14d10fac09
- build optional doxygen docs (add no-timestamp.patch, so __DATE__ and __TIME__ are not embedded) - enable argon2 - be more explicit about which buildflags are enabled - seperate out systemd file - add a source to the gpg key
Martin Pluskal2024-09-20 08:14:21 +00:00
43dd3a9ee7
Accepting request 1186187 from server:irc
Ana Guerrero2024-07-08 17:09:20 +00:00
dc3fe4777e
Accepting request 1186187 from server:irc
Ana Guerrero2024-07-08 17:09:20 +00:00
6c1b06aa4f
- Update to 1.9.1 (boo#1227393, CVE-2024-39844) * This is a security release to fix CVE-2024-39844: remote code execution vulnerability in modtcl. To mitigate this for existing installations, simply unload the modtcl module for every user, if it's loaded. Note that only users with admin rights can load modtcl at all. * Improve tooltips in webadmin.
David Mulder2024-07-08 13:50:44 +00:00
c38a852abe
Accepting request 1185717 from home:jubalh:branches:server:irc
David Mulder2024-07-08 13:50:44 +00:00
a787cbf09d
Accepting request 1171442 from server:irc
Ana Guerrero2024-05-03 17:45:25 +00:00
dea951f3b9
Accepting request 1171442 from server:irc
Ana Guerrero2024-05-03 17:45:25 +00:00
83b4678639
Accepting request 1171441 from home:dmulder:branches:server:irc
Martin Pluskal2024-05-02 20:00:22 +00:00
c922147231
Accepting request 1171441 from home:dmulder:branches:server:irc
Martin Pluskal2024-05-02 20:00:22 +00:00
fcabd8d402
Accepting request 1144518 from server:irc
Ana Guerrero2024-02-06 15:35:38 +00:00
d05e610830
Accepting request 1144518 from server:irc
Ana Guerrero2024-02-06 15:35:38 +00:00
3c66be990c
Accepting request 1144476 from home:dimstar:Factory
Martin Pluskal2024-02-06 09:51:44 +00:00
7824c60c52
Accepting request 1144476 from home:dimstar:Factory
Martin Pluskal2024-02-06 09:51:44 +00:00
c435499e62
- Use pristine linker flags - Use systemd orering to allow working in environments without running systemd
Martin Pluskal2020-05-11 08:37:15 +00:00
aea6d883be
- Use pristine linker flags - Use systemd orering to allow working in environments without running systemd
Martin Pluskal2020-05-11 08:37:15 +00:00
1f20e71715
- Update to version 1.7.4: * This is a security release to fix CVE-2019-12816 boo#1138572 * Send "Connected!" messages to client to the correct nick
Martin Pluskal2019-06-27 08:47:32 +00:00
288c66c65d
- Update to version 1.7.4: * This is a security release to fix CVE-2019-12816 boo#1138572 * Send "Connected!" messages to client to the correct nick
Martin Pluskal2019-06-27 08:47:32 +00:00
a641522dd6
- Update to version 1.7.3: * This is a security release to fix CVE-2019-9917. * Docker only: the znc image now supports --user option of docker run. - Drop no longer needed znc-CVE-2019-9917.patch
Martin Pluskal2019-05-28 07:09:15 +00:00
6fa5fbc3d2
- Update to version 1.7.3: * This is a security release to fix CVE-2019-9917. * Docker only: the znc image now supports --user option of docker run. - Drop no longer needed znc-CVE-2019-9917.patch
Martin Pluskal2019-05-28 07:09:15 +00:00
695c2137d7
- Update to version 1.7.1: * Security critical fixes[edit] + CVE-2018-14055: non-admin user could gain admin privileges and shell access by injecting values into znc.conf. + CVE-2018-14056: path traversal in HTTP handler via ../ in a web skin name. * Core + Fix znc-buildmod to not hardcode the compiler used to build ZNC anymore in CMake build (#1536) + Fix language selector. Russian and German were both not selectable. + Fix build without SSL support (#1554) + Fix several broken strings + Stop spamming users about debug mode. This feature was added in 1.7.0, now reverted. (#1541) * New + Add partial Spanish, Indonesian, and Dutch translations * Modules + adminlog: Log the error message again (regression of 1.7.0) (#1557) + admindebug: New module, which allows admins to turn on/off --debug in runtime (#1556) + flooddetach: Fix description of commands (#1548) + modperl: Fix memory leak in NV handling + modperl: Fix functions which return VCString (#1543) + modpython: Fix functions which return VCString (#1543) + webadmin: Fix fancy CTCP replies editor for Firefox. It was showing the plain version even when JS is enabled * Internal + Deprecate one of the overloads of CMessage::GetParams(), rename it to CMessage::GetParamsColon() + Don't throw from destructor in the integration test + Fix a warning with integration test / gmake / znc-buildmod interaction. - Drop upstream patches: * znc-inject2.patch * znc-inject.patch * znc-traversal.patch
