Release Notes

ChakraCore 1.3

v1.3.1

This patch release of ChakraCore 1.3 includes the following security fixes:

Change to address CVE-2016-7207 #1979
All fixes included in v1.2.2

v1.3.0

Release 1.3.0 includes experimental support on x64 Linux/OSX, experimental JSRT debugging APIs, and other language and performance updates. See notable changes below.

Cross-platform

ChakraCore interpreter and runtime on x64 Linux (still working on JIT or concurrent/partial GC)
ChakraCore interpreter and runtime on x64 OSX (still working on JIT or concurrent/partial GC) #1134

Language

Enable Symbol.toStringTag by default #1383
Enable String.prototype.padStart and String.prototype.padEnd by default #1257
Enable Symbol.prototype[@@toPrimitive] and Date.prototype[@@toPrimitive] under experimental flag #1319
Enable Symbol.isConcatSpreadable under experimental flag #1198
Enable Symbol.hasInstance under experimental flag #1063

Performance

Optimize creation of Heap arguments object (91e0e91)
Add fastpath for when Object.hasOwnProperty returns true #1449
Enable script function inlining in jitted loop bodies #1182

JSRT

JSRT Debugging APIs (experimental) #926
JSRT Module API (experimental) #1254

Test

Introduce C++ unit testing mechanism using Catch #1224

ChakraCore 1.2

v1.2.2

This patch release of ChakraCore 1.2 includes the following security fixes:

Change to address CVE-2016-7200, CVE-2016-7201, CVE-2016-720, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7241, CVE-2016-7242, CVE-2016-7243 #1942

v1.2.1

This patch release of ChakraCore 1.2 includes the following security fixes:

Fixed Address deref issue #1530
Combined fixes for CVE-2016-3350, CVE-2016-3377 and a defense in depth change in the CustomHeap (24c4d7d)
Changes addressing CVE_2016-3382, CVE-2016-3385, CVE-2016-3386, CVE-2016-3389, CVE-2016-3390, CVE-2016-7189, and a mitigation of a CFG bypass. (f05c42e)