lynx-2.9.0-bp155.2.3.1

- version update to 2.9.0 [bsc#1220026]
  2024-01-15 (2.9.0)
  * change version of OpenSSL used in Windows installers to 3.x and 1.1.1x,
    for new/old respectively -TD
  * fixes for UBSAN/ASAN issues with clang on Windows -GV
  * modify install-doc rule to use relative path for symbolic links -TD
  * add support for gopher's hURL functionality (patch by Viatrix).
  * allow ^G interrupt to end read from a stalled connection without exiting
    Lynx (Debian #1033423) -TD
  * allow the ^S keymap to be disabled in the configuration file, e.g.,
    KEYMAP:^S:UNMAPPED
    (report by TG) -TD
  * repair docs/OS-390.announce and docs/README.jp -TD
  * make the test-files non-empty, to appease some packaging tools -TD
  * check for getpwuid(), use in preference to deprecated cuserid() -TD
  * modify curses initialization to permit ^S built-in keymap to work without
    needing external stty changes -TD
  * correct ifdef for LYmsec_delay() (report by Alexander Arkhipov) -TD
  * add a NUL after "/" in the SGML parser when the next character is ">", to
    make PRETTYSRC view display correctly (report by "Dima") -TD
  * trim some obsolete style code for NeXT -TD
  * improve responsiveness with respect to SIGWINCH (report by Mark Zaharov) -TD
  * improve check for MAX_URI_SIZE -TD
  * improve check for UTF-8 character encoding in XML Text Declaration (report by
    Lennart Jablonka) -TD
  * fix for decoding utf-8 in CDATA sections (patch by Hiltjo Posthuma)
  * treat HTTP 308 permanently redirected the same as HTTP 301 permanently moved
    (Debian #1041686).
  * formatting fixes for manpage (Debian #1037353).
  * change defaults in configure script to use compression -TD
  * modify HTChunkPutb2() to avoid passing a zero-size or null pointer to
    memcpy() -TD
  * correct loop in fill_addrinfo() which adds sizes of struct addrinfo's found
    in getaddrinfo() call; the 2.8.8dev.15 change did not update the pointer to
    the struct addrinfo's (Redhat #2185402) -TD
  * modify configure script to reduce implicit-function warnings -TD
  * add viewport meta-tag to documentation/test files -TD
  * update config.guess (2023-08-22), config.sub (2023-09-15)
  * update ro.po from
    http://translationproject.org/latest/lynx
  2023-01-08 (2.9.0dev.12)
  * add a rewind() call before reading existing bookmark file opened for append
    with read/write, to ensure that the file-position is at the beginning of the
    file (report by Klatt Volkmar) -TD
  * improve compiler-warnings in configure script checks -TD
  * fix a few ifdef'ing problems (prompted by discussion with Klatt Volkmar) -TD
  * fix spelling errors found with codespell (report by Jens Schleusener) -TD
  * update eo.po from
    http://translationproject.org/latest/lynx
  2022-12-28 (2.9.0dev.11)
  * update ncurses/lynx homepage URLs to deprecate ftp -TD
  * modify configure script to reduce implicit-function warnings (report by
    Florian Weimer) -TD
  * update configure script to work around regression in grep 3.8 -TD
  * add some consistency-checks to dtd_util to make it easier to use -TD
  * improve formatting of bookmark file, e.g., to fix warnings by tidy -TD
  * correct workaround for asan2 report of overlapping strcpy (report by KH) -TD
  * amend fix for Debian #738121; URL-encoded "?" in HTFile.c corresponds to an
    actual "?" in a file path (report by TG) -TD
  * before calling delscreen, delete the private working windows in case delwin
    invalidates those (Debian #1015756) -TD
  * add presentation type for xhtml, related state information to better handle
    things such as "<script src=foo />" -Shlomi Fish, TD
  * improve line-breaks and whitespace for Japanese characters -KH
    + permit line breaks after any Japanese character (enabled by
  - -enable-wcwidth-support configuration and only called on last byte of
    multibyte UTF-8 sequence)
    + avoid adding spaces when joining lines after Japanese characters.
  * add new "Minimal" user mode, to minimize on-screen help/status.
    Eliminates the URL on the bottom line, the forward/backward indicator in the
    upper left, and most status-line messages - Paul G Fox
  * add PREVENT_KEYBOARD_WRAPAROUND symbol to userdefs.h
    Undefing this will allow cursor to wrap from bottom to/from top, when there's
    more content than a single page.  (It can already wrap when the content
    already fits on a page.) - Paul G Fox
  * modify NSL-fork to call freeaddrinfo only if getaddrinfo returns successfully
    (patch by Rajeev V Pillai)
  * add ".br", ".lz", ".lzip", and ".xz" to binary-suffixes list -TD
  * changes for using brotli stream decompression -TD
  * changes for working with SOCKS5 on Windows 10 -GV, -TD
  * fix a few coverity and clang warnings -TD
  * add a null-pointer check in StrAllocVsprintf() to work with existing SOCKS5
    configuration (report/patch by Gisle Vanem).
  * change capitalization of "Content-type" sent to the remote server to work
    around "HeavyThing" server which does not follow RFC 2616 in treating field
    name as case insensitive (report/patch by Sylvain Bertrand)
  * improved several configure macros:
    AM_WITH_NLS, CF_ADD_INCDIR, CF_BUILD_CC, CF_CHECK_EXTERN_DATA,
    CF_DISABLE_ECHO, CF_FIX_WARNINGS, CF_MAKEFLAGS, CF_MATH_LIB,
    CF_NCURSES_CONFIG, CF_NCURSES_LIBS, CF_PKG_CONFIG, CF_PROG_LINT,
    CF_SIZECHANGE, CF_TRY_XOPEN_SOURCE, CF_WITH_PATH, CF_XOPEN_SOURCE
  * update config.guess (2022-08-01), config.sub (2022-08-01)
- modified patches
  % lynx-charset.patch (refreshed)
  % lynx-enable_xli.patch (refreshed)

