixed: Several plugins not
using the [Dialog](https://ckeditor.com/cke4/addon/dialog) plugin as a direct
dependency. * [PR#336](https://github.com/ckeditor/ckeditor-dev/pull/336):
Fixed: Typo in [`CKEDITOR.getCss()`](https://ckeditor.com/docs/ckeditor4/latest/
api/CKEDITOR.html#method-getCss) API documentation. Thanks to
[knusperpixel](https://github.com/knusperpixel)! *
[#17027](https://dev.ckeditor.com/ticket/17027): Fixed: Command event data
should be initialized as an empty object. * Fixed the behavior of HTML parser
when parsing `src`/`srcdoc` attributes of the `<iframe>` element in a CKEditor
setup with ACF turned off and without the [Iframe
Dialog](https://ckeditor.com/cke4/addon/iframe) plugin. The issue was originally
reported as a security issue by [Sriramk21](https://twitter.com/sriramk21) from
Pegasystems and was later downgraded by the security team into a normal issue
due to the requirement of having ACF turned off. Disabling [Advanced Content Fil
ter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_content_…
r.html) is against [security best practices](https://ckeditor.com/docs/ckeditor4
/latest/guide/dev_best_practices.html#security), so the problem described above
has not been considered a security issue as such. Other Changes: * Updated
[SCAYT](https://ckeditor.com/cke4/addon/scayt) (Spell Check As You Type) and
[WebSpellChecker](https://ckeditor.com/cke4/addon/wsc) plugins: * Fixed:
DOM Exception after clicking "Remove Language" on a selected word with enabled
[Language](https://ckeditor.com/cke4/addon/language) plugin in SCAYT. *
[#16958](https://dev.ckeditor.com/ticket/16958): Switched the default MathJax
CDN provider for the [Mathematical
Formulas](https://ckeditor.com/cke4/addon/mathjax) plugin from `cdn.mathjax.org`
to [cdnjs](https://cdnjs.com/), due to closing of `cdn.mathjax.org` scheduled
for April 30, 2017. * [#16954](https://dev.ckeditor.com/ticket/16954): Removed
the paste dialog. * [#16982](https://dev.ckeditor.com/ticket/16982): Latest
Safari now supports enhanced Clipboard API introduced in CKEditor 4.5.0. *
[#17025](https://dev.ckeditor.com/ticket/17025): Updated
[Bender.js](https://github.com/benderjs/benderjs) to 0.4.2. ## CKEditor 4.6.2
New Features: * [#16733](https://dev.ckeditor.com/ticket/16733): Added a new
pastel color palette for the [Color
Button](https://ckeditor.com/cke4/addon/colorbutton) plugin and a new [`config.c
olorButton_colorsPerRow`](https://ckeditor.com/docs/ckeditor4/latest/api/CK…
R_config.html#cfg-colorButton_colorsPerRow) configuration option for setting the
number of rows in the color selector. *
[#16752](https://dev.ckeditor.com/ticket/16752): Added a new Azerbaijani
localization. Thanks to the [Azerbaijani language
team](https://www.transifex.com/ckeditor/teams/11143/az/)! *
[#13818](https://dev.ckeditor.com/ticket/13818): It is now possible to group
[Widget](https://ckeditor.com/cke4/addon/widget) [style definitions](https://cke
ditor.com/docs/ckeditor4/latest/guide/dev_styles.html#widget-styles) so
applying one style disables the other. Fixed Issues: *
[#13446](https://dev.ckeditor.com/ticket/13446): [Chrome] Fixed: It is possible
to type in an unfocused inline editor. *
[#14856](https://dev.ckeditor.com/ticket/14856): Fixed: [Font size and font
family](https://ckeditor.com/cke4/addon/font) reset each other when modified at
certain positions. * [#16745](https://dev.ckeditor.com/ticket/16745): [Edge]
Fixed: List items are lost when [pasted from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#16682](https://dev.ckeditor.com/ticket/16682): [Edge] Fixed: A list gets
[pasted from Word](https://ckeditor.com/cke4/addon/pastefromword) as a set of
paragraphs. Added the [`config.pasteFromWord_heuristicsEdgeList`](https://ckedit
or.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
pasteFromWord_heuristicsEdgeList) configuration option. *
[#10373](https://dev.ckeditor.com/ticket/10373): Fixed: Context menu items can
be dragged into the editor. * [#16728](https://dev.ckeditor.com/ticket/16728):
[IE] Fixed: [Copy Formatting](https://ckeditor.com/cke4/addon/copyformatting)
breaks the editor in Quirks Mode. *
[#16795](https://dev.ckeditor.com/ticket/16795): [IE] Fixed: [Copy
Formatting](https://ckeditor.com/cke4/addon/copyformatting) breaks the editor in
Compatibility Mode. * [#16675](https://dev.ckeditor.com/ticket/16675): Fixed:
Styles applied with [Copy
Formatting](https://ckeditor.com/cke4/addon/copyformatting) to a single table
cell are applied to the whole table. *
[#16753](https://dev.ckeditor.com/ticket/16753): Fixed: [`element.setSize()`](ht
tps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_element.html#meth…
setSize) sets incorrect editor dimensions if the border width is represented as
a fraction of pixels. * [#16705](https://dev.ckeditor.com/ticket/16705):
[Firefox] Fixed: Unable to paste images as Base64 strings when using
[Clipboard](https://ckeditor.com/cke4/addon/clipboard). *
[#14869](https://dev.ckeditor.com/ticket/14869): Fixed: JavaScript error is
thrown when trying to use [Find](https://ckeditor.com/cke4/addon/find) in a
[`<div>`-based editor](https://ckeditor.com/cke4/addon/divarea). ## CKEditor
4.6.1 New Features: * [#16639](https://dev.ckeditor.com/ticket/16639): The
`callback` parameter in the [`CKEDITOR.ajax.post()`](https://ckeditor.com/docs/c
keditor4/latest/api/CKEDITOR_ajax.html#method-post) method became optional.
Fixed Issues: * [#11064](https://dev.ckeditor.com/ticket/11064): [Blink,
WebKit] Fixed: Cannot select all editor content when a widget or a non-editable
element is the first or last element of the content. Also fixes this issue in
the [Select All](https://ckeditor.com/cke4/addon/selectall) plugin. *
[#14755](https://dev.ckeditor.com/ticket/14755): [Blink, WebKit, IE8] Fixed:
Browser hangs when a table is inserted in the place of a selected list with an
empty last item. * [#16624](https://dev.ckeditor.com/ticket/16624): Fixed:
Improved the [Color Button](https://ckeditor.com/cke4/addon/colorbutton) plugin
which will now normalize the CSS `background` property if it only contains a
color value. This fixes missing background colors when using [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#16600](https://dev.ckeditor.com/ticket/16600): [Blink, WebKit] Fixed: Error
thrown occasionally by an uninitialized editable for multiple CKEditor instances
on the same page. ## CKEditor 4.6 New Features: *
[#14569](https://dev.ckeditor.com/ticket/14569): Added a new, flat, default
CKEditor skin called [Moono-Lisa](https://ckeditor.com/cke4/addon/moono-lisa).
Refreshed default colors available in the [Color
Button](https://ckeditor.com/cke4/addon/colorbutton) plugin ([Text Color and
Background
Color](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_colorbutton.htm…
feature). * [#14707](https://dev.ckeditor.com/ticket/14707): Added a new [Copy
Formatting](https://ckeditor.com/cke4/addon/copyformatting) feature to enable
easy copying of styles between your document parts. * Introduced the completely
rewritten [Paste from Word](https://ckeditor.com/cke4/addon/pastefromword)
plugin: * Backward incompatibility: The [`config.pasteFromWordRemoveFont
Styles`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.htm…
-pasteFromWordRemoveFontStyles) option now defaults to `false`. This option will
be deprecated in the future. Use [Advanced Content
Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_acf.html) to
replicate the effect of setting it to `true`. * Backward
incompatibility: The [`config.pasteFromWordNumberedHeadingToList`](https://ckedi
tor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
pasteFromWordNumberedHeadingToList) and [`config.pasteFromWordRemoveStyles`](htt
ps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
pasteFromWordRemoveStyles) options were dropped and no longer have any effect on
pasted content. * Major improvements in preservation of list numbering,
styling and indentation (nested lists with multiple levels). * Major
improvements in document structure parsing that fix plenty of issues with
distorted or missing content after paste. * Added new translation: Occitan.
Thanks to [C��dric Valmary](https://totenoc.eu/)! *
[#10015](https://dev.ckeditor.com/ticket/10015): Keyboard shortcuts (relevant to
the operating system in use) will now be displayed in tooltips and context
menus. * [#13794](https://dev.ckeditor.com/ticket/13794): The [Upload
Image](https://ckeditor.com/cke4/addon/uploadimage) feature now uses
`uploaded.width/height` if set. *
[#12541](https://dev.ckeditor.com/ticket/12541): Added the [Upload
File](https://ckeditor.com/cke4/addon/uploadfile) plugin that lets you upload a
file by drag&dropping it into the editor content. *
[#14449](https://dev.ckeditor.com/ticket/14449): Introduced the [Balloon
Panel](https://ckeditor.com/cke4/addon/balloonpanel) plugin that lets you create
stylish floating UI elements for the editor. *
[#12077](https://dev.ckeditor.com/ticket/12077): Added support for the HTML5
`download` attribute in link (`<a>`) elements. Selecting the "Force Download"
checkbox in the [Link](https://ckeditor.com/cke4/addon/link) dialog will cause
the linked file to be downloaded automatically. Thanks to
[sbusse](https://github.com/sbusse)! *
[#13518](https://dev.ckeditor.com/ticket/13518): Introduced the [`additionalRequ
estParameters`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_fil…
s_uploadWidgetDefinition.html#property-additionalRequestParameters) property for
file uploads to make it possible to send additional information about the
uploaded file to the server. * [#14889](https://dev.ckeditor.com/ticket/14889):
Added the [`config.image2_altRequired`](https://ckeditor.com/docs/ckeditor4/late
st/api/CKEDITOR_config.html#cfg-image2_altRequired) option for the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) plugin to allow making
alternative text a mandatory field. Thanks to [Andrey
Fedoseev](https://github.com/andreyfedoseev)! Fixed Issues: *
[#9991](https://dev.ckeditor.com/ticket/9991): Fixed: [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) should only normalize input
data. * [#7209](https://dev.ckeditor.com/ticket/7209): Fixed: Lists with 3
levels not [pasted from Word](https://ckeditor.com/cke4/addon/pastefromword)
correctly. * [#14335](https://dev.ckeditor.com/ticket/14335): Fixed: Pasting a
numbered list starting with a value different from "1" from Microsoft Word does
not work correctly. * [#14542](https://dev.ckeditor.com/ticket/14542): Fixed:
Copying a numbered list from Microsoft Word does not preserve list formatting. *
[#14544](https://dev.ckeditor.com/ticket/14544): Fixed: Copying a nested list
from Microsoft Word results in an empty list. *
[#14660](https://dev.ckeditor.com/ticket/14660): Fixed: [Pasting text from
Word](https://ckeditor.com/cke4/addon/pastefromword) breaks the styling in some
cases. * [#14867](https://dev.ckeditor.com/ticket/14867): [Firefox] Fixed: Text
gets stripped when [pasting content from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#2507](https://dev.ckeditor.com/ticket/2507): Fixed: [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) does not detect pasting a
part of a paragraph. * [#3336](https://dev.ckeditor.com/ticket/3336): Fixed:
Extra blank row added on top of the content [pasted from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#6115](https://dev.ckeditor.com/ticket/6115): Fixed: When Right-to-Left text
direction is applied to a table [pasted from
Word](https://ckeditor.com/cke4/addon/pastefromword), borders are missing on one
side. * [#6342](https://dev.ckeditor.com/ticket/6342): Fixed: [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) filters out a basic text
style when it is [configured to use attributes](https://ckeditor.com/docs/ckedit
or4/latest/guide/dev_basicstyles.html#custom-basic-text-style-definition). *
[#6457](https://dev.ckeditor.com/ticket/6457): [IE] Fixed: [Pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword) is extremely slow. *
[#6789](https://dev.ckeditor.com/ticket/6789): Fixed: The `mso-list: ignore`
style is not handled properly when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#7262](https://dev.ckeditor.com/ticket/7262): Fixed: Lists in preformatted body
disappear when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#7662](https://dev.ckeditor.com/ticket/7662): [Opera] Fixed: Extra empty
number/bullet shown in the editor body when editing a multi-level list [pasted
from Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#7807](https://dev.ckeditor.com/ticket/7807): Fixed: Last item in a list not
converted to a `<li>` element after [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#7950](https://dev.ckeditor.com/ticket/7950): [IE] Fixed: Content [from Word
pasted](https://ckeditor.com/cke4/addon/pastefromword) differently than in other
browsers. * [#7982](https://dev.ckeditor.com/ticket/7982): Fixed: Multi-level
lists get split into smaller ones when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#8231](https://dev.ckeditor.com/ticket/8231): [WebKit, Opera] Fixed: [Paste
from Word](https://ckeditor.com/cke4/addon/pastefromword) inserts empty
paragraphs. * [#8266](https://dev.ckeditor.com/ticket/8266): Fixed: [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) inserts a blank line at the
top. * [#8341](https://dev.ckeditor.com/ticket/8341),
[#7646](https://dev.ckeditor.com/ticket/7646): Fixed: Faulty removal of empty
`<span>` elements in [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) content cleanup breaking
content formatting. * [#8754](https://dev.ckeditor.com/ticket/8754): [Firefox]
Fixed: Incorrect pasting of multiple nested lists in [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#8983](https://dev.ckeditor.com/ticket/8983): Fixed: Alignment lost when
[pasting from Word](https://ckeditor.com/cke4/addon/pastefromword) with [`config
.enterMode`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html
#cfg-enterMode) set to [`CKEDITOR.ENTER_BR`](https://ckeditor.com/docs/ckeditor4
/latest/api/CKEDITOR.html#property-ENTER_BR). *
[#9331](https://dev.ckeditor.com/ticket/9331): [IE] Fixed: [Pasting text from
Word](https://ckeditor.com/cke4/addon/pastefromword) creates a simple Caesar
cipher. * [#9422](https://dev.ckeditor.com/ticket/9422): Fixed: [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) leaves an unwanted
`color:windowtext` style. * [#10011](https://dev.ckeditor.com/ticket/10011):
[IE9-10] Fixed: [`config.pasteFromWordRemoveFontStyles`](https://ckeditor.com/do
cs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-pasteFromWordRemoveFontStyles)
is ignored under certain conditions. *
[#10643](https://dev.ckeditor.com/ticket/10643): Fixed: Differences between
using <kbd>Ctrl+V</kbd> and pasting from the [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) dialog. *
[#10784](https://dev.ckeditor.com/ticket/10784): Fixed: Lines missing when
[pasting from Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#11294](https://dev.ckeditor.com/ticket/11294): [IE10] Fixed: Font size is not
preserved when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#11627](https://dev.ckeditor.com/ticket/11627): Fixed: Missing words when
[pasting from Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#12784](https://dev.ckeditor.com/ticket/12784): Fixed: Bulleted list with
custom bullets gets changed to a numbered list when [pasting from
Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#13174](https://dev.ckeditor.com/ticket/13174): Fixed: Data loss after [pasting
from Word](https://ckeditor.com/cke4/addon/pastefromword). *
[#13828](https://dev.ckeditor.com/ticket/13828): Fixed: Widget classes should be
added to the wrapper rather than the widget element. *
[#13829](https://dev.ckeditor.com/ticket/13829): Fixed: No class in
[Widget](https://ckeditor.com/cke4/addon/widget) wrapper to identify the widget
type. * [#13519](https://dev.ckeditor.com/ticket/13519): Server response
received when uploading files should be more flexible. Other Changes: *
Updated [SCAYT](https://ckeditor.com/cke4/addon/scayt) (Spell Check As You Type)
and [WebSpellChecker](https://ckeditor.com/cke4/addon/wsc) plugins: *
Support for the new default Moono-Lisa skin. *
[#121](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/121):
Fixed: [Basic Styles](https://ckeditor.com/cke4/addon/basicstyles) do not work
when SCAYT is enabled. *
[#125](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/125):
Fixed: Inline styles are not continued when writing multiple lines of styled
text with SCAYT enabled. *
[#127](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/127):
Fixed: Uncaught TypeError after enabling SCAYT in the CKEditor `<div>` element.
* [#128](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/128):
Fixed: Error thrown after enabling SCAYT caused by conflicts with RequireJS. ##
CKEditor 4.5.11 **Security Updates:** * [Severity: minor] Fixed the
`target="_blank"` vulnerability reported by James Gaskell. Issue
summary: If a victim had access to a spoofed version of ckeditor.com via HTTP
(e.g. due to DNS spoofing, using a hacked public network or mailicious hotspot),
then when using a link to the ckeditor.com website it was possible for the
attacker to change the current URL of the opening page, even if the opening page
was protected with SSL. An upgrade is recommended. New Features: *
[#14747](https://dev.ckeditor.com/ticket/14747): The [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) caption now supports the link
`target` attribute. * [#7154](https://dev.ckeditor.com/ticket/7154): Added
support for the "Display Text" field to the
[Link](https://ckeditor.com/cke4/addon/link) dialog. Thanks to [Ryan
Guill](https://github.com/ryanguill)! Fixed Issues: *
[#13362](https://dev.ckeditor.com/ticket/13362): [Blink, WebKit] Fixed: Active
widget element is not cached when it is losing focus and it is inside an
editable element. * [#13755](https://dev.ckeditor.com/ticket/13755): [Edge]
Fixed: Pasting images does not work. *
[#13548](https://dev.ckeditor.com/ticket/13548): [IE] Fixed: Clicking the
[elements path](https://ckeditor.com/cke4/addon/elementspath) disables Cut and
Copy icons. * [#13812](https://dev.ckeditor.com/ticket/13812): Fixed: When
aborting file upload the placeholder for image is left. *
[#14659](https://dev.ckeditor.com/ticket/14659): [Blink] Fixed: Content scrolled
to the top after closing the dialog in a [`<div>`-based
editor](https://ckeditor.com/cke4/addon/divarea). *
[#14825](https://dev.ckeditor.com/ticket/14825): [Edge] Fixed: Focusing the
editor causes unwanted scrolling due to dropped support for the `setActive()`
method. ## CKEditor 4.5.10 Fixed Issues: *
[#10750](https://dev.ckeditor.com/ticket/10750): Fixed: The editor does not
escape the `font-style` family property correctly, removing quotes and
whitespace from font names. * [#14413](https://dev.ckeditor.com/ticket/14413):
Fixed: The [Auto Grow](https://ckeditor.com/cke4/addon/autogrow) plugin with the
[`config.autoGrow_onStartup`](https://ckeditor.com/docs/ckeditor4/latest/api/CKE
DITOR_config.html#cfg-autoGrow_onStartup) option set to `true` does not work
properly for an editor that is not visible. *
[#14451](https://dev.ckeditor.com/ticket/14451): Fixed: Numeric element ID not
escaped properly. Thanks to [Jakub Chalupa](https://github.com/chaluja7)! *
[#14590](https://dev.ckeditor.com/ticket/14590): Fixed: Additional line break
appearing after inline elements when switching modes. Thanks to
[dpidcock](https://github.com/dpidcock)! *
[#14539](https://dev.ckeditor.com/ticket/14539): Fixed: JAWS reads "selected
Blank" instead of "selected <widget name>" when selecting a widget. *
[#14701](https://dev.ckeditor.com/ticket/14701): Fixed: More precise labels for
[Enhanced Image](https://ckeditor.com/cke4/addon/image2) and
[Placeholder](https://ckeditor.com/cke4/addon/placeholder) widgets. *
[#14667](https://dev.ckeditor.com/ticket/14667): [IE] Fixed: Removing background
color from selected text removes background color from the whole paragraph. *
[#14252](https://dev.ckeditor.com/ticket/14252): [IE] Fixed: Styles drop-down
list does not always reflect the current style of the text line. *
[#14275](https://dev.ckeditor.com/ticket/14275): [IE9+] Fixed: `onerror` and
`onload` events are not used in browsers it could have been used when loading
scripts dynamically. ## CKEditor 4.5.9 Fixed Issues: *
[#10685](https://dev.ckeditor.com/ticket/10685): Fixed: Unreadable toolbar icons
after updating to the new editor version. Fixed with
[6876179](https://github.com/ckeditor/ckeditor-
dev/commit/6876179db4ee97e786b07b8fd72e6b4120732185) in [ckeditor-
dev](https://github.com/ckeditor/ckeditor-dev) and
[6c9189f4](https://github.com/ckeditor/ckeditor-
presets/commit/6c9189f46392d2c126854fe8889b820b8c76d291) in [ckeditor-
presets](https://github.com/ckeditor/ckeditor-presets). *
[#14573](https://dev.ckeditor.com/ticket/14573): Fixed: Missing
[Widget](https://ckeditor.com/cke4/addon/widget) drag handler CSS when there are
multiple editor instances. * [#14620](https://dev.ckeditor.com/ticket/14620):
Fixed: Setting both the `min-height` style for the `<body>` element and the
`height` style for the `<html>` element breaks the [Auto
Grow](https://ckeditor.com/cke4/addon/autogrow) plugin. *
[#14538](https://dev.ckeditor.com/ticket/14538): Fixed: Keyboard focus goes into
an embedded `<iframe>` element. *
[#14602](https://dev.ckeditor.com/ticket/14602): Fixed: The [`dom.element.remove
Attribute()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_e…
t.html#method-removeAttribute) method does not remove all attributes if no
parameter is given. * [#8679](https://dev.ckeditor.com/ticket/8679): Fixed:
Better focus indication and ability to style the selected color in the [color
picker dialog](https://ckeditor.com/cke4/addon/colordialog). *
[#11697](https://dev.ckeditor.com/ticket/11697): Fixed: Content is replaced
ignoring the letter case setting in the [Find and
Replace](https://ckeditor.com/cke4/addon/find) dialog window. *
[#13886](https://dev.ckeditor.com/ticket/13886): Fixed: Invalid handling of the
[`CKEDITOR.style`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.style
.html) instance with the `styles` property by [`CKEDITOR.filter`](https://ckedit
or.com/docs/ckeditor4/latest/api/CKEDITOR.filter.html) *
[#14535](https://dev.ckeditor.com/ticket/14535): Fixed: CSS syntax corrections.
Thanks to [mdjdenormandie](https://github.com/mdjdenormandie)! ## CKEditor
4.5.8 New Features: * [#12440](https://dev.ckeditor.com/ticket/12440): Added
the [`config.colorButton_enableAutomatic`](https://ckeditor.com/docs/ckeditor4/l
atest/api/CKEDITOR_config.html#cfg-colorButton_enableAutomatic) option to allow
hiding the "Automatic" option in the [color
picker](https://ckeditor.com/cke4/addon/colorbutton). Fixed Issues: *
[#10448](https://dev.ckeditor.com/ticket/10448): Fixed: Lack of scrollbar in the
[right-to-left text direction](https://ckeditor.com/cke4/addon/bidi). *
[#12707](https://dev.ckeditor.com/ticket/12707): Fixed: The order of table
elements does not comply with the HTML specification. *
[#13756](https://dev.ckeditor.com/ticket/13756): [Edge] Fixed: Context menus are
cut-off. ## CKEditor 4.5.7 New Features: *
[#14327](https://dev.ckeditor.com/ticket/14327): Added Swiss German
localization. Thanks to [Miro Grenda](https://twitter.com/mirogrenda)! Fixed
Issues: * [#13816](https://dev.ckeditor.com/ticket/13816): Introduced a new
strategy for Filling Character handling to avoid changes in DOM. This fixes the
following issues: * [#12727](https://dev.ckeditor.com/ticket/12727):
[Blink] `IndexSizeError` when using the [Div Editing
Area](https://ckeditor.com/cke4/addon/divarea) and [Content
Templates](https://ckeditor.com/cke4/addon/templates) plugins. *
[#13377](https://dev.ckeditor.com/ticket/13377):
[Widget](https://ckeditor.com/cke4/addon/widget) plugin issue when typing in
Korean. * [#13389](https://dev.ckeditor.com/ticket/13389): [Blink] [`edi
tor.getData()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_edi…
tml#method-getData) fails when the cursor is next to an `<hr>` tag. *
[#13513](https://dev.ckeditor.com/ticket/13513): [Blink, WebKit] [Div Editing
Area](https://ckeditor.com/cke4/addon/divarea) and [`editor.getData()`](https://
ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#method-getData)
throw an error when an image is the only data in the editor. *
[#13884](https://dev.ckeditor.com/ticket/13884): [Firefox] Fixed: Copying and
pasting a table results in just the first cell being pasted. *
[#14234](https://dev.ckeditor.com/ticket/14234): Fixed: URL input field is not
marked as required in the [Media Embed](https://ckeditor.com/cke4/addon/embed)
dialog. ## CKEditor 4.5.6 New Features: * Introduced the [`CKEDITOR.tools.get
Cookie()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tools.ht…
thod-getCookie) and [`CKEDITOR.tools.setCookie()`](https://ckeditor.com/docs/cke
ditor4/latest/api/CKEDITOR_tools.html#method-setCookie) methods for accessing
cookies. * Introduced the [`CKEDITOR.tools.getCsrfToken()`](https://ckeditor.com
/docs/ckeditor4/latest/api/CKEDITOR_tools.html#method-getCsrfToken) method. The
CSRF token is now automatically sent by the [File
Browser](https://ckeditor.com/cke4/addon/filebrowser) and [File
Tools](https://ckeditor.com/cke4/addon/filetools) plugins during file uploads.