Martin Pluskal2018-07-18 07:34:31 +00:00
220f2bf235
- Update to version 1.7.1: * Security critical fixes[edit] + CVE-2018-14055: non-admin user could gain admin privileges and shell access by injecting values into znc.conf. + CVE-2018-14056: path traversal in HTTP handler via ../ in a web skin name. * Core + Fix znc-buildmod to not hardcode the compiler used to build ZNC anymore in CMake build (#1536) + Fix language selector. Russian and German were both not selectable. + Fix build without SSL support (#1554) + Fix several broken strings + Stop spamming users about debug mode. This feature was added in 1.7.0, now reverted. (#1541) * New + Add partial Spanish, Indonesian, and Dutch translations * Modules + adminlog: Log the error message again (regression of 1.7.0) (#1557) + admindebug: New module, which allows admins to turn on/off --debug in runtime (#1556) + flooddetach: Fix description of commands (#1548) + modperl: Fix memory leak in NV handling + modperl: Fix functions which return VCString (#1543) + modpython: Fix functions which return VCString (#1543) + webadmin: Fix fancy CTCP replies editor for Firefox. It was showing the plain version even when JS is enabled * Internal + Deprecate one of the overloads of CMessage::GetParams(), rename it to CMessage::GetParamsColon() + Don't throw from destructor in the integration test + Fix a warning with integration test / gmake / znc-buildmod interaction. - Drop upstream patches: * znc-inject2.patch * znc-inject.patch * znc-traversal.patch
Martin Pluskal2018-07-18 07:34:31 +00:00
132720d5f9
- Fix boo#1101280 CVE-2018-14056 * znc-traversal.patch - Fix boo#1101281 CVE-2018-14055 * znc-inject.patch - Fix building on Leap-42* by using less strict linker flags
Martin Pluskal2018-07-16 08:00:14 +00:00
8b14cdff1c
- Fix boo#1101280 CVE-2018-14056 * znc-traversal.patch - Fix boo#1101281 CVE-2018-14055 * znc-inject.patch - Fix building on Leap-42* by using less strict linker flags
Martin Pluskal2018-07-16 08:00:14 +00:00
6af52f252e
- Fix buildin on Leap-42* by using less strict linker flags
Martin Pluskal2018-07-16 07:51:13 +00:00
bfe7deedd0
- Fix buildin on Leap-42* by using less strict linker flags
Martin Pluskal2018-07-16 07:51:13 +00:00
fd4e259140
Accepting request 613951 from server:irc
Yuchen Lin2018-06-13 13:35:45 +00:00
a52f8a2bbe
Accepting request 613951 from server:irc
Yuchen Lin2018-06-13 13:35:45 +00:00
42a0d1885c
Accepting request 613920 from home:scarabeus_iv:branches:server:irc
Martin Pluskal2018-06-04 10:12:54 +00:00
dac71c48d6
Accepting request 613920 from home:scarabeus_iv:branches:server:irc
Martin Pluskal2018-06-04 10:12:54 +00:00
fc156853b8
- Update to version 1.7.0: * Add CMake build. Minimum supported CMake version is 3.1. For now ZNC can be built with either CMake or autoconf. In future autoconf is going to be removed. * Currently znc-buildmod requires python if CMake was used; if that's a concern for you, please open a bug. * Increase minimum GCC version from 4.7 to 4.8. Minimum Clang version stays at 3.2. * Make ZNC UI translateable to different languages (only with CMake), add partial Russian and German translations. (#1237) (#1354) (#1462) * If you want to translate ZNC to your language, please join https://crowdin.com/project/znc-bouncer * Configs written before ZNC 0.206 can't be read anymore (#929) * Implement IRCv3.2 capabilities away-notify, account-notify, extended-join (#315) (#316) * Implement IRCv3.2 capabilities echo-message, cap-notify on the "client side" (#950) * Update capability names as they are named in IRCv3.2: znc.in/server-time-iso→server-time, znc.in/batch→batch. Old names will continue working for a while, then will be removed in some future version. * Make ZNC request server-time from server when available (#839) * Increase accepted line length from 1024 to 2048 to give some space to message tags * Separate buffer size settings for channels and queries (#967) * Support separate SSLKeyFile and SSLDHParamFile configuration in addition to existing SSLCertFile (#1192) * Add "AuthOnlyViaModule" global/user setting (#331) * Added pyeval module * Added stripcontrols module (#387) * Add new substitutions to ExpandString: %empty% and %network%. (#1049) (#1139) * Stop defaulting real name to "Got ZNC?" (#818) * Make the user aware that debug mode is enabled. (#1446) * Added ClearAllBuffers command (#852) * Don't require CSRF token for POSTs if the request uses HTTP Basic auth. (#946) * Set HttpOnly and SameSite=strict for session cookies (#1077) (#1450) * Add SNI SSL client support (#1200) * Add support for CIDR notation in allowed hosts list and in trusted proxy list (#207) (#1219) * Add network-specific config for cert validation in addition to user-supplied fingerprints: TrustAllCerts, defaults to false, and TrustPKI, defaults to true. (#866) * Add /attach command for symmetry with /detach. Unlike /join it allows wildcards. * Timestamp format now supports sub-second precision with %f. Used in awaystore, listsockets, log modules and buffer playback when client doesn't support server-time (#1455) * Build on macOS using ICU, Python, and OpenSSL from Homebrew, if available (#894) * Remove --with-openssl=/path option from ./configure. SSL is still supported and is still configurable
Martin Pluskal2018-06-01 15:48:16 +00:00
27a466f90d
- Update to version 1.7.0: * Add CMake build. Minimum supported CMake version is 3.1. For now ZNC can be built with either CMake or autoconf. In future autoconf is going to be removed. * Currently znc-buildmod requires python if CMake was used; if that's a concern for you, please open a bug. * Increase minimum GCC version from 4.7 to 4.8. Minimum Clang version stays at 3.2. * Make ZNC UI translateable to different languages (only with CMake), add partial Russian and German translations. (#1237) (#1354) (#1462) * If you want to translate ZNC to your language, please join https://crowdin.com/project/znc-bouncer * Configs written before ZNC 0.206 can't be read anymore (#929) * Implement IRCv3.2 capabilities away-notify, account-notify, extended-join (#315) (#316) * Implement IRCv3.2 capabilities echo-message, cap-notify on the "client side" (#950) * Update capability names as they are named in IRCv3.2: znc.in/server-time-iso→server-time, znc.in/batch→batch. Old names will continue working for a while, then will be removed in some future version. * Make ZNC request server-time from server when available (#839) * Increase accepted line length from 1024 to 2048 to give some space to message tags * Separate buffer size settings for channels and queries (#967) * Support separate SSLKeyFile and SSLDHParamFile configuration in addition to existing SSLCertFile (#1192) * Add "AuthOnlyViaModule" global/user setting (#331) * Added pyeval module * Added stripcontrols module (#387) * Add new substitutions to ExpandString: %empty% and %network%. (#1049) (#1139) * Stop defaulting real name to "Got ZNC?" (#818) * Make the user aware that debug mode is enabled. (#1446) * Added ClearAllBuffers command (#852) * Don't require CSRF token for POSTs if the request uses HTTP Basic auth. (#946) * Set HttpOnly and SameSite=strict for session cookies (#1077) (#1450) * Add SNI SSL client support (#1200) * Add support for CIDR notation in allowed hosts list and in trusted proxy list (#207) (#1219) * Add network-specific config for cert validation in addition to user-supplied fingerprints: TrustAllCerts, defaults to false, and TrustPKI, defaults to true. (#866) * Add /attach command for symmetry with /detach. Unlike /join it allows wildcards. * Timestamp format now supports sub-second precision with %f. Used in awaystore, listsockets, log modules and buffer playback when client doesn't support server-time (#1455) * Build on macOS using ICU, Python, and OpenSSL from Homebrew, if available (#894) * Remove --with-openssl=/path option from ./configure. SSL is still supported and is still configurable
Martin Pluskal2018-06-01 15:48:16 +00:00
91633c2c56
- Update to version 1.6.6: * Fix use-after-free in znc --makepem. It was broken for a long time, but started segfaulting only now. This is a useability fix, not a security fix, because self-signed (or signed by a CA) certificates can be created without using --makepem, and then combined into znc.pem.
Martin Pluskal2018-03-07 17:36:27 +00:00
d97511bf70
- Update to version 1.6.6: * Fix use-after-free in znc --makepem. It was broken for a long time, but started segfaulting only now. This is a useability fix, not a security fix, because self-signed (or signed by a CA) certificates can be created without using --makepem, and then combined into znc.pem.
Martin Pluskal2018-03-07 17:36:27 +00:00
Dominique Leuenberger
Martin Pluskal
Ana Guerrero
Matej Cepl
David Mulder
Stephan Kulow
Yuchen Lin