openSUSE Build Service

- Update to 1.33.2
  Due to the security issue highlighted below, server
  administrators are encouraged to update Synapse. We are not aware
  of these vulnerabilities being exploited in the wild.
  Security advisory
  This release fixes a denial of service attack (CVE-2021-29471)
  against Synapse's push rules implementation. Server admins are
  encouraged to upgrade.
  - Internal Changes
    - Unpin attrs dependency. (#9946)

Marcus Rueckert (darix) accepted request 891065 from

Marcus Rueckert (darix) about 3 years ago (revision 175)

- Update to 1.33.1

buildservice-autocommit accepted request 888389 from

Aleksa Sarai (cyphar) about 3 years ago (revision 174)

baserev update by copy to link target

Aleksa Sarai (cyphar) accepted request 887544 from

Marcus Rueckert (darix) about 3 years ago (revision 173)

- Update to v1.32.2
  - Bugfixes
    - Fix a regression in Synapse 1.32.0 and 1.32.1 which caused
      LoggingContext errors in plugins. (#9857)

buildservice-autocommit accepted request 887396 from

Aleksa Sarai (cyphar) about 3 years ago (revision 172)

baserev update by copy to link target

Aleksa Sarai (cyphar) accepted request 887327 from

Marcus Rueckert (darix) about 3 years ago (revision 171)

- Update to v1.32.1
  This release fixes a regression in Synapse 1.32.0 that caused
  connected Prometheus instances to become unstable. If you ran
  Synapse 1.32.0 with Prometheus metrics, first upgrade to Synapse
  1.32.1 and follow these instructions to clean up any excess
  writeahead logs.
  - Bugfixes
    - Fix a regression in Synapse 1.32.0 which caused Synapse to
      report large numbers of Prometheus time series, potentially
      overwhelming Prometheus instances. (#9854)

buildservice-autocommit accepted request 887114 from

Aleksa Sarai (cyphar) about 3 years ago (revision 170)

baserev update by copy to link target

Aleksa Sarai (cyphar) accepted request 887076 from

Marcus Rueckert (darix) about 3 years ago (revision 169)

- Update to v1.32.0

buildservice-autocommit accepted request 883465 from

Aleksa Sarai (cyphar) about 3 years ago (revision 168)

baserev update by copy to link target

Aleksa Sarai (cyphar) accepted request 883326 from

Marcus Rueckert (darix) about 3 years ago (revision 167)

- Update to 1.31.0

buildservice-autocommit accepted request 881588 from

Aleksa Sarai (cyphar) about 3 years ago (revision 166)

baserev update by copy to link target

Aleksa Sarai (cyphar) accepted request 881504 from

Marcus Rueckert (darix) about 3 years ago (revision 165)

- Update to 1.30.1
  This release is identical to Synapse 1.30.0, with the exception
  of explicitly setting a minimum version of Python's Cryptography
  library to ensure that users of Synapse are protected from the
  recent OpenSSL security advisories, especially CVE-2021-3449.
  - Internal Changes
    - Enforce that `cryptography` dependency is up to date to
      ensure it has the most recent openssl patches. (#9697)
  
- Note: we do not bump the cryptography dependency in our package
  as we use the system OpenSSL which gets the fix.
  
  Add dont-bump-cryptography-with-system-openssl.patch to comment
  out the dependency because otherwise the newer version
  requirement is enforced on startup

Places

Revisions of matrix-synapse

Places