Google Chrome 歷史舊版本 Page134

更新時間：2018-12-26
更新細節：

What's new in this version:

Steganos Password Manager 19.0.1
- Change log not available for this version


Steganos Password Manager 19.0.0
- Two-factor authentication for your keychains (supports Authy, Google Authenticator and more)
- Directly access your Private Favorites through the browser plugins in Chrome & Firefox
- Backup Assistent to support you in case of keychain problems
- Mobile keychain access with your fingerprint - now on Android too
- Convenient password import from Google Chrome

更新時間：2018-12-14
更新細節：

更新時間：2018-12-13
更新細節：

更新時間：2018-12-12
更新細節：

What's new in this version:

Google Chrome 71.0.3578.98 (32-bit)
- Change log not available for this version


Google Chrome 71.0.3578.80 (32-bit)

Security Fixes and Rewards:
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- Out of bounds write in V8
- Use after frees in PDFium
- Heap buffer overflow in Skia
- Use after free in PDFium
- Use after free in Blink
- Heap buffer overflow in Canvas
- Use after free in WebAudio
- Use after free in MediaRecorder
- Heap buffer overflow in Blink
- Out of bounds write in V8
- Use after free in Skia
- Inappropriate implementation in Extensions
- Multiple issues in SQLite via WebSQL
- Inappropriate implementation in Site Isolation
- Incorrect security UI in Blink
- Inappropriate implementation in Navigation
- Inappropriate implementation in Omnibox
- Insufficient policy enforcement in Blink
- Insufficient policy enforcement in Blink
- Insufficient policy enforcement in Navigation
- Inappropriate implementation in Media
- Inappropriate implementation in Network Authentication
- Insufficient data validation in Shell Integration
- Insufficient policy enforcement in URL Formatter
- Use after free in Skia
- Insufficient policy enforcement in URL Formatter
- Insufficient policy enforcement in Proxy
- Out of bounds read in V8
- Inappropriate implementation in PDFium
- Use after free in Extensions
- Inappropriate implementation in Navigation
- Inappropriate implementation in Navigation
- Insufficient policy enforcement in Navigation
- Insufficient policy enforcement in URL Formatter

This bug was fixed in Chrome 69, but was incorrectly omitted from the release notes at the time:
- Medium To be allocated: Insufficient policy enforcement in Payments


Google Chrome 70.0.3538.110 (32-bit)
- Change log not available for this version


Google Chrome 70.0.3538.102 (32-bit)
- Change log not available for this version


Google Chrome 70.0.3538.77 (32-bit)

