Revisions of ikiwiki
buildservice-autocommit
accepted
request 839749
from
Dirk Stoecker (dstoecker)
(revision 9)
baserev update by copy to link target
Dirk Stoecker (dstoecker)
accepted
request 838313
from
Callum Farmer (gmbr3)
(revision 8)
- Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)
buildservice-autocommit
accepted
request 823530
from
Markéta Machová (mcalabkova)
(revision 7)
baserev update by copy to link target
Markéta Machová (mcalabkova)
accepted
request 823529
from
Markéta Machová (mcalabkova)
(revision 6)
- update to 3.20200202.3 * highlight: Adapt to API change in highlight >= 3.51 * mdwn: Fix inverted footnote configuration when MultiMarkdown is enabled. Thanks, Giuseppe Bilotta * translation improvements - Switch to python3-docutils since we do not have Python 2 anymore
buildservice-autocommit
accepted
request 792488
from
Markéta Machová (mcalabkova)
(revision 5)
baserev update by copy to link target
Markéta Machová (mcalabkova)
accepted
request 792461
from
Matej Cepl (mcepl)
(revision 4)
- Remove BR of bzr ... we don't support it anymore, and there isn't any need for it: the testsuite just skips the test, if bzr is not available.
Dominique Leuenberger (dimstar_suse)
accepted
request 715702
from
Markéta Machová (mcalabkova)
(revision 3)
initialized devel package after accepting 715702
Markéta Machová (mcalabkova)
accepted
request 715699
from
Markéta Machová (mcalabkova)
(revision 2)
- update to 3.20190228 * aggregate: Use LWPx::ParanoidAgent if available. Previously blogspam, openid and pinger used this module if available, but aggregate did not. This prevents server-side request forgery or local file disclosure, and mitigates denial of service when slow "tarpit" URLs are accessed. (CVE-2019-9187) * blogspam, openid, pinger: Use a HTTP proxy if configured, even if LWPx::ParanoidAgent is installed. Previously, only aggregate would obey proxy configuration. If a proxy is used, the proxy (not ikiwiki) is responsible for preventing attacks like CVE-2019-9187. * aggregate, blogspam, openid, pinger: Do not access non-http, non-https URLs. Previously, these plugins would have allowed non-HTTP-based requests if LWPx::ParanoidAgent was not installed. Preventing file URIs avoids local file disclosure, and preventing other rarely-used URI schemes like gopher mitigates request forgery attacks. * aggregate, openid, pinger: Document LWPx::ParanoidAgent as strongly recommended. These plugins can request attacker-controlled URLs in some site configurations. * blogspam: Document LWPx::ParanoidAgent as desirable. This plugin doesn't request attacker-controlled URLs, so it's non-critical here. * blogspam, openid, pinger: Consistently use cookiejar if configured. Previously, these plugins would only obey this configuration if LWPx::ParanoidAgent was not installed, but this appears to have been unintended. * po: Always filter .po files.
Stephan Kulow (coolo)
accepted
request 606141
from
Kristyna Streitova (kstreitova)
(revision 1)
Initial package
Displaying all 9 revisions