Zsh Mailing List Archive Messages sorted by: Reverse Date, Date, Thread, Author

Re: PATCH: 5.0.8 notes

X-seq: zsh-workers 35010
From: Mikael Magnusson <mikachu@xxxxxxxxx>
To: Peter Stephenson <p.w.stephenson@xxxxxxxxxxxx>
Subject: Re: PATCH: 5.0.8 notes
Date: Fri, 1 May 2015 00:13:56 +0200
Cc: Zsh hackers list <zsh-workers@xxxxxxx>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=v7jAiM6BqbiabxDL7t9VKRkd9dyspumbVQ58QMhwleQ=; b=zGxZiWIITjFRYK/jtzj6LABm+IW5px/1q4gKUWrIPy5Htip9AFtFGuufAJWSizjpsK BxIgDs9G56H71VHysihOQMxGn03Sf6MBecwqaugFbW/S/uC6HHqX40VwgFYPs+tp/ABB dSCLP72B0VYMwYeLAodxBq/6yQ2F+FQgqkpHdhJsyMJ32an+3x4yUBNTiWKkCksa7gmK DE/Sjdd2ZYUsHclSaoGa+RMqtzZmPdGSP7jg1oqiBxRPbJ78o4sJoF3V9H4RA6WHAkti 8nvHlzfe3GXXHsWZTQHJKaJ4zkpVXIm5GR8Xatk5kN8I+hwOB+AzGOsxKS8uw3lXVNGp hw4w==
In-reply-to: <20150430210312.5c62314e@ntlworld.com>
List-help: <mailto:zsh-workers-help@zsh.org>
List-id: Zsh Workers List <zsh-workers.zsh.org>
List-post: <mailto:zsh-workers@zsh.org>
Mailing-list: contact zsh-workers-help@xxxxxxx; run by ezmlm
References: <20150430210312.5c62314e@ntlworld.com>

On Thu, Apr 30, 2015 at 10:03 PM, Peter Stephenson
<p.w.stephenson@xxxxxxxxxxxx> wrote:
> There ought to be more worth mentioning...
>
> -Note in particular there is a security fix to disallow evaluation of the
> -initial values of integer variables imported from the environment (they
> -are instead treated as literal numbers).  That could allow local
> -privilege escalation, under some specific and atypical conditions where
> -zsh is being invoked in privilege elevation contexts when the
> -environment has not been properly sanitized, such as when zsh is invoked
> -by sudo on systems where "env_reset" has been disabled.
> +This is version 5.0.8 of the shell.  This is a stable release.
> +There are no significant new features since 5.0.6, but there

should this say .7?                                ^

I'm not sure how much we usually list here but here's some stuff from
a look through the git log,

${(p.$param.)

some numerous changes to the vi mode, i don't use it but maybe oliver
can chime in?

waiting on already exited processes

whence -v lists file function was defined in
       -S shows intermediate symlink steps

$(< error not fatal anymore

faster history lockfile retrying

zsh/db/gdbm module, ztie -r / zuntie -u

pattern support in watch variable

aliasing && and other tokens (this is already in NEWS, but not listed
separately for .8)

posix builtins and exec + assignments

-- 
Mikael Magnusson

Follow-Ups:
- Re: PATCH: 5.0.8 notes
  - From: Peter Stephenson

References:
- PATCH: 5.0.8 notes
  - From: Peter Stephenson

Messages sorted by: Reverse Date, Date, Thread, Author