-  Publish DEPS for 70.0.3538.77 by chrome-release-bot
-  Incrementing VERSION to 70.0.3538.77 by chrome-release-bot
-  Web Audio: fix two bugs in audibility detection in BaseAudioContext. by Becca Hughes
-  cherry pick r601765 to M70 by Sahel Sharify
-  [Picture in Picture] Show controls on mouseover on the window. by Jennifer Apacible
-  [Picture in Picture] Fix controls timer issue by Becca Hughes
-  Reland "Fling bubbles from OOPIF properly" without the tests. by Sahel Sharify
-  [Merge M70][AF] Use 'Manage...' as footer string when popup type is unspecified by Fabio Tirelo
-  Revert "Strengthen MITIGATION_DLL_SEARCH_ORDER on non-component builds." by Will Harris
-  Incrementing VERSION to 70.0.3538.76 by chrome-release-bot
-  [M70 branch] Roll ICU to 0b97836 by Jungshik Shin
-  Fix text input on ARC++ Kiosk apps. by Yuichiro Hanada
-  Revert "Network Service: Convert port_forwarding_controller.cc to mojo host resolver" by Jun Cai
-  Turn off signin-allowed toggle after sign-out from dialog by Thomas Tangl
-  Show sign-out dialog when signin-allowed is toggled off by Thomas Tangl
-  ozone: Ensure we don't return invalid GbmBuffer objects by Alexandros Frantzis
-  Revert "[M70 Merge][TPM Reporting] Add TPM status information to DeviceStatusCollector" by Ivan Sandrk
-  Merge to 70: Fixes potential crash when toggling accessibility services by David Tseng
-  Incrementing VERSION to 70.0.3538.75 by chrome-release-bot
-  [ios] Check for nullptr NavigationItem before updating URL. by Danyao Wang
-  Incrementing VERSION to 70.0.3538.74 by chrome-release-bot
-  Incrementing VERSION to 70.0.3538.73 by chrome-release-bot
-  [M70 merge] viz: Optimize pixel-moving renderpasses damage by wutao
-  Incrementing VERSION to 70.0.3538.72 by chrome-release-bot
-  Revert "Add a CHECK to non-DICE signin that it's only used for force-signin" by Jochen Eisinger
-  Incrementing VERSION to 70.0.3538.71 by chrome-release-bot
-  chrome_features: Set Usbguard feature flag to disabled by default. by Allen Webb
-  Incrementing VERSION to 70.0.3538.70 by chrome-release-bot
-  cros: Fix menus getting squished by Alex Newcomer
-  Fix merge time window limit method by Henrique Grandinetti
-  Make old time limit locks not be applied to the Chromebook by Henrique Grandinetti
-  Fix a crash in TtsControllerImpl::VoicesChanged due to a use after free. by Sam McNally
-  Incrementing VERSION to 70.0.3538.69 by chrome-release-bot
-  Reland "Fix MessageListView crash on update during close." by Tetsui Ohkubo
-  Revert "Fix MessageListView crash on update during close." by Tetsui Ohkubo
-  Incrementing VERSION to 70.0.3538.68 by chrome-release-bot
-  Fix naming issue when renaming files inside My files by Luciano Pacheco
-  Store remaining usage time in milliseconds by Henrique Grandinetti


Google Chrome 70.0.3538.67 (32-bit)

Security Fixes and Rewards:
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- High CVE-2018-17462: Sandbox escape in AppCache
- High CVE-2018-17463: Remote code execution in V8
- High CVE to be assigned: Heap buffer overflow in Little CMS in PDFium
- High CVE-2018-17464: URL spoof in Omnibox
- High CVE-2018-17465: Use after free in V8
- High CVE-2018-17466: Memory corruption in Angle
- Medium CVE-2018-17467: URL spoof in Omnibox
- Medium CVE-2018-17468: Cross-origin URL disclosure in Blink
- Medium CVE-2018-17469: Heap buffer overflow in PDFium
- Medium CVE-2018-17470: Memory corruption in GPU Internals
- Medium CVE-2018-17471: Security UI occlusion in full screen mode
- Medium CVE-2018-17472: iframe sandbox escape on iOS
- Medium CVE-2018-17473: URL spoof in Omnibox
- Medium CVE-2018-17474: Use after free in Blink
- Low CVE-2018-17475: URL spoof in Omnibox
- Low CVE-2018-17476: Security UI occlusion in full screen mode
- Low CVE-2018-5179: Lack of limits on update() in ServiceWorker
- Low CVE-2018-17477: UI spoof in Extensions

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.As usual, our ongoing internal security work was responsible for a wide range of fixes:
- Various fixes from internal audits, fuzzing and other initiatives


Google Chrome 69.0.3497.100 (32-bit)

- Security Fixes and Rewards
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed

This update includes 1 security fix from our ongoing internal security work:
- Fixes from internal audits, fuzzing and other initiatives
- Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL


Google Chrome 69.0.3497.92 (32-bit)

Security Fixes and Rewards:
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- This update includes 2 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information
- [$3000][875322] High (CVE to be assigned): Function signature mismatch in WebAssembly. Reported by Kevin Cheung from Autodesk on 2018-08-17
- [$TBD][880759] Medium (CVE to be assigned): URL Spoofing in Omnibox. Reported by evi1m0 of Bilibili Security Team on 2018-09-05
- We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel
- Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL


Google Chrome 69.0.3497.81 (32-bit)

- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- This update includes 40 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information
- High CVE-2018-16065: Out of bounds write in V8
- High CVE-2018-16066:Out of bounds read in Blink
- High CVE-2018-16067: Out of bounds read in WebAudio
- High CVE-2018-16068: Out of bounds write in Mojo
- High CVE-2018-16069:Out of bounds read in SwiftShader
- High CVE-2018-16070: Integer overflow in Skia
- High CVE-2018-16071: Use after free in WebRTC
- Medium CVE-2018-16072: Cross origin pixel leak in Chrome's interaction with Android's MediaPlayer
- Medium CVE-2018-16073: Site Isolation bypass after tab restore
- Medium CVE-2018-16074: Site Isolation bypass using Blob URLS
- Medium: Out of bounds read in Little-CMS
- Medium CVE-2018-16075: Local file access in Blink
- Medium CVE-2018-16076: Out of bounds read in PDFium
- Medium CVE-2018-16077: Content security policy bypass in Blink
- Medium CVE-2018-16078: Credit card information leak in Autofill
- Medium CVE-2018-16079: URL spoof in permission dialogs
- Medium CVE-2018-16080: URL spoof in full screen mode
- Medium CVE-2018-16081: Local file access in DevTools
- Medium CVE-2018-16082: Stack buffer overflow in SwiftShader
- Medium CVE-2018-16083: Out of bounds read in WebRTC
- Low CVE-2018-16084: User confirmation bypass in external protocol handling
- Low CVE-2018-16085: Use after free in Memory Instrumentation
- Various fixes from internal audits, fuzzing and other initiatives


Google Chrome 68.0.3440.106 (32-bit)
- Change log not available for this version


Google Chrome 68.0.3440.84 (32-bit)
- Change log not available for this version

更新時間：2018-12-12
更新細節：

更新時間：2018-12-12
更新細節：

更新時間：2018-12-06
更新細節：

更新時間：2018-12-05
更新細節：

What's new in this version:

New Features:
- Added Japanese translation
- Added Slovenian translation

Enhancements:
- Updated translations
- Improved file sorting in Audio CD compilations
- Improved handling of long file names in ISO compilations

Bug Fixes:
- Fixed bug with renaming folders in ISO level 1 and 2

更新時間：2018-12-05
更新細節：

What's new in this version:

Google Chrome 71.0.3578.80 (32-bit)

Security Fixes and Rewards:
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- Out of bounds write in V8
- Use after frees in PDFium
- Heap buffer overflow in Skia
- Use after free in PDFium
- Use after free in Blink
- Heap buffer overflow in Canvas
- Use after free in WebAudio
- Use after free in MediaRecorder
- Heap buffer overflow in Blink
- Out of bounds write in V8
- Use after free in Skia
- Inappropriate implementation in Extensions
- Multiple issues in SQLite via WebSQL
- Inappropriate implementation in Site Isolation
- Incorrect security UI in Blink
- Inappropriate implementation in Navigation
- Inappropriate implementation in Omnibox
- Insufficient policy enforcement in Blink
- Insufficient policy enforcement in Blink
- Insufficient policy enforcement in Navigation
- Inappropriate implementation in Media
- Inappropriate implementation in Network Authentication
- Insufficient data validation in Shell Integration
- Insufficient policy enforcement in URL Formatter
- Use after free in Skia
- Insufficient policy enforcement in URL Formatter
- Insufficient policy enforcement in Proxy
- Out of bounds read in V8
- Inappropriate implementation in PDFium
- Use after free in Extensions
- Inappropriate implementation in Navigation
- Inappropriate implementation in Navigation
- Insufficient policy enforcement in Navigation
- Insufficient policy enforcement in URL Formatter

This bug was fixed in Chrome 69, but was incorrectly omitted from the release notes at the time:
- Medium To be allocated: Insufficient policy enforcement in Payments


Google Chrome 70.0.3538.110 (32-bit)
- Change log not available for this version


Google Chrome 70.0.3538.102 (32-bit)
- Change log not available for this version


Google Chrome 70.0.3538.77 (32-bit)

