cppi-1.18 released [stable]

Sat, 16 Mar 2013 18:19:37 -0700 

This is to announce cppi-1.18, a stable release.
cppi indents C preprocessor directives to reflect their nesting.

This release is mainly to fix the slightly risky[*] Makefile.in files
From the previous release.

There have been 12 commits by 3 people in the 32 weeks since 1.17.

See the NEWS below for a brief summary.

Thanks to everyone who has contributed!
The following people contributed changes to this release:

  Akim Demaille (1)
  Eric Blake (2)
  Jim Meyering (9)

Jim [on behalf of the cppi maintainers]
==================================================================

Here is the GNU cppi home page:
    http://gnu.org/s/cppi/

For a summary of changes and contributors, see:
  http://git.sv.gnu.org/gitweb/?p=cppi.git;a=shortlog;h=v1.18
or run this command from a git-cloned cppi directory:
  git shortlog v1.17..v1.18

To summarize the 328 gnulib-related changes, run these commands
From a git-cloned cppi directory:
  git checkout v1.18
  git submodule summary v1.17

Here are the compressed sources and a GPG detached signature[*]:
  http://ftp.gnu.org/gnu/cppi/cppi-1.18.tar.xz
  http://ftp.gnu.org/gnu/cppi/cppi-1.18.tar.xz.sig

Use a mirror for higher download bandwidth:
  http://ftpmirror.gnu.org/cppi/cppi-1.18.tar.xz
  http://ftpmirror.gnu.org/cppi/cppi-1.18.tar.xz.sig

[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact.  First, be sure to download both the .sig file
and the corresponding tarball.  Then, run a command like this:

  gpg --verify cppi-1.18.tar.xz.sig

If that command fails because you don't have the required public key,
then run this command to import it:

  gpg --keyserver keys.gnupg.net --recv-keys 7FD9FCCB000BEEEE

and rerun the 'gpg --verify' command.

This release was bootstrapped with the following tools:
  Autoconf 2.69.77-845e7
  Automake 1.13a
  Flex 2.5.36
  Gnulib v0.0-7896-gcbd4daf
  Gperf 3.0.4
  Help2man 1.40.12

NEWS

* Noteworthy changes in release 1.18 (2013-03-16) [stable]

** Build- and infrastructure-related

  Gnulib infrastructure updates.

  Regenerate Makefile.in files using a version of automake that
  is not susceptible to CVE-2009-4029 or CVE-2012-3386.

[*] For details on why the Makefile.in files in 1.17 pose a risk, see these:
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4029
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3386

Attachment: pgpampjSJkYgj.pgp
Description: PGP signature

_______________________________________________
GNU Announcement mailing list <info-gnu@gnu.org>
https://lists.gnu.org/mailman/listinfo/info-gnu

Reply via email to