The server-side upload handlers may check it and use it to additionally secure
the communication. Other Changes: * Updated
[SCAYT](https://ckeditor.com/cke4/addon/scayt) (Spell Check As You Type):
- New features: - CKEditor
[Language](https://ckeditor.com/cke4/addon/language) plugin support.
- CKEditor [Placeholder](https://ckeditor.com/cke4/addon/placeholder) plugin
support. -
[Drag&Drop](https://sdk.ckeditor.com/samples/fileupload.html) support.
- **Experimental**
[GRAYT](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#…
grayt_autoStartup) (Grammar As You Type) functionality. - Fixed issues:
* [#98](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/98):
SCAYT affects dialog double-click. Fixed in SCAYT core. *
[#102](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/102):
SCAYT core performance enhancements. *
[#104](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/104):
SCAYT's spans leak into the clipboard and after pasting. *
[#105](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/105): A
JavaScript error fired in case of multiple instances of CKEditor on one page.
* [#107](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/107):
SCAYT should not check non-editable parts of content. *
[#108](https://github.com/WebSpellChecker/ckeditor-plugin-scayt/issues/108):
Latest SCAYT copies the ID of the editor element to the iframe.
* SCAYT stops working when CKEditor [Undo
plugin](https://ckeditor.com/cke4/addon/undo) not enabled. *
Issue with pasting SCAYT markup in CKEditor. * SCAYT stops
working after pressing the *Cancel* button in the WSC dialog. ## CKEditor 4.5.5
Fixed Issues: * [#13887](https://dev.ckeditor.com/ticket/13887): Fixed:
[Link](https://ckeditor.com/cke4/addon/link) plugin alters the `target`
attribute value. Thanks to [SamZiemer](https://github.com/SamZiemer)! *
[#12189](https://dev.ckeditor.com/ticket/12189): Fixed: The
[Link](https://ckeditor.com/cke4/addon/link) plugin dialog does not display the
subject of email links if the subject parameter is not lowercase. *
[#9192](https://dev.ckeditor.com/ticket/9192): Fixed: An `undefined` string is
appended to an email address added with the
[Link](https://ckeditor.com/cke4/addon/link) plugin if subject and email body
are empty and [`config.emailProtection`](https://ckeditor.com/docs/ckeditor4/lat
est/api/CKEDITOR_config.html#cfg-emailProtection) is set to `encode`. *
[#13790](https://dev.ckeditor.com/ticket/13790): Fixed: It is not possible to
destroy the editor `<iframe>` after the editor was detached from DOM. Thanks to
[Stefan Rijnhart](https://github.com/StefanRijnhart)! *
[#13803](https://dev.ckeditor.com/ticket/13803): Fixed: The editor cannot be
destroyed before being fully initialized. Thanks to [Cyril
Fluck](https://github.com/cyril-sf)! *
[#13867](https://dev.ckeditor.com/ticket/13867): Fixed: CKEditor does not work
when the `classList` polyfill is used. *
[#13885](https://dev.ckeditor.com/ticket/13885): Fixed: [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) requires the
[Link](https://ckeditor.com/cke4/addon/link) plugin to link an image. *
[#13883](https://dev.ckeditor.com/ticket/13883): Fixed: Copying a table using
the context menu strips off styles. *
[#13872](https://dev.ckeditor.com/ticket/13872): Fixed: Cutting is possible in
the [read-only](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.h
tml#property-readOnly) mode. * [#12848](https://dev.ckeditor.com/ticket/12848):
[Blink] Fixed: Opening the [Find and
Replace](https://ckeditor.com/cke4/addon/find) dialog window in the [read-only](
https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#propert…
readOnly) mode throws an exception. *
[#13879](https://dev.ckeditor.com/ticket/13879): Fixed: It is not possible to
prevent the [`editor.drop`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDI
TOR_editor.html#event-drop) event. *
[#13361](https://dev.ckeditor.com/ticket/13361): Fixed: Skin images fail when
the site path includes parentheses because the `background-image` path needs
single quotes around the URL value. *
[#13771](https://dev.ckeditor.com/ticket/13771): Fixed: The `contents.css` style
is not used if the [IFrame Editing
Area](https://ckeditor.com/cke4/addon/wysiwygarea) plugin is missing. *
[#13782](https://dev.ckeditor.com/ticket/13782): Fixed: Unclear log messages. *
[#13919](https://dev.ckeditor.com/ticket/13919): [Edge] Fixed: Browser window
crashes when accessing the `isContentEditable` property of an `<input>` DOM
element. Other Changes: * [#13859](https://dev.ckeditor.com/ticket/13859):
Test cases created with `bender.tools.createTestsForEditors` will also receive
editor bot as a second parameter. ## CKEditor 4.5.4 New Features: *
[#13632](https://dev.ckeditor.com/ticket/13632): Introduce error logging
mechanism. * [#13730](https://dev.ckeditor.com/ticket/13730): Switch to the new
error logging mechanism. Fixed Issues: *
[#9856](https://dev.ckeditor.com/ticket/9856): Fixed: Cannot use the native
context menu together with the [Div Editing
Area](https://ckeditor.com/cke4/addon/divarea) plugin. Thanks to [Mark
Wade](https://github.com/mark-wade)! *
[#12733](https://dev.ckeditor.com/ticket/12733): [IE9+] Fixed: Radio button
`onChange` does not work. Thanks to [Iliya
Kostadinov](https://github.com/iliyakostadinov)! *
[#13142](https://dev.ckeditor.com/ticket/13142): [Edge] Fixed: *Ctrl+A* and then
*Backspace* result in an empty `<div>` element. *
[#13599](https://dev.ckeditor.com/ticket/13599): Fixed: Cross-editor drag and
drop of an inline widget results in error/artifacts. *
[#13640](https://dev.ckeditor.com/ticket/13640): [IE] Fixed: Dropping a widget
outside the `<body>` element is not handled correctly. *
[#13533](https://dev.ckeditor.com/ticket/13533): Fixed: No progress during
upload. * [#13680](https://dev.ckeditor.com/ticket/13680): Fixed: The parser
should allow the `<h1-6>` element to be a child of the `<summary>` element. *
[#11724](https://dev.ckeditor.com/ticket/11724): [Touch devices] Fixed: Drop-
downs often hide right after opening them. *
[#13690](https://dev.ckeditor.com/ticket/13690): Fixed: Copying content from IE
to Chrome adds an extra paragraph. *
[#13284](https://dev.ckeditor.com/ticket/13284): Fixed: Cannot drag and drop a
widget if the text caret is placed just after the widget instance. *
[#13516](https://dev.ckeditor.com/ticket/13516): Fixed: CKEditor removes empty
HTML5 anchors without the `name` attribute. *
[#13765](https://dev.ckeditor.com/ticket/13765): [Safari 9] Fixed: Problems with
rendering samples. Other Changes: *
[#11725](https://dev.ckeditor.com/ticket/11725): Marked [`CKEDITOR.env.mobile`](
https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_env.html#property-
mobile) as deprecated. The reason is that it is no longer clear what "mobile"
means. * [#13737](https://dev.ckeditor.com/ticket/13737): Upgraded
[Bender.js](https://github.com/benderjs/benderjs) to 0.4.1. ## CKEditor 4.5.3
New Features: * [#13501](https://dev.ckeditor.com/ticket/13501): Added the [`co
nfig.fileTools_defaultFileName`](https://ckeditor.com/docs/ckeditor4/latest…
CKEDITOR_config.html#cfg-fileTools_defaultFileName) option to allow setting a
default file name for paste uploads. *
[#13603](https://dev.ckeditor.com/ticket/13603): Added support for uploading
dropped BMP images. Fixed Issues: *
[#13590](https://dev.ckeditor.com/ticket/13590): Fixed: Various issues related
to the [Paste from Word](https://ckeditor.com/cke4/addon/pastefromword) feature.
Fixes also: * [#11215](https://dev.ckeditor.com/ticket/11215), *
[#8780](https://dev.ckeditor.com/ticket/8780), *
[#12762](https://dev.ckeditor.com/ticket/12762). *
[#13386](https://dev.ckeditor.com/ticket/13386): [Edge] Fixed: Issues with
selecting and editing images. * [#13568](https://dev.ckeditor.com/ticket/13568):
Fixed: The [`editor.getSelectedHtml()`](https://ckeditor.com/docs/ckeditor4/late
st/api/CKEDITOR_editor.html#method-getSelectedHtml) method returns invalid
results for entire content selection. *
[#13453](https://dev.ckeditor.com/ticket/13453): Fixed: Drag&drop of entire
editor content throws an error. *
[#13465](https://dev.ckeditor.com/ticket/13465): Fixed: Error is thrown and the
widget is lost on drag&drop if it is the only content of the editor. *
[#13414](https://dev.ckeditor.com/ticket/13414): Fixed: Content auto
paragraphing in a nested editable despite editor configuration. *
[#13429](https://dev.ckeditor.com/ticket/13429): Fixed: Incorrect selection
after content insertion by the [Auto
Embed](https://ckeditor.com/cke4/addon/autoembed) plugin. *
[#13388](https://dev.ckeditor.com/ticket/13388): Fixed: [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) integration with
[Undo](https://ckeditor.com/cke4/addon/undo) is broken. Other Changes: *
[#13637](https://dev.ckeditor.com/ticket/13637): Several icons were refactored.
* Updated [Bender.js](https://github.com/benderjs/benderjs) to 0.3.0 and
introduced the ability to run tests via HTTPs
([#13265](https://dev.ckeditor.com/ticket/13265)). ## CKEditor 4.5.2 Fixed
Issues: * [#13609](https://dev.ckeditor.com/ticket/13609): [Edge] Fixed: The
browser crashes when switching to the source mode. Thanks to [Andrew Williams
and Mark Smeed](http://webxsolution.com/)! *
[PR#201](https://github.com/ckeditor/ckeditor-dev/pull/201): Fixed: Buttons in
the toolbar configurator cause form submission. Thanks to
[colemanw](https://github.com/colemanw)! *
[#13422](https://dev.ckeditor.com/ticket/13422): Fixed: A monospaced font should
be used in the `<textarea>` element storing editor configuration in the toolbar
configurator. * [#13494](https://dev.ckeditor.com/ticket/13494): Fixed: Error
thrown in the toolbar configurator if plugin requirements are not met. *
[#13409](https://dev.ckeditor.com/ticket/13409): Fixed: List elements
incorrectly merged when pressing *Backspace* or *Delete*. *
[#13434](https://dev.ckeditor.com/ticket/13434): Fixed: Dialog state indicator
broken in Right���To���Left environments. *
[#13460](https://dev.ckeditor.com/ticket/13460): [IE8] Fixed: Copying inline
widgets is broken when [Advanced Content
Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_acf.html) is
disabled. * [#13495](https://dev.ckeditor.com/ticket/13495): [Firefox, IE]
Fixed: Text is not word-wrapped in the Paste dialog window. *
[#13528](https://dev.ckeditor.com/ticket/13528): [Firefox@Windows] Fixed:
Content copied from Microsoft Word and other external applications is pasted as
a plain text. Removed the
`CKEDITOR.plugins.clipboard.isHtmlInExternalDataTransfer` property as the check
must be dynamic. * [#13583](https://dev.ckeditor.com/ticket/13583): Fixed: [`Dat
aTransfer.getData()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDIT…
ugins_clipboard_dataTransfer.html#method-getData) should work consistently in
all browsers and should not strip valuable content. Fixed pasting tables from
Microsoft Excel on Chrome. * [#13468](https://dev.ckeditor.com/ticket/13468):
[IE] Fixed: Binding drag&drop `dataTransfer` does not work if `text` data was
set in the meantime. * [#13451](https://dev.ckeditor.com/ticket/13451): [IE8-9]
Fixed: One drag&drop operation may affect following ones. *
[#13184](https://dev.ckeditor.com/ticket/13184): Fixed: Web page reloaded after
a drop on editor UI. * [#13129](https://dev.ckeditor.com/ticket/13129) Fixed:
Block widget blurred after a drop followed by an undo. *
[#13397](https://dev.ckeditor.com/ticket/13397): Fixed: Drag&drop of a widget
inside its nested widget crashes the editor. *
[#13385](https://dev.ckeditor.com/ticket/13385): Fixed: [`editor.getSnapshot()`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#method-
getSnapshot) may return a non-string value. *
[#13419](https://dev.ckeditor.com/ticket/13419): Fixed: The [Auto
Link](https://ckeditor.com/cke4/addon/autolink) plugin does not encode double
quotes in URLs. * [#13420](https://dev.ckeditor.com/ticket/13420): Fixed: The
[Auto Embed](https://ckeditor.com/cke4/addon/autoembed) plugin ignores encoded
characters in URL parameters. * [#13410](https://dev.ckeditor.com/ticket/13410):
Fixed: Error thrown in the [Auto
Embed](https://ckeditor.com/cke4/addon/autoembed) plugin when undoing right
after pasting a link. * [#13566](https://dev.ckeditor.com/ticket/13566): Fixed:
Suppressed notifications in the [Media Embed
Base](https://ckeditor.com/cke4/addon/embedbase) plugin. *
[#11616](https://dev.ckeditor.com/ticket/11616): [Chrome] Fixed: Resizing the
editor while it is not displayed breaks the editable. Fixes also
[#9160](https://dev.ckeditor.com/ticket/9160) and
[#9715](https://dev.ckeditor.com/ticket/9715). *
[#11376](https://dev.ckeditor.com/ticket/11376): [IE11] Fixed: Loss of text when
pasting bulleted lists from Microsoft Word. *
[#13143](https://dev.ckeditor.com/ticket/13143): [Edge] Fixed: Focus lost when
opening the panel. * [#13387](https://dev.ckeditor.com/ticket/13387): [Edge]
Fixed: "Permission denied" error thrown when loading the editor with developer
tools open. * [#13574](https://dev.ckeditor.com/ticket/13574): [Edge] Fixed:
"Permission denied" error thrown when opening editor dialog windows. *
[#13441](https://dev.ckeditor.com/ticket/13441): [Edge] Fixed: The
[Clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin breaks the state
of [Undo](https://ckeditor.com/cke4/addon/undo) commands after a paste. *
[#13554](https://dev.ckeditor.com/ticket/13554): [Edge] Fixed: Paste dialog's
iframe does not receive focus on show. *
[#13440](https://dev.ckeditor.com/ticket/13440): [Edge] Fixed: Unable to paste a
widget. Other Changes: * [#13421](https://dev.ckeditor.com/ticket/13421): UX
improvements to notifications in the [Auto
Embed](https://ckeditor.com/cke4/addon/autoembed) plugin. ## CKEditor 4.5.1
Fixed Issues: * [#13486](https://dev.ckeditor.com/ticket/13486): Fixed: The
[Upload Image](https://ckeditor.com/cke4/addon/uploadimage) plugin should log an
error, not throw an error when upload URL is not set. ## CKEditor 4.5 New
Features: * [#13304](https://dev.ckeditor.com/ticket/13304): Added support for
passing DOM elements to [`config.sharedSpaces`](https://ckeditor.com/docs/ckedit
or4/latest/api/CKEDITOR_config.html#cfg-sharedSpaces). Thanks to
[Undergrounder](https://github.com/Undergrounder)! *
[#13215](https://dev.ckeditor.com/ticket/13215): Added ability to cancel
fetching a resource by the Embed plugins. *
[#13213](https://dev.ckeditor.com/ticket/13213): Added the [`dialog#setState()`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dialog.html#method-
setState) method and used it in the
[Embed](https://ckeditor.com/cke4/addon/embed) dialog to indicate that a
resource is being loaded. * [#13337](https://dev.ckeditor.com/ticket/13337):
Added the [`repository.onWidget()`](https://ckeditor.com/docs/ckeditor4/latest/a
pi/CKEDITOR_plugins_widget_repository.html#method-onWidget) method — a
convenient way to listen to [widget](https://ckeditor.com/docs/ckeditor4/latest/
api/CKEDITOR.plugins.widget.html) events through the [repository](https://ckedit
or.com/docs/ckeditor4/latest/api/CKEDITOR.plugins.widget.repository.html) *
[#13214](https://dev.ckeditor.com/ticket/13214): Added support for pasting links
that convert into embeddable resources on the fly. Fixed Issues: *
[#13334](https://dev.ckeditor.com/ticket/13334): Fixed: Error after nesting
widgets and playing with undo/redo. *
[#13118](https://dev.ckeditor.com/ticket/13118): Fixed: The [`editor.getSelected
Html()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.htm…
hod-getSelectedHtml) method throws an error when called in the source mode. *
[#13158](https://dev.ckeditor.com/ticket/13158): Fixed: Error after canceling a
dialog when creating a widget. *
[#13197](https://dev.ckeditor.com/ticket/13197): Fixed: Linked inline [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) alignment class is not
transferred to the widget wrapper. *
[#13199](https://dev.ckeditor.com/ticket/13199): Fixed: [Semantic
Embed](https://ckeditor.com/cke4/addon/embedsemantic) does not support widget
classes. * [#13003](https://dev.ckeditor.com/ticket/13003): Fixed: Anchors are
uploaded when moving them by drag and drop. *
[#13032](https://dev.ckeditor.com/ticket/13032): Fixed: When upload is done,
notification update should be marked as important. *
[#13300](https://dev.ckeditor.com/ticket/13300): Fixed: The `internalCommit`
argument in the [Image](https://ckeditor.com/cke4/addon/image) dialog seems to
be never used. * [#13036](https://dev.ckeditor.com/ticket/13036): Fixed:
Notifications are moved 10px to the right. *
[#13280](https://dev.ckeditor.com/ticket/13280): [IE8] Fixed: Undo after inline
widget drag&drop throws an error. *
[#13186](https://dev.ckeditor.com/ticket/13186): Fixed: Content dropped into a
nested editable is not filtered by [Advanced Content
Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_acf.html). *
[#13140](https://dev.ckeditor.com/ticket/13140): Fixed: Error thrown when
dropping a block widget right after itself. *
[#13176](https://dev.ckeditor.com/ticket/13176): [IE8] Fixed: Errors on
drag&drop of embed widgets. * [#13015](https://dev.ckeditor.com/ticket/13015):
Fixed: Dropping an image file on [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) causes a page reload. *
[#13080](https://dev.ckeditor.com/ticket/13080): Fixed: Ugly notification shown
when the response contains HTML content. *
[#13011](https://dev.ckeditor.com/ticket/13011): [IE8] Fixed: Anchors are
duplicated on drag&drop in specific locations. *
[#13105](https://dev.ckeditor.com/ticket/13105): Fixed: Various issues related
to [`CKEDITOR.tools.htmlEncode()`](https://ckeditor.com/docs/ckeditor4/latest/ap
i/CKEDITOR_tools.html#method-htmlEncode) and [`CKEDITOR.tools.htmlDecode()`](htt
ps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tools.html#method-
htmlDecode) methods. * [#11976](https://dev.ckeditor.com/ticket/11976): [Chrome]
Fixed: Copy&paste and drag&drop lists from Microsoft Word. *
[#13128](https://dev.ckeditor.com/ticket/13128): Fixed: Various issues with
cloning element IDs: * Fixed the default behavior of [`range.cloneContents()`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_range.html#meth…
cloneContents) and [`range.extractContents()`](https://ckeditor.com/docs/ckedito
r4/latest/api/CKEDITOR_dom_range.html#method-extractContents) methods which now
clone IDs similarly to their native counterparts. * Added `cloneId` arguments
to the above methods, [`range.splitBlock()`](https://ckeditor.com/docs/ckeditor4
/latest/api/CKEDITOR_dom_range.html#method-splitBlock) and [`element.breakParent
()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_element.html#me
thod-breakParent). Mind the default values and special behavior in the
`extractContents()` method! * Fixed issues where IDs were lost on copy&paste
and drag&drop. * Toolbar configurators: *
[#13185](https://dev.ckeditor.com/ticket/13185): Fixed: Wrong position of the
suggestion box if there is not enough space below the caret. *
[#13138](https://dev.ckeditor.com/ticket/13138): Fixed: The "Toggle empty
elements" button label is unclear. *
[#13136](https://dev.ckeditor.com/ticket/13136): Fixed: Autocompleter is far too
intrusive. * [#13133](https://dev.ckeditor.com/ticket/13133): Fixed: Tab
leaves the editor. * [#13173](https://dev.ckeditor.com/ticket/13173): Fixed: [
`config.removeButtons`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_
config.html#cfg-removeButtons) is ignored by the advanced toolbar configurator.
Other Changes: * [#13119](https://dev.ckeditor.com/ticket/13119): Improved
compatibility of editor skins ([Moono](https://ckeditor.com/cke4/addon/moono)
and [Kama](https://ckeditor.com/cke4/addon/kama)) with external web page style
sheets. * Toolbar configurators: *
[#13147](https://dev.ckeditor.com/ticket/13147): Added buttons to the sticky
toolbar. * [#13207](https://dev.ckeditor.com/ticket/13207): Used modal window
to display toolbar configurator help. *
[#13316](https://dev.ckeditor.com/ticket/13316): Made [`CKEDITOR.env.isCompatibl
e`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_env.html#proper…
isCompatible) a blacklist rather than a whitelist. More about the change in the
[Browser Compatibility](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_bro
wsers.html) guide. * [#13398](https://dev.ckeditor.com/ticket/13398): Renamed
`CKEDITOR.fileTools.UploadsRepository` to [`CKEDITOR.fileTools.UploadRepository`
](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.fileTools.uploadReposi
tory.html) and changed all related properties. *
[#13279](https://dev.ckeditor.com/ticket/13279): Reviewed CSS vendor prefixes. *
[#13454](https://dev.ckeditor.com/ticket/13454): Removed unused
`lang.image.alertUrl` token from the
[Image](https://ckeditor.com/cke4/addon/image) plugin. ## CKEditor 4.5 Beta
New Features: * Clipboard (copy&paste, drag&drop) and file uploading features
and improvements ([#11437](https://dev.ckeditor.com/ticket/11437)). * Major
features: * Support for dropping and pasting files into the editor was
introduced. Through a set of new facades for native APIs it is now possible to
easily intercept and process inserted files. * [File upload
tools](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.fileTools.ht…
were introduced in order to simplify controlling the loading, uploading and
handling server response, properly handle [new upload configuration](https://cke
ditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-uploadUrl) options,
etc. * [Upload Image](https://ckeditor.com/cke4/addon/uploadimage) widget
was introduced to upload dropped images. A base class for the [upload widget](ht
tps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.fileTools.uploadWidge…
nition.html) was exposed, too, to make it simple to create new types of upload
widgets which can handle any type of dropped file, show the upload progress and
update the content when the process is done. It also handles editing and
undo/redo operations when a file is being uploaded and integrates with the
[notification aggregator](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITO
R.plugins.notificationAggregator.html) to show progress and success or error.