-  Publish DEPS for 70.0.3538.77 by chrome-release-bot
-  Incrementing VERSION to 70.0.3538.77 by chrome-release-bot
-  Web Audio: fix two bugs in audibility detection in BaseAudioContext. by Becca Hughes
-  cherry pick r601765 to M70 by Sahel Sharify
-  [Picture in Picture] Show controls on mouseover on the window. by Jennifer Apacible
-  [Picture in Picture] Fix controls timer issue by Becca Hughes
-  Reland "Fling bubbles from OOPIF properly" without the tests. by Sahel Sharify
-  [Merge M70][AF] Use 'Manage...' as footer string when popup type is unspecified by Fabio Tirelo
-  Revert "Strengthen MITIGATION_DLL_SEARCH_ORDER on non-component builds." by Will Harris
-  Incrementing VERSION to 70.0.3538.76 by chrome-release-bot
-  [M70 branch] Roll ICU to 0b97836 by Jungshik Shin
-  Fix text input on ARC++ Kiosk apps. by Yuichiro Hanada
-  Revert "Network Service: Convert port_forwarding_controller.cc to mojo host resolver" by Jun Cai
-  Turn off signin-allowed toggle after sign-out from dialog by Thomas Tangl
-  Show sign-out dialog when signin-allowed is toggled off by Thomas Tangl
-  ozone: Ensure we don't return invalid GbmBuffer objects by Alexandros Frantzis
-  Revert "[M70 Merge][TPM Reporting] Add TPM status information to DeviceStatusCollector" by Ivan Sandrk
-  Merge to 70: Fixes potential crash when toggling accessibility services by David Tseng
-  Incrementing VERSION to 70.0.3538.75 by chrome-release-bot
-  [ios] Check for nullptr NavigationItem before updating URL. by Danyao Wang
-  Incrementing VERSION to 70.0.3538.74 by chrome-release-bot
-  Incrementing VERSION to 70.0.3538.73 by chrome-release-bot
-  [M70 merge] viz: Optimize pixel-moving renderpasses damage by wutao
-  Incrementing VERSION to 70.0.3538.72 by chrome-release-bot
-  Revert "Add a CHECK to non-DICE signin that it's only used for force-signin" by Jochen Eisinger
-  Incrementing VERSION to 70.0.3538.71 by chrome-release-bot
-  chrome_features: Set Usbguard feature flag to disabled by default. by Allen Webb
-  Incrementing VERSION to 70.0.3538.70 by chrome-release-bot
-  cros: Fix menus getting squished by Alex Newcomer
-  Fix merge time window limit method by Henrique Grandinetti
-  Make old time limit locks not be applied to the Chromebook by Henrique Grandinetti
-  Fix a crash in TtsControllerImpl::VoicesChanged due to a use after free. by Sam McNally
-  Incrementing VERSION to 70.0.3538.69 by chrome-release-bot
-  Reland "Fix MessageListView crash on update during close." by Tetsui Ohkubo
-  Revert "Fix MessageListView crash on update during close." by Tetsui Ohkubo
-  Incrementing VERSION to 70.0.3538.68 by chrome-release-bot
-  Fix naming issue when renaming files inside My files by Luciano Pacheco
-  Store remaining usage time in milliseconds by Henrique Grandinetti


Google Chrome 70.0.3538.67 (32-bit)

Security Fixes and Rewards:
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- High CVE-2018-17462: Sandbox escape in AppCache
- High CVE-2018-17463: Remote code execution in V8
- High CVE to be assigned: Heap buffer overflow in Little CMS in PDFium
- High CVE-2018-17464: URL spoof in Omnibox
- High CVE-2018-17465: Use after free in V8
- High CVE-2018-17466: Memory corruption in Angle
- Medium CVE-2018-17467: URL spoof in Omnibox
- Medium CVE-2018-17468: Cross-origin URL disclosure in Blink
- Medium CVE-2018-17469: Heap buffer overflow in PDFium
- Medium CVE-2018-17470: Memory corruption in GPU Internals
- Medium CVE-2018-17471: Security UI occlusion in full screen mode
- Medium CVE-2018-17472: iframe sandbox escape on iOS
- Medium CVE-2018-17473: URL spoof in Omnibox
- Medium CVE-2018-17474: Use after free in Blink
- Low CVE-2018-17475: URL spoof in Omnibox
- Low CVE-2018-17476: Security UI occlusion in full screen mode
- Low CVE-2018-5179: Lack of limits on update() in ServiceWorker
- Low CVE-2018-17477: UI spoof in Extensions

