Revisions of matrix-synapse
- Update to 1.49.0
- Update to 1.48.0
- bump ijson to make it clear that we really need 3.1 https://github.com/matrix-org/synapse/pull/11439
- Update to 1.47.1 (boo#1193005)
- Update to 1.47.1 This release fixes a security issue in the media store, affecting all prior releases of Synapse. Server administrators are encouraged to update Synapse as soon as possible. We are not aware of these vulnerabilities being exploited in the wild. Server administrators who are unable to update Synapse may use the workarounds described in the linked GitHub Security Advisory below. - Security Advisory: GHSA-3hfw-x7gx-437c / CVE-2021-41281: Path traversal when downloading remote media. Synapse instances with the media repository enabled can be tricked into downloading a file from a remote server into an arbitrary directory, potentially outside the media store directory. The last two directories and file name of the path are chosen randomly by Synapse and cannot be controlled by an attacker, which limits the impact. Homeservers with the media repository disabled are unaffected. Homeservers configured with a federation whitelist are also unaffected. Fixed by 91f2bd090.
- Update to 1.47.0
- Update to 1.46.0
- Update to 1.45.1
- Update to 1.43.0 - disable 10719-Fix-instert-of-duplicate-key-into-event_json.patch until upstream decided if they want to accept it
- Update to 1.42.0
- Update to 1.41.1
- Update to 1.41.0
- Update to 1.40.0
- Update to 1.39.0
- Update to 1.38.1 Always include device_one_time_keys_count key in /sync response to work around a bug in Element Android that broke encryption for new devices. (#10457)
- oidc can be enabled on TW as the Authlib package is in the distro - drop all conditionals that were enabled anyway - rename remaining conditionals to have a synapse_ prefix - Update to 1.38.0
- Update to 1.37.1 This release resolves issues (such as #9490) where one busy room could cause head-of-line blocking, starving Synapse from processing events in other rooms, and causing all federated traffic to fall behind. Synapse 1.37.1 processes inbound federation traffic asynchronously, ensuring that one busy room won't impact others. Please upgrade to Synapse 1.37.1 as soon as possible, in order to increase resilience to other traffic spikes. - Features - Handle inbound events from federation asynchronously. (#10269, #10272)
- Update to 1.37.0
buildservice-autocommit
accepted
request 900301
from
Aleksa Sarai (cyphar)
(revision 183)
baserev update by copy to link target
Displaying revisions 121 - 140 of 322