- update to 2.9.0~dev.10:
  * several fixes for problems found using asan2 with fuzzer-generated data
  * re-signed copyright/copying files -TD
  * update fr.po, id.po, nl.po, sv.po from
    http://translationproject.org/latest/lynx
  * update config.sub (2021-08-14)

- version update to 2.9.0~dev.9 [bsc#1189354]
  * development version, see CHANGES for details
  namely:
  * strip user/password from ssl_host in HTLoadHTTP, incorrectly passed as
    part of the server name indicator (Debian #991971) -TD

- update to 2.8.9rel1.1:
  * documentation/metrics updates
  * fix an inconsistency in message for -listonly option
  * update test-packages to use current ncurses test-packages
  * improve portability for sockaddr structures used in HTTP and FTP, for IPv6 and SOCKS configurations
  * fix several minor warnings reported by Coverity
  * build-fix overlooked in 2.8.9dev.3 when INACTIVE_INPUT_STYLE_VH is defined, for problem introduced by 2.8.8dev.17 code-cleanup
  * trim unnecessary intllib symbols from src/chrtrans/makefile.in
  * when cross-compiling, trim LDFLAGS from makefile rule linking makeuctb
- dropped patches:
  lynx-helpfile.patch: latest documentation available online

- update to 2.8.9dev.16:
  * add a note in the comments for INCLUDE in lynx.cfg regarding the default
  directory searches LYOpenCFG(), added in 2.8.4dev.20 (Debian #818047) -TD
  * add a check to ensure that HTML_put_string() will not append a chunk onto
  itself (report by Ned Williamson) -TD
  * add note in lynx.cfg about default values (Debian #408448) -TD
  * amended Backes' change to the COLLAPSE_BR_TAGS feature for compatibility -TD
  + use ENABLE_LYNXRC to determine whether it is written to the .lynxrc file.
  + add command-line option, etc., for controlling whether blank lines are
    trimmed, e.g., trailing lines as well as the special case for collapsing
    br-tags.  Leading blank lines at the top of the document are untouched.
  + modify limit for trimmed lines to retain as little as 1 line; previously
    the trimming would go no smaller than 2 lines.
  * add command-line option and options-menu item for COLLAPSE_BR_TAGS (patch
  by Peter Backes).
  * correct logic in HTCopy() when re-reading a page (Debian #863008) -TD