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.As usual, our ongoing internal security work was responsible for a wide range of fixes:
- Various fixes from internal audits, fuzzing and other initiatives


Google Chrome 69.0.3497.100 (32-bit)

- Security Fixes and Rewards
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed

This update includes 1 security fix from our ongoing internal security work:
- Fixes from internal audits, fuzzing and other initiatives
- Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL


Google Chrome 69.0.3497.92 (32-bit)

Security Fixes and Rewards:
- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- This update includes 2 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information
- [$3000][875322] High (CVE to be assigned): Function signature mismatch in WebAssembly. Reported by Kevin Cheung from Autodesk on 2018-08-17
- [$TBD][880759] Medium (CVE to be assigned): URL Spoofing in Omnibox. Reported by evi1m0 of Bilibili Security Team on 2018-09-05
- We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel
- Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL


Google Chrome 69.0.3497.81 (32-bit)

- Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed
- This update includes 40 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information
- High CVE-2018-16065: Out of bounds write in V8
- High CVE-2018-16066:Out of bounds read in Blink
- High CVE-2018-16067: Out of bounds read in WebAudio
- High CVE-2018-16068: Out of bounds write in Mojo
- High CVE-2018-16069:Out of bounds read in SwiftShader
- High CVE-2018-16070: Integer overflow in Skia
- High CVE-2018-16071: Use after free in WebRTC
- Medium CVE-2018-16072: Cross origin pixel leak in Chrome's interaction with Android's MediaPlayer
- Medium CVE-2018-16073: Site Isolation bypass after tab restore
- Medium CVE-2018-16074: Site Isolation bypass using Blob URLS
- Medium: Out of bounds read in Little-CMS
- Medium CVE-2018-16075: Local file access in Blink
- Medium CVE-2018-16076: Out of bounds read in PDFium
- Medium CVE-2018-16077: Content security policy bypass in Blink
- Medium CVE-2018-16078: Credit card information leak in Autofill
- Medium CVE-2018-16079: URL spoof in permission dialogs
- Medium CVE-2018-16080: URL spoof in full screen mode
- Medium CVE-2018-16081: Local file access in DevTools
- Medium CVE-2018-16082: Stack buffer overflow in SwiftShader
- Medium CVE-2018-16083: Out of bounds read in WebRTC
- Low CVE-2018-16084: User confirmation bypass in external protocol handling
- Low CVE-2018-16085: Use after free in Memory Instrumentation
- Various fixes from internal audits, fuzzing and other initiatives


Google Chrome 68.0.3440.106 (32-bit)
- Change log not available for this version


Google Chrome 68.0.3440.84 (32-bit)
- Change log not available for this version

更新時間：2018-12-05
更新細節：

What's new in this version:

Signal Desktop 1.18.1
- Change log not available for this version


Signal Desktop 1.17.3
- Resolved an import error that was blocking some legacy Chrome App users from migrating to the latest release


Signal Desktop 1.17.2
- We fixed an import error that was affecting a small number of users who were migrating from the legacy Chrome App
- Storage optimizations and improved synchronization performance


Signal Desktop 1.17.1
- Change log not available for this version


Signal Desktop 1.17.0
- New colors for your incoming Android messages: Blue, Burlap, Crimson, Forest, Indigo, Plum, Steel, Taupe, Teal, Vermilion, Violet, and Wintergreen
- Startup performance improvements
- Animated GIFs that are larger than 6 megabytes are now supported
- Localization updates for Albanian, Catalan, Chinese, Finnish, French, German, Greek, Hebrew, Hindi, Italian, Japanese, Kannada, Khmer, Lithuanian, Norwegian, Persian, Portuguese, Romanian, Serbian, Spanish, and Turkish. We sincerely appreciate the volunteer translators whose efforts made this possible


Signal Desktop 1.16.3
- Fixed a bug that was preventing Signal from starting up for some users with a large conversation history


Signal Desktop 1.16.2
- Storage fixes
- Updated language strings for Estonian, Finnish, Italian, and Persian


