7b76402c80
Accepting request 1290201 from server:irc
Ana Guerrero2025-07-06 15:07:26 +00:00
299e3221b7
- update to 1.10.1: * Fix use-after-free in capabilities handling. The visible effect of this was either crash, or some capabilities having wrong state * Fix nullptr dereference in TAGMSG handling * Preserve DisableClientCap/DisableServerCap settings when writing config * The listening unix socket can now be configured to belong to a specific group and/or to have a specific file access mode. The syntax for AddPort command is unix:ssl,group=mygroup,mode=666:/path, some of these options can be skipped if the feature is not needed
Matej Cepl2025-07-03 11:48:21 +00:00
dbaaaf45b2
Accepting request 1284802 from server:irc
Ana Guerrero2025-06-11 14:27:48 +00:00
da9b59877a
- update to 1.10.0: * SASL v3.1 and v3.2 for clients * Added a way to disable capabilities * Warn user if flood protection is delaying the messages for too long * Added experimental support for unix sockets * znc --makepem now takes the CN from gethostname() and uname() if available * Fixed high CPU usage when ZNC is connecting to a server * Sped up capability negotiation with the server * Don't forward client JOINs during registration * Fixed the translation pipeline again * Fixed sending server passwords with spaces in them * CTCP sent to *status shouldn't reach server * Made PING skip the flood protection queue just like PONG does * Made CTCP flood timer use monotonic time * certauth: it's no longer required to send a garbage password via PASS command, if the client uses SASL EXTERNAL * log: don't log user quits to logs of channels that are disabled * modperl: removed usage of deprecated keywords given/when * sasl: if RequireAuth is set, but SASL failed, don't disable the network anymore * webadmin: - fixed editing fields which are allowed to be edited while DenySetNetwork is set. - removed old compatibility code for pre-0.090 versions of parsing arguments to module to open another web port.
Martin Pluskal2025-06-11 11:37:52 +00:00
27a630b697
- seperate out systemd file (we don't need harden_znc.service.patch anymore)
Martin Pluskal2024-09-20 12:53:16 +00:00
14d10fac09
- build optional doxygen docs (add no-timestamp.patch, so __DATE__ and __TIME__ are not embedded) - enable argon2 - be more explicit about which buildflags are enabled - seperate out systemd file - add a source to the gpg key
Martin Pluskal2024-09-20 08:14:21 +00:00
43dd3a9ee7
Accepting request 1186187 from server:irc
Ana Guerrero2024-07-08 17:09:20 +00:00
6c1b06aa4f
- Update to 1.9.1 (boo#1227393, CVE-2024-39844) * This is a security release to fix CVE-2024-39844: remote code execution vulnerability in modtcl. To mitigate this for existing installations, simply unload the modtcl module for every user, if it's loaded. Note that only users with admin rights can load modtcl at all. * Improve tooltips in webadmin.
David Mulder2024-07-08 13:50:44 +00:00
a787cbf09d
Accepting request 1171442 from server:irc
Ana Guerrero2024-05-03 17:45:25 +00:00
83b4678639
Accepting request 1171441 from home:dmulder:branches:server:irc
Martin Pluskal2024-05-02 20:00:22 +00:00
fcabd8d402
Accepting request 1144518 from server:irc
Ana Guerrero2024-02-06 15:35:38 +00:00
3c66be990c
Accepting request 1144476 from home:dimstar:Factory
Martin Pluskal2024-02-06 09:51:44 +00:00
c435499e62
- Use pristine linker flags - Use systemd orering to allow working in environments without running systemd
Martin Pluskal2020-05-11 08:37:15 +00:00
1f20e71715
- Update to version 1.7.4: * This is a security release to fix CVE-2019-12816 boo#1138572 * Send "Connected!" messages to client to the correct nick
Martin Pluskal2019-06-27 08:47:32 +00:00
a641522dd6
- Update to version 1.7.3: * This is a security release to fix CVE-2019-9917. * Docker only: the znc image now supports --user option of docker run. - Drop no longer needed znc-CVE-2019-9917.patch
Martin Pluskal2019-05-28 07:09:15 +00:00
695c2137d7