* All drag and drop operations were integrated with the editor. All dropped
content is passed through the [`editor#paste`](https://ckeditor.com/docs/ckedito
r4/latest/api/CKEDITOR_editor.html#event-paste) event and a set of new editor
events was introduced — [`dragstart`](https://ckeditor.com/docs/ckeditor4/
latest/api/CKEDITOR_editor.html#event-dragstart), [`drop`](https://ckeditor.com/
docs/ckeditor4/latest/api/CKEDITOR_editor.html#event-drop), [`dragend`](https://
ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#event-dragend)
* The [Data Transfer](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.pl
ugins.clipboard.dataTransfer.html) facade was introduced to unify access to data
in various types and files. [Data Transfer](https://ckeditor.com/docs/ckeditor4/
latest/api/CKEDITOR.plugins.clipboard.dataTransfer.html) is now always available
in the [`editor#paste`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_
editor.html#event-paste) event. * Switched from the pastebin to using the
native clipboard access whenever possible. This solved many issues related to
pastebin such as unnecessary scrolling or data loss. Additionally, on copy and
cut from the editor the clipboard data is set. Therefore, on paste the editor
has access to clean data, undisturbed by the browsers. * Drag and drop of
inline and block widgets was integrated with the standard clipboard APIs. By
listening to drag events you will thus be notified about widgets, too. This
opens a possibility to filter pasted and dropped widgets. * The [`editor#pas
te`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#ev…
paste) event can have the `range` parameter so it is possible to change the
paste position in the listener or paste in the not selectable position. Also the
[`editor.insertHtml()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_
editor.html#method-insertHtml) method now accepts `range` as an additional
parameter. * [#11621](https://dev.ckeditor.com/ticket/11621): A configurable
[paste
filter](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html…
pasteFilter) was introduced. The filter is by default turned to `'semantic-
content'` on Webkit and Blink for all pasted content coming from external
sources because of the low quality of HTML that these engines put into the
clipboard. Internal and cross-editor paste is safe due to the change explained
in the previous point. * Other changes and related fixes: *
[#12095](https://dev.ckeditor.com/ticket/12095): On drag and copy of widgets
[the same method](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor
.html#method-getSelectedHtml) is used to get selected HTML as in the normal
case. Thanks to that styles applied to inline widgets are not lost. *
[#11219](https://dev.ckeditor.com/ticket/11219): Fixed: Dragging a [captioned
image](https://ckeditor.com/cke4/addon/image2) does not fire the [`editor#paste`
](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#event-
paste) event. * [#9554](https://dev.ckeditor.com/ticket/9554): [Webkit Mac]
Fixed: Editor scrolls on paste. *
[#9898](https://dev.ckeditor.com/ticket/9898): [Webkit&Divarea] Fixed: Pasting
causes undesirable scrolling. *
[#11993](https://dev.ckeditor.com/ticket/11993): [Chrome] Fixed: Pasting content
scrolls the document. * [#12613](https://dev.ckeditor.com/ticket/12613):
Show the user that they can not drop on editor UI (toolbar, bottom bar). *
[#12851](https://dev.ckeditor.com/ticket/12851): [Blink/Webkit] Fixed:
Formatting disappears when pasting content into cells. *
[#12914](https://dev.ckeditor.com/ticket/12914): Fixed: Copy/Paste of table
broken in `div`-based editor. * Browser support.<br>Browser support for
related features varies significantly (see http://caniuse.com/clipboard) *
File APIs needed to operate and file upload is not supported in Internet
Explorer 9 and below. * Only Chrome and Safari on Mac OS support setting
custom data items in the clipboard, so currently it is possible to recognize the
origin of the copied content in these browsers only. All drag and drop
operations can be identified thanks to the new Data Transfer facade. * No
Internet Explorer browser supports the standard clipboard API which results in
small glitches like where only plain text can be dropped from outside the
editor. Thanks to the new Data Transfer facade, internal and cross-editor drag
and drop supports the full range of data. * Direct access to clipboard could
only be implemented in Chrome, Safari on Mac OS, Opera and Firefox. In other
browsers the pastebin must still be used. *
[#12875](https://dev.ckeditor.com/ticket/12875): Samples and toolbar
configuration tools. * The old set of samples shipped with every CKEditor
package was replaced with a shiny new single-page sample. This change concluded
a long term plan which started from introducing the [CKEditor
SDK](https://sdk.ckeditor.com/) and [CKEditor Functionality
Overview](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_features.htm…
section in the documentation which essentially redefined the old samples. *
Toolbar configurators with live previews were introduced. They will be shipped
with every CKEditor package and are meant to help in configuring toolbar
layouts. * [#10925](https://dev.ckeditor.com/ticket/10925): The [Media
Embed](https://ckeditor.com/cke4/addon/embed) and [Semantic Media
Embed](https://ckeditor.com/cke4/addon/embedsemantic) plugins were introduced.
Read more about the new features in the [Embedding
Content](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_media_embed.h…
article. * [#10931](https://dev.ckeditor.com/ticket/10931): Added support for
nesting widgets. It is now possible to insert one widget into another widget's
nested editable. Note that unless nested editable's [allowed content](https://ck
editor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_widget_nestedEditable…
nition.html#property-allowedContent) is defined precisely, starting from
CKEditor 4.5 some widget buttons may become enabled. This feature is not
supported in IE8. Included issues: *
[#12018](https://dev.ckeditor.com/ticket/12018): Fixed and reviewed: Nested
widgets garbage collection. * [#12024](https://dev.ckeditor.com/ticket/12024):
[Firefox] Fixed: Outline is extended to the left by unpositioned drag handlers.
* [#12006](https://dev.ckeditor.com/ticket/12006): Fixed: Drag and drop of
nested block widgets. * [#12008](https://dev.ckeditor.com/ticket/12008): Fixed
various cases of inserting a single non-editable element using the [`editor.inse
rtHtml()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.h…
ethod-insertHtml) method. Fixes pasting a widget with a nested editable inside
another widget's nested editable. * Notification system: *
[#11580](https://dev.ckeditor.com/ticket/11580): Introduced the [notification sy
stem](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.plugins.notif…
on.html). * [#12810](https://dev.ckeditor.com/ticket/12810): Introduced a
[notification aggregator](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITO
R.plugins.notificationAggregator.html) for the [notification system](https://cke
ditor.com/docs/ckeditor4/latest/api/CKEDITOR.plugins.notification.html) which
simplifies displaying progress of many concurrent tasks. *
[#11636](https://dev.ckeditor.com/ticket/11636): Introduced new, UX-focused,
methods for getting selected HTML and deleting it — [`editor.getSelectedHt
ml()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#…
d-getSelectedHtml) and [`editor.extractSelectedHtml()`](https://ckeditor.com/doc
s/ckeditor4/latest/api/CKEDITOR_editor.html#method-extractSelectedHtml). *
[#12416](https://dev.ckeditor.com/ticket/12416): Added the [`widget.definition.u
pcastPriority`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plu…
widget_definition.html#property-upcastPriority) property which gives more
control over widget upcasting order to the widget author. *
[#12036](https://dev.ckeditor.com/ticket/12036): Initialize the editor in [read-
only](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#p…
ty-readOnly) mode when the `<textarea>` element has a `readonly` attribute. *
[#11905](https://dev.ckeditor.com/ticket/11905): The [`resize` event](https://ck
editor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#event-resize) passes
the current dimensions in its data. *
[#12126](https://dev.ckeditor.com/ticket/12126): Introduced [`config.image_prefi
llDimensions`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_conf…
ml#cfg-image_prefillDimensions) and [`config.image2_prefillDimensions`](https://
ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
image2_prefillDimensions) to make pre-filling `width` and `height` configurable
for the [Enhanced Image](https://ckeditor.com/cke4/addon/image2). *
[#12746](https://dev.ckeditor.com/ticket/12746): Added a new configuration
option to hide the [Enhanced Image](https://ckeditor.com/cke4/addon/image2)
resizer. * [#12150](https://dev.ckeditor.com/ticket/12150): Exposed the [`getNes
tedEditable()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plu…
widget.html#static-method-getNestedEditable) and `is*` [widget helper](https://c
keditor.com/docs/ckeditor4/latest/api/CKEDITOR.plugins.widget.html) functions
(see the static methods). * [#12448](https://dev.ckeditor.com/ticket/12448):
Introduced the [`editable.insertHtmlIntoRange`](https://ckeditor.com/docs/ckedit
or4/latest/api/CKEDITOR_editable.html#method-insertHtmlIntoRange) method. *
[#12143](https://dev.ckeditor.com/ticket/12143): Added the [`config.floatSpacePr
eferRight`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.…
cfg-floatSpacePreferRight) configuration option that switches the alignment of
the floating toolbar. Thanks to
[InvisibleBacon](http://github.com/InvisibleBacon)! *
[#10986](https://dev.ckeditor.com/ticket/10986): Added support for changing
dialog input and textarea text directions by using the *Shift+Alt+Home/End*
keystrokes. The direction is stored in the value of the input by prepending the
[`\u202A`](http://unicode.org/cldr/utility/character.jsp?a=202A) or
[`\u202B`](http://unicode.org/cldr/utility/character.jsp?a=202B) marker to it.
Read more in the [documentation](https://ckeditor.com/docs/ckeditor4/latest/api/
CKEDITOR_dialog_definition_textInput.html#property-bidi). Thanks to
[edithkk](https://github.com/edithkk)! *
[#12770](https://dev.ckeditor.com/ticket/12770): Added support for passing [widg
et](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.plugins.widget.…
's startup data as a widget command's argument. Thanks to [Rebrov
Boris](https://github.com/zipp3r) and [Tieme van
Veen](https://github.com/tiemevanveen)! *
[#11583](https://dev.ckeditor.com/ticket/11583): Added support for the HTML5
`required` attribute in various form elements. Thanks to [Steven
Busse](https://github.com/sbusse)! Changes: *
[#12858](https://dev.ckeditor.com/ticket/12858): Basic
[Spartan](http://blogs.windows.com/bloggingwindows/2015/03/30/introducing-
project-spartan-the-new-browser-built-for-windows-10/) browser compatibility.
Full compatibility will be introduced later, because at the moment Spartan is
still too unstable to be used for tests and we see many changes from version to
version. * [#12948](https://dev.ckeditor.com/ticket/12948): The [`config.mathJax
Library`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.ht…
g-mathJaxLib) option does not default to the MathJax CDN any more. It needs to
be configured to enable the [Mathematical
Formulas](https://ckeditor.com/cke4/addon/mathjax) plugin now. *
[#13069](https://dev.ckeditor.com/ticket/13069): Fixed inconsistencies between [
`editable.insertHtml()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR
_editable.html#method-insertElement) and [`editable.insertElement()`](https://ck
editor.com/docs/ckeditor4/latest/api/CKEDITOR_editable.html#method-
insertElement) when the `range` parameter is used. Now, the
`editor.insertElement()` method works on a higher level, which means that it
saves undo snapshots and sets the selection after insertion. Use the [`editable.
insertElementIntoRange()`](https://ckeditor.com/docs/ckeditor4/latest/api/C…
OR_editable.html#method-insertElementIntoRange) method directly for the pre 4.5
behavior of `editable.insertElement()`. *
[#12870](https://dev.ckeditor.com/ticket/12870): Use [`editor.showNotification()
`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#method-
showNotification) instead of `alert()` directly whenever possible. When the
[Notification plugin](https://ckeditor.com/cke4/addon/notification) is loaded,
the notification system is used automatically. Otherwise, the native `alert()`
is displayed. * [#8024](https://dev.ckeditor.com/ticket/8024): Swapped behavior
of the Split Cell Vertically and Horizontally features of the [Table
Tools](https://ckeditor.com/cke4/addon/tabletools) plugin to be more intuitive.
Thanks to [kevinisagit](https://github.com/kevinisagit)! *
[#10903](https://dev.ckeditor.com/ticket/10903): Performance improvements for
the [`dom.element.addClass()`](https://ckeditor.com/docs/ckeditor4/latest/api/CK
EDITOR_dom_element.html#method-addClass), [`dom.element.removeClass()`](https://
ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_element.html#method-
removeClass) and [`dom.element.hasClass()`](https://ckeditor.com/docs/ckeditor4/
latest/api/CKEDITOR_dom_element.html#method-hasClass) methods. Note: The
previous implementation allowed passing multiple classes to `addClass()`
although it was only a side effect of that implementation. The new
implementation does not allow this. *
[#11856](https://dev.ckeditor.com/ticket/11856): The jQuery adapter throws a
meaningful error if CKEditor or jQuery are not loaded. Fixed issues: *
[#11586](https://dev.ckeditor.com/ticket/11586): Fixed: [`range.cloneContents()`
](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_range.html#method-
cloneContents) should not change the DOM in order not to affect selection. *
[#12148](https://dev.ckeditor.com/ticket/12148): Fixed: [`dom.element.getChild()
`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_element.html#meth
od-getChild) should not modify a passed array. *
[#12503](https://dev.ckeditor.com/ticket/12503): [Blink/Webkit] Fixed: Incorrect
result of Select All and *Backspace* or *Delete*. *
[#13001](https://dev.ckeditor.com/ticket/13001): [Firefox] Fixed: The `<br />`
filler is placed in the wrong position by the [`range.fixBlock()`](https://ckedi
tor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_range.html#method-fixBlock)
method due to quirky Firefox behavior. *
[#13101](https://dev.ckeditor.com/ticket/13101): [IE8] Fixed: Colons are
prepended to HTML5 element names when cloning them. ## CKEditor 4.4.8
**Security Updates:** * Fixed XSS vulnerability in the HTML parser reported by
[Dheeraj Joshi](https://twitter.com/dheerajhere) and [Prem
Kumar](https://twitter.com/iAmPr3m). Issue summary: It was possible to
execute XSS inside CKEditor after persuading the victim to: (i) switch CKEditor
to source mode, then (ii) paste a specially crafted HTML code, prepared by the
attacker, into the opened CKEditor source area, and (iii) switch back to WYSIWYG
mode. **An upgrade is highly recommended!** Fixed Issues: *
[#12899](https://dev.ckeditor.com/ticket/12899): Fixed: Corrected wrong tag
ending for horizontal box definition in the [Dialog User
Interface](https://ckeditor.com/cke4/addon/dialogui) plugin. Thanks to
[mizafish](https://github.com/mizafish)! *
[#13254](https://dev.ckeditor.com/ticket/13254): Fixed: Cannot outdent block
after indent when using the [Div Editing
Area](https://ckeditor.com/cke4/addon/divarea) plugin. Thanks to [Jonathan
Cottrill](https://github.com/jcttrll)! *
[#13268](https://dev.ckeditor.com/ticket/13268): Fixed: Documentation for [`CKED
ITOR.dom.text`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.dom…
.html) is incorrect. Thanks to [Ben Kiefer](https://github.com/benkiefer)! *
[#12739](https://dev.ckeditor.com/ticket/12739): Fixed: Link loses inline styles
when edited without the [Advanced Tab for
Dialogs](https://ckeditor.com/cke4/addon/dialogadvtab) plugin. Thanks to
[�������������� ��������������](https://github.com/asmforce)! *
[#13292](https://dev.ckeditor.com/ticket/13292): Fixed: Protection pattern does
not work in attribute in self-closing elements with no space before `/>`. Thanks
to [�������������� ��������������](https://github.com/asmforce)! *
[PR#192](https://github.com/ckeditor/ckeditor-dev/pull/192): Fixed: Variable
name typo in the [Dialog User
Interface](https://ckeditor.com/cke4/addon/dialogui) plugin which caused [`CKEDI
TOR.ui.dialog.radio`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDIT…
.dialog.radio.html) validation to not work. Thanks to [Florian
Ludwig](https://github.com/FlorianLudwig)! *
[#13232](https://dev.ckeditor.com/ticket/13232): [Safari] Fixed: The [`element.a
ppendText()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_e…
t.html#method-appendText) method does not work properly for empty elements. *
[#13233](https://dev.ckeditor.com/ticket/13233): Fixed: [HTMLDataProcessor](http
s://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.htmlDataProcessor.html) can
process `foo:href` attributes. *
[#12796](https://dev.ckeditor.com/ticket/12796): Fixed: The [Indent
List](https://ckeditor.com/cke4/addon/indentlist) plugin unwraps parent `<li>`
elements. Thanks to [Andrew Stucki](https://github.com/andrewstucki)! *
[#12885](https://dev.ckeditor.com/ticket/12885): Added missing [`editor.getData(
)`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#method-
getData) parameter documentation. *
[#11982](https://dev.ckeditor.com/ticket/11982): Fixed: Bullet added in a wrong
position after the *Enter* key is pressed in a nested list. *
[#13027](https://dev.ckeditor.com/ticket/13027): Fixed: Keyboard navigation in
dialog windows with multiple tabs not following IBM CI 162 instructions or [ARIA
Authoring Practices](http://www.w3.org/TR/2013/WD-wai-aria-
practices-20130307/#tabpanel). *
[#12256](https://dev.ckeditor.com/ticket/12256): Fixed: Basic styles classes are
lost when pasting from Microsoft Word if [basic
styles](https://ckeditor.com/cke4/addon/basicstyles) were configured to use
classes. * [#12729](https://dev.ckeditor.com/ticket/12729): Fixed: Incorrect
structure created when merging a block into a list item on *Backspace* and
*Delete*. * [#13031](https://dev.ckeditor.com/ticket/13031): [Firefox] Fixed: No
more line breaks in source view since Firefox 36. *
[#13131](https://dev.ckeditor.com/ticket/13131): Fixed: The [Code
Snippet](https://ckeditor.com/cke4/addon/codesnippet) plugin cannot be used
without the [IFrame Editing Area](https://ckeditor.com/cke4/addon/wysiwygarea)
plugin. * [#9086](https://dev.ckeditor.com/ticket/9086): Fixed: Invalid ARIA
property used on paste area `<iframe>`. *
[#13164](https://dev.ckeditor.com/ticket/13164): Fixed: Error when inserting a
hidden field. * [#13155](https://dev.ckeditor.com/ticket/13155): Fixed:
Incorrect [Line Utilities](https://ckeditor.com/cke4/addon/lineutils)
positioning when `<body>` has a margin. *
[#13351](https://dev.ckeditor.com/ticket/13351): Fixed: Link lost when editing a
linked image with the Link tab disabled. This also fixed a bug when inserting an
image into a fully selected link would throw an error
([#12847](https://dev.ckeditor.com/ticket/12847)). *
[#13344](https://dev.ckeditor.com/ticket/13344): [WebKit/Blink] Fixed: It is
possible to remove or change editor content in [read-only
mode](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_readonly.html).
Other Changes: * [#12844](https://dev.ckeditor.com/ticket/12844) and
[#13103](https://dev.ckeditor.com/ticket/13103): Upgraded the [testing
environment](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_tests.htm… to
[Bender.js](https://github.com/benderjs/benderjs) `0.2.3`. *
[#12930](https://dev.ckeditor.com/ticket/12930): Because of licensing issues,
`truncated-mathjax/` is now removed from the `tests/` directory. Now
`bender.config.mathJaxLibPath` must be configured manually in order to run
[Mathematical Formulas](https://ckeditor.com/cke4/addon/mathjax) plugin tests. *
[#13266](https://dev.ckeditor.com/ticket/13266): Added more shades of gray in
the [Color Dialog](https://ckeditor.com/cke4/addon/colordialog) window. Thanks
to [mizafish](https://github.com/mizafish)! ## CKEditor 4.4.7 Fixed Issues:
* [#12825](https://dev.ckeditor.com/ticket/12825): Fixed: Preventing the [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) plugin from operating on
elements outside the editor. Thanks to [Paul Martin](https://github.com/Paul-
Martin)! * [#12157](https://dev.ckeditor.com/ticket/12157): Fixed: Lost text
formatting on pressing *Tab* when the [`config.tabSpaces`](https://ckeditor.com/
docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-tabSpaces) configuration
option value was greater than zero. *
[#12777](https://dev.ckeditor.com/ticket/12777): Fixed: The `table-layout` CSS
property should be reset by skins. Thanks to
[vita10gy](https://github.com/vita10gy)! *
[#12812](https://dev.ckeditor.com/ticket/12812): Fixed: An uncaught security
exception is thrown when [Line
Utilities](https://ckeditor.com/cke4/addon/lineutils) are used in an inline
editor loaded in a cross-domain `iframe`. Thanks to [Vitaliy
Zurian](https://github.com/thecatontheflat)! *
[#12735](https://dev.ckeditor.com/ticket/12735): Fixed: [`config.fillEmptyBlocks
`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
fillEmptyBlocks) should only apply when outputting data. *
[#10032](https://dev.ckeditor.com/ticket/10032): Fixed: [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) filter is executed for
every paste after using the button. *
[#12597](https://dev.ckeditor.com/ticket/12597): [Blink/WebKit] Fixed: Multi-
byte Japanese characters entry not working properly after *Shift+Enter*. *
[#12387](https://dev.ckeditor.com/ticket/12387): Fixed: An error is thrown if a
skin does not have the [`chameleon`](https://ckeditor.com/docs/ckeditor4/latest/
api/CKEDITOR_skin.html#method-chameleon) property defined and [`config.uiColor`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
uiColor) is defined. * [#12747](https://dev.ckeditor.com/ticket/12747): [IE8-10]
Fixed: Opening a drop-down for a specific selection when the editor is maximized
results in incorrect drop-down panel position. *
[#12850](https://dev.ckeditor.com/ticket/12850): [IEQM] Fixed: An error is
thrown after focusing the editor. ## CKEditor 4.4.6 **Security Updates:** *
Fixed XSS vulnerability in the HTML parser reported by [Maco
Cortes](https://www.facebook.com/Maaacoooo). Issue summary: It was
possible to execute XSS inside CKEditor after persuading the victim to: (i)
switch CKEditor to source mode, then (ii) paste a specially crafted HTML code,
prepared by the attacker, into the opened CKEditor source area, and (iii) switch
back to WYSIWYG mode. **An upgrade is highly recommended!** New Features: *
[#12501](https://dev.ckeditor.com/ticket/12501): Allowed dashes in element names
in the [string format of allowed content rules](https://ckeditor.com/docs/ckedit
or4/latest/guide/dev_allowed_content_rules.html#string-format). *
[#12550](https://dev.ckeditor.com/ticket/12550): Added the `<main>` element to
the [`CKEDITOR.dtd`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.dtd
.html). Fixed Issues: * [#12506](https://dev.ckeditor.com/ticket/12506):
[Safari] Fixed: Cannot paste into inline editor if the page has `user-select:
none` style. Thanks to [shaohua](https://github.com/shaohua)! *
[#12683](https://dev.ckeditor.com/ticket/12683): Fixed:
[Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_acf.html) fails to
remove custom tags. Thanks to [timselier](https://github.com/timselier)! *
[#12489](https://dev.ckeditor.com/ticket/12489) and
[#12491](https://dev.ckeditor.com/ticket/12491): Fixed: Various issues related
to restoring the selection after performing operations on filler character. See
the [fixed cases](https://dev.ckeditor.com/ticket/12491#comment:4). *
[#12621](https://dev.ckeditor.com/ticket/12621): Fixed: Cannot remove inline
styles (bold, italic, etc.) in empty lines. *
[#12630](https://dev.ckeditor.com/ticket/12630): [Chrome] Fixed: Selection is
placed outside the paragraph when the [New
Page](https://ckeditor.com/cke4/addon/newpage) button is clicked. This patch
significantly simplified the way how the initial selection (a selection after
the content of the editable is overwritten) is being fixed. That might have
fixed many related scenarios in all browsers. *
[#11647](https://dev.ckeditor.com/ticket/11647): Fixed: The [`editor.blur`](http
s://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#event-blur)
event is not fired on first blur after initializing the inline editor on an
already focused element. * [#12601](https://dev.ckeditor.com/ticket/12601):
Fixed: [Strikethrough](https://ckeditor.com/cke4/addon/basicstyles) button
tooltip spelling. * [#12546](https://dev.ckeditor.com/ticket/12546): Fixed: The
Preview tab in the [Document
Properties](https://ckeditor.com/cke4/addon/docprops) dialog window is always
disabled. * [#12300](https://dev.ckeditor.com/ticket/12300): Fixed: The [`editor
.change`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#ev
ent-change) event fired on first navigation key press after typing. *
[#12141](https://dev.ckeditor.com/ticket/12141): Fixed: List items are lost when
indenting a list item with content wrapped with a block element. *
[#12515](https://dev.ckeditor.com/ticket/12515): Fixed: Cursor is in the wrong
position when undoing after adding an image and typing some text. *
[#12484](https://dev.ckeditor.com/ticket/12484): [Blink/WebKit] Fixed: DOM is
changed outside the editor area in a certain case. *
[#12688](https://dev.ckeditor.com/ticket/12688): Improved the tests of the
[styles
system](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.style.html) and
fixed two minor issues. * [#12403](https://dev.ckeditor.com/ticket/12403):
Fixed: Changing the [font](https://ckeditor.com/cke4/addon/font) style should
not lead to nesting it in the previous style element. *
[#12609](https://dev.ckeditor.com/ticket/12609): Fixed: Incorrect
`config.magicline_putEverywhere` name used for a [Magic
Line](https://ckeditor.com/cke4/addon/magicline) all-encompassing [`config.magic
line_everywhere`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_c…
.html#cfg-magicline_everywhere) configuration option. ## CKEditor 4.4.5 New
Features: * [#12279](https://dev.ckeditor.com/ticket/12279): Added a
possibility to pass a custom evaluator to [`node.getAscendant()`](https://ckedit
or.com/docs/ckeditor4/latest/api/CKEDITOR_dom_node.html#method-getAscendant)
Fixed Issues: * [#12423](https://dev.ckeditor.com/ticket/12423): [Safari7.1+]
Fixed: *Enter* key moved cursor to a strange position. *
[#12381](https://dev.ckeditor.com/ticket/12381): [iOS] Fixed: Selection issue.