Signal Desktop 1.16.1
- Message rendering improvements for better performance
- Shared contacts for users with a linked iOS device are easier to read
- Group conversations that are blocked on your mobile device will be blocked on Desktop too
- The list of supported languages has expanded to include Albanian, Esperanto, Estonian, Khmer, and Thai. We sincerely appreciate the volunteer translators whose efforts made this possible


Signal Desktop 1.16.0
- We optimized performance to fix the input lag that was affecting some users. Keystrokes should be instantaneous again, but occasional typing delays are still possible when you are thinking of the right thing to say
- The countdown timer icon is now displayed with the correct style and color in the iOS light and dark themes
- Updated language translations


Signal Desktop 1.15.5
Visuals:
- When iOS device has been linked, use iOS color scheme
- Conversation bubbles now better handle both large and small window sizes
- Quotes: Show warning if referenced message was not found

Performance:
- Give event loop a rest when queuing large numbers of messages from cache
- Fix issue which caused contact syncs to be continually reprocessed from cache

Dev:
- Add logging to help diagnose protocol handler false positives
- Only show 'upgrade is available' dialog if mainWindow is available
- Copy quoted message contents into quote on receipt
- Disable drag and drop if it's not a file attachment


Signal Desktop 1.15.4
Performance:
- Increase timeout for database operations, as users have been seeing timeouts
- Additional logging to track performance of database operations
- New indices and query updates to ensure indices are used for all queries

Visuals:
- Style the scrollbar in both light and dark themes
- Ensure that the scroll down button is always on top of conversation content

Dev:
- Properly flow errors back when errors happen during message processing or caching
- Use Base64 strings in temporary message cache instead of 'binary' encoding
- Eliminate write of config.json on exit of app, may be causing corruption


Signal Desktop 1.15.3

Visuals:
- Fixed: Visual attachment borders and overlays would show on top of safety number change banner
- Fixed: No-caption visual attachment metadata overlay was behind dark shading, making it hard to read


Signal Desktop 1.15.1
- Fixed: On some macOS machines, the light theme would render incorrectly
- Fixed: On an OS set to a right-to-left language, message bubbles were left-aligned
- Fixed: Incoming messages with errors would be shown as empty messages
- Fixed: SQLCipher migration of cached not-yet-processed messages did not preserve their data

Disappearing messages:
- Move expiring message time earlier if read sync has earlier time
- In partially-successful group send, don't start expire timer

Dev:
- Clean up any orphaned external files on start
- Ensure that a SQL command timeout results in an error
- On error handling cached message, log error then delete


Signal Desktop 1.15.0
Visual changes:
- New colors and message bubbles
- Unified theme
- Video playback updates
- Disappearing messages can now be enabled without first turning them on with a '1 day' duration
- The status of the last conversation message (if outgoing) is now shown in the left pane
- One-click access for replying to message

Media Gallery:
- Fixed: Wrong attachment would be saved from lightbox after left/right navigation
- Better handling of videos - thumbnail of video is now used
- Dark theme honored in all UI elements
- Icons shown for all if no thumbnail is available

Dev:
- New version 8 schema for messages: thumbnails and dimensions from image and video attachments, as well as a full-size video screenshot for use in conversation view
- Much of the application has been moved to React
- Dark theme rewritten from scratch
- New CSS is now using Block Element Modifier syntax (BEM)
- JSHint removed from project; ESLint now scans entire project
- _locales/en/messages.json is now included in jsprettier runs
- All backbone-related functionality removed from Style Guide
- Ensure set of Linux dev dependencies is complete in Contributing.md
- Introduce mandatory migration on startup, to minimum version 7
- Preserve migration state when deleting config due to failed login
- Conversation: store lastMessage/lastMessageStatus in memory only
- Moved to using window.log only for all browser-context logging, with new eslint rule to prevent direct use of console.log
- Full eslintification of files in libtextsecure to take advantage of new console.log rule
- Removed unnecessary and too-verbose console logging
- When making thumbnail for video attachment to be sent, we generate a 100x100 preview instead of taking a full screenshot of the video


Signal Desktop 1.14.4
- Fixed: Application does not start up on Linux w/tmp mounted as noexec
- Fixed: When attempting to record voice note with media permission disabled, popup would be blank


Signal Desktop 1.14.3
- Fixed: After upload, debug logs were not accessible
- Show error if debug log fails to upload