- Add --with-zlib and --with-bzip2 to configure, to allow
  decompressing directly via zlib and support bzip2.
- Add libbz2-devel and zlib-devel to BuildRequires

- update to 2.8.9dev.14 to build with openssl 1.1 [bsc#1042661]
- dropped patches
  . lynx-2.8.5.dif
  . lynx-no-build-date.patch
  . lynx-2.8.8-expired-cookie-crash.patch
  . lynx-CVE-2016-9179.patch
  . lynx-2.8.8-ncurses-6.0-20170318.patch
- renamed patches
  . lynx-2.8.7-enable_xli.patch to lynx-enable_xli.patch
  . lynx-2.8.5-charset.patch to lynx-charset.patch
  . lynx-2.8.5.dif split to lynx-helpfile.patch and
    lynx-proxy-empty-string.patch

- Use upstream commit f0b064b47bfa046da941f5029cdc1b4c851553ce to
  replace workaround in patch lynx-2.8.8-ncurses-6.0-20170318.patch

- fix typo in url

- Update project Url as well as Url path of source tar ball
- Add patch lynx-2.8.8-ncurses-6.0-20170318.patch to work
  around internal header definition of ncurses-6.0-20170318

- security update:
  * CVE-2016-9179 [bsc#1008642]
    + lynx-CVE-2016-9179.patch

- Add lynx-2.8.8-expired-cookie-crash.patch: fix invalid read when
  removing an expired cookie (bnc#907539).

- lynx 2.8.8rel.2
  * correct errata in test-files which cause broken links in
    break-out directory in lynx.isc.org server
  * amend change from 2.8.8pre.2, to ensure that MinGW libraries
    already declaring 'sleep()' will build
  * drop unused save/compress rules from makefile.in, because fixing
    umask for these is pointless
  * modify makefile.in to establish sane umask value in the
    "install-doc" rule
- lynx as an extra version element, append to version and adjust
  filename to make download_files pass

- lynx 2.8.8rel.1
- user visible changes:
  * add internal URL scheme "LYNXEDITMAP:" field-editing help
  * correct formatting of large file-sizes in directory listing
  * add "submit" and "reset" commands
  * add "pwd" command, to show current working directory in the
    statusline
  * add option -unique-urls
  * add -list_inline option, which modifies -dump output to put
    links inline with the text rather than in a list at the end of
    the dump
  * GNUTLS to enable SNI (Server Name Indication)
  * improved HTML interpretation
  * improved handling and display of character sets
  * Full list of changes and improvements:
    http://lynx.isc.org/lynx2.8.8/features.html
- packaging changes:
  * fix self-obsoletion of lynxssl
  * removed patches:
    + lynx-openssl.patch, committed upstream
  * modified patches:
    + lynx-2.8.5-charset.patch adjust for upstream changes

- fix license - there is no 'or later' in the license

- lynx-openssl.patch : just like in the "links" case, HTTPS
  clients must not:
  * Negotiate SSLv2
  * Attempt to use SSL compression (due to CVE-2012-4929)
- Fix debuginfo generation.

- remove call to suse_update_config (very old work around)

- removed the very long list of authors from spec

- remove x bits from sample windows scripts

- update to 2.8.7rel.2
  * add limit-check for too-long URIs in href's (RedHat #605286)
  * fix a few places still referring to "2-8-6"

- Do not include build date in binaries

- enable parallel build

- update to 2.8.7
  * many bugfixes
  * added many new options
  * improved SSL support, cookie support, HTML interpretation
- removed -ipv6 patch (feature implemented upstream)
- removed CVE-2008-4690 patch (fixed upstream)

- fix for lynxcgi command execution CVE-2008-4690 (bnc#439149)
- not affected: .mailcap and .mime.types files read, CVE-2006-7234