eM Client 歷史版本列表
更新時間:2020-02-06
更新細節:
更新時間:2020-02-06
更新細節:
What's new in this version:
Vulnerabilities fixed:
- HTTP header values do not have trailing OWS trimmed
- HTTP request smuggling using malformed Transfer-Encoding header
- Remotely trigger an assertion on a TLS server with a malformed certificate string
Commits:
- benchmark: support optional headers with wrk
- crypto: fix assertion caused by unsupported ext
- deps: update llhttp to 2.0.4
- (SEMVER-MINOR) http: make --insecure-http-parser configurable per-stream or per-server
- http: strip trailing OWS from header values
- test: using TE to smuggle reqs is not possible
更新時間:2020-02-04
更新細節:
What's new in this version:
Changes:
- Upgraded to Chromium 80.0.3987.86 (New since Electron 7: Chromium 79, 80)
- Upgraded to Node 12.13.0 (New since Electron 7: Node 12.9, 12.10, 12.11, 12.12, 12.13)
- Upgraded to V8 8.0 (New since Electron 7: V8 7.9, 8.0)
- IPC between main and renderer processes now uses the Structured Clone Algorithm
Features:
- Added --enable-api-filtering-logging command-line switch, which enables caller stack logging for desktopCapturer and remote APIs that can be blocked or filtered
- Added app.getApplicationNameForProtocol()
- Added app.setAboutPanelOptions() support for credits and iconPath on Windows
- Added BrowserWindow.moveAbove(mediaSourceId)
- Added contents.getAllSharedWorkers() and contents.inspectSharedWorkerById(workerId) to allow inspection of specific shared workers
- Added Notification() options' timeoutType property to allows users to set timeout type for Linux and Windows notifications
- Added Notification() options' urgency property to allow customization of Linux-based notifications
- Added session.addWordToSpellCheckerDictionary API to support custom words in the
- Added session.downloadURL() to allow downloads to trigger without a BrowserWindow
- Added systemPreferences.getMediaAccessStatus().screen for detecting the new macOS Catalina permissions
- Added trafficLightPosition option in BrowserWindow API to allow custom positioning of traffic lights
- Added tray.displayBalloon() options: iconType, largeIcon, noSound and respectQuietTime
- Added tray.focus(), which returns focus to the taskbar notification area
- Added tray.removeBalloon(), which removes an already displayed balloon notification
- Added WebContents.printToPDF() support for fitToPageEnabled and scaleFactor
- Added win.accessibleTitle property to augment the window title for screen readers
- Added options to enable customization of print page headers and footers
- Added support for picture-in-picture mode for video elements
- Added support for the built-in spellchecker. We will use the OS spellchecker on macOS and hunspell on all other platforms
- Added the ability to prevent documents from being added to recent documents on Windows in open dialogs
- Enable macOS users to fallback to item removal when when shell.moveItemToTrash fails
- Exposed webContents.executeJavaScriptInIsolatedWorld
- Exposing methods required by capturing a hidden webContents
- Added BrowserWindow.will-move event support on macOS
- Improved TouchBarButton and TouchBarLabel a11y with the new accessibilityLabel property
Fixes:
- Added name of module to context-aware deprecation warning
- Fixed Linux console warning about gtk_disable_setlocale()
- Don't destroy active menus created as local objects in javascript
- Fixed BrowserWindow.fromWebContents() to return null when no window is found for consistency with other APIs
- Fixed a crash that could occur when calling crashReporter.getUploadedReports
- Fixed a potential crash on faulty deviceNames in webContents.print()
- Fixed an issue in the remote module which could cause the name of the Object constructor to be overwritten globally
- Fixed an issue that prevented setuid binaries from being launched from the renderer process on Linux
- Fixed an issue where menu.closePopup() would have no effect if called too soon after menu.popup()
- Fixed an issue where net requests with redirection mode 'error' could incorrectly follow a redirect
- Fixed an issue where microtasks could sometimes be scheduled too eagerly, causing crashes when invoking Electron APIs during promises in certain situations
- Fixed an issue where sites using ShadowDOMV0, CustomElementsV0, or HTMLImports would not load properly
- Fixed an issue with Node.js context initialization in renderer processes
- Fixed async Node APIs not working after received IPC message
- Fixed compilation error for native modules building with VS 2015
- Fixed crash when doing redirect navigation with webRequest listener