Thanks to [Remiremi](https://github.com/Remiremi)! *
[#10804](https://dev.ckeditor.com/ticket/10804): Fixed: `CKEDITOR_GETURL` is not
used with some plugins where it should be used. Thanks to [Thomas
Andraschko](https://github.com/tandraschko)! *
[#9137](https://dev.ckeditor.com/ticket/9137): Fixed: The `<base>` tag is not
created when `<head>` has an attribute. Thanks to
[naoki.fujikawa](https://github.com/naoki-fujikawa)! *
[#12377](https://dev.ckeditor.com/ticket/12377): Fixed: Errors thrown in the
[Image](https://ckeditor.com/cke4/addon/image) plugin when removing preview from
the dialog window definition. Thanks to [Axinet](https://github.com/Axinet)! *
[#12162](https://dev.ckeditor.com/ticket/12162): Fixed: Auto paragraphing and
*Enter* key in nested editables. *
[#12315](https://dev.ckeditor.com/ticket/12315): Fixed: Marked [`config.autoPara
graph`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html…
autoParagraph) as deprecated. * [#12113](https://dev.ckeditor.com/ticket/12113):
Fixed: A [code snippet](https://ckeditor.com/cke4/addon/codesnippet) should be
presented in the [elements path](https://ckeditor.com/cke4/addon/elementspath)
as "code snippet" (translatable). *
[#12311](https://dev.ckeditor.com/ticket/12311): Fixed: [Remove
Format](https://ckeditor.com/cke4/addon/removeformat) should also remove
`<cite>` elements. * [#12261](https://dev.ckeditor.com/ticket/12261): Fixed: The
filter is not destroyed and removed from [`CKEDITOR.filter.instances`](https://c
keditor.com/docs/ckeditor4/latest/api/CKEDITOR_filter.html#static-property-
instances) on editor destroy. * [#12398](https://dev.ckeditor.com/ticket/12398):
Fixed: [Maximize](https://ckeditor.com/cke4/addon/maximize) does not work on an
instance without a
[title](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#…
title). * [#12097](https://dev.ckeditor.com/ticket/12097): Fixed: JAWS not
reading the number of options correctly in the [Text Color and Background
Color](https://ckeditor.com/cke4/addon/colorbutton) button menu. *
[#12411](https://dev.ckeditor.com/ticket/12411): Fixed: [Page
Break](https://ckeditor.com/cke4/addon/pagebreak) used directly in the editable
breaks the editor. * [#12354](https://dev.ckeditor.com/ticket/12354): Fixed:
Various issues in undo manager when holding keys. *
[#12324](https://dev.ckeditor.com/ticket/12324): [IE8] Fixed: Undo steps are not
recorded when changing the caret position by clicking below the body. *
[#12332](https://dev.ckeditor.com/ticket/12332): Fixed: Lowered DOM events
listeners' priorities in undo manager in order to avoid ambiguity. *
[#12402](https://dev.ckeditor.com/ticket/12402): [Blink] Fixed: Workaround for
Blink bug with `document.title` which breaks updating title in the full HTML
mode. * [#12338](https://dev.ckeditor.com/ticket/12338): Fixed: The CKEditor
package contains unoptimized images. ## CKEditor 4.4.4 Fixed Issues: *
[#12268](https://dev.ckeditor.com/ticket/12268): Cleanup of [UI
Color](https://ckeditor.com/cke4/addon/uicolor) YUI styles. Thanks to
[CasherWest](https://github.com/CasherWest)! *
[#12263](https://dev.ckeditor.com/ticket/12263): Fixed: [Paste from
Word](https://ckeditor.com/cke4/addon/pastefromword) filter does not properly
normalize semicolons style text. Thanks to [Alin
Purcaru](https://github.com/mesmerizero)! *
[#12243](https://dev.ckeditor.com/ticket/12243): Fixed: Text formatting lost
when pasting from Word. Thanks to [Alin
Purcaru](https://github.com/mesmerizero)! *
[#111739](https://dev.ckeditor.com/ticket/11739): Fixed: `keypress` listeners
should not be used in the undo manager. A complete rewrite of keyboard handling
in the undo manager was made. Numerous smaller issues were fixed, among others:
* [#10926](https://dev.ckeditor.com/ticket/10926): [Chrome@Android] Fixed:
Typing does not record snapshots and does not fire the [`editor.change`](https:/
/ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#event-change)
event. * [#11611](https://dev.ckeditor.com/ticket/11611): [Firefox] Fixed: The
[`editor.change`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor
.html#event-change) event is fired when pressing Arrow keys. *
[#12219](https://dev.ckeditor.com/ticket/12219): [Safari] Fixed: Some
modifications of the [`UndoManager.locked`](https://ckeditor.com/docs/ckeditor4/
latest/api/CKEDITOR_plugins_undo_UndoManager.html#property-locked) property
violate strict mode in the [Undo](https://ckeditor.com/cke4/addon/undo) plugin.
* [#10916](https://dev.ckeditor.com/ticket/10916): Fixed: [Magic
Line](https://ckeditor.com/cke4/addon/magicline) icon in Right-To-Left
environments. * [#11970](https://dev.ckeditor.com/ticket/11970): [IE] Fixed:
CKEditor `paste` event is not fired when pasting with *Shift+Ins*. *
[#12111](https://dev.ckeditor.com/ticket/12111): Fixed: Linked image attributes
are not read when opening the image dialog window by doubleclicking. *
[#10030](https://dev.ckeditor.com/ticket/10030): [IE] Fixed: Prevented
"Unspecified Error" thrown in various cases when IE8-9 does not allow access to
`document.activeElement`. * [#12273](https://dev.ckeditor.com/ticket/12273):
Fixed: Applying block style in a description list breaks it. *
[#12218](https://dev.ckeditor.com/ticket/12218): Fixed: Minor syntax issue in
CSS files. * [#12178](https://dev.ckeditor.com/ticket/12178): [Blink/WebKit]
Fixed: Iterator does not return the block if the selection is located at the end
of it. * [#12185](https://dev.ckeditor.com/ticket/12185): [IE9QM] Fixed: Error
thrown when moving the mouse over focused editor's scrollbar. *
[#12215](https://dev.ckeditor.com/ticket/12215): Fixed: Basepath resolution does
not recognize semicolon as a query separator. *
[#12135](https://dev.ckeditor.com/ticket/12135): Fixed: [Remove
Format](https://ckeditor.com/cke4/addon/removeformat) does not work on widgets.
* [#12298](https://dev.ckeditor.com/ticket/12298): [IE11] Fixed: Clicking below
`<body>` in Compatibility Mode will no longer reset selection to the first line.
* [#12204](https://dev.ckeditor.com/ticket/12204): Fixed: Editor's voice label
is not affected by [`config.title`](https://ckeditor.com/docs/ckeditor4/latest/a
pi/CKEDITOR_config.html#cfg-title). *
[#11915](https://dev.ckeditor.com/ticket/11915): Fixed: With
[SCAYT](https://ckeditor.com/cke4/addon/scayt) enabled, cursor moves to the
beginning of the first highlighted, misspelled word after typing or pasting into
the editor. * [SCAYT](https://github.com/WebSpellChecker/ckeditor-plugin-
scayt/issues/69): Fixed: Error thrown in the console after enabling
[SCAYT](https://ckeditor.com/cke4/addon/scayt) and trying to add a new image.
Other Changes: * [#12296](https://dev.ckeditor.com/ticket/12296): Merged
`benderjs-ckeditor` into the main CKEditor repository. ## CKEditor 4.4.3
**Security Updates:** * Fixed XSS vulnerability in the Preview plugin reported
by Mario Heiderich of [Cure53](https://cure53.de/). **An upgrade is highly
recommended!** New Features: *
[#12164](https://dev.ckeditor.com/ticket/12164): Added the "Justify" option to
the "Horizontal Alignment" drop-down in the Table Cell Properties dialog window.
Fixed Issues: * [#12110](https://dev.ckeditor.com/ticket/12110): Fixed: Editor
crash after deleting a table. Thanks to [Alin
Purcaru](https://github.com/mesmerizero)! *
[#11897](https://dev.ckeditor.com/ticket/11897): Fixed: *Enter* key used in an
empty list item creates a new line instead of breaking the list. Thanks to
[noam-si](https://github.com/noam-si)! *
[#12140](https://dev.ckeditor.com/ticket/12140): Fixed: Double-clicking linked
widgets opens two dialog windows. *
[#12132](https://dev.ckeditor.com/ticket/12132): Fixed: Image is inserted with
`width` and `height` styles even when they are not allowed. *
[#9317](https://dev.ckeditor.com/ticket/9317): [IE] Fixed: [`config.disableObjec
tResizing`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.…
cfg-disableObjectResizing) does not work on IE. **Note**: We were not able to
fix this issue on IE11+ because necessary events stopped working. See a [last
resort workaround](https://dev.ckeditor.com/ticket/9317#comment:16) and make
sure to [support our complaint to
Microsoft](https://connect.microsoft.com/IE/feedback/details/742593/please-
respect-execcommand-enableobjectresizing-in-contenteditable-elements). *
[#9638](https://dev.ckeditor.com/ticket/9638): Fixed: There should be no
information about accessibility help available under the *Alt+0* keyboard
shortcut if the [Accessibility Help](https://ckeditor.com/cke4/addon/a11yhelp)
plugin is not available. * [#8117](https://dev.ckeditor.com/ticket/8117) and
[#9186](https://dev.ckeditor.com/ticket/9186): Fixed: In HTML5 `<meta>` tags
should be allowed everywhere, including inside the `<body>` element. *
[#10422](https://dev.ckeditor.com/ticket/10422): Fixed: [`config.fillEmptyBlocks
`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
fillEmptyBlocks) not working properly if a function is specified. ## CKEditor
4.4.2 Important Notes: * The CKEditor testing environment is now publicly
available. Read more about how to set up the environment and execute tests in
the [CKEditor Testing
Environment](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_tests.htm…
guide. Please note that the
[`tests/`](https://github.com/ckeditor/ckeditor-dev/tree/master/tests) directory
which contains editor tests is not available in release packages. It can only be
found in the development version of CKEditor on
[GitHub](https://github.com/ckeditor/ckeditor-dev/). New Features: *
[#11909](https://dev.ckeditor.com/ticket/11909): Introduced a parameter to
prevent the [`editor.setData()`](https://ckeditor.com/docs/ckeditor4/latest/api/
CKEDITOR_editor.html#method-setData) method from recording undo snapshots.
Fixed Issues: * [#11757](https://dev.ckeditor.com/ticket/11757): Fixed:
Imperfections in the [Moono](https://ckeditor.com/cke4/addon/moono) skin. Thanks
to [danyaPostfactum](https://github.com/danyaPostfactum)! *
[#10091](https://dev.ckeditor.com/ticket/10091): Blockquote should be treated
like an object by the styles system. Thanks to [dan-james-
deeson](https://github.com/dan-james-deeson)! *
[#11478](https://dev.ckeditor.com/ticket/11478): Fixed: Issue with passing
jQuery objects to
[adapter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_jquery.html)
configuration. * [#10867](https://dev.ckeditor.com/ticket/10867): Fixed: Issue
with setting encoded URI as image link. *
[#11983](https://dev.ckeditor.com/ticket/11983): Fixed: Clicking a nested widget
does not focus it. Additionally, performance of the [`widget.repository.getByEle
ment()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_wi…
repository.html#method-getByElement) method was improved. *
[#12000](https://dev.ckeditor.com/ticket/12000): Fixed: Nested widgets should be
initialized on [`editor.setData()`](https://ckeditor.com/docs/ckeditor4/latest/a
pi/CKEDITOR_editor.html#method-setData) and [`nestedEditable.setData()`](https:/
/ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_widget_nestedEditable.h
tml#method-setData). * [#12022](https://dev.ckeditor.com/ticket/12022): Fixed:
Outer widget's drag handler is not created at all if it has any nested widgets
inside. * [#11960](https://dev.ckeditor.com/ticket/11960): [Blink/WebKit] Fixed:
The caret should be scrolled into view on *Backspace* and *Delete* (covers only
the merging blocks case). * [#11306](https://dev.ckeditor.com/ticket/11306):
[OSX][Blink/WebKit] Fixed: No widget entries in the context menu on widget
right-click. * [#11957](https://dev.ckeditor.com/ticket/11957): Fixed: Alignment
labels in the [Enhanced Image](https://ckeditor.com/cke4/addon/image2) dialog
window are not translated. * [#11980](https://dev.ckeditor.com/ticket/11980):
[Blink/WebKit] Fixed: `<span>` elements created when joining adjacent elements
(non-collapsed selection). * [#12009](https://dev.ckeditor.com/ticket/12009):
[Nested widgets] Integration with the [Magic
Line](https://ckeditor.com/cke4/addon/magicline) plugin. *
[#11387](https://dev.ckeditor.com/ticket/11387): Fixed: `role="radiogroup"`
should be applied only to radio inputs' container. *
[#7975](https://dev.ckeditor.com/ticket/7975): [IE8] Fixed: Errors when trying
to select an empty table cell. *
[#11947](https://dev.ckeditor.com/ticket/11947): [Firefox+IE11] Fixed:
*Shift+Enter* in lists produces two line breaks. *
[#11972](https://dev.ckeditor.com/ticket/11972): Fixed: Feature detection in the
[`element.setText()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_do
m_element.html#method-setText) method should not trigger the layout engine. *
[#7634](https://dev.ckeditor.com/ticket/7634): Fixed: The [Flash
Dialog](https://ckeditor.com/cke4/addon/flash) plugin omits the
`allowFullScreen` parameter in the editor data if set to `true`. *
[#11910](https://dev.ckeditor.com/ticket/11910): Fixed: [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) does not take [`config.baseHref`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
baseHref) into account when updating image dimensions. *
[#11753](https://dev.ckeditor.com/ticket/11753): Fixed: Wrong [`checkDirty()`](h
ttps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#method-
checkDirty) method value after focusing or blurring a widget. *
[#11830](https://dev.ckeditor.com/ticket/11830): Fixed: Impossible to pass some
arguments to [CKBuilder](https://github.com/ckeditor/ckbuilder) when using the
`/dev/builder/build.sh` script. *
[#11945](https://dev.ckeditor.com/ticket/11945): Fixed: [Form
Elements](https://ckeditor.com/cke4/addon/forms) plugin should not change a core
method. * [#11384](https://dev.ckeditor.com/ticket/11384): [IE9+] Fixed:
`IndexSizeError` thrown when pasting into a non-empty selection anchored in one
text node. ## CKEditor 4.4.1 New Features: *
[#9661](https://dev.ckeditor.com/ticket/9661): Added the option to [configure](h
ttps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
linkJavaScriptLinksAllowed) anchor tags with JavaScript code in the `href`
attribute. Fixed Issues: * [#11861](https://dev.ckeditor.com/ticket/11861):
[WebKit/Blink] Fixed: Span elements created while joining adjacent elements.
**Note:** This patch only covers cases when *Backspace* or *Delete* is pressed
on a collapsed (empty) selection. The remaining case, with a non-empty
selection, will be fixed in the next release. *
[#10714](https://dev.ckeditor.com/ticket/10714): [iOS] Fixed: Selection and
drop-downs are broken if a touch event listener is used due to a [WebKit
bug](https://bugs.webkit.org/show_bug.cgi?id=128924). Thanks to [Arty
Gus](https://github.com/artygus)! *
[#11911](https://dev.ckeditor.com/ticket/11911): Fixed setting the `dir`
attribute for a preloaded language in [CKEDITOR.lang](https://ckeditor.com/docs/
ckeditor4/latest/api/CKEDITOR.lang.html). Thanks to [Akash
Mohapatra](https://github.com/akashmohapatra)! *
[#11926](https://dev.ckeditor.com/ticket/11926): Fixed: [Code
Snippet](https://ckeditor.com/cke4/addon/codesnippet) does not decode HTML
entities when loading code from the `<code>` element. *
[#11223](https://dev.ckeditor.com/ticket/11223): Fixed: Issue when [Protected
Source](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html…
protectedSource) was not working in the `<title>` element. *
[#11859](https://dev.ckeditor.com/ticket/11859): Fixed: Removed the [Source
Dialog](https://ckeditor.com/cke4/addon/sourcedialog) plugin dependency from the
[Code Snippet](https://ckeditor.com/cke4/addon/codesnippet) sample. *
[#11754](https://dev.ckeditor.com/ticket/11754): [Chrome] Fixed: Infinite loop
when content includes not closed attributes. *
[#11848](https://dev.ckeditor.com/ticket/11848): [IE] Fixed: [`editor.insertElem
ent()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html…
od-insertElement) throwing an exception when there was no selection in the
editor. * [#11801](https://dev.ckeditor.com/ticket/11801): Fixed: Editor anchors
unavailable when linking the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) widget. *
[#11626](https://dev.ckeditor.com/ticket/11626): Fixed: [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) sets invalid column width.
* [#11872](https://dev.ckeditor.com/ticket/11872): Made [`element.addClass()`](h
ttps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_element.html#met…
addClass) chainable symmetrically to [`element.removeClass()`](https://ckeditor.
com/docs/ckeditor4/latest/api/CKEDITOR_dom_element.html#method-removeClass). *
[#11813](https://dev.ckeditor.com/ticket/11813): Fixed: Link lost while pasting
a captioned image and restoring an undo snapshot ([Enhanced
Image](https://ckeditor.com/cke4/addon/image2)) *
[#11814](https://dev.ckeditor.com/ticket/11814): Fixed: _Link_ and _Unlink_
entries persistently displayed in the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) context menu. *
[#11839](https://dev.ckeditor.com/ticket/11839): [IE9] Fixed: The caret jumps
out of the editable area when resizing the editor in the source mode. *
[#11822](https://dev.ckeditor.com/ticket/11822): [WebKit] Fixed: Editing anchors
by double-click is broken in some cases. *
[#11823](https://dev.ckeditor.com/ticket/11823): [IE8] Fixed: [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) throws an error over
scrollbar. * [#11788](https://dev.ckeditor.com/ticket/11788): Fixed: It is not
possible to change the language back to _Not set_ in the [Code
Snippet](https://ckeditor.com/cke4/addon/codesnippet) dialog window. *
[#11788](https://dev.ckeditor.com/ticket/11788): Fixed: [Filter](https://ckedito
r.com/docs/ckeditor4/latest/api/CKEDITOR.htmlParser.filter.html) rules are not
applied inside elements with the `contenteditable` attribute set to `true`. *
[#11798](https://dev.ckeditor.com/ticket/11798): Fixed: Inserting a non-editable
element inside a table cell breaks the table. *
[#11793](https://dev.ckeditor.com/ticket/11793): Fixed: Drop-down is not "on"
when clicking it while the editor is blurred. *
[#11850](https://dev.ckeditor.com/ticket/11850): Fixed: Fake objects with the
`contenteditable` attribute set to `false` are not downcasted properly. *
[#11811](https://dev.ckeditor.com/ticket/11811): Fixed: Widget's data is not
encoded correctly when passed to an attribute. *
[#11777](https://dev.ckeditor.com/ticket/11777): Fixed encoding ampersand in the
[Mathematical Formulas](https://ckeditor.com/cke4/addon/mathjax) plugin. *
[#11880](https://dev.ckeditor.com/ticket/11880): [IE8-9] Fixed: Linked image has
a default thick border. Other Changes: *
[#11807](https://dev.ckeditor.com/ticket/11807): Updated jQuery version used in
the sample to 1.11.0 and tested CKEditor jQuery Adapter with version 1.11.0 and
2.1.0. * [#9504](https://dev.ckeditor.com/ticket/9504): Stopped using deprecated
`attribute.specified` in all browsers except Internet Explorer. *
[#11809](https://dev.ckeditor.com/ticket/11809): Changed tab size in `<pre>` to
4 spaces. ## CKEditor 4.4 **Important Notes:** * Marked the [`editor.beforePa
ste`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#e…
beforePaste) event as deprecated. * The default class of captioned images has
changed to `image` (was: `caption`). Please note that once edited in CKEditor
4.4+, all existing images of the `caption` class (`<figure class="caption">`)
will be [filtered out](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_adva
nced_content_filter.html) unless the [`config.image2_captionedClass`](https://ck
editor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
image2_captionedClass) option is set to `caption`. For backward compatibility
(i.e. when upgrading), it is highly recommended to use this setting, which also
helps prevent CSS conflicts, etc. This does not apply to new CKEditor
integrations. * Widgets without defined buttons are no longer registered
automatically to the [Advanced Content Filter](https://ckeditor.com/docs/ckedito
r4/latest/guide/dev_advanced_content_filter.html). Before CKEditor 4.4 widgets
were registered to the ACF which was an incorrect behavior
([#11567](https://dev.ckeditor.com/ticket/11567)). This change should not have
any impact on standard scenarios, but if your button does not execute the widget
command, you need to set [`allowedContent`](https://ckeditor.com/docs/ckeditor4/
latest/api/CKEDITOR_feature.html#property-allowedContent) and [`requiredContent`
](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_feature.html#property-
requiredContent) properties for it manually, because the editor will not be able
to find them. * The [Show Borders](https://ckeditor.com/cke4/addon/showborders)
plugin was added to the Standard installation package in order to ensure that
unstyled tables are still visible for the user
([#11665](https://dev.ckeditor.com/ticket/11665)). * Since CKEditor 4.4 the
editor instance should be passed to [`CKEDITOR.style`](https://ckeditor.com/docs
/ckeditor4/latest/api/CKEDITOR.style.html) methods to ensure full compatibility
with other features (e.g. applying styles to widgets requires that). We ensured
backward compatibility though, so the [`CKEDITOR.style`](https://ckeditor.com/do
cs/ckeditor4/latest/api/CKEDITOR.style.html) will work even when the editor
instance is not provided. New Features: *
[#11297](https://dev.ckeditor.com/ticket/11297): Styles can now be applied to
widgets. The definition of a style which can be applied to a specific widget
must contain two additional properties — `type` and `widget`. Read more in
the [Widget
Styles](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_styles.html#wi…
styles) section of the "Syles Drop-down" guide. Note that by default, widgets
support only classes and no other attributes or styles. Related changes and
features: * Introduced the [`CKEDITOR.style.addCustomHandler()`](https://ckedi
tor.com/docs/ckeditor4/latest/api/CKEDITOR_style.html#static-method-
addCustomHandler) method for registering custom style handlers. * The [`CKEDIT
OR.style.apply()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_…
.html#method-apply) and [`CKEDITOR.style.remove()`](https://ckeditor.com/docs/ck
editor4/latest/api/CKEDITOR_style.html#method-remove) methods are now called
with an editor instance instead of the document so they can be reused by the [`C
KEDITOR.editor.applyStyle()`](https://ckeditor.com/docs/ckeditor4/latest/ap…
DITOR_editor.html#method-applyStyle) and [`CKEDITOR.editor.removeStyle()`](https
://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.html#method-
removeStyle) methods. Backward compatibility was preserved, but from CKEditor
4.4 it is highly recommended to pass an editor instead of a document to these
methods. * Many new methods and properties were introduced in the [Widget API]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.plugins.widget.html) to
make the handling of styles by widgets fully customizable. See: [`widget.definit
ion.styleableElements`](https://ckeditor.com/docs/ckeditor4/latest/api/CKED…
plugins_widget_definition.html#property-styleableElements), [`widget.definition.
styleToAllowedContentRule`](https://ckeditor.com/docs/ckeditor4/latest/api/…
TOR_plugins_widget_definition.html#property-styleToAllowedContentRules), [`widge
t.addClass()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plug…
idget.html#method-addClass), [`widget.removeClass()`](https://ckeditor.com/docs/
ckeditor4/latest/api/CKEDITOR_plugins_widget.html#method-removeClass), [`widget.
getClasses()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plug…
idget.html#method-getClasses), [`widget.hasClass()`](https://ckeditor.com/docs/c
keditor4/latest/api/CKEDITOR_plugins_widget.html#method-hasClass), [`widget.appl
yStyle()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_…
t.html#method-applyStyle), [`widget.removeStyle()`](https://ckeditor.com/docs/ck
editor4/latest/api/CKEDITOR_plugins_widget.html#method-removeStyle), [`widget.ch
eckStyleActive()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_…
ns_widget.html#method-checkStyleActive). * Integration with the [Allowed
Content Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_co
ntent_filter.html) required an introduction of the [`CKEDITOR.style.toAllowedCon
tent()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_style.html…
od-toAllowedContentRules) method which can be implemented by the custom style
handler and if exists, it is used by the [`CKEDITOR.filter`](https://ckeditor.co
m/docs/ckeditor4/latest/api/CKEDITOR.filter.html) to translate a style to
[allowed content rules](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.
filter.allowedContentRules.html). *
[#11300](https://dev.ckeditor.com/ticket/11300): Various changes in the
[Enhanced Image](https://ckeditor.com/cke4/addon/image2) plugin: * Introduced
the [`config.image2_captionedClass`](https://ckeditor.com/docs/ckeditor4/latest/
api/CKEDITOR_config.html#cfg-image2_captionedClass) option to configure the
class of captioned images. * Introduced the [`config.image2_alignClasses`](htt
ps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
image2_alignClasses) option to configure the way images are aligned with CSS
classes. If this setting is defined, the editor produces classes instead of
inline styles for aligned images. * Default image caption can be translated
(customized) with the `editor.lang.image2.captionPlaceholder` string. *
[#11341](https://dev.ckeditor.com/ticket/11341): [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) plugin: It is now possible to add
a link to any image type. * [#10202](https://dev.ckeditor.com/ticket/10202):
Introduced wildcard support in the [Allowed Content Rules](https://ckeditor.com/
docs/ckeditor4/latest/guide/dev_allowed_content_rules.html) format. *
[#10276](https://dev.ckeditor.com/ticket/10276): Introduced blacklisting in the
[Allowed Content Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_ad
vanced_content_filter.html). * [#10480](https://dev.ckeditor.com/ticket/10480):
Introduced code snippets with code highlighting. There are two versions
available so far — the default [Code
Snippet](https://ckeditor.com/cke4/addon/codesnippet) which uses the
[highlight.js](http://highlightjs.org) library and the [Code Snippet
GeSHi](https://ckeditor.com/cke4/addon/codesnippetgeshi) which uses the
[GeSHi](http://qbnz.com/highlighter/) library. *
[#11737](https://dev.ckeditor.com/ticket/11737): Introduced an option to prevent
[filtering](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_co…
t_filter.html) of an element that matches custom criteria (see [`filter.addEleme
ntCallback()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_filt…
ml#method-addElementCallback)). *
[#11532](https://dev.ckeditor.com/ticket/11532): Introduced the [`editor.addCont
entsCss()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.…
method-addContentsCss) method that can be used for [adding custom CSS
files](https://ckeditor.com/docs/ckeditor4/latest/guide/plugin_sdk_styles.h….