- Update to version 1.7.1: * Security critical fixes[edit] + CVE-2018-14055: non-admin user could gain admin privileges and shell access by injecting values into znc.conf. + CVE-2018-14056: path traversal in HTTP handler via ../ in a web skin name. * Core + Fix znc-buildmod to not hardcode the compiler used to build ZNC anymore in CMake build (#1536) + Fix language selector. Russian and German were both not selectable. + Fix build without SSL support (#1554) + Fix several broken strings + Stop spamming users about debug mode. This feature was added in 1.7.0, now reverted. (#1541) * New + Add partial Spanish, Indonesian, and Dutch translations * Modules + adminlog: Log the error message again (regression of 1.7.0) (#1557) + admindebug: New module, which allows admins to turn on/off --debug in runtime (#1556) + flooddetach: Fix description of commands (#1548) + modperl: Fix memory leak in NV handling + modperl: Fix functions which return VCString (#1543) + modpython: Fix functions which return VCString (#1543) + webadmin: Fix fancy CTCP replies editor for Firefox. It was showing the plain version even when JS is enabled * Internal + Deprecate one of the overloads of CMessage::GetParams(), rename it to CMessage::GetParamsColon() + Don't throw from destructor in the integration test + Fix a warning with integration test / gmake / znc-buildmod interaction. - Drop upstream patches: * znc-inject2.patch * znc-inject.patch * znc-traversal.patch
Martin Pluskal2018-07-18 07:34:31 +00:00
132720d5f9
- Fix boo#1101280 CVE-2018-14056 * znc-traversal.patch - Fix boo#1101281 CVE-2018-14055 * znc-inject.patch - Fix building on Leap-42* by using less strict linker flags
Martin Pluskal2018-07-16 08:00:14 +00:00
6af52f252e
- Fix buildin on Leap-42* by using less strict linker flags
Martin Pluskal2018-07-16 07:51:13 +00:00
fd4e259140
Accepting request 613951 from server:irc
Yuchen Lin2018-06-13 13:35:45 +00:00
42a0d1885c
Accepting request 613920 from home:scarabeus_iv:branches:server:irc
Martin Pluskal2018-06-04 10:12:54 +00:00
fc156853b8
- Update to version 1.7.0: * Add CMake build. Minimum supported CMake version is 3.1. For now ZNC can be built with either CMake or autoconf. In future autoconf is going to be removed. * Currently znc-buildmod requires python if CMake was used; if that's a concern for you, please open a bug. * Increase minimum GCC version from 4.7 to 4.8. Minimum Clang version stays at 3.2. * Make ZNC UI translateable to different languages (only with CMake), add partial Russian and German translations. (#1237) (#1354) (#1462) * If you want to translate ZNC to your language, please join https://crowdin.com/project/znc-bouncer * Configs written before ZNC 0.206 can't be read anymore (#929) * Implement IRCv3.2 capabilities away-notify, account-notify, extended-join (#315) (#316) * Implement IRCv3.2 capabilities echo-message, cap-notify on the "client side" (#950) * Update capability names as they are named in IRCv3.2: znc.in/server-time-iso→server-time, znc.in/batch→batch. Old names will continue working for a while, then will be removed in some future version. * Make ZNC request server-time from server when available (#839) * Increase accepted line length from 1024 to 2048 to give some space to message tags * Separate buffer size settings for channels and queries (#967) * Support separate SSLKeyFile and SSLDHParamFile configuration in addition to existing SSLCertFile (#1192) * Add "AuthOnlyViaModule" global/user setting (#331) * Added pyeval module * Added stripcontrols module (#387) * Add new substitutions to ExpandString: %empty% and %network%. (#1049) (#1139) * Stop defaulting real name to "Got ZNC?" (#818) * Make the user aware that debug mode is enabled. (#1446) * Added ClearAllBuffers command (#852) * Don't require CSRF token for POSTs if the request uses HTTP Basic auth. (#946) * Set HttpOnly and SameSite=strict for session cookies (#1077) (#1450) * Add SNI SSL client support (#1200) * Add support for CIDR notation in allowed hosts list and in trusted proxy list (#207) (#1219) * Add network-specific config for cert validation in addition to user-supplied fingerprints: TrustAllCerts, defaults to false, and TrustPKI, defaults to true. (#866) * Add /attach command for symmetry with /detach. Unlike /join it allows wildcards. * Timestamp format now supports sub-second precision with %f. Used in awaystore, listsockets, log modules and buffer playback when client doesn't support server-time (#1455) * Build on macOS using ICU, Python, and OpenSSL from Homebrew, if available (#894) * Remove --with-openssl=/path option from ./configure. SSL is still supported and is still configurable
Martin Pluskal2018-06-01 15:48:16 +00:00
91633c2c56
- Update to version 1.6.6: * Fix use-after-free in znc --makepem. It was broken for a long time, but started segfaulting only now. This is a useability fix, not a security fix, because self-signed (or signed by a CA) certificates can be created without using --makepem, and then combined into znc.pem.
