Feb 19 2015

19.02.2015 – Firmware Update 1.1.2.15 (Yliaavanlampi) – early access release

os_11215Firmware Update 1.1.2.15 (Yliaavanlampi)
early access release

Bitte achtet, dass ihr mindestens 1,5GB freien internen Speicher zur Verfügung habt!

Ich würde euch empfehlen, alle Patches die über den Patchmanager Installiert wurden, wieder zu deinstallieren!

Die Highlights in Überblick:

  • Wetter-Widget für die Ereignisansicht (Events Page) wurde hinzugefügt.
  • Webbrowser erhält ein neues Interface
  • Farben für die Ambience können jetzt Eingestellt werden
  • E-Mail-Authentifizierungsfunktionen werden jetzt automatisch erkannt
  • Die „low memory handling“ wurde verbessert – Swap wird jetzt korrekt berüchtigt

 

Security fixes

CVE-2013-6393 CVE-2013-6435 CVE-2013-7353 CVE-2013-7354 CVE-2014-2525 CVE-2014-3707 CVE-2014-7824 CVE-2014-8104 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141 CVE-2014-8767 CVE-2014-8768 CVE-2014-8769 CVE-2014-8964 CVE-2014-9112 CVE-2014-9130 CVE-2014-9140 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295

It also contains a fix for an issue in SailfishOS, details will be disclosed after rolling out this update to everyone.

Bugfix and feature highlights

aliendalvik

  • Android runtime should not warn on low battery.
  • Can’t erase/delete selected text with Backspace.
  • Cleaning of the clipboard crashes Alien Dalvik.
  • Aliendalvik does not detect mobile data being connected anymore (since 5th Dec 2014).
  • Switching between portrait and landscape messes up swipe gestures in Android apps.
  • Alien screen orientation is wrong sometimes.
  • VKB does not work with aliendalvik/android apps but works with native ones.
  • Set oom_score_adj according to process importance if Sailfish hasn’t set it.

buteo-sync-plugin-caldav

  • Use ignore_ssl_errors configuration option

commhistory-daemon

  • Download MMS automatically by default
  • Delete attachments from the filesystem

connman

  • Cancel browser requests if useragent has not returned anything
  • Start/stop ntp activity when TimeUpdates property is changed

cpio

  • Fix CVE-2014-9112

curl

  • Fix CVE-2014-3707

dbus

  • fix CVE-2014-7824

jolla-calendar

  • Fix opening a day page from dbus invoker.

jolla-common-configurations

  • do not allow dhcp-server to change the hostname by default.
  • Enable D-Bus security checking
  • Added color editor and new settings layout.

jolla-keyboard

  • Fixed language selection popup layout.

jolla-settings-accounts

  • Add ‚Ignore SSL errors‘ option.
  • Add missing version for oauth2 plugin for google.
  • Use QMF auth from capabilities.

jolla-settings-networking

  • dim WLAN hotspot when roaming not allowed.

jolla-settings-sailfishos

  • Require 500 Mb disk space for installing the update.

kernel-adaptation-sbj

  • Turn on heap randomization.

libcontacts-qt5

  • Prioritize requests that make app startup more responsive
  • look up address resolve requests in a QHash
  • Schedule resolveAddress immediately

libkeepalive

  • Ignore spurious iphb wakeups.

libpng

  • Upgrade to 1.5.21
  • Fixes out-of-bounds memory access in png_user_version_check()
  • Fixes overflow in png_combine_row with very wide interlaced images
  • Fixes CVE-2013-7354, CVE-2013-7353

libyaml

  • Fix bunch of security vulnerabilities
  • Fix CVE-2013-6393
  • Fix CVE-2014-2525: Heap overflow when parsing YAML tags
  • Fix CVE-2014-9130: assert failure when processing wrapped strings
  • Guard against overflows in indent and flow_level

lipstick-jolla-home-qt5

  • Timers for cellular icons.
  • Disable scrolling to launcher area and lock screen shortcut access during boot busy state.
  • Do not show busy-indicator if wlan is off.
  • Don’t show launcher until boot sequence has finished and normal app launch speeds can be guaranteed.
  • Detect apps that failed to load.
  • Make sure to show searching & busy when no networks are found.
  • Don’t pop up ConnectionSelector more often than once in 10 sec.

lipstick-qt5

  • Don’t attempt to connect signal to a NULL HomeApplication
  • Fix crash on close regression

mce

  • Assume proximity covered while waiting for sensord to start up.
  • Allow user processes to query current memory level over D-Bus.
  • More robust low memory signaling
  • Add enablers for evdev event mapping
  • Enablers for TOHKBD and other hw keyboards
  • Allows actions such as automatic DTMF signaling to proceed when outbound call is answered

ntp

  • Fix CVE-2014-9295, CVE-2014-9294, CVE-2014-9293

openvpn

  • Fix CVE-2014-8104

pcre

  • Fix CVE-2014-8964.

qmf-qt5

  • Mask login information in the IMAP login logging.
  • Handle SMTP response 504.
  • Introduce discovery of authentication from the anounced capabilities(IMAP/SMTP)
  • Mask login information in the SMTP debug logging.
  • Update account lastSyncTime when IMAP IDLE disconnects.

qt5-qtlocation-source

  • Fix crash due to floating point precision issues, and update poly2tri to latest upstream.

rpm

  • Fix CVE-2013-6435

sailfish-components-contacts-qt ####5

  • Fixed SIM import
  • Fix calendar d-bus call on <10 day/month.
  • Don’t make RecentContactsList wait for the contactsModel

sailfish-office

  • Add text eliding and text wrap to the details page.
  • fix issue #3: PDFs with mixed orientations not displayed correctly

sbj-configs

  • Adjust vm.swappiness to 50.

tcpdump

  • Fix CVE-2014-8767
  • Fix CVE-2014-8768
  • Fix CVE-2014-8769
  • Fix CVE-2014-9140

transferengine-plugins

  • Fix content height of Twitter image sharing.

unzip

  • Fix CVE-2014-8139, CVE-2014-8140 and CVE-2014-8141

 

os_11215a  os_11215b

 

 

 

 

 

 

 

 

 

 

 

os_11215cos_11215d

sailfishmods