Signal Desktop 1.14.1
- Fixed: Changes to notification settings or menu hide setting would not be persisted
- Fixed: Settings window, debug log window, and permissions popup were not themed
- Fixed: When turning off disappearing messages timer, it would show 'to seconds' instead of 'to off'
- Fixed: Issue where error handling for incoming message would fail, resulting in no visible error


Signal Desktop 1.14.0

New:
- New setting: media permission. Desktop now shows a popup dialog when this permission is not granted and the recording for a voice message fails
- Auto-scroll to selected conversation when they reorder

Fixed:
- Conversation preview would sometimes show already-expired message
- Upon resume from sleep, notifications would show for already-read messages as they arrived
- About window didn't include version number
- Idle detector would never turn off, slowing down app

Dev:
- Minor documentation cleanup - bug templates, readme, etc
- Update conversation's last message whenever it is opened
- Add missing timer option localization strings
- Make all OS menus localizable
- Handle timer updates along with group updates
- Add 'newmessage' event handler to Conversation for reliability
- Debug log, settings and media permissions popup are all now in separate windows
- Pulled latest translations from Transifex


Signal Desktop 1.13.0
Fixed:
- Expire timer update would be sent even if change came from remote message
- It was impossible to send an attachment if we failed to create a thumbnail for it
- App would fail to start if user profile data is behind a junction
- Message detail screen errors were too narrow to see the complete message

Dev:
- Add link to terms of service and privacy policy in About window
- Additional defense-in-depth enhancements
- Update strings for fr/tr languages
- Readme: Clarify beta install instructions


Signal Desktop 1.12.1
- Fixed: In iOS theme, quoted links were white on white
- Ensure that a disappearing message timer change notification is always above initiating message
- Ensure that sent messages immediately take conversation's expire timer


Signal Desktop 1.12.0
- Update to Electron v2.0.1
- Fixed: Emoji with skin tone modifiers would show up as a square
- Fixed: A few visual problems with the contact detail screen
- Fixed: complex kernel versions were causing problems in linux

Dev:
- Add another Windows 7 dev setup requirement to contributing.md
- Various defense-in-depth enhancements
- Refactor api.js into web_api, which encapsulates all web access
- Move a number of dependences from bower to npm
- Enable a large set of new tslint rules
- Use React for all emojification in the app
- Print out main process logs if electron unit tests fail
- Move all forks to @scottnonnenberg-signal account
- Remove jscs from the project
- Remove unused code and templates
- Remove broken stylesheets symlink


Signal Desktop 1.11.0
- Feature: Receive contact
- Fixed: Sometimes clicks on quoted message wouldn't work
- Fixed: In dark theme, it was hard to see a message's triple-dot menu on hover
- Fixed: Unsupported image and video types were missing from media pane
- Fixed: On small screens, the media lightbox view would show media off-screen
- Notification improvements
- Improved behavior for notifications that are added and removed quickly
- Better handling of notifications that were read on a linked device
- Media Gallery: A number of small visual fixes
- Emoji pane: Can now dismiss it by pressing escape key
- Update translations

Dev:
- Windows 7: Use Electron-native notifications
- Better logging when we receive a read sync from a linked device
- Move to React for newlines, emoji, and links in message body
- Improve Logging For Disappearing Messages
- Prettier: Continue expanding its coverage of app
- Document Translations Setup + Remove Unused Strings
- Make Protocol Buffers available to commonjs code
- Build updates: remove unused commands and assets
- Document Windows 7 Developer Setup
- Update README copyright year to 2018


Signal Desktop 1.10.1
- Fixes a bug recently published


Signal Desktop 1.10.0

- Media Gallery showing all attachments in a given conversation. Note: Until all attachments have been migrated to disk (as part of a background process), only a partial set of a conversation's media will show up, skewed towards the most recent messages
- Increase speed of migration to move attachments to disk from database
- Video attachments: show first frame preview in composition area

Quotes:
- Show 'You' in Android theme instead of your own contact name
- Show thumbnails for quotes of messages with video attachments

Notification improvements:
- Remove all on remote read, on focus, on exit
- Show multi-message notifications like '5 new messages'