* [#11536](https://dev.ckeditor.com/ticket/11536): Added the [`CKEDITOR.tools.ht
mlDecode()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_tools.…
method-htmlDecode) method for decoding HTML entities. *
[#11225](https://dev.ckeditor.com/ticket/11225): Introduced the [`CKEDITOR.tools
.transparentImageData`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_
tools.html#property-transparentImageData) property which contains transparent
image data to be used in CSS or as image source. Other Changes: *
[#11377](https://dev.ckeditor.com/ticket/11377): Unified internal representation
of empty anchors using the [fake
objects](https://ckeditor.com/cke4/addon/fakeobjects). *
[#11422](https://dev.ckeditor.com/ticket/11422): Removed Firefox 3.x, Internet
Explorer 6 and Opera 12.x leftovers in code. *
[#5217](https://dev.ckeditor.com/ticket/5217): Setting data (including switching
between modes) creates a new undo snapshot. Besides that: * Introduced the [`e
ditable.status`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_ed…
e.html#property-status) property. * Introduced a new `forceUpdate` option for
the [`editor.lockSnapshot`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDI
TOR_editor.html#event-lockSnapshot) event. * Fixed: Selection not being
unlocked in inline editor after setting data
([#11500](https://dev.ckeditor.com/ticket/11500)). * The
[WebSpellChecker](https://ckeditor.com/cke4/addon/wsc) plugin was updated to the
latest version. Fixed Issues: *
[#10190](https://dev.ckeditor.com/ticket/10190): Fixed: Removing block style
with [`editor.removeStyle()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKE
DITOR_editor.html#method-removeStyle) should result in a paragraph and not a
div. * [#11727](https://dev.ckeditor.com/ticket/11727): Fixed: The editor tries
to select a non-editable image which was clicked. ## CKEditor 4.3.5 New
Features: * Added new translation: Tatar. Fixed Issues: *
[#11677](https://dev.ckeditor.com/ticket/11677): Fixed: Undo/Redo keystrokes are
blocked in the source mode. * [#11717](https://dev.ckeditor.com/ticket/11717):
[Document Properties](https://ckeditor.com/cke4/addon/docprops) plugin requires
the [Color Dialog](https://ckeditor.com/cke4/addon/colordialog) plugin to work.
## CKEditor 4.3.4 Fixed Issues: *
[#11597](https://dev.ckeditor.com/ticket/11597): [IE11] Fixed: Error thrown when
trying to open the [preview](https://ckeditor.com/cke4/addon/preview) using the
keyboard. * [#11544](https://dev.ckeditor.com/ticket/11544):
[Placeholders](https://ckeditor.com/cke4/addon/placeholder) will no longer be
upcasted in parents not accepting `<span>` elements. *
[#8663](https://dev.ckeditor.com/ticket/8663): Fixed [`element.renameNode()`](ht
tps://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_element.html#meth…
renameNode) not clearing the [`element.getName()`](https://ckeditor.com/docs/cke
ditor4/latest/api/CKEDITOR_dom_element.html#method-getName) cache. *
[#11574](https://dev.ckeditor.com/ticket/11574): Fixed: *Backspace* destroying
the DOM structure if an inline editable is placed in a list item. *
[#11603](https://dev.ckeditor.com/ticket/11603): Fixed: [Table
Resize](https://ckeditor.com/cke4/addon/tableresize) attaches to tables outside
the editable. * [#9205](https://dev.ckeditor.com/ticket/9205),
[#7805](https://dev.ckeditor.com/ticket/7805),
[#8216](https://dev.ckeditor.com/ticket/8216): Fixed: `{cke_protected_1}`
appearing in data in various cases where HTML comments are placed next to `"` or
`'`. * [#11635](https://dev.ckeditor.com/ticket/11635): Fixed: Some attributes
are not protected before the content is passed through the fix bin. *
[#11660](https://dev.ckeditor.com/ticket/11660): [IE] Fixed: Table content is
lost when some extra markup is inside the table. *
[#11641](https://dev.ckeditor.com/ticket/11641): Fixed: Switching between modes
in the classic editor removes content styles for the inline editor. *
[#11568](https://dev.ckeditor.com/ticket/11568): Fixed:
[Styles](https://ckeditor.com/cke4/addon/stylescombo) drop-down list is not
enabled on selection change. ## CKEditor 4.3.3 Fixed Issues: *
[#11500](https://dev.ckeditor.com/ticket/11500): [WebKit/Blink] Fixed: Selection
lost when setting data in another inline editor. Additionally, [`selection.remov
eAllRanges()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_…
tion.html#method-removeAllRanges) is now scoped to selection's [root](https://ck
editor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_selection.html#property-r…)
* [#11104](https://dev.ckeditor.com/ticket/11104): [IE] Fixed: Various issues
with scrolling and selection when focusing widgets. *
[#11487](https://dev.ckeditor.com/ticket/11487): Moving mouse over the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) widget will no longer change the
value returned by the [`editor.checkDirty()`](https://ckeditor.com/docs/ckeditor
4/latest/api/CKEDITOR_editor.html#method-checkDirty) method. *
[#8673](https://dev.ckeditor.com/ticket/8673): [WebKit] Fixed: Cannot select and
remove the [Page Break](https://ckeditor.com/cke4/addon/pagebreak). *
[#11413](https://dev.ckeditor.com/ticket/11413): Fixed: Incorrect [`editor.execC
ommand()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_editor.h…
ethod-execCommand) behavior. * [#11438](https://dev.ckeditor.com/ticket/11438):
Splitting table cells vertically is no longer changing table structure. *
[#8899](https://dev.ckeditor.com/ticket/8899): Fixed: Links in the [About
CKEditor](https://ckeditor.com/cke4/addon/about) dialog window now open in a new
browser window or tab. * [#11490](https://dev.ckeditor.com/ticket/11490): Fixed:
[Menu button](https://ckeditor.com/cke4/addon/menubutton) panel not showing in
the source mode. * [#11417](https://dev.ckeditor.com/ticket/11417): The [`widget
.doubleclick`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_plugins_w
idget.html#event-doubleclick) event is not canceled anymore after editing was
triggered. * [#11253](https://dev.ckeditor.com/ticket/11253): [IE] Fixed:
Clipped upload button in the [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) dialog window. *
[#11359](https://dev.ckeditor.com/ticket/11359): Standardized the way anchors
are discovered by the [Link](https://ckeditor.com/cke4/addon/link) plugin. *
[#11058](https://dev.ckeditor.com/ticket/11058): [IE8] Fixed: Error when
deleting a table row. * [#11508](https://dev.ckeditor.com/ticket/11508): Fixed:
[`htmlDataProcessor`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.ht
mlDataProcessor.html) discovering protected attributes within other attributes'
values. * [#11533](https://dev.ckeditor.com/ticket/11533): Widgets: Avoid
recurring upcasts if the DOM structure was modified during an upcast. *
[#11400](https://dev.ckeditor.com/ticket/11400): Fixed: The [`domObject.removeAl
lListeners()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dom_…
ject.html#method-removeAllListeners) method does not remove custom listeners
completely. * [#11493](https://dev.ckeditor.com/ticket/11493): Fixed: The [`sele
ction.getRanges()`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR…
selection.html#method-getRanges) method does not override cached ranges when
used with the `onlyEditables` argument. *
[#11390](https://dev.ckeditor.com/ticket/11390): [IE] All
[XML](https://ckeditor.com/cke4/addon/xml) plugin
[methods](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR.xml.html) now
work in IE10+. * [#11542](https://dev.ckeditor.com/ticket/11542): [IE11] Fixed:
Blurry toolbar icons when Right-to-Left UI language is set. *
[#11504](https://dev.ckeditor.com/ticket/11504): Fixed: When [`config.fullPage`]
(https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-
fullPage) is set to `true`, entities are not encoded in editor output. *
[#11004](https://dev.ckeditor.com/ticket/11004): Integrated [Enhanced
Image](https://ckeditor.com/cke4/addon/image2) dialog window with [Advanced
Content Filter](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_co
ntent_filter.html). * [#11439](https://dev.ckeditor.com/ticket/11439): Fixed:
Properties get cloned in the Cell Properties dialog window if multiple cells are
selected.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Feb 24 2019 Shawn Iwinski <shawn(a)iwin.ski> - 4.11.2-2
- Fix EPEL6 build error (BUILDSTDERR: error: Explicit file attributes required
in spec for: /builddir/build/BUILDROOT/ckeditor-4.11.2-1.el6.noarch/usr/share/ckeditor.rpmmoved)
* Sun Feb 24 2019 Shawn Iwinski <shawn(a)iwin.ski> - 4.11.2-1
- Update to 4.11.2 (RHBZ #1651703 / RHBZ #1651704 / RHBZ #1651705 / CVE-2018-17960)
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.9.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.9.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Sun Apr 29 2018 Shawn Iwinski <shawn(a)iwin.ski> - 4.9.2-1
- Update to 4.9.2 (RHBZ #1556589)
- Fix license files
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.8.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Dec 14 2017 Shawn Iwinski <shawn(a)iwin.ski> - 4.8.0-1
- Update to 4.8.0 (RHBZ #1525735)
* Sun Oct 8 2017 Shawn Iwinski <shawn(a)iwin.ski> - 4.7.3-1
- Update to 4.7.3 (RHBZ #1491261)
* Wed Aug 30 2017 Shawn Iwinski <shawn(a)iwin.ski> - 4.7.2-1
- Update to 4.7.2 (RHBZ #1482711)
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.7.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sat Jul 8 2017 Shawn Iwinski <shawn(a)iwin.ski> - 4.7.1-1
- Update to 4.7.1 (RHBZ #1455719)
* Mon Mar 6 2017 Shawn Iwinski <shawn(a)iwin.ski> - 4.6.2-1
- Update to 4.6.2 (RHBZ #1070102, RHBZ #1295348)
- CVE-2014-5191 (RHBZ #1139487)
- Update spec to use web assets packaging guidelines
* Wed Feb 3 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.3.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Wed Jun 17 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 4.3.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 4.3.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1597924 - ckeditor-4.11.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1597924
[ 2 ] Bug #1651705 - CVE-2018-17960 ckeditor: XSS involving a source-mode paste [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1651705
--------------------------------------------------------------------------------
================================================================================
drupal7-link-1.6-1.el6 (FEDORA-EPEL-2019-40f7b43583)
Defines simple link field types
--------------------------------------------------------------------------------
Update Information:
- https://www.drupal.org/project/link/releases/7.x-1.6 -
https://www.drupal.org/sa-contrib-2019-020 - https://www.drupal.org/sa-
core-2019-003 - https://www.drupal.org/project/link/releases/7.x-1.5 -
https://www.drupal.org/project/link/releases/7.x-1.5-beta3
--------------------------------------------------------------------------------
ChangeLog:
* Sun Feb 24 2019 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 1.6-1
- Update to 1.6 (RHBZ #1547794 / SA-CORE-2019-003)
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5-0.4.beta2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5-0.3.beta2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5-0.2.beta2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Mon Sep 18 2017 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 1.5-0.1.beta2
- Updated to 1.5-beta2 (RHBZ #1475049)
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Feb 10 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547794 - drupal7-link-1.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1547794
--------------------------------------------------------------------------------
================================================================================
php-erusev-parsedown-1.7.1-1.el6 (FEDORA-EPEL-2019-e03bfc2dd8)
Markdown parser in PHP
--------------------------------------------------------------------------------
Update Information:
## 1.7.1 - \#475: "Loose" lists will now contain paragraphs in all items, not
just some. - \#433: Links will no longer be double nested - \#525: The info-
string when beginning a code block may now contain non-word characters (e.g.
`c++`) - \#561: The `mbstring` extension (which we already depend on) has been
added explicitly to `composer.json` - \#563: The `Parsedown::version` constant
now matches the release version - \#560: Builds will now fail if we forget to
update the version constant again ## 1.7.0 CVE-2018-1000162 - Merge pull
request #495 from aidantwoods/anti-xss - Prevent various XSS attacks (rebase and
update of #276) ## 1.6.4 - Merge pull request #539 from gabriel-caruso/phpunit
- Use `PHPUnit\Framework\TestCase` instead of `PHPUnit_Framework_TestCase`
--------------------------------------------------------------------------------
ChangeLog:
* Sun Feb 24 2019 Shawn Iwinski <shawn(a)iwin.ski> - 1.7.1-1
- Update to 1.7.1 (RHBZ #1569512 / RHBZ #1569513 / RHBZ #1569514 / CVE-2018-1000162)
* Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.4-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.4-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Dec 14 2017 Shawn Iwinski <shawn(a)iwin.ski> - 1.6.4-1
- Update to 1.6.4 (RHBZ #1513209)
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1569513 - CVE-2018-1000162 php-erusev-parsedown: Cross Site Scripting in `setMarkupEscaped` [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1569513
[ 2 ] Bug #1569514 - CVE-2018-1000162 php-erusev-parsedown: Cross Site Scripting in `setMarkupEscaped` [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1569514
--------------------------------------------------------------------------------
The following Fedora EPEL 7 Security updates need testing:
Age URL
209 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-f9d6ff695a bibutils-6.6-1.el7 ghc-hs-bibutils-6.6.0.0-1.el7 pandoc-citeproc-0.3.0.1-4.el7
193 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d condor-8.6.11-1.el7
67 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b6fa6cebc3 game-music-emu-0.6.2-1.el7
64 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b43fdd19c3 vcftools-0.1.16-1.el7
37 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-17b3c81533 cacti-1.2.0-1.el7 cacti-spine-1.2.0-2.el7
23 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bd6a1ae962 pdns-recursor-4.1.9-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-5f60a8861f kf5-kauth-5.52.0-2.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0911253d1e python-django-1.11.20-1.el7
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-d3013595f2 ignition-0.31.0-1.gitf59a653.el7
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-84bd195679 koji-1.16.2-1.el7
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0593f2795d distcc-3.2rc1-22.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-5f2f93029f ansible-2.7.8-1.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-ac11c6484b php-Smarty-3.1.33-1.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-f8311ec8a2 tor-0.3.5.8-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
canl-java-2.6.0-1.el7
drupal7-7.64-1.el7
netatalk-3.1.12-2.el7
opentrep-0.07.1-2.el7
python3-docutils-0.12-0.9.20140510svn7747.el7
Details about builds:
================================================================================
canl-java-2.6.0-1.el7 (FEDORA-EPEL-2019-a1bee8cdd5)
EMI Common Authentication library - bindings for Java
--------------------------------------------------------------------------------
Update Information:
Version 2.6.0.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 2.6.0-1
- Update to 2.6.0
- Drop patch canl-java-javadoc.patch (previously backported)
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.5.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.5.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.5.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
drupal7-7.64-1.el7 (FEDORA-EPEL-2019-692b279183)
An open-source content-management platform
--------------------------------------------------------------------------------
Update Information:
- https://www.drupal.org/project/drupal/releases/7.64 -
https://www.drupal.org/project/drupal/releases/7.63 -
https://www.drupal.org/project/drupal/releases/7.62 -
https://www.drupal.org/SA-CORE-2019-001 - https://www.drupal.org/SA-
CORE-2019-002 - https://www.drupal.org/project/drupal/releases/7.61
--------------------------------------------------------------------------------
ChangeLog:
* Sat Feb 23 2019 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 7.64-1
- Update to 7.64 (RHBZ #1673206)
- https://www.drupal.org/SA-CORE-2019-001
- https://www.drupal.org/SA-CORE-2019-002
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 7.60-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1679953 - Security updates for Drupal7
https://bugzilla.redhat.com/show_bug.cgi?id=1679953
[ 2 ] Bug #1673206 - drupal7-7.64 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1673206
--------------------------------------------------------------------------------
================================================================================
netatalk-3.1.12-2.el7 (FEDORA-EPEL-2019-ad5dde4ffd)
Open Source Apple Filing Protocol(AFP) File Server
--------------------------------------------------------------------------------
Update Information:
fix license
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1658199 - Review Request: netatalk - Open Source Apple Filing Protocol(AFP) File Server
https://bugzilla.redhat.com/show_bug.cgi?id=1658199
--------------------------------------------------------------------------------
================================================================================
opentrep-0.07.1-2.el7 (FEDORA-EPEL-2019-574d904e91)
C++ library providing a clean API for parsing travel-focused requests
--------------------------------------------------------------------------------
Update Information:
OpenTrep aims at providing a clean API, and the corresponding C++
implementation, for parsing travel-focused requests (e.g., "washington dc
beijing monday a/r +aa -ua 1 week 2 adults 1 dog"). OpenTrep uses Xapian
(http://www.xapian.org) for the Information Retrieval part, on freely available
travel-related data (e.g., country names and codes, city names and codes,
airline names and codes, etc.). OpenTrep exposes a simple, clean and object-
oriented, API. For instance, the static Parse() method takes, as input, a string
containing the travel request, and yields, as output, the list of the recognised
terms as well as their corresponding types. As an example, the travel request
"washington dc beijing monday a/r +aa -ua 1 week 2 adults 1 dog" would give the
following list: * Origin airport: Washington, DC, USA * Destination airport:
Beijing, China * Date of travel: next Monday * Date of return: 1 week after
next Monday * Preferred airline: American Airlines; non-preferred airline:
United Airlines * Number of travellers: 2 adults and a dog The output can
then be used by other systems, for instance to book the corresponding travel or
to visualise it on a map and calendar and to share it with others. OpenTrep
makes an extensive use of existing open-source libraries for increased
functionality, speed and accuracy. In particular the Boost (C++ Standard
Extensions: http://www.boost.org) library is used.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #866265 - Review Request: opentrep - C++ API for parsing travel-focused requests
https://bugzilla.redhat.com/show_bug.cgi?id=866265
--------------------------------------------------------------------------------
================================================================================
python3-docutils-0.12-0.9.20140510svn7747.el7 (FEDORA-EPEL-2019-ea1b570909)
System for processing plaintext documentation
--------------------------------------------------------------------------------
Update Information:
build for python36
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 16 2019 Scott K Logan <logans(a)cottsay.net> - 0.12-0.9.20140510svn7747
- Add Python 3.6 sub-package
--------------------------------------------------------------------------------
COPR builds against CentOS, EPEL builds against RHEL, which can lead to
differences. Bringing in the EPEL list to see what others have to say.
But my RHEL7 seven machine can see it:
python2-oauthlib.noarch 2.0.1-8.el7 rhel-7-server-rpms
On 2/23/19 2:36 PM, Chris wrote:
> > Perhaps a link to the koji build might be helpful?
>
> Certainly,
>
> Here is a working Copr link:
> https://copr.fedorainfracloud.org/coprs/build/861900/
>
> Same .src.rpm, here is a failing Koji one:
> https://koji.fedoraproject.org/koji/taskinfo?taskID=32993375
>
> Here is the COPR post output:
> copr-cli build apprise python-apprise-0.7.3-1.el7.nuxref.src.rpm
> Uploading package python-apprise-0.7.3-1.el7.nuxref.src.rpm
> 100% |################################| 589kB 1.4MB/s eta 0:00:00
> Build was added to apprise:
> https://copr.fedorainfracloud.org/coprs/build/861900/
> Created builds: 861900
> Watching build(s): (this may be safely interrupted)
> 15:58:20 Build 861900: pending
> 15:58:51 Build 861900: running
> 16:02:25 Build 861900: succeeded
>
>
> Where as here is the Koji one:
> koji build --scratch epel7 python-apprise-0.7.3-1.el7.nuxref.src.rpm
> Uploading srpm: python-apprise-0.7.3-1.el7.nuxref.src.rpm
> [====================================] 100% 00:00:00 566.16 KiB 756.73
> KiB/sec
> Created task: 32993375
> Task info: https://koji.fedoraproject.org/koji/taskinfo?taskID=32993375
> Watching tasks (this may be safely interrupted)...
> 32993375 build (epel7, python-apprise-0.7.3-1.el7.nuxref.src.rpm): free
> 32993375 build (epel7, python-apprise-0.7.3-1.el7.nuxref.src.rpm): free
> -> open (buildvm-ppc64-06.ppc.fedoraproject.org
> <http://buildvm-ppc64-06.ppc.fedoraproject.org>)
> 32993376 buildArch (python-apprise-0.7.3-1.el7.nuxref.src.rpm,
> noarch): open (buildvm-28.phx2.fedoraproject.org
> <http://buildvm-28.phx2.fedoraproject.org>)
> 32993376 buildArch (python-apprise-0.7.3-1.el7.nuxref.src.rpm,
> noarch): open (buildvm-28.phx2.fedoraproject.org
> <http://buildvm-28.phx2.fedoraproject.org>) -> FAILED: BuildError: error
> building package (arch noarch), mock exited with status 30; see root.log
> for more information
> 0 free 1 open 0 done 1 failed
> 32993375 build (epel7, python-apprise-0.7.3-1.el7.nuxref.src.rpm): open
> (buildvm-ppc64-06.ppc.fedoraproject.org
> <http://buildvm-ppc64-06.ppc.fedoraproject.org>) -> FAILED: BuildError:
> error building package (arch noarch), mock exited with status 30; see
> root.log for more information
> 0 free 0 open 0 done 2 failed
>
> 32993375 build (epel7, python-apprise-0.7.3-1.el7.nuxref.src.rpm) failed
>
> Chris
>
> On Sat, Feb 23, 2019 at 4:29 PM Orion Poplawski <orion(a)nwra.com
> <mailto:orion@nwra.com>> wrote:
>
> On 2/23/19 1:02 PM, Chris wrote:
> > The error:
> >
> > DEBUG util.py:490: BUILDSTDERR: Error:
> > DEBUG util.py:490: BUILDSTDERR: Problem: conflicting requests
> > DEBUG util.py:490: BUILDSTDERR: - nothing provides
> python2-oauthlib needed by python2-requests-oauthlib-0.8.0-5.el7.noarch
> > DEBUG util.py:634: Child return code was: 1
> >
> > This same package builds fine using copr (done so here):
> > https://copr.fedorainfracloud.org/coprs/lead2gold/apprise/
> >
> > The spec file entry (that works fine for epel7 on Copr) is:
> > BuildRequires: python2-requests-oauthlib
> > BuildRequires: python2-oauthlib
> >
> > This entry just produces an error that all requirements couldn't
> be met
> > and the scratch build aborts then too.
> > BuildRequires: python-oauthlib
> >
> > It appears to be an upstream issue... a missing entry in the
> > python-oauthlib such as:
> > Provides: python2-oauthlib
> >
> > I originally thought maybe i should be filing an issue with the
> oauthlib
> > group, but then if that were the case, it wouldn't have worked
> perfectly
> > fine on Copr.
> >
> > Thoughts? Advice?
> >
> > Chris
>
> Perhaps a link to the koji build might be helpful?
>
>
> --
> Orion Poplawski
> Manager of NWRA Technical Systems 720-772-5637
> NWRA, Boulder/CoRA Office FAX: 303-415-9702
> 3380 Mitchell Lane orion(a)nwra.com <mailto:orion@nwra.com>
> Boulder, CO 80301 https://www.nwra.com/
>
--
Orion Poplawski
Manager of NWRA Technical Systems 720-772-5637
NWRA, Boulder/CoRA Office FAX: 303-415-9702
3380 Mitchell Lane orion(a)nwra.com
Boulder, CO 80301 https://www.nwra.com/
The following Fedora EPEL 7 Security updates need testing:
Age URL
208 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-f9d6ff695a bibutils-6.6-1.el7 ghc-hs-bibutils-6.6.0.0-1.el7 pandoc-citeproc-0.3.0.1-4.el7
192 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d condor-8.6.11-1.el7
65 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b6fa6cebc3 game-music-emu-0.6.2-1.el7
63 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b43fdd19c3 vcftools-0.1.16-1.el7
35 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-17b3c81533 cacti-1.2.0-1.el7 cacti-spine-1.2.0-2.el7
21 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bd6a1ae962 pdns-recursor-4.1.9-1.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-5f60a8861f kf5-kauth-5.52.0-2.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0911253d1e python-django-1.11.20-1.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-d3013595f2 ignition-0.31.0-1.gitf59a653.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-84bd195679 koji-1.16.2-1.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0593f2795d distcc-3.2rc1-22.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
ansible-2.7.8-1.el7
boinc-client-7.14.2-14.el7
boost169-1.69.0-1.el7
distribution-gpg-keys-1.29-1.el7
mlpack-3.0.4-2.el7
mock-1.4.14-2.el7
mock-core-configs-30.1-1.el7
nagios-4.4.3-4.el7
pagure-5.3-1.el7
php-Smarty-3.1.33-1.el7
spirv-headers-1.2-0.11.20190125.git8bea0a2.el7
spirv-tools-2019.1-1.el7
tor-0.3.5.8-1.el7
vkd3d-1.1-2.el7
wine-4.0-2.el7
wordpress-5.1-1.el7
xrootd-4.9.0-1.el7
Details about builds:
================================================================================
ansible-2.7.8-1.el7 (FEDORA-EPEL-2019-5f2f93029f)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Update to bugfix 2.7.8 release, also fixing CVE-2019-3828
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 21 2019 Kevin Fenzi <kevin(a)scrye.com> - 2.7.8-1
- Update to 2.7.8. Fixes bug #1679787
- Fix for CVE-2019-3828
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1677598 - CVE-2019-3828 ansible: path traversal in the fetch module [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1677598
--------------------------------------------------------------------------------
================================================================================
boinc-client-7.14.2-14.el7 (FEDORA-EPEL-2019-49dcf1f471)
The BOINC client
--------------------------------------------------------------------------------
Update Information:
Added manager_close_no_service_stop.patch manager_exit_menu_entry_removal.patch
---- Added window_close.patch ---- Added patch to enable CPU scheduling
policy = idle
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-14
- Added manager_exit_menu_entry_removal.patch
* Wed Feb 20 2019 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-13
- Added manager_close_no_service_stop.patch that prevents manager close action from stopping client service
* Tue Feb 19 2019 Kalev Lember <klember(a)redhat.com> - 7.14.2-12
- Rebuilt against fixed atk (#1626575)
* Tue Feb 19 2019 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-11
- Added window_close.patch
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 7.14.2-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jan 11 2019 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-9
- removed systemd_nice_removal.patch because scheduling policies and nice level in systemd unit file only affects boinc process, that should have nice=10 and a slightly more higher priority than working units. Since controller processes do not run often, the system should not be affected by them
* Thu Jan 10 2019 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-8
- added systemd_nice_removal.patch
* Tue Jan 8 2019 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-7
- removed added systemd_scheduler.patch since scheduler.patch is already enough to achieve boinc running in idle
- disabled systemd_hardening.patch because its tests are still in early stage on upstream development process
* Fri Dec 14 2018 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-6
- added systemd_hardening.patch
* Fri Dec 14 2018 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-5
- added systemd_scheduler.patch
* Wed Dec 12 2018 Germano Massullo <germano.massullo(a)cern.ch> - 7.14.2-4
- added scheduler.patch
--------------------------------------------------------------------------------
================================================================================
boost169-1.69.0-1.el7 (FEDORA-EPEL-2019-853e06b03c)
The free peer-reviewed portable C++ source libraries
--------------------------------------------------------------------------------
Update Information:
A few packages require a fairly recent Boost version, which EPEL does not
provide. EPEL 6 and 7 have had Boost-1.48 and Boost-1.59 respectively for a
while (as parallel installations), thanks to Robert Scheck and Ha��kel Gu��mar.
