Overview Repositories Revisions Requests Users Attributes Meta

Revisions of znc

Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 80) 
- Update to version 1.7.4:
  * This is a security release to fix CVE-2019-12816 boo#1138572
  * Send "Connected!" messages to client to the correct nick
buildservice-autocommit accepted request 705792 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 79) 
baserev update by copy to link target
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 78) 
- Update to version 1.7.3:
  * This is a security release to fix CVE-2019-9917.
  * Docker only: the znc image now supports --user option of docker
    run.
- Drop no longer needed znc-CVE-2019-9917.patch
buildservice-autocommit accepted request 688197 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 77) 
baserev update by copy to link target
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 76) 
- Fix boo#1130360 CVE-2019-9917
  * znc-CVE-2019-9917.patch
buildservice-autocommit accepted request 670355 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 75) 
baserev update by copy to link target
Martin Pluskal's avatar Martin Pluskal (pluskalm) accepted request 669864 from Paolo Stivanin's avatar Paolo Stivanin (polslinux) (revision 74) 
Update to version 1.7.2:
  * Fix compilation without deprecated APIs in OpenSSL (#1615)
  * Distinguish Channel CTCP Requests and Replies (#1624)
  * admindebug: Enforce need of TTY to turn on debug mode (#1580)
  * controlpanel: Add missing return to ListNetMods (#1589)
  * webadmin: Fix adding the last allowed network (#1584)
buildservice-autocommit accepted request 623567 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 73) 
baserev update by copy to link target
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 72) 
- Update to version 1.7.1:
  * Security critical fixes[edit]
    + CVE-2018-14055: non-admin user could gain admin privileges and shell access by injecting values into znc.conf.
    + CVE-2018-14056: path traversal in HTTP handler via ../ in a web skin name.
  * Core
    + Fix znc-buildmod to not hardcode the compiler used to build ZNC anymore in CMake build (#1536)
    + Fix language selector. Russian and German were both not selectable.
    + Fix build without SSL support (#1554)
    + Fix several broken strings
    + Stop spamming users about debug mode. This feature was added in 1.7.0, now reverted. (#1541)
  * New
    + Add partial Spanish, Indonesian, and Dutch translations
  * Modules
    + adminlog: Log the error message again (regression of 1.7.0) (#1557)
    + admindebug: New module, which allows admins to turn on/off --debug in runtime (#1556)
    + flooddetach: Fix description of commands (#1548)
    + modperl: Fix memory leak in NV handling
    + modperl: Fix functions which return VCString (#1543)
    + modpython: Fix functions which return VCString (#1543)
    + webadmin: Fix fancy CTCP replies editor for Firefox. It was showing the plain version even when JS is enabled
  * Internal
    + Deprecate one of the overloads of CMessage::GetParams(), rename it to CMessage::GetParamsColon()
    + Don't throw from destructor in the integration test
    + Fix a warning with integration test / gmake / znc-buildmod interaction.
- Drop upstream patches:
  * znc-inject2.patch
  * znc-inject.patch
  * znc-traversal.patch
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 71) 
  * znc-inject2.patch
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 70)
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 69) 
- Fix boo#1101280 CVE-2018-14056
  * znc-traversal.patch
- Fix boo#1101281 CVE-2018-14055
  * znc-inject.patch
- Fix building on Leap-42* by using less strict linker flags
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 68) 
- Fix buildin on Leap-42* by using less strict linker flags
buildservice-autocommit accepted request 613951 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 67) 
baserev update by copy to link target
Martin Pluskal's avatar Martin Pluskal (pluskalm) accepted request 613920 from Tomáš Chvátal's avatar Tomáš Chvátal (scarabeus_iv) (revision 66) 
- Define systemd unitdir for cmake
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 65)
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 64) 
- Update to version 1.7.0:
  * Add CMake build. Minimum supported CMake version is 3.1. For now ZNC can be built with either CMake or autoconf. In future autoconf is going to be removed.
  * Currently znc-buildmod requires python if CMake was used; if that's a concern for you, please open a bug.
  * Increase minimum GCC version from 4.7 to 4.8. Minimum Clang version stays at 3.2.
  * Make ZNC UI translateable to different languages (only with CMake), add partial Russian and German translations. (#1237) (#1354) (#1462)
  * If you want to translate ZNC to your language, please join https://crowdin.com/project/znc-bouncer
  * Configs written before ZNC 0.206 can't be read anymore (#929)
  * Implement IRCv3.2 capabilities away-notify, account-notify, extended-join (#315) (#316)
  * Implement IRCv3.2 capabilities echo-message, cap-notify on the "client side" (#950)
  * Update capability names as they are named in IRCv3.2: znc.in/server-time-iso→server-time, znc.in/batch→batch. Old names will continue working for a while, then will be removed in some future version.
  * Make ZNC request server-time from server when available (#839)
  * Increase accepted line length from 1024 to 2048 to give some space to message tags
  * Separate buffer size settings for channels and queries (#967)
  * Support separate SSLKeyFile and SSLDHParamFile configuration in addition to existing SSLCertFile (#1192)
  * Add "AuthOnlyViaModule" global/user setting (#331)
  * Added pyeval module
  * Added stripcontrols module (#387)
  * Add new substitutions to ExpandString: %empty% and %network%. (#1049) (#1139)
  * Stop defaulting real name to "Got ZNC?" (#818)
  * Make the user aware that debug mode is enabled. (#1446)
  * Added ClearAllBuffers command (#852)
  * Don't require CSRF token for POSTs if the request uses HTTP Basic auth. (#946)
  * Set HttpOnly and SameSite=strict for session cookies (#1077) (#1450)
  * Add SNI SSL client support (#1200)
  * Add support for CIDR notation in allowed hosts list and in trusted proxy list (#207) (#1219)
  * Add network-specific config for cert validation in addition to user-supplied fingerprints: TrustAllCerts, defaults to false, and TrustPKI, defaults to true. (#866)
  * Add /attach command for symmetry with /detach. Unlike /join it allows wildcards.
  * Timestamp format now supports sub-second precision with %f. Used in awaystore, listsockets, log modules and buffer playback when client doesn't support server-time (#1455)
  * Build on macOS using ICU, Python, and OpenSSL from Homebrew, if available (#894)
  * Remove --with-openssl=/path option from ./configure. SSL is still supported and is still configurable
buildservice-autocommit accepted request 584024 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 63) 
baserev update by copy to link target
Martin Pluskal's avatar Martin Pluskal (pluskalm) committed (revision 62) 
- Update to version 1.6.6:
  * Fix use-after-free in znc --makepem. It was broken for a long
    time, but started segfaulting only now. This is a useability
    fix, not a security fix, because self-signed (or signed by a
    CA) certificates can be created without using --makepem, and
    then combined into znc.pem.
buildservice-autocommit accepted request 542254 from Factory Maintainer's avatar Factory Maintainer (factory-maintainer) (revision 61) 
baserev update by copy to link target
Displaying revisions 21 - 40 of 100
openSUSE Build Service is sponsored by
Places