- Fixed debug symbol files on linux not containing private symbols
- Fixed disabling color correct rendering with --disable-color-correct-rendering
- Fixed issue with when playing videos or audio Electron would ask for accessibility access
- Fixed memory leak when using protocol.registerSchemeAsPrivileged api
- Fixed printing
- Fixed setting content-type header with charset breaking protocol APIs
- Fixed several deprecation warnings in Electron code
- Fixed some systemPreferences.getColor() inconsistencies on macOS
- Fixed white flash after restoring an app from the background
- Prevented 'Reopen windows?' dialog from appearing on macOS after a crash
- Re-enable DOM storage quota enforcement but change limit from 10MiB to 100MiB
- Removed unnecessary chromium patch for browser compositor on mac
- setLayoutZoomLevelLimits no longer works in Electron 8, so emit a warning message when using it. The function will be removed in Electron 9
- Fixed a crash that could occur if a WebContents was destroyed during a navigation event
- Fixed bug in 8.0.0 beta releases that prevented the dictionarySuggestions property from being populated correctly when the built-in spellchecker is enabled
Other Changes:
- Added Windows on Arm (64 bit) release
- Added Windows on Arm node header files to checksum file
- Deprecated the default value of app.allowRendererProcessReuse
- Deprecated <webview>.getWebContents() due to its dependency on the remote module
- Fixed first beta version choosing logic
- Made strip_absolute_paths_from_debug_symbols to false in debug.gn
- No-notes
- Removed undocumented ipcRenderer.sendToAll()
更新時間:2020-02-01
更新細節:
What's new in this version:
Changes:
crypto:
- fix key requirements in asymmetric cipher
deps:
- update llhttp to 2.0.1
- update nghttp2 to 1.40.0
- v8: mark serdes API as stable
更新時間:2020-01-30
更新細節:
What's new in this version:
- Fixed an edge case in checkbox logic on Windows
- Fixed an issue where window.print() only worked once on a single BrowserWindow
- Fixed an issue where the credits set in About Panel credits were not dark mode aware on macOS
- Fixed error thrown when importing powerMonitor on Linux before app's 'ready' event
- Fixed fuzzy font rendering when hot-plugging displays on macOS Catalina
更新時間:2020-01-27
更新細節:
更新時間:2020-01-27
更新細節:
What's new in this version:
New Detections:
- AUTOIT/Agent.c
- AUTOIT/Agent.d
- AUTOIT/Agent.e
- Autoit.gen.b
- BackDoor-Bladabindi
- Exploit-CVE2016-0189.d
- Exploit-CVE2018-8174.e
- Exploit-CVE2019-19781
- Generic Packed.cp
- Generic Trojan.KT
- Generic Trojan.kr
- Generic Trojan.ks
- Python/PWS.e
- Ransom-Ako.a
- Ransom/Horsedeal
- Trojan-AitInject.bi
- Trojan-AutoIt.e
- Trojan-AutoIt.f
- Trojan-Scaler
- VBS/Cleanup
Enhanced Detections:
- AUTOIT/Injector.aq
- DistTrack
- Exploit-CVE-2017-11882
- Generic Packed.iso
- Generic trojan.kh
- PWS-AHK.c
- PWS-AutoIt.d
- Python/PWS.d
- Ransom-Ryuk
- Trojan-AitInject.aq
- Trojan-AitInject.bg
- Trojan-AitMiner.h
- Trojan-AutoIT.a
- Trojan-AutoIt.d
- Trojan-Injector.b
- Trojan-PWS.c
- Trojan-Ransom.b
- Trojan-Spy.s
- Trojan-Wiper
- Trojan-aitinject.bh
更新時間:2020-01-23
更新細節:
What's new in this version:
Fixes:
- Fixed BrowserWindow.setFocusable(true) not working on Windows
- Fixed set-cookie header not passed in net module
- Fixed an issue where custom stream protocols would sometimes not complete responses when the data stream ended
- Fixed crash when restoring minimized hidden window on Windows
- Fixed issue where non-zero size pixels in CSS styles could be rounded down to zero size pixels
- Fixed memory leak when using javascript generator functions
Other Changes:
- Fixed potential hang when sending syncronous IPC messages on process shutdown
更新時間:2020-01-22
更新細節:
What's new in this version:
deps:
- upgrade to libuv 1.34.1
- upgrade npm to 6.13.6
module:
- add API for interacting with source maps
- loader getSource, getFormat, transform hooks
- logical conditional exports ordering
- unflag conditional exports
process:
- allow monitoring uncaughtException
Commits:
- async_hooks: remove internal only error checking
- benchmark: add default type in getstringwidth.js
- benchmark: benchmarking impacts of async hooks on promises
- build: remove enable_vtune from vcbuild.bat
- build: add vs2019 to vcbuild.bat help
- build: fix macos runner type in GitHub Action
- build: fix step name in GitHub Actions workflow
- build: add GitHub actions to run linters
- build: silence OpenSSL Windows compiler warnings
- build: silence c-ares Windows compiler warnings
- build: test Python 3 using GitHub Actions-based CI
- build: avoid using CMP for BZ2File