The very same way they built Boost-1.59 for EPEL 7, I therefore propose to build
Boost-1.69 for EPEL 6 and 7, as a parallel installation to the currently
officially supported Boost packages (Boost-1.41 on EPEL 6 and Boost-1.53 on EPEL
7).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1667725 - Review Request: boost169 - The free peer-reviewed portable C++ source libraries
https://bugzilla.redhat.com/show_bug.cgi?id=1667725
--------------------------------------------------------------------------------
================================================================================
distribution-gpg-keys-1.29-1.el7 (FEDORA-EPEL-2019-e20c96981c)
GPG keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
Release together with `mock-core-configs-30.1` which has these changes: - Added
repositories for Fedora 30 (and Fedora 31 repos now points to rawhide). -
distribution-gpg-keys for rhel8beta is being installed directly from Koji,
because EPEL8 does not exist yet. - Fedora 27 config has been moved to `eol`
directory. - `gpgcheck` is enabled for testing and debuginfo now. - Fedoras
29+ have included modular repos now. Additionally, there is now
`module_platform_id` defined in these configs, which allows you to install
modules without errors. ## Mock new features: - All mock configs are parsed
and evaluated by [Jinja2](http://jinja.pocoo.org/). Here is small example how it
can be used: ``` # define your own config variable config_opts['fedora_number']
= '30' config_opts['root'] = 'fedora-{{ fedora_number }}-x86_64'
config_opts['dist'] = 'fc{{ fedora_number }}' ``` Another - more general -
example from `site-defaults.cfg`: ``` # You can use jinja templates, e.g.: #
config_opts['foobar'] = '{{ foo }} bar' # which will result in 'bar bar' (using
value defined few lines above) # more complicated example: # config_opts['foo']
= "{{ plugin_conf['package_state_enable'] }}" # which will result in "True" ```
This feature can simplify mock's configs in the future. I intentionally did not
use it now, because it is too fresh. Please experiment with this feature on your
own and report any error or issues. If there would be none, then I will start
using it in main configs. - Use 32-bit personality for armv7*/armv8* builds. -
You can now specify decompress program for root_cache. This is new default in
`site-defaults.cfg` [GH#230](https://github.com/rpm-software-
management/mock/issues/230): ``` ## decompress_program is needed only for
bsdtar, otherwise `compress_program` with `-d` is used ## for bsdtar use
"unpigz" or "gunzip" #
config_opts['plugin_conf']['root_cache_opts']['decompress_program'] = "pigz" ```
## Bugfixes: - Added Scientific Linux on the list of RHEL clones
[GH#228](https://github.com/rpm-software-management/mock/issues/228) - Fixed
exclude pattern for BSDTar [GH#219](https://github.com/rpm-software-
management/mock/issues/219) - There used to be living part of `site-
defaults.cfg`: ``` config_opts['bootstrap_chroot_additional_packages'] = []
config_opts['bootstrap_module_enable'] = []
config_opts['bootstrap_module_install'] = [] ``` This is now commented out by
default, and the defaults are set in mock code. You can still override it in
`site-defaults.cfg`.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 19 2019 Miroslav Such�� <msuchy(a)redhat.com> 1.29-1
- update Copr keys
- add F31 key and point rawhide to F31
- add Fedora iot keys
--------------------------------------------------------------------------------
================================================================================
mlpack-3.0.4-2.el7 (FEDORA-EPEL-2019-0669cacef1)
Scalable, fast C++ machine learning library
--------------------------------------------------------------------------------
Update Information:
Update to latest stable version.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 7 2019 Ryan Curtin <ryan(a)ratml.org> - 3.0.4-2
- Add Python packages.
- A few simple fixes.
* Thu Feb 7 2019 Tomas Popela <tpopela(a)redhat.com> - 3.0.4-1
- Update to 3.0.4
* Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jan 25 2019 Jonathan Wakely <jwakely(a)redhat.com> - 2.2.5-9
- Rebuilt for Boost 1.69
* Fri Aug 17 2018 Jos�� Ab��lio Matos <jamatos(a)fc.up.pt> - 2.2.5-8
- rebuild for armadillo soname bump
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Mar 7 2018 Adam Williamson <awilliam(a)redhat.com> - 2.2.5-6
- Rebuild to fix GCC 8 mis-compilation
See https://da.gd/YJVwk ("GCC 8 ABI change on x86_64")
* Fri Feb 9 2018 Igor Gnatenko <ignatenkobrain(a)fedoraproject.org> - 2.2.5-5
- Escape macros in %changelog
* Thu Feb 8 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.5-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Tue Jan 23 2018 Jonathan Wakely <jwakely(a)redhat.com> - 2.2.5-3
- Rebuilt for Boost 1.66
--------------------------------------------------------------------------------
================================================================================
mock-1.4.14-2.el7 (FEDORA-EPEL-2019-e20c96981c)
Builds packages inside chroots
--------------------------------------------------------------------------------
Update Information:
Release together with `mock-core-configs-30.1` which has these changes: - Added
repositories for Fedora 30 (and Fedora 31 repos now points to rawhide). -
distribution-gpg-keys for rhel8beta is being installed directly from Koji,
because EPEL8 does not exist yet. - Fedora 27 config has been moved to `eol`
directory. - `gpgcheck` is enabled for testing and debuginfo now. - Fedoras
29+ have included modular repos now. Additionally, there is now
`module_platform_id` defined in these configs, which allows you to install
modules without errors. ## Mock new features: - All mock configs are parsed
and evaluated by [Jinja2](http://jinja.pocoo.org/). Here is small example how it
can be used: ``` # define your own config variable config_opts['fedora_number']
= '30' config_opts['root'] = 'fedora-{{ fedora_number }}-x86_64'
config_opts['dist'] = 'fc{{ fedora_number }}' ``` Another - more general -
example from `site-defaults.cfg`: ``` # You can use jinja templates, e.g.: #
config_opts['foobar'] = '{{ foo }} bar' # which will result in 'bar bar' (using
value defined few lines above) # more complicated example: # config_opts['foo']
= "{{ plugin_conf['package_state_enable'] }}" # which will result in "True" ```
This feature can simplify mock's configs in the future. I intentionally did not
use it now, because it is too fresh. Please experiment with this feature on your
own and report any error or issues. If there would be none, then I will start
using it in main configs. - Use 32-bit personality for armv7*/armv8* builds. -
You can now specify decompress program for root_cache. This is new default in
`site-defaults.cfg` [GH#230](https://github.com/rpm-software-
management/mock/issues/230): ``` ## decompress_program is needed only for
bsdtar, otherwise `compress_program` with `-d` is used ## for bsdtar use
"unpigz" or "gunzip" #
config_opts['plugin_conf']['root_cache_opts']['decompress_program'] = "pigz" ```
## Bugfixes: - Added Scientific Linux on the list of RHEL clones
[GH#228](https://github.com/rpm-software-management/mock/issues/228) - Fixed
exclude pattern for BSDTar [GH#219](https://github.com/rpm-software-
management/mock/issues/219) - There used to be living part of `site-
defaults.cfg`: ``` config_opts['bootstrap_chroot_additional_packages'] = []
config_opts['bootstrap_module_enable'] = []
config_opts['bootstrap_module_install'] = [] ``` This is now commented out by
default, and the defaults are set in mock code. You can still override it in
`site-defaults.cfg`.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Miroslav Suchy <msuchy(a)redhat.com> - 1.4.14-2
- require python-jinja2 rather than python2-jinja2
* Tue Feb 19 2019 Miroslav Such�� <msuchy(a)redhat.com> 1.4.14-1
- config['decompress_program'] default (praiskup(a)redhat.com)
- add example for jinja templates
- implement templated configs using jinja2
- move live defaults from site-defaults.cfg to utils.py
- introduce "decompress_program" option for root_cache for bsdtar
- fix exclude patter for bsdtar
- delete old changelog entries
- use f29 for tests
- update the default in sitec-defaults.cfg
- Recommend dnf-utils (fzatlouk(a)redhat.com)
- ignore useless-object-inheritance pylint warning
- add scientific linux on list of rhel clones [GH#228]
- Use 32-bit personality for armv7*/armv8* builds (bero(a)lindev.ch)
- create custom error message for dnf-utils not being installed
(pjunak)
--------------------------------------------------------------------------------
================================================================================
mock-core-configs-30.1-1.el7 (FEDORA-EPEL-2019-e20c96981c)
Mock core config files basic chroots
--------------------------------------------------------------------------------
Update Information:
Release together with `mock-core-configs-30.1` which has these changes: - Added
repositories for Fedora 30 (and Fedora 31 repos now points to rawhide). -
distribution-gpg-keys for rhel8beta is being installed directly from Koji,
because EPEL8 does not exist yet. - Fedora 27 config has been moved to `eol`
directory. - `gpgcheck` is enabled for testing and debuginfo now. - Fedoras
29+ have included modular repos now. Additionally, there is now
`module_platform_id` defined in these configs, which allows you to install
modules without errors. ## Mock new features: - All mock configs are parsed
and evaluated by [Jinja2](http://jinja.pocoo.org/). Here is small example how it
can be used: ``` # define your own config variable config_opts['fedora_number']
= '30' config_opts['root'] = 'fedora-{{ fedora_number }}-x86_64'
config_opts['dist'] = 'fc{{ fedora_number }}' ``` Another - more general -
example from `site-defaults.cfg`: ``` # You can use jinja templates, e.g.: #
config_opts['foobar'] = '{{ foo }} bar' # which will result in 'bar bar' (using
value defined few lines above) # more complicated example: # config_opts['foo']
= "{{ plugin_conf['package_state_enable'] }}" # which will result in "True" ```
This feature can simplify mock's configs in the future. I intentionally did not
use it now, because it is too fresh. Please experiment with this feature on your
own and report any error or issues. If there would be none, then I will start
using it in main configs. - Use 32-bit personality for armv7*/armv8* builds. -
You can now specify decompress program for root_cache. This is new default in
`site-defaults.cfg` [GH#230](https://github.com/rpm-software-
management/mock/issues/230): ``` ## decompress_program is needed only for
bsdtar, otherwise `compress_program` with `-d` is used ## for bsdtar use
"unpigz" or "gunzip" #
config_opts['plugin_conf']['root_cache_opts']['decompress_program'] = "pigz" ```
## Bugfixes: - Added Scientific Linux on the list of RHEL clones
[GH#228](https://github.com/rpm-software-management/mock/issues/228) - Fixed
exclude pattern for BSDTar [GH#219](https://github.com/rpm-software-
management/mock/issues/219) - There used to be living part of `site-
defaults.cfg`: ``` config_opts['bootstrap_chroot_additional_packages'] = []
config_opts['bootstrap_module_enable'] = []
config_opts['bootstrap_module_install'] = [] ``` This is now commented out by
default, and the defaults are set in mock code. You can still override it in
`site-defaults.cfg`.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 19 2019 Miroslav Such�� <msuchy(a)redhat.com> 30.1-1
- default for config['decompress_program'] (praiskup(a)redhat.com)
- require recent distribution-gpg-keys which has F31 key
- add examples how to enable/install module in F29+ configs
- add module_platform_id
- add modular repos
- enable gpgcheck for debuginfo for rawhide
- enable gpgcheck for testing and debuginfo for F30
- EOL Fedora 27 configs
- remove mdpolicy from F30
- add Fedora 30 configs
- add link to distribution-gpg-keys for rhel8 bootstrap
--------------------------------------------------------------------------------
================================================================================
nagios-4.4.3-4.el7 (FEDORA-EPEL-2019-9bad34efbb)
Host/service/network monitoring program
--------------------------------------------------------------------------------
Update Information:
Fix BZ#1674258 add explicite User and Group to systemctl startup.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Stephen Smoogen <smooge(a)fedoraproject.org> - 4.4.3-4
- Fix BZ#1674258 add explicite User and Group to systemctl startup.
- Problem was missed because some config files had this set in them
* Tue Feb 5 2019 Stephen Smoogen <smooge(a)fedoraproject.org> - 4.4.3-3
- Fix BZ#1672027
- Patch for daemon did not have enough endif in them. However test looks superfluous
* Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.4.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1674258 - Nagios will not start due to SELinux denials
https://bugzilla.redhat.com/show_bug.cgi?id=1674258
--------------------------------------------------------------------------------
================================================================================
pagure-5.3-1.el7 (FEDORA-EPEL-2019-9489db8205)
A git-centered forge
--------------------------------------------------------------------------------
Update Information:
Update to Pagure 5.3, which includes the fix for CVE-2019-7628.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Neal Gompa <ngompa13(a)gmail.com> - 5.3-1
- Update to 5.3
- Add weak dependencies for supported database client libraries
- Use macros consistently in the spec
* Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1673986 - CVE-2019-7628: Pagure version 5.2 leaks API keys by e-mail [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1673986
[ 2 ] Bug #1680027 - pagure-5.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1680027
[ 3 ] Bug #1673984 - CVE-2019-7628: Pagure version 5.2 leaks API keys by e-mail [fedora-rawhide]
https://bugzilla.redhat.com/show_bug.cgi?id=1673984
--------------------------------------------------------------------------------
================================================================================
php-Smarty-3.1.33-1.el7 (FEDORA-EPEL-2019-ac11c6484b)
Smarty - the compiling PHP template engine
--------------------------------------------------------------------------------
Update Information:
===== 3.1.33 release ===== 12.09.2018 ===== 3.1.33-dev-12 ===== 03.09.2018
- bugfix {foreach} using new style property access like {$item@property} on
Smarty 2 style named foreach loop could produce errors
https://github.com/smarty-php/smarty/issues/484 31.08.2018 - bugfix some
custom left and right delimiters like '{^' '^}' did not work
https://github.com/smarty-php/smarty/issues/450https://github.com/smarty-
php/smarty/pull/482 - reformating for PSR-2 coding standards
https://github.com/smarty-php/smarty/pull/483 - bugfix on Windows absolute
filepathes did fail if the drive letter was followed by a linux
DIRECTORY_SEPARATOR like C:/ at Smarty > 3.1.33-dev-5
https://github.com/smarty-php/smarty/issues/451 - PSR-2 code style fixes for
config and template file Lexer/Parser generated with the Smarty Lexer/Parser
generator from https://github.com/smarty-php/smarty-lexerhttps://github.com/smarty-php/smarty/pull/483 26.08.2018 -
bugfix/enhancement {capture} allow variable as capture block name in Smarty
special variable like $smarty.capture.$foo https://github.com/smarty-
php/smarty/issues/478 https://github.com/smarty-php/smarty/pull/481 =====
3.1.33-dev-6 ===== 19.08.2018 - fix PSR-2 coding standards and PHPDoc blocks
https://github.com/smarty-php/smarty/pull/452https://github.com/smarty-
php/smarty/pull/475 https://github.com/smarty-php/smarty/pull/473 - bugfix
PHP5.2 compatibility https://github.com/smarty-php/smarty/pull/472 =====
3.1.33-dev-4 ===== 17.05.2018 - bugfix strip-block produces different output
in Smarty v3.1.32 https://github.com/smarty-php/smarty/issues/436 - bugfix
Smarty::compileAllTemplates ignores `$extension` parameter
https://github.com/smarty-php/smarty/issues/437https://github.com/smarty-
php/smarty/pull/438 - improvement do not compute total property in {foreach} if
not needed https://github.com/smarty-php/smarty/issues/443 - bugfix plugins
may not be loaded when setMergeCompiledIncludes is true
https://github.com/smarty-php/smarty/issues/435 26.04.2018 - bugfix
regarding Security Vulnerability did not solve the problem under Linux.
Security issue CVE-2018-16831 ===== 3.1.32 ===== (24.04.2018) 24.04.2018 -
bugfix possible Security Vulnerability in Smarty_Security class. 26.03.2018
- bugfix plugins may not be loaded if {function} or {block} tags are executed in
nocache mode https://github.com/smarty-php/smarty/issues/371 26.03.2018 -
new feature {parent} = {$smarty.block.parent} {child} = {$smarty.block.child}
23.03.2018 - bugfix preg_replace could fail on large content resulting in a
blank page https://github.com/smarty-php/smarty/issues/417 21.03.2018 -
bugfix {$smarty.section...} used outside {section}{/section} showed incorrect
values if {section}{/section} was called inside another loop
https://github.com/smarty-php/smarty/issues/422 - bugfix short form of
{section} attributes did not work https://github.com/smarty-
php/smarty/issues/428 17.03.2018 - improvement Smarty::compileAllTemplates()
exit with a non-zero status code if max errors is reached
https://github.com/smarty-php/smarty/pull/402 16.03.2018 - bugfix extends
resource did not work with user defined left/right delimiter
https://github.com/smarty-php/smarty/issues/419 22.11.2017 - bugfix {break}
and {continue} could fail if {foreach}{/foreach} did contain other looping
tags like {for}, {section} and {while} https://github.com/smarty-
php/smarty/issues/323 20.11.2017 - bugfix rework of newline spacing between
tag code and template text. now again identical with Smarty2 (forum topic
26878) - replacement of " by ' 05.11.2017 - lexer/parser optimization -
code cleanup and optimizations - bugfix {$smarty.section.name.loop} used
together with {$smarty.section.name.total} could produce wrong results
(forum topic 27041) 26.10.2017 - bugfix Smarty version was not filled in
header comment of compiled and cached files - optimization replace internal
Smarty::$ds property by DIRECTORY_SEPARATOR - deprecate functions
Smarty::muteExpectedErrors() and Smarty::unmuteExpectedErrors() as Smarty
does no longer use error suppression like @filemtime(). for backward
compatibility code is moved from Smarty class to an external class and still can
be called. - correction of PHPDoc blocks - minor code cleanup
21.10.2017 - bugfix custom delimiters could fail since modification of
version 3.1.32-dev-23 https://github.com/smarty-php/smarty/issues/394
18.10.2017 - bugfix fix implementation of unclosed block tag in double quoted
string of 12.10.2017 https://github.com/smarty-php/smarty/issues/396https://github.com/smarty-php/smarty/issues/397https://github.com/smarty-
php/smarty/issues/391 https://github.com/smarty-php/smarty/issues/392
12.10.2017 - bugfix $smarty.block.child and $smarty.block.parent could not be
used like any $smarty special variable https://github.com/smarty-
php/smarty/issues/393 - unclosed block tag in double quoted string must throw
compiler exception. https://github.com/smarty-php/smarty/issues/391https://github.com/smarty-php/smarty/issues/392 07.10.2017 - bugfix
modification of 9.8.2017 did fail on some recursive tag nesting.
https://github.com/smarty-php/smarty/issues/389 26.8.2017 - bugfix chained
modifier failed when last modifier parameter is a signed value
https://github.com/smarty-php/smarty/issues/327 - bugfix templates filepath
with multibyte characters did not work https://github.com/smarty-
php/smarty/issues/385 - bugfix {make_nocache} did display code if the template
did not contain other nocache code https://github.com/smarty-
php/smarty/issues/369 09.8.2017 - improvement repeated delimiter like {{ and
}} will be treated as literal
https://groups.google.com/forum/#!topic/smarty-developers/h9r82Bx4KZw 05.8.2017
- bugfix wordwrap modifier could fail if used in nocache code. converted
plugin file shared.mb_wordwrap.php into modifier.mb_wordwrap.php - cleanup of
_getSmartyObj() 31.7.2017 - Call clearstatcache() after mkdir() failure
https://github.com/smarty-php/smarty/pull/379 30.7.2017 - rewrite mkdir()
bugfix to retry automatically see https://github.com/smarty-php/smarty/pull/377https://github.com/smarty-php/smarty/pull/379 21.7.2017 - security possible
PHP code injection on custom resources at display() or fetch() calls if the
resource does not sanitize the template name - bugfix fix 'mkdir(): File
exists' error on create directory from parallel processes
https://github.com/smarty-php/smarty/pull/377 - bugfix solve preg_match() hhvm
parameter problem https://github.com/smarty-php/smarty/pull/372 27.5.2017 -
bugfix change compiled code for registered function and modifiers to called as
callable to allow closures https://github.com/smarty-php/smarty/pull/368,
https://github.com/smarty-php/smarty/issues/273 - bugfix
https://github.com/smarty-php/smarty/pull/368 did break the default plugin
handler - improvement replace phpversion() by PHP_VERSION constant.
https://github.com/smarty-php/smarty/pull/363 21.5.2017 - performance store
flag for already required shared plugin functions in static variable or
Smarty's $_cache to improve performance when plugins are often called
https://github.com/smarty-php/smarty/commit/51e0d5cd405d764a4ea257d1bac1fb1…
4528#commitcomment-22280086 - bugfix remove special treatment of classes
implementing ArrayAccess in {foreach} https://github.com/smarty-
php/smarty/issues/332 - bugfix remove deleted files by clear_cache() and
clear_compiled_template() from ACP cache if present, add some is_file()
checks to avoid possible warnings on filemtime() caused by above functions.
https://github.com/smarty-php/smarty/issues/341 - bugfix version 3.1.31 did
fail under PHP 5.2 https://github.com/smarty-php/smarty/issues/365
19.5.2017 - change properties $accessMap and $obsoleteProperties from private
to protected https://github.com/smarty-php/smarty/issues/351 - new feature
The named capture buffers can now be accessed also as array See
NEWS_FEATURES.txt https://github.com/smarty-php/smarty/issues/366 -
improvement check if ini_get() and ini_set() not disabled
https://github.com/smarty-php/smarty/pull/362 24.4.2017 - fix spelling
https://github.com/smarty-php/smarty/commit/e3eda8a5f5653d8abb960eb1bc47e3e…
b1b4#commitcomment-21803095 17.4.2017 - correct generated code on empty()
and isset() call, observe change PHP behaviour since PHP 5.5
https://github.com/smarty-php/smarty/issues/347 14.4.2017 - merge pull
requests https://github.com/smarty-php/smarty/pull/349,
https://github.com/smarty-php/smarty/pull/322 and https://github.com/smarty-
php/smarty/pull/337 to fix spelling and annotation 13.4.2017 - bugfix
array_merge() parameter should be checked https://github.com/smarty-
php/smarty/issues/350 ===== 3.1.31 ===== (14.12.2016) 23.11.2016 - move
template object cache into static variables 19.11.2016 - bugfix
inheritance root child templates containing nested {block}{/block} could call
sub-bock content from parent template https://github.com/smarty-
php/smarty/issues/317 - change version checking 11.11.2016 - bugfix when
Smarty is using a cached template object on Smarty::fetch() or
Smarty::isCached() the inheritance data must be removed
https://github.com/smarty-php/smarty/issues/312 - smaller speed optimization
08.11.2016 - add bootstrap file to load and register Smarty_Autoloader.
Change composer.json to make it known to composer 07.11.2016 - optimization
of lexer speed https://github.com/smarty-php/smarty/issues/311 27.10.2016 -
bugfix template function definitions array has not been cached between
Smarty::fetch() and Smarty::display() calls https://github.com/smarty-
php/smarty/issues/301 23.10.2016 - improvement/bugfix when Smarty::fetch()
is called on a template object the inheritance and tplFunctions property
should be copied to the called template object 21.10.2016 - bugfix for
compile locking touched timestamp of old compiled file was not restored on
compilation error https://github.com/smarty-php/smarty/issues/308 20.10.2016
- bugfix nocache code was not removed in cache file when subtemplate did contain
PHP short tags in text but no other nocache code https://github.com/smarty-
php/smarty/issues/300 19.10.2016 - bugfix {make_nocache $var} did fail when
variable value did contain '\' https://github.com/smarty-php/smarty/issues/305
- bugfix {make_nocache $var} remove spaces from variable value
https://github.com/smarty-php/smarty/issues/304 12.10.2016 - bugfix
{include} with template names including variable or constants could fail after
bugfix from 28.09.2016 https://github.com/smarty-php/smarty/issues/302
08.10.2016 - optimization move runtime extension for template functions into
Smarty objects 29.09.2016 - improvement new Smarty::$extends_recursion
property to disable execution of {extends} in templates called by extends
resource https://github.com/smarty-php/smarty/issues/296 28.09.2016 -
bugfix the generated code for calling a subtemplate must pass the template
resource name in single quotes https://github.com/smarty-php/smarty/issues/299
- bugfix nocache hash was not removed for <?xml ?> tags in subtemplates
https://github.com/smarty-php/smarty/issues/300 27.09.2016 - bugfix when
Smarty does use an internally cached template object on Smarty::fetch() calls
the template and config variables must be cleared https://github.com/smarty-
php/smarty/issues/297 20.09.2016 - bugfix some $smarty special template
variables are no longer accessed as real variable. using them on calls like
{if isset($smarty.foo)} or {if empty($smarty.foo)} will fail
http://www.smarty.net/forums/viewtopic.php?t=26222 - temporary fix for
https://github.com/smarty-php/smarty/issues/293 main reason still under
investigation - improvement new tags {block_parent} {block_child} in template
inheritance 19.09.2016 - optimization clear compiled and cached folder
completely on detected version change - cleanup convert cache resource file
method clear into runtime extension 15.09.2016 - bugfix assigning a
variable in if condition by function like {if $value = array_shift($array)} the
function got called twice https://github.com/smarty-php/smarty/issues/291 -
bugfix function plugins called with assign attribute like {foo assign='bar'} did
not output returned content because because assumption was made that
it was assigned to a variable https://github.com/smarty-php/smarty/issues/292
- bugfix calling $smarty->isCached() on a not existing cache file with
$smarty->cache_locking = true; could cause a 10 second delay
http://www.smarty.net/forums/viewtopic.php?t=26282 - improvement make
Smarty::clearCompiledTemplate() on custom resource independent from changes of
templateId computation 11.09.2016 - improvement {math} misleading
E_USER_WARNING messages when parameter value = null https://github.com/smarty-
php/smarty/issues/288 - improvement move often used code snippets into methods
- performance Smarty::configLoad() did load unneeded template source object
09.09.2016 - bugfix/optimization {foreach} did not execute the {foreachelse}
when iterating empty objects https://github.com/smarty-php/smarty/pull/287 -
bugfix {foreach} must keep the @properties when restoring a saved $item variable
as the properties might be used outside {foreach} https://github.com/smarty-
php/smarty/issues/267 - improvement {foreach} observe {break n} and {continue
n} nesting levels when restoring saved $item and $key variables 08.09.2016
- bugfix implement wrapper for removed method getConfigVariable()
https://github.com/smarty-php/smarty/issues/286 07.09.2016 - bugfix using
nocache like attribute with value true like {plugin nocache=true} did not work
https://github.com/smarty-php/smarty/issues/285 - bugfix uppercase TRUE, FALSE
and NULL did not work when security was enabled https://github.com/smarty-
php/smarty/issues/282 - bugfix when {foreach} was looping over an object the
total property like {$item@total} did always return 1 https://github.com/smarty-
php/smarty/issues/281 - bugfix {capture}{/capture} did add in 3.1.30
unintended additional blank lines https://github.com/smarty-
php/smarty/issues/268 01.09.2016 - performance require_once should be
called only once for shared plugins https://github.com/smarty-
php/smarty/issues/280 26.08.2016 - bugfix change of 23.08.2016 failed on
linux when use_include_path = true 23.08.2016 - bugfix remove constant DS
as shortcut for DIRECTORY_SEPARATOR as the user may have defined it to something
else https://github.com/smarty-php/smarty/issues/277 20.08-2016 - bugfix
{config_load ... scope="global"} shall not throw an arror but fallback to
scope="smarty" https://github.com/smarty-php/smarty/issues/274 - bugfix
{make_nocache} failed when using composer autoloader https://github.com/smarty-
php/smarty/issues/275 14.08.2016 - bugfix $smarty_>debugging = true; did
E_NOTICE messages when {eval} tag was used https://github.com/smarty-
php/smarty/issues/266 - bugfix Class
'Smarty_Internal_Runtime_ValidateCompiled' not found when upgrading from some
older Smarty versions with existing compiled or cached template files
https://github.com/smarty-php/smarty/issues/269 - optimization remove unneeded
call to update acopes when {assign} scope and template scope was local (default)
===== 3.1.30 ===== (07.08.2016) 07.08.2016 - bugfix update of 04.08.2016
was incomplete 05.08.2016 - bugfix compiling of templates failed when the
Smarty delimiter did contain '/' https://github.com/smarty-php/smarty/issues/264
- updated error checking at template and config default handler 04.08.2016
- improvement move template function source parameter into extension
26.07.2016 - optimization unneeded loading of compiled resource 24.07.2016
- regression this->addPluginsDir('/abs/path/to/dir') adding absolute path
without trailing '/' did fail https://github.com/smarty-php/smarty/issues/260
23.07.2016 - bugfix setTemplateDir('/') and setTemplateDir('') did create
wrong absolute filepath https://github.com/smarty-php/smarty/issues/245 -
optimization of filepath normalization - improvement remove double function
declaration in plugin shared.escape_special_cars.php https://github.com/smarty-
php/smarty/issues/229 19.07.2016 - bugfix multiple {include} with relative
filepath within {block}{/block} could fail https://github.com/smarty-
php/smarty/issues/246 - bugfix {math} shell injection vulnerability patch
provided by Tim Weber 18.07.2016 - bugfix {foreach} if key variable and
item@key attribute have been used both the key variable was not updated
https://github.com/smarty-php/smarty/issues/254 - bugfix modifier on plugins
like {plugin|modifier ... } did fail when the plugin does return an array
https://github.com/smarty-php/smarty/issues/228 - bugfix avoid
opcache_invalidate to result in ErrorException when opcache.restrict_api is not
empty https://github.com/smarty-php/smarty/pull/244 - bugfix multiple
{include} with relative filepath within {block}{/block} could fail
https://github.com/smarty-php/smarty/issues/246 14.07.2016 - bugfix wrong
parameter on compileAllTemplates() and compileAllConfig()
https://github.com/smarty-php/smarty/issues/231 13.07.2016 - bugfix PHP 7
compatibility on registered compiler plugins https://github.com/smarty-
php/smarty/issues/241 - update testInstall() https://github.com/smarty-php/smarty/issues/248https://github.com/smarty-php/smarty/issues/248 - bugfix
enable debugging could fail when template objects did already exists
https://github.com/smarty-php/smarty/issues/237 - bugfix template function
data should be merged when loading subtemplate https://github.com/smarty-
php/smarty/issues/240 - bugfix wrong parameter on compileAllTemplates()
https://github.com/smarty-php/smarty/issues/231 12.07.2016 - bugfix
{foreach} item variable must be created also on empty from array
https://github.com/smarty-php/smarty/issues/238 and https://github.com/smarty-
php/smarty/issues/239 - bugfix enableSecurity() must init cache flags
https://github.com/smarty-php/smarty/issues/247 27.05.2016 -
bugfix/improvement of compileAlltemplates() follow symlinks in template folder
(PHP >= 5.3.1) https://github.com/smarty-php/smarty/issues/224 clear
internal cache and expension handler for each template to avoid possible
conflicts https://github.com/smarty-php/smarty/issues/231 16.05.2016 -
optimization {foreach} compiler and processing - broken PHP 5.3 and 5.4
compatibility 15.05.2016 - optimization and cleanup of resource code
10.05.2016 - optimization of inheritance processing 07.05.2016 -bugfix
Only variables should be assigned by reference https://github.com/smarty-
php/smarty/issues/227 02.05.2016 - enhancement {block} tag names can now be
variable https://github.com/smarty-php/smarty/issues/221 01.05.2016 -
bugfix same relative filepath at {include} called from template in different
folders could display wrong sub-template 29.04.2016 - bugfix {strip} remove
space on linebreak between html tags https://github.com/smarty-
php/smarty/issues/213 24.04.2016 - bugfix nested {include} with relative
file path could fail when called in {block} ... {/block}
https://github.com/smarty-php/smarty/issues/218 14.04.2016 - bugfix special
variable {$smarty.capture.name} was not case sensitive on name
https://github.com/smarty-php/smarty/issues/210 - bugfix the default template
handler must calculate the source uid https://github.com/smarty-
php/smarty/issues/205 13.04.2016 - bugfix template inheritance status must
be saved when calling sub-templates https://github.com/smarty-
php/smarty/issues/215 27.03.2016 - bugfix change of 11.03.2016 cause again
{capture} data could not been seen in other templates with
{$smarty.capture.name} https://github.com/smarty-php/smarty/issues/153
11.03.2016 - optimization of capture and security handling - improvement
$smarty->clearCompiledTemplate() should return on recompiled or uncompiled
resources 10.03.2016 - optimization of resource processing 09.03.2016
- improvement rework of 'scope' attribute handling see see NEW_FEATURES.txt
https://github.com/smarty-php/smarty/issues/194https://github.com/smarty-
php/smarty/issues/186 https://github.com/smarty-php/smarty/issues/179 - bugfix
correct Autoloader update of 2.3.2014 https://github.com/smarty-
php/smarty/issues/199 04.03.2016 - bugfix change from 01.03.2016 will cause
$smarty->isCached(..) failure if called multiple time for same template
(forum topic 25935) 02.03.2016 - revert autoloader optimizations because of
unexplainable warning when using plugins https://github.com/smarty-
php/smarty/issues/199 01.03.2016 - bugfix template objects must be cached
on $smarty->fetch('foo.tpl) calls incase the template is fetched multiple
times (forum topic 25909) 25.02.2016 - bugfix wrong _realpath with 4 or
more parent-directories https://github.com/smarty-php/smarty/issues/190 -
optimization of _realpath - bugfix instanceof expression in template code must
be treated as value https://github.com/smarty-php/smarty/issues/191 20.02.2016
- bugfix {strip} must keep space between hmtl tags. Broken by changes of
10.2.2016 https://github.com/smarty-php/smarty/issues/184 - new feature/bugfix
{foreach}{section} add 'properties' attribute to force compilation of loop
properties see NEW_FEATURES.txt https://github.com/smarty-
php/smarty/issues/189 19.02.2016 - revert output buffer flushing on
display, echo content again because possible problems when PHP files had
characters (newline} after ?> at file end https://github.com/smarty-
php/smarty/issues/187 14.02.2016 - new tag {make_nocache} read
NEW_FEATURES.txt https://github.com/smarty-php/smarty/issues/110 -
optimization of sub-template processing - bugfix using extendsall as default
resource and {include} inside {block} tags could produce unexpected results
https://github.com/smarty-php/smarty/issues/183 - optimization of tag
attribute compiling - optimization make compiler tag object cache static for
higher compilation speed 11.02.2016 - improvement added KnockoutJS comments
to trimwhitespace outputfilter https://github.com/smarty-php/smarty/issues/82https://github.com/smarty-php/smarty/pull/181 10.02.2016 - bugfix {strip}
must keep space on output creating smarty tags within html tags
https://github.com/smarty-php/smarty/issues/177 - bugfix wrong precedence on
special if conditions like '$foo is ... by $bar' could cause wrong code
https://github.com/smarty-php/smarty/issues/178 - improvement because of
ambiguities the inline constant support has been removed from the $foo.bar
syntax https://github.com/smarty-php/smarty/issues/149 - bugfix other {strip}
error with output tags between hmtl https://github.com/smarty-
php/smarty/issues/180 09.02.2016 - move some code from parser into compiler
- reformat all code for unique style - update/bugfix scope attribute handling
reworked. Read the newfeatures.txt file 05.02.2016 - improvement internal
compiler changes 01.02.2016 - bugfix {foreach} compilation failed when
$smarty->merge_compiled_includes = true and pre-filters are used. 29.01.2016
- bugfix implement replacement code for _tag_stack property
https://github.com/smarty-php/smarty/issues/151 28.01.2016 - bugfix allow
windows network filepath or wrapper (forum topic 25876)
https://github.com/smarty-php/smarty/issues/170 - bugfix if fetch('foo.tpl')
is called on a template object the $parent parameter should default to the
calling template object https://github.com/smarty-php/smarty/issues/152
27.01.2016 - revert bugfix compiling {section} did create warning - bugfix
{$smarty.section.customer.loop} did throw compiler error
https://github.com/smarty-php/smarty/issues/161 update of yesterdays fix -
bugfix string resource could inject code at {block} or inline subtemplates
through PHP comments https://github.com/smarty-php/smarty/issues/157
- bugfix output filters did not observe nocache code
flhttps://github.com/smarty-php/smarty/issues/154ghttps://github.com/smarty-
php/smarty/issues/160 - bugfix {extends} with relative file path did not work
https://github.com/smarty-php/smarty/issues/154https://github.com/smarty-
php/smarty/issues/158 - bugfix {capture} data could not been seen in other
templates with {$smarty.capture.name} https://github.com/smarty-
php/smarty/issues/153 26.01.2016 - improvement observe Smarty::$_CHARSET in
debugging console https://github.com/smarty-php/smarty/issues/169 - bugfix
compiling {section} did create warning - bugfix
{$smarty.section.customer.loop} did throw compiler error
https://github.com/smarty-php/smarty/issues/161 02.01.2016 - update scope
handling - optimize block plugin compiler - improvement runtime checks if
registered block plugins are callable 01.01.2016 - remove
Smarty::$resource_cache_mode property 31.12.2015 - optimization of
{assign}, {if} and {while} compiled code 30.12.2015 - bugfix plugin names
starting with "php" did not compile https://github.com/smarty-
php/smarty/issues/147 29.12.2015 - bugfix Smarty::error_reporting was not
observed when display() or fetch() was called on template objects
https://github.com/smarty-php/smarty/issues/145 28.12.2015 - optimization
of {foreach} code size and processing 27.12.2015 - improve inheritance code
- update external methods - code fixes - PHPdoc updates 25.12.2015 -
compile {block} tag code and its processing into classes - optimization
replace hhvm extension by inline code - new feature If ACP is enabled force an
apc_compile_file() when compiled or cached template was updated 24.12.2015
- new feature Compiler does now observe the template_dir setting and will create
separate compiled files if required - bugfix post filter did fail on template
inheritance https://github.com/smarty-php/smarty/issues/144 23.12.2015 -
optimization move internal method decodeProperties back into template object -
optimization move subtemplate processing back into template object - new
feature Caching does now observe the template_dir setting and will create
separate cache files if required 22.12.2015 - change $xxx_dir properties
from private to protected in case Smarty class gets extended - code
optimizations 21.12.2015 - bugfix a filepath starting with '/' or '\' on
windows should normalize to the root dir of current working drive
https://github.com/smarty-php/smarty/issues/134 - optimization of filepath
normalization - bugfix {strip} must remove all blanks between html tags
https://github.com/smarty-php/smarty/issues/136 ===== 3.1.29 =====
(21.12.2015) 21.12.2015 - optimization improve speed of filetime checks on
extends and extendsall resource 20.12.2015 - bugfix failure when the
default resource type was set to 'extendsall' https://github.com/smarty-
php/smarty/issues/123 - update compilation of Smarty special variables -
bugfix add addition check for OS type on normalization of file path
https://github.com/smarty-php/smarty/issues/134 - bugfix the source uid of the
extendsall resource must contain $template_dir settings
https://github.com/smarty-php/smarty/issues/123 19.12.2015 - bugfix using
$smarty.capture.foo in expressions could fail https://github.com/smarty-
php/smarty/pull/138 - bugfix broken PHP 5.2 compatibility
https://github.com/smarty-php/smarty/issues/139 - remove no longer used code
- improvement make sure that compiled and cache templates never can contain a
trailing '?>? 18.12.2015 - bugfix regression when modifier parameter was
followed by math https://github.com/smarty-php/smarty/issues/132 17.12.2015
- bugfix {$smarty.capture.nameFail} did lowercase capture name
https://github.com/smarty-php/smarty/issues/135 - bugfix using {block
append/prepend} on same block in multiple levels of inheritance templates could
fail (forum topic 25827) - bugfix text content consisting of just a single '0'
like in {if true}0{/if} was suppressed (forum topic 25834) 16.12.2015 -
bugfix {foreach} did fail if from atrribute is a Generator class
https://github.com/smarty-php/smarty/issues/128 - bugfix direct access
$smarty->template_dir = 'foo'; should call Smarty::setTemplateDir()
https://github.com/smarty-php/smarty/issues/121 15.12.2015 - bugfix
{$smarty.cookies.foo} did return the $_COOKIE array not the 'foo' value
https://github.com/smarty-php/smarty/issues/122 - bugfix a call to
clearAllCache() and other should clear all internal template object caches
(forum topic 25828) 14.12.2015 - bugfix {$smarty.config.foo} broken in
3.1.28 https://github.com/smarty-php/smarty/issues/120 - bugfix multiple
calls of {section} with same name droped E_NOTICE error
https://github.com/smarty-php/smarty/issues/118 ===== 3.1.28 =====
(13.12.2015) 13.12.2015 - bugfix {foreach} and {section} with uppercase
characters in name attribute did not work (forum topic 25819) - bugfix
$smarty->debugging_ctrl = 'URL' did not work (forum topic 25811) - bugfix
Debug Console could display incorrect data when using subtemplates 09.12.2015
- bugfix Smarty did fail under PHP 7.0.0 with use_include_path = true;
09.12.2015 - bugfix {strip} should exclude some html tags from stripping,
related to fix for https://github.com/smarty-php/smarty/issues/111 08.12.2015
- bugfix internal template function data got stored in wrong compiled file
https://github.com/smarty-php/smarty/issues/114 05.12.2015 -bugfix {strip}
should insert a single space https://github.com/smarty-php/smarty/issues/111
25.11.2015 -bugfix a left delimter like '[%' did fail on
[%$var_[%$variable%]%] (forum topic 25798) 02.11.2015 - bugfix {include}
with variable file name like {include file="foo_`$bar`.tpl"} did fail in
3.1.28-dev https://github.com/smarty-php/smarty/issues/102 01.11.2015 -
update config file processing 31.10.2015 - bugfix add missing $trusted_dir
property to SmartyBC class (forum topic 25751) 29.10.2015 - improve
template scope handling 24.10.2015 - more optimizations of template
processing - bugfix Error when using {include} within {capture}
https://github.com/smarty-php/smarty/issues/100 21.10.2015 - move some code
into runtime extensions 18.10.2015 - optimize filepath normalization -
rework of template inheritance - speed and size optimizations - bugfix under
HHVM temporary cache file must only be created when caches template was updated
- fix compiled code for new {block} assign attribute - update code generated
by template function call handler 18.09.2015 - bugfix {if $foo instanceof
$bar} failed to compile if 2nd value is a variable https://github.com/smarty-
php/smarty/issues/92 17.09.2015 - bugfix {foreach} first attribute was not
correctly reset since commit 05a8fa2 of 02.08.2015 https://github.com/smarty-
php/smarty/issues/90 16.09.2015 - update compiler by moving no longer
needed properties, code optimizations and other 14.09.2015 - optimize
autoloader - optimize subtemplate handling - update template inheritance
processing - move code of {call} processing back into Smarty_Internal_Template
class - improvement invalidate OPCACHE for cleared compiled and cached
template files (forum topic 25557) - bugfix unintended multiple debug windows
(forum topic 25699) 30.08.2015 - size optimization move some runtime
functions into extension - optimize inline template processing -
optimization merge inheritance child and parent templates into one compiled
template file 29.08.2015 - improvement convert template inheritance into
runtime processing - bugfix {$smarty.block.parent} did always reference the
root parent block https://github.com/smarty-php/smarty/issues/68 23.08.2015
- introduce Smarty::$resource_cache_mode and cache template object of {include}
inside loop - load seldom used Smarty API methods dynamically to reduce memory
footprint - cache template object of {include} if same template is included
several times - convert debug console processing to object - use output
buffers for better performance and less memory usage - optimize nocache hash
processing - remove not really needed properties - optimize rendering -
move caching to Smarty::_cache - remove properties with redundant content -
optimize Smarty::templateExists() - optimize use_include_path processing -
relocate properties for size optimization - remove redundant code - bugfix
compiling super globals like {$smarty.get.foo} did fail in the master branch
https://github.com/smarty-php/smarty/issues/77 06.08.2015 - avoid possible
circular object references caused by parser/lexer objects - rewrite
compileAll... utility methods - commit several internal improvements -
bugfix Smarty failed when compile_id did contain "|" 03.08.2015 - rework
clear cache methods - bugfix compileAllConfig() was broken since 3.1.22
because of the changes in config file processing - improve getIncludePath() to
return directory if no file was given 02.08.2015 - optimization and code
cleanup of {foreach} and {section} compiler - rework {capture} compiler
01.08.2015 - update DateTime object can be instance of DateTimeImmutable
since PHP5.5 https://github.com/smarty-php/smarty/pull/75 - improvement show
resource type and start of template source instead of uid on eval: and string:
resource (forum topic 25630) 31.07.2015 - optimize {foreach} and {section}
compiler 29.07.2015 - optimize {section} compiler for speed and size of
compiled code 28.07.2015 - update for PHP 7 compatibility 26.07.2015 -
improvement impement workaround for HHVM PHP incompatibillity
https://github.com/facebook/hhvm/issues/4797 25.07.2015 - bugfix parser did
hang on text starting <?something https://github.com/smarty-php/smarty/issues/74
20.07.2015 - bugfix config files got recompiled on each request -
improvement invalidate PHP 5.5 opcache for recompiled and cached templates
https://github.com/smarty-php/smarty/issues/72 12.07.2015 - optimize
{extends} compilation 10.07.2015 - bugfix force file: resource in demo
resource.extendsall.php 08.07.2015 - bugfix convert each word of class
names to ucfirst in in compiler. (forum topic 25588) 07.07.2015 -
improvement allow fetch() or display() called on a template object to get output
from other template like $template->fetch('foo.tpl')
https://github.com/smarty-php/smarty/issues/70 - improvement Added $limit
parameter to regex_replace modifier #71 - new feature multiple indices on
file: resource 06.07.2015 - optimize {block} compilation - optimization
get rid of __get and __set in source object 01.07.2015 - optimize compile
check handling - update {foreach} compiler - bugfix debugging console did
not display string values containing \n, \r or \t correctly
https://github.com/smarty-php/smarty/issues/66 - optimize source resources
28.06.2015 - move $smarty->enableSecurity() into Smarty_Security class -
optimize security isTrustedResourceDir() - move auto load filter methods into
extension - move $smarty->getTemplateVars() into extension - move
getStreamVariable() into extension - move $smarty->append() and
$smarty->appendByRef() into extension - optimize autoloader - optimize file
path normalization - bugfix PATH_SEPARATOR was replaced by mistake in
autoloader - remove redundant code 27.06.2015 - bugfix resolve naming
conflict between custom Smarty delimiter '<%' and PHP ASP tags
https://github.com/smarty-php/smarty/issues/64 - update $smarty->_realpath for
relative path not starting with './' - update Smarty security with new
realpath handling - update {include_php} with new realpath handling - move
$smarty->loadPlugin() into extension - minor compiler optimizations - bugfix
allow function plugins with name ending with 'close' https://github.com/smarty-
php/smarty/issues/52 - rework of $smarty->clearCompiledTemplate() and move it
to its own extension 19.06.2015 - improvement allow closures as callback at
$smarty->registerFilter() https://github.com/smarty-php/smarty/issues/59 =====
3.1.27===== (18.06.2015) 18.06.2015 - bugfix another update on file path
normalization failed on path containing something like "/.foo/"
https://github.com/smarty-php/smarty/issues/56 ===== 3.1.26===== (18.06.2015)
18.06.2015 - bugfix file path normalization failed on path containing
something like "/.foo/" https://github.com/smarty-php/smarty/issues/56
17.06.2015 - bugfix calling a plugin with nocache option but no other
attributes like {foo nocache} caused call to undefined function
https://github.com/smarty-php/smarty/issues/55 ===== 3.1.25===== (15.06.2015)
15.06.2015 - optimization of smarty_cachereource_keyvaluestore.php code
14.06.2015 - bugfix a relative sub template path could fail if template_dir
path did contain /../ https://github.com/smarty-php/smarty/issues/50 -
optimization rework of path normalization - bugfix an output tag with
variable, modifier followed by an operator like {$foo|modifier+1} did fail
https://github.com/smarty-php/smarty/issues/53 13.06.2015 - bugfix a custom
cache resource using smarty_cachereource_keyvaluestore.php did fail if php.ini
mbstring.func_overload = 2 (forum topic 25568) 11.06.2015 - bugfix the
lexer could hang on very large quoted strings (forum topic 25570) 08.06.2015
- bugfix using {$foo} as array index like $bar.{$foo} or in double quoted string
like "some {$foo} thing" failed https://github.com/smarty-php/smarty/issues/49
04.06.2015 - bugfix possible error message on unset() while compiling {block}
tags https://github.com/smarty-php/smarty/issues/46 01.06.2015 - bugfix
<?xml ... ?> including template variables broken since 3.1.22
https://github.com/smarty-php/smarty/issues/47 27.05.2015 - bugfix
{include} with variable file name must not create by default individual cache
file (since 3.1.22) https://github.com/smarty-php/smarty/issues/43 24.05.2015
- bugfix if condition string 'neq' broken due to a typo
https://github.com/smarty-php/smarty/issues/42 ===== 3.1.24===== (23.05.2015)
23.05.2015 - improvement on php_handling to allow very large PHP sections,
better error handling - improvement allow extreme large comment sections
(forum 25538) 21.05.2015 - bugfix broken PHP 5.2 compatibility when
compiling <?php tags https://github.com/smarty-php/smarty/issues/40 - bugfix
named {foreach} comparison like $smarty.foreach.foobar.index > 1 did compile
into wrong code https://github.com/smarty-php/smarty/issues/41 19.05.2015 -
bugfix compiler did overwrite existing variable value when setting the nocache
attribute https://github.com/smarty-php/smarty/issues/39 - bugfix output
filter trimwhitespace could run into the pcre.backtrack_limit on large output
(code.google issue 220) - bugfix compiler could run into the
pcre.backtrack_limit on larger comment or {php} tag sections (forum 25538)
18.05.2015 - improvement introduce shortcuts in lexer/parser rules for most
frequent terms for higher compilation speed 16.05.2015 - bugfix
{php}{/php} did work just for single lines https://github.com/smarty-
php/smarty/issues/33 - improvement remove not needed ?><?php transitions from
compiled code - improvement reduce number of lexer tokens on operators and if
conditions - improvement higher compilation speed by modified lexer/parser
generator at "smarty/smarty-lexer" 13.05.2015 - improvement remove not
needed ?><?php transitions from compiled code - improvement of debugging:
- use fresh Smarty object to display the debug console because of possible
problems when the Smarty was extended or Smarty properties had been
modified in the class source - display Smarty version number -
Truncate lenght of Origin display and extend strin value display to 80 character
- bugfix in Smarty_Security 'nl2br' should be a trusted modifier, not PHP
function (code.google issue 223) 12.05.2015 - bugfix
{$smarty.constant.TEST} did fail on undefined constant
https://github.com/smarty-php/smarty/issues/28 - bugfix access to undefined
config variable like {#undef#} did fail https://github.com/smarty-
php/smarty/issues/29 - bugfix in nested {foreach} saved item attributes got
overwritten https://github.com/smarty-php/smarty/issues/33 ===== 3.1.23 =====
(12.05.2015) 12.05.2015 - bugfix of smaller performance issue introduce in
3.1.22 when caching is enabled - bugfix missig entry for smarty-temmplate-
config in autoloader ===== 3.1.22 ===== tag was deleted because 3.1.22 did
fail caused by the missing entry for smarty-temmplate-config in autoloader
10.05.2015 - bugfix custom cache resource did not observe compile_id and
cache_id when $cache_locking == true - bugfix cache lock was not handled
correctly after timeout when $cache_locking == true - improvement added
constants for $debugging 07.05.2015 - improvement of the debugging console.