Dev:
- Add comments clarifying our mechanisms for stripping EXIF info
- Move to prettierjs to format our code
- Fix break in styleguide; make filesize/Signal.Util.GoogleChrome available
- Remove duplicate entry from .gitignore


Signal Desktop 1.9.0
- Send quoted replies via hover menu on message
- Fixed: Linking a new iOS device would not initially show iOS theme
- Dev: Media Gallery: Phase 1 - currently disabled


Signal Desktop 1.8.0
- Support for receiving quoted replies
- iOS theme: one bubble for both attachment and message contents
- Dev: Fix beta install instructions in readme for debian-based linux


Signal Desktop 1.7.1
- Fixed: Conversation message preview would sometimes continue to show after message disappeared
- Improve URL Auto-Linking In Messages
- Redact More Variants Of Paths In Stack Traces
- Dev: Introduce React, TypeScript, TSLint and React-StyleGuidist


Signal Desktop 1.7.0

- Update to electron 1.8.4
- Migrate all attachments from IndexedDB to file system in the background
- Save attachments to disk when importing Chrome app export
- New option in settings: delete all application data
- Remove all configuration in database when we discover we are unlinked
- Delete everything in database when we link with a different phone number from previous link
- Windows: Delete all data on uninstall
- Fixed: Read receipts setting would not be synchronized along with re-link
- Fixed: Clicking conversation in left pane when already selected would remove focus on message composition field
- Fixed: Searching for the phone number of an existing contact, then selecting 'start conversation' would erase contact details
- Fixed: Selecting Settings menu option multiple times would open multiple instances of settings view

Dev:
- Redact file paths in anything that goes to the log on disk
- When top-level process errors happen, don't show dialog with stack trace
- Add nsp to CI runs
- Add eslint-plugin-mocha to disallow exclusive tests using *.only
- Preparation for encrypted backups
- Updates to structure of exported data - messages.zip, flat list of attachments
- Relax Node.js version requirements
- Fix a few typos in documentation
- Update issue template to mention that translation should be via Transifex


Signal Desktop 1.6.1
- Switch to a new service for debug logs, since GitHub is retiring anonymous gists


Signal Desktop 1.6.0
- Upgrade to the latest version of Electron, 1.8.2
- Replace custom notification sound with system sound

Update menus:
- A few copy changes to make things clearer
- Settings now available via the File (Windows/Linux) or Signal Desktop (macOS) OS menu
- Eliminate the triple-dot menu in the top-center of the screen
- Fixed: Hitting enter after entering device name on install would not move to next screen

Dev:
- Ensure consistent builds using yarn --frozen-lockfile
- Update code to match eslint-enforced formatting
- Upgrade to latest version of electron-builder and associated packages


Signal Desktop 1.5.2
- Fixed: In import/registration flow, choosing View -> Debug Log would do nothing


Signal Desktop 1.5.1
- Fixed: In some cases contact/group syncs would turn off disappearing messages in all conversations
- Fixed: On initial setup, conversations with disappearing messages enabled would be at the top of the conversation list


Signal Desktop 1.5.0
- Note: Includes fixes from 1.4.0-beta.1 (never released to production), 1.5.0-beta.1, and one additional pull request
- Update electron to 1.7.12
- New design for import and install flows
- Support for 'light' imports, which bring just messages, contacts and groups
- Set conversation disappearing messages state and contact block state on initial link
- 'Restart' -> 'Restart Signal' button in update dialog, thanks @StevenXL

Fixed:
- If app started offline, conversations would not open
- Attached images would sometimes show up rotated improperly
- Uncaught Exception: TypeError; 'getSize'
- File paths with special characters could be shown in misleading way
- Incoming messages sometimes didn't appear at all
- 'Cannot find module ./app/locale' error popup when attempting to start another instance of the app on Windows
- Setting NODE_ENV environment variable to 'development' would point it at staging servers

Dev:
- Move ESLint environment configuration into .eslintrc
- Sync Protocol Buffers with libsignal-service-java
- Update to libsignal-protocol-javascript v1.3.0
- Make our binary comparisons constant time
- Fix typo in issue template
- Update to new signal branding