News

DISQLite3 v5.45.0
- Add support for Contentless-Delete FTS5 Indexes.
- Performance enhancements to JSON processing up to 2x.
- Enhancements to
  - Date and time functions: New time shift modifiers and timediff() SQL function.
  - Query planner: Optimize LEFT JOIN strength reduction so that it works for RIGHT and FULL JOINs as well.
  - Decimal extension: New decimal_pow2(N) and decimal_exp(X) SQL functions.

DIXml v6.1.1
- Update libxml2 to version v2.11.5:
  - Fix parser to always skip the BOM when switching the encoding.
  - Fix wrong parent pointer assignment in xmlCopyElementContent().
  - Fix range check error parsing files greater than 2 GB.

YuOpenSSL-3 v1.2.11
- Update to OpenSSL 3.0.10.
  - Fix CVE-2023-3817: Excessive time spent checking DH q parameter value.

YuOpenSSL v1.1.10
- Update to OpenSSL 1.1.1v.
  - Fix CVE-2023-3817: Excessive time spent checking DH q parameter value.

YuOpenSSL-3 v1.2.9
- Fix CVE-2023-2975: AES-SIV implementation ignores empty associated data entries.
- Fix CVE-2023-3446: Excessive time spent checking DH keys and parameters.

YuOpenSSL v1.1.9
- Fix CVE-2023-3446: Excessive time spent checking DH keys and parameters.

YuZip v7.0.0
- Rename DIZipWriter to YuZip.
- New YuZip.pas unit with functionality to open, extract from, and modify existing ZIP archives, and more.

YuImage v1.0.1
- Update libpng to v1.6.40:
  - Ensure that only one eXIf chunk is written in the entire datastream.
  - Fix png_get_valid() to not report a tRNS chunk as valid if it was canceled.
  - Fix a memory leak when allocation of a pCAL buffer fails.
- Update libwebp to latest v1.3.1-rc1:
  - Add missing error checks.

DIZipWriter v6.12.0
- Updated compression libraries:
  - XZ v5.4.3.
  - Zstandard v1.5.5: Fix rare corruption in high compression mode.

YuImage v1.0.0 New!
- First release of YuImage, which supersedes YuPng. YuImage adds libwebp for WebP image manipulation and the TYuWebPImage class to show WebP images, including animation.

YuOpenSSL-3 v1.2.11
- Update to OpenSSL 3.0.10.
  - Fix CVE-2023-3817: Excessive time spent checking DH q parameter value.

DIXml v6.1.0
- Update libxml2 to version v2.11.4:
  - Better protection against entity expansion attacks.
  - Rework the XInclude engine to support nested includes properly.
  - Deprecated outdated and internal functions.
  - Multiple improvements and bug fixes.
- Update libxslt to version v1.1.38:
  - Fix about 40 memory errors after malloc failures.
  - The result of generate-id() is now deterministic across multiple transformations.
  - Many other improvements and bug fixes.

DISQLite3 v5.44.0
- Add support for JSON5 and the FTS5 secure-delete command.
- Allow join keywords as application-defined SQL function names.
- Enhance PRAGMA integrity_check to detect NaN values in NOT NULL columns.

YuXMLSec v1.1.0
- Update to XMLSec 1.3.0. Remove FTP and MD5 support, but added new features in return.

YuOpenSSL-3 v1.2.8
- Add APIs for YuXMLSec v1.1.0.
- Cherry pick low severity CVE fixes.

DISQLite3 v5.43.2
- Fix multiple problems in prior releases, including include reads (not writes) past the end of a buffer.

DISQLite3 v5.43.1
- Ensure that the datatype for column t1.x in CREATE TABLE t1 AS SELECT CAST(7 AS INT) AS x; continues to be INT and is not NUM, for historical compatibility.
- Enhance PRAGMA integrity_check to detect when extra bytes appear at the end of an index record.
- Fix various obscure bugs.