Read NEW_FEATURES.txt - optimization of resource class loading 06.05.2015
- bugfix in 3.1.22-dev cache resource must not be loaded for subtemplates -
bugfix/improvement in 3.1.22-dev cache locking did not work as expected
05.05.2015 - optimization on cache update when main template is modified -
optimization move <?php ?> handling from parser to new compiler module
05.05.2015 - bugfix code could be messed up when {tags} are used in multiple
attributes https://github.com/smarty-php/smarty/issues/23 04.05.2015 -
bugfix Smarty_Resource::parseResourceName incompatible with Google AppEngine
(https://github.com/smarty-php/smarty/issues/22) - improvement use is_file()
checks to avoid errors suppressed by @ which could still cause problems
(https://github.com/smarty-php/smarty/issues/24) 28.04.2015 - bugfix
plugins of merged subtemplates not loaded in 3.1.22-dev (forum topic 25508) 2nd
fix 28.04.2015 - bugfix plugins of merged subtemplates not loaded in
3.1.22-dev (forum topic 25508) 23.04.2015 - bugfix a nocache template
variable used as parameter at {insert} was by mistake cached 20.04.2015 -
bugfix at a template function containing nocache code a parmeter could overwrite
a template variable of same name 27.03.2015 - bugfix
Smarty_Security->allow_constants=false; did also disable true, false and null
(change of 16.03.2015) - improvement added a whitelist for trusted constants
to security Smarty_Security::$trusted_constants (forum topic 25471) 20.03.2015
- bugfix make sure that function properties get saved only in compiled files
containing the fuction definition {forum topic 25452} - bugfix correct update
of global variable values on exit of template functions. (reported under Smarty
Developers) 16.03.2015 - bugfix problems with {function}{/function} and
{call} tags in different subtemplate cache files {forum topic 25452} - bugfix
Smarty_Security->allow_constants=false; did not disallow direct usage of defined
constants like {SMARTY_DIR} {forum topic 25457} - bugfix {block}{/block} tags
did not work inside double quoted strings https://github.com/smarty-
php/smarty/issues/18 15.03.2015 - bugfix $smarty->compile_check must be
restored before rendering of a just updated cache file {forum 25452}
14.03.2015 - bugfix {nocache} {/nocache} tags corrupted code when used
within a nocache section caused by a nocache template variable. - bugfix
template functions defined with {function} in an included subtemplate could not
be called in nocache mode with {call... nocache} if the subtemplate
had it's own cache file {forum 25452} 10.03.2015 - bugfix {include ...
nocache} whith variable file or compile_id attribute was not executed in nocache
mode. 12.02.2015 - bugfix multiple Smarty::fetch() of same template when
$smarty->merge_compiled_includes = true; could cause function already defined
error 11.02.2015 - bugfix recursive {includes} did create E_NOTICE message
when $smarty->merge_compiled_includes = true; (github issue #16) 22.01.2015
- new feature security can now control access to static methods and properties
see also NEW_FEATURES.txt 21.01.2015 - bugfix clearCompiledTemplates(),
clearAll() and clear() could try to delete whole drive at wrong path permissions
because realpath() fail (forum 25397) - bugfix 'self::' and 'parent::' was
interpreted in template syntax as static class 04.01.2015 - push last weeks
changes to github - different optimizations - improvement automatically create
different versions of compiled templates and config files depending on
property settings. - optimization restructure template processing by moving
code into classes it better belongs to - optimization restructure config file
processing 31.12.2014 - bugfix use function_exists('mb_get_info') for setting
Smarty::$_MBSTRING. Function mb_split could be overloaded depending on
php.ini mbstring.func_overload 29.12.2014 - new feature security can now
limit the template nesting level by property $max_template_nesting
see also NEW_FEATURES.txt (forum 25370) 29.12.2014 - new feature security
can now disable special $smarty variables listed in property
$disabled_special_smarty_vars see also NEW_FEATURES.txt (forum
25370) 27.12.2014 - bugfix clear internal _is_file_cache when plugins_dir
was modified 13.12.2014 - improvement optimization of lexer and parser
resulting in a up to 30% higher compiling speed 11.12.2014 - bugfix resolve
parser ambiguity between constant print tag {CONST} and other smarty tags after
change of 09.12.2014 09.12.2014 - bugfix variables $null, $true and $false
did not work after the change of 12.11.2014 (forum 25342) - bugfix call of
template function by a variable name did not work after latest changes (forum
25342) 23.11.2014 - bugfix a plugin with attached modifier could fail if
the tag was immediately followed by another Smarty tag (since 3.1.21) (forum
25326) 13.11.2014 - improvement move autoload code into Autoloader.php. Use
Composer autoloader when possible 12.11.2014 - new feature added support of
namespaces to template code 08.11.2014 - 10.11.2014 - bugfix subtemplate
called in nocache mode could be called with wrong compile_id when it did change
on one of the calling templates - improvement add code of template functions
called in nocache mode dynamically to cache file (related to bugfix of
01.11.2014) - bugfix Debug Console did not include all data from merged
compiled subtemplates 04.11.2014 - new feature $smarty->debugging = true; =>
overwrite existing Debug Console window (old behaviour)
$smarty->debugging = 2; => individual Debug Console window by template name
03.11.2014 - bugfix Debug Console did not show included subtemplates since
3.1.17 (forum 25301) - bugfix Modifier debug_print_var did not limit recursion
or prevent recursive object display at Debug Console (ATTENTION: parameter
order has changed to be able to specify maximum recursion) - bugfix Debug
consol did not include subtemplate information with
$smarty->merge_compiled_includes = true - improvement The template variables
are no longer displayed as objects on the Debug Console - improvement
$smarty->createData($parent = null, $name = null) new optional name parameter
for display at Debug Console - addition of some hooks for future extension of
Debug Console 01.11.2014 - bugfix and enhancement on subtemplate {include}
and template {function} tags. * Calling a template which has a nocache
section could fail if it was called from a cached and a not cached subtemplate.
* Calling the same subtemplate cached and not cached with the
$smarty->merge_compiled_includes enabled could cause problems * Many smaller
related changes 30.10.2014 - bugfix access to class constant by object like
{$object::CONST} or variable class name {$class::CONST} did not work (forum
25301) 26.10.2014 - bugfix E_NOTICE message was created during compilation
when ASP tags '<%' or '%>' are in template source text - bugfix
merge_compiled_includes option failed when caching enables and same subtemplate
was included cached and not cached
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Shawn Iwinski <shawn(a)iwin.ski> - 3.1.33-1
- Update to 3.1.33
- RHBZ #s: 1532492, 1532493, 1532494, 1628739, 1628740, 1628741, 1631095, 1631096, 1631098
- CVEs: CVE-2017-1000480, CVE-2018-13982, CVE-2018-16831
- License LGPLv2+ => LGPLv3
* Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.21-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.21-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.21-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.21-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.21-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Thu Feb 4 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.1.21-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Thu Jun 18 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.1.21-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1631098 - CVE-2018-13982 php-Smarty: Path traversal vulnerability in Smarty_Security::isTrustedResourceDir() [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1631098
[ 2 ] Bug #1628740 - CVE-2018-16831 php-Smarty: trusted_dir protection mechanism bypass [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1628740
[ 3 ] Bug #1532493 - CVE-2017-1000480 php-Smarty: Code injection when calling fetch() or display() on unsanitized template names [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1532493
[ 4 ] Bug #1631096 - CVE-2018-13982 php-Smarty: Path traversal vulnerability in Smarty_Security::isTrustedResourceDir() [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1631096
[ 5 ] Bug #1628741 - CVE-2018-16831 php-Smarty: trusted_dir protection mechanism bypass [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1628741
[ 6 ] Bug #1532494 - CVE-2017-1000480 php-Smarty: Code injection when calling fetch() or display() on unsanitized template names [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1532494
--------------------------------------------------------------------------------
================================================================================
spirv-headers-1.2-0.11.20190125.git8bea0a2.el7 (FEDORA-EPEL-2019-48b4e8d3d2)
Header files from the SPIR-V registry
--------------------------------------------------------------------------------
Update Information:
https://www.winehq.org/announce/4.0
--------------------------------------------------------------------------------
================================================================================
spirv-tools-2019.1-1.el7 (FEDORA-EPEL-2019-48b4e8d3d2)
API and commands for processing SPIR-V modules
--------------------------------------------------------------------------------
Update Information:
https://www.winehq.org/announce/4.0
--------------------------------------------------------------------------------
================================================================================
tor-0.3.5.8-1.el7 (FEDORA-EPEL-2019-f8311ec8a2)
Anonymizing overlay network for TCP
--------------------------------------------------------------------------------
Update Information:
update to latest upstream release (bz#1679732)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 21 2019 Marcel H��rry <mh+fedora(a)scrit.ch> - 0.3.5.8-1
- update to latest upstream release (bz#1679732)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1679975 - CVE-2019-8955 tor: memory exhaustion in the KIST cell scheduler resulting in denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1679975
--------------------------------------------------------------------------------
================================================================================
vkd3d-1.1-2.el7 (FEDORA-EPEL-2019-48b4e8d3d2)
D3D12 to Vulkan translation library
--------------------------------------------------------------------------------
Update Information:
https://www.winehq.org/announce/4.0
--------------------------------------------------------------------------------
================================================================================
wine-4.0-2.el7 (FEDORA-EPEL-2019-48b4e8d3d2)
A compatibility layer for windows applications
--------------------------------------------------------------------------------
Update Information:
https://www.winehq.org/announce/4.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Michael Cronenworth <mike(a)cchtml.com> 4.0-2
- fix vulkan requirement
* Tue Feb 19 2019 Michael Cronenworth <mike(a)cchtml.com> 4.0-1
- version update
* Thu Sep 13 2018 Michael Cronenworth <mike(a)cchtml.com> 3.0.3-1
- version update
- drop aarch64 for epel
--------------------------------------------------------------------------------
================================================================================
wordpress-5.1-1.el7 (FEDORA-EPEL-2019-0820aef7eb)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
Read upstream announcement: [WordPress 5.1
���Betty���](https://wordpress.org/news/2019/02/betty/)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Remi Collet <remi(a)remirepo.net> - 5.1-1
- WordPress 5.1 ���Betty���
--------------------------------------------------------------------------------
================================================================================
xrootd-4.9.0-1.el7 (FEDORA-EPEL-2019-d71dba9f5a)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
https://github.com/xrootd/xrootd/blob/v4.9.0/docs/ReleaseNotes.txt
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 22 2019 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.9.0-1
- Update to version 4.9.0
- Drop patches previously backported
* Sun Feb 17 2019 Igor Gnatenko <ignatenkobrain(a)fedoraproject.org> - 1:4.8.5-7
- Rebuild for readline 8.0
* Sun Feb 3 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1:4.8.5-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Wed Jan 30 2019 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.8.5-5
- Fix Fedora Rawhide build (gcc 9)
* Thu Jan 17 2019 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.8.5-4
- Drop ceph support for 32 bit arches in Fedore 30+
* Mon Jan 14 2019 Bj��rn Esser <besser82(a)fedoraproject.org> - 1:4.8.5-3
- Rebuilt for libcrypt.so.2 (#1666033)
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
69 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b7556983e8 tomcat-7.0.92-1.el6
65 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-a0ddb153b8 game-music-emu-0.6.2-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
distcc-3.2rc1-3.el6
koji-1.16.2-1.el6
Details about builds:
================================================================================
distcc-3.2rc1-3.el6 (FEDORA-EPEL-2019-b4ed6df2c1)
Distributed C/C++ compilation
--------------------------------------------------------------------------------
Update Information:
Restrict default configuration to localhost.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 21 2019 Gwyn Ciesla <gwync(a)protonmail.com> - 3.2rc1-3
- Restrict to localhost by default.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1660408 - CVE-2004-2687 distcc: TCP mode has too permissive default IP address whitelist [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1660408
[ 2 ] Bug #1660407 - CVE-2004-2687 distcc: TCP mode has too permissive default IP address whitelist [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1660407
--------------------------------------------------------------------------------
================================================================================
koji-1.16.2-1.el6 (FEDORA-EPEL-2019-26a7e6e4e8)
Build system tools
--------------------------------------------------------------------------------
Update Information:
Rebase to Koji 1.16.2 for CVE-2018-1002161
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 21 2019 Patrick Uiterwijk <puiterwijk(a)redhat.com> - 1.16.2-1
- Rebase to 1.16.2 for CVE-2018-1002161
--------------------------------------------------------------------------------
Any/All,
tkcvs (https://sourceforge.net/projects/tkcvs/) has become active
again after 7 years and released a 9.X release series. As it is tk/tcl
based (noarch) and it now supports more modern usage (including git),
I'd like to see it make its way into EPEL, and maybe even EPEL-7, since
there aren't really any binary-level dependencies of which I'm aware.
(Please correct me if I've missed something.)
Thoughts? I know that major release points are usually avoided in
EPEL due to ABI incompatibility, but for a pure Tk/Tcl implementation,
the feature-additions and bugfixes likely outweigh most risk.
Thanks,
-Nathan
P.s:
I was successfully able to build it (but haven't installed nor
tested) using the previous 8.2.3 SRPM spec file with the below patch
(updated source version and urls, fixed the setup for non-standard
naming of sources, fixed changelog for incorrect dates, and removed CVS
as it is not a true dependency, IMHO):
--- a/tkcvs.spec 2019-02-20 08:06:37.806138224 -0600
+++ b/tkcvs.spec 2019-02-20 21:43:50.986137768 -0600
@@ -1,5 +1,5 @@
Name: tkcvs
-Version: 8.2.3
+Version: 9.0.2
Release: 1%{?dist}
Summary: TkCVS and TkDiff
@@ -7,18 +7,17 @@
Group: Development/Tools
# No version specified.
License: GPL+
-URL: http://www.twobarleycorns.net/tkcvs.html
-Source: http://www.twobarleycorns.net/%{name}-%{version}.tar.gz
+URL: https://sourceforge.net/projects/tkcvs/
+Source: https://downloads.sourceforge.net/project/tkcvs/tkcvs_9.0.2.tar.gz
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
Requires: tk
Requires: tcl
-Requires: cvs
BuildArch: noarch
%description
-TkCVS is a Tcl/Tk-based graphical interface to the CVS and Subversion
-configuration management systems. It will also help with RCS. TkDiff
-is included for browsing and merging your changes.
+TkCVS is a Tcl/Tk-based graphical interface to the CVS, Subversion,
+Git, and RCS configuration management systems. TkDiff is included for
+browsing and merging your changes.
TkCVS shows the status of the files in the current working directory,
and has tools for tagging, merging, importing, exporting, checking
@@ -30,13 +29,13 @@
produce a "user friendly" listing of modules. This requires special
comments in the CVSROOT/modules file.
-Although TkCVS now supports Subversion, it will still work happily
+Although TkCVS now supports Subversion and Git, it will still work happily
without it in your CVS directories. It didn't abandon CVS, it just
grew some new capabilities.
%prep
-%setup -q
+%setup -q -n tkcvs_9.0.2
%build
@@ -71,7 +70,10 @@
%changelog
-* Tue Sep 2 2014 Lubomir Rintel <lkundrak(a)v3.sk> - 8.2.3-1
+* Thu Feb 21 2019 Nathan McGarvey <nathanmcgarvey(a)gmail.com> - 9.0.2-1
+- new release 9.0.2
+
+* Tue Sep 02 2014 Lubomir Rintel <lkundrak(a)v3.sk> - 8.2.3-1
- new release 8.2.3
* Sun Jun 08 2014 Fedora Release Engineering
<rel-eng(a)lists.fedoraproject.org> - 8.2.2-7
@@ -134,7 +136,7 @@
* Tue Jul 5 2005 Gerard Milmeister <gemi(a)bluewin.ch> - 7.2.3-1
- new version 7.2.3
-* Fri Apr 7 2005 Michael Schwendt <mschwendt[AT]users.sf.net>
+* Thu Apr 7 2005 Michael Schwendt <mschwendt[AT]users.sf.net>
- rebuilt
* Mon Feb 14 2005 Gerard Milmeister <gemi(a)bluewin.ch> - 0:7.2.2-2
The following Fedora EPEL 6 Security updates need testing:
Age URL
68 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b7556983e8 tomcat-7.0.92-1.el6
64 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-a0ddb153b8 game-music-emu-0.6.2-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
distribution-gpg-keys-1.29-1.el6
mozilla-noscript-10.2.1-2.el6
openvpn-2.4.7-1.el6
qtools-0.4.0-1.el6
twa-1.8.0-2.el6
Details about builds:
================================================================================
distribution-gpg-keys-1.29-1.el6 (FEDORA-EPEL-2019-84650c0af6)
GPG keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
Release together with `mock-core-configs-30.1` which has these changes: - Added
repositories for Fedora 30 (and Fedora 31 repos now points to rawhide). -
distribution-gpg-keys for rhel8beta is being installed directly from Koji,
because EPEL8 does not exist yet. - Fedora 27 config has been moved to `eol`
directory. - `gpgcheck` is enabled for testing and debuginfo now. - Fedoras
29+ have included modular repos now. Additionally, there is now
`module_platform_id` defined in these configs, which allows you to install
modules without errors. ## Mock new features: - All mock configs are parsed
and evaluated by [Jinja2](http://jinja.pocoo.org/). Here is small example how it
can be used: ``` # define your own config variable config_opts['fedora_number']
= '30' config_opts['root'] = 'fedora-{{ fedora_number }}-x86_64'
config_opts['dist'] = 'fc{{ fedora_number }}' ``` Another - more general -
example from `site-defaults.cfg`: ``` # You can use jinja templates, e.g.: #
config_opts['foobar'] = '{{ foo }} bar' # which will result in 'bar bar' (using
value defined few lines above) # more complicated example: # config_opts['foo']
= "{{ plugin_conf['package_state_enable'] }}" # which will result in "True" ```
This feature can simplify mock's configs in the future. I intentionally did not
use it now, because it is too fresh. Please experiment with this feature on your
own and report any error or issues. If there would be none, then I will start
using it in main configs. - Use 32-bit personality for armv7*/armv8* builds. -
You can now specify decompress program for root_cache. This is new default in
`site-defaults.cfg` [GH#230](https://github.com/rpm-software-
management/mock/issues/230): ``` ## decompress_program is needed only for
bsdtar, otherwise `compress_program` with `-d` is used ## for bsdtar use
"unpigz" or "gunzip" #
config_opts['plugin_conf']['root_cache_opts']['decompress_program'] = "pigz" ```
## Bugfixes: - Added Scientific Linux on the list of RHEL clones
[GH#228](https://github.com/rpm-software-management/mock/issues/228) - Fixed
exclude pattern for BSDTar [GH#219](https://github.com/rpm-software-
management/mock/issues/219) - There used to be living part of `site-
defaults.cfg`: ``` config_opts['bootstrap_chroot_additional_packages'] = []
config_opts['bootstrap_module_enable'] = []
config_opts['bootstrap_module_install'] = [] ``` This is now commented out by
default, and the defaults are set in mock code. You can still override it in
`site-defaults.cfg`.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 19 2019 Miroslav Such�� <msuchy(a)redhat.com> 1.29-1
- update Copr keys
- add F31 key and point rawhide to F31
- add Fedora iot keys
--------------------------------------------------------------------------------
================================================================================
mozilla-noscript-10.2.1-2.el6 (FEDORA-EPEL-2019-836674baba)
JavaScript white list extension for Mozilla Firefox
--------------------------------------------------------------------------------
Update Information:
v 10.2.1 ============================================================= * Cascade
top document's restrictions to subframes (Tor issue #28873) * Fixed restored
media element from placeholder not loading previously blocked content
automatically * Fixed placeholders missing for some blocked embeddings (Tor
ticket #28720) v 10.2
============================================================ * [L10n] Updated
fr, he * Allow origin-less fetch for extensions (issue #41) * Fixed meta refresh
inside NOSCRIPT emulation breaking Firefox's built-in refresh blocking * Fixed
issue #35 "tabId is not defined" on startup * Darker red badge background to
ensure text is kept white across browsers
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2019 Dominik Mierzejewski <rpm(a)greysector.net> - 10.2.1-2
- update to 10.2.1
--------------------------------------------------------------------------------
================================================================================
openvpn-2.4.7-1.el6 (FEDORA-EPEL-2019-7d5fe34675)
A full-featured SSL VPN solution
--------------------------------------------------------------------------------
Update Information:
Updating to upstream OpenVPN 2.4.7
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2019 David Sommerseth <dazo(a)eurephia.org> - 2.4.7-1
- Updating to upstream OpenVPN 2.4.7
--------------------------------------------------------------------------------
================================================================================
qtools-0.4.0-1.el6 (FEDORA-EPEL-2019-1aa4b310d6)
Command-line tools for AMQP
--------------------------------------------------------------------------------
Update Information:
Rebased to 0.4.0.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2019 Irina Boverman <iboverma(a)redhat.com> - 0.4.0-1
- Rebased to 0.4.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1606054 - qtools: FTBFS in Fedora rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1606054
[ 2 ] Bug #1675861 - qtools: FTBFS in Fedora rawhide/f30
https://bugzilla.redhat.com/show_bug.cgi?id=1675861
--------------------------------------------------------------------------------
================================================================================
twa-1.8.0-2.el6 (FEDORA-EPEL-2019-42b11dab21)
Tiny web auditor with strong opinions
--------------------------------------------------------------------------------
Update Information:
Add missing dependency on /usr/bin/dig ---- Update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2019 Artur Iwicki <fedora(a)svgames.pl> - 1.8.0-2
- Add missing dependency on /usr/bin/dig
* Sun Feb 17 2019 Artur Iwicki <fedora(a)svgames.pl> - 1.8.0-1
- Update to latest upstream release
--------------------------------------------------------------------------------