Martin Pluskal2018-03-07 17:36:27 +00:00
c0593d033e
- Update to version 1.6.5: * Fixed a regression of 1.6.4 which caused a crash in modperl/modpython. (#1283) * Fixed the behavior of verbose command in the sasl module. (#1291)
Martin Pluskal2017-03-15 21:12:54 +00:00
430c6db9e6
- Update to 1.6.3 * New character encoding is now applied immediately, without reconnect. * Fixed build with LibreSSL. (#594) * Fixed error 404 when accessing the web UI with the configured URI prefix, but without the / in the end. * znc-buildmod now exits with non-zero exit code when the .cpp file is not found. (#1226) * Fixed znc-buildmod on Cygwin. * ExpandString got expanded. * Default quit message is switche - Small spec file cleanup
Martin Pluskal2016-02-24 20:40:31 +00:00
b8593fdcf1
- Update to 1.6.2 * fixes + Fixed a use-after-delete in webadmin. It was already partially fixed in ZNC 1.4; since 1.4 it has been still possible to trigger, but much harder. + Fixed a startup failure when awaynick and simple_away were both loaded, and simple_away had arguments. + Fixed a build failure when using an ancient OpenSSL version. + Fixed a build failure when using OpenSSL which was built without SSLv3 support. + Bindhost was sometimes used as ident. + CAP :END wasn't parsed correctly, causing timeout during login for some clients. + Fixed channel keys if client joined several channels in single command. + Fixed memory leak when reading an invalid config. * autovoice + Check for autovoices when we are opped. * controlpanel + Fixed DelCTCPReply case-insensitivity. * dcc + Add missing return statement. It was harmless. * modpython + Fixed a memory leak. * modules_online + Wrong ident was used before. * stickychan + Fixed to unstick inaccessible channels to avoid infinite join loops. * internal changes
Martin Pluskal2015-11-17 12:40:18 +00:00
89dc7dbb2a
Accepting request 320709 from server:irc
Stephan Kulow
2015-08-05 17:17:30 +00:00
db2ac324a8
Accepting request 320694 from home:mimi_vx:branches:server:irc
Martin Pluskal2015-08-05 12:49:34 +00:00
a64632caa2
Accepting request 286255 from server:irc
Stephan Kulow
2015-02-16 20:46:42 +00:00
cecbc61b9a
Accepting request 286254 from home:pluskalm:branches:server:irc
Martin Pluskal2015-02-15 19:44:15 +00:00
963426011b
Accepting request 102299 from home:openttdcoop:server
Andreas Schneider
2012-02-06 11:05:03 +00:00
2cc0326cb9
Accepting request 82143 from home:ammler:branches:server:irc
Andreas Schneider
2011-09-15 06:24:07 +00:00
7209e6ecec
Accepting request 69246 from home:cwh:branches:server:irc
Marcus Rueckert2011-05-03 12:12:27 +00:00
8b260d0774
Accepting request 65668 from home:openttdcoop:server
Andreas Schneider
2011-03-31 14:00:04 +00:00
a0cbbfd3fa
Accepting request 52354 from home:openttdcoop:branches:server:irc
Andreas Schneider
2010-11-08 07:08:19 +00:00
e36a1d0fe3
updated twitter module
Andreas Schneider
2010-07-06 10:38:42 +00:00
139ab594b2
Accepting request 42468 from home:openttdcoop:branches:server:irc
Marcus Rueckert2010-07-05 09:52:36 +00:00
28a0e8574e
Accepting request 32976 from home:openttdcoop:branches:server:irc
Marcus Rueckert2010-02-22 13:27:41 +00:00
7f4554de41
added twitter module
Andreas Schneider
2009-12-29 12:04:05 +00:00
da709bac7d
update to 0.078
Andreas Schneider
2009-12-28 20:30:24 +00:00
0b57c7f5b0
- update to 0.074 ALL ZNC versions prior to 0.072 have a path traversal bug in core. Users with a valid login are able to write files to all places to which ZNC has write access. This means they could upload and load new modules which do anything imaginable.
Marcus Rueckert2009-07-24 12:29:53 +00:00
Dominique Leuenberger
Martin Pluskal
Ana Guerrero
Matej Cepl
David Mulder
Stephan Kulow
Yuchen Lin
Tomáš Chvátal
Marcus Rueckert
Ismail Dönmez
Andreas Schneider