- child_process: remove unnecessary use of inner state
- deps: V8: cherry-pick d89f4ef1cd62
- deps: V8: cherry-pick b9d33036e9a8
- deps: upgrade to libuv 1.34.1
- deps: upgrade npm to 6.13.6
- deps: deactivate failing tests corresponding to experimental features
- doc: add missing code formatting in vm.md
- doc: standardize on "host name" in url.md
- doc: standardize on "host name" in tls.md
- doc: standardize on "host name" in os.md
- doc: standardize on "host name" in net.md
- doc: standardize on "host name" in https.md
- doc: standardize on "host name" in http2.md
- doc: standardize on "host name" in fs.md
- doc: standardize on "host name" in errors.md
- doc: standardize on "host name" in dgram.md
- doc: standardize on "host name" in deprecations.md
- doc: standardize on "host name" in async_hooks.md
- doc: fix a code example in crypto.md
- doc: add an example for util.types.isExternal
- doc: fix example of parsing request.url
- doc: document readline key bindings
- doc: improve doc v8.getHeapSpaceStatistics() 'GetHeapSpaceStatistics'
- doc: update README to make Node.js description clearer
- doc: fix a code example in zlib.md
- doc: add GeoffreyBooth to collaborators
- doc: update description of External
- doc: rename iterator to iterable in examples
- doc: fix stream async iterator sample
- doc: correct filehandle.[read|write|append]File()
- doc: prefer server vs srv and client vs clt
- doc: explain native external types
- doc,src: clarify that one napi_env is per-module
- errors: remove dead code in ERR_INVALID_ARG_TYPE
- fs: add missing HandleScope to FileHandle.close
- fs: use async writeFile in FileHandle#appendFile
- http2: skip creating native ShutdownWrap
- lib: replace BigInt64Array global by the primordials
- lib: add Uint16Array primordials
- lib: add RegExp primordials
- lib: replace Float32Array global by the primordials
- lib: replace BigUInt64Array global by the primordials
- lib,tools,test: remove custom number-isnan rule
- module: fix check exports issue in cjs module loading
- (SEMVER-MINOR) module: unflag conditional exports
- (SEMVER-MINOR) module: add API for interacting with source maps
- module: logical conditional exports ordering
- module: loader getSource, getFormat, transform hooks
- n-api: return napi_invalid_arg on napi_create_bigint_words
- (SEMVER-MINOR) n-api: add napi_get_all_property_names
- (SEMVER-MINOR) process: allow monitoring uncaughtException
- readline: improve unicode support and tab completion
- readline: move charLengthLeft() and charLengthAt()
- readline: improve getStringWidth()
- readline,repl: support tabs properly
- readline,repl: improve history up/previous
- readline,repl: skip history entries identical to the current line
- readline,repl: add substring based history search
- repl: do not preview while pasting code
- repl: fix preview cursor position
- repl: change preview default in case of custom eval functions
- repl: activate previews for lines exceeding the terminal columns
- repl: improve preview length calculation
- repl,readline: clean up code
- src: fix performance regression in node_file.cc
- src: use uv_guess_handle() to detect TTYs
- src: include uv.h in node_binding header
- src: change GetStringWidth's expand_emoji_sequence option default
- src: improve GetColumnWidth performance
- src: fix -Wbraced-scalar-init warning
- src: add build Github Action
- src: remove node::InitializeV8Platform()
- src: remove uses of node::InitializeV8Platform()
- src: clean up large_pages code
- stream: fix async iterator destroyed error propagation
- stream: simplify push
- stream: clean up definition using defineProperties
- stream: replace Function.prototype with primordial
- stream: sync stream unpipe resume
- test: stricten readline keypress failure test condition
- test: allow disabling crypto tests
- test: add repl tests to verify unicode support in previews
- test: fix recursive rm test to actually use tmpdir
- test: check that --insecure-http-parser works
- test: remove unused symlink loop
- test: prefer server over srv
- test: fix unit test logging with python3
- test,module: add test for exports cjs loader check
- tools: remove obsolete dependencies
- tools: update remark-preset-lint-node to 1.12.0
- tools: update JSON header parsing for backticks
- tools: ensure consistent perms of signed release files
- tools: add clang-tidy rule in src
- util: add todo comments for inspect to add unicode support
- (SEMVER-MINOR) vm: add code cache support for SourceTextModule
- wasi: improve use of primordials
- win: change to use Python in install tool
更新時間:2020-01-21
更新細節: