Overview Repositories Revisions Requests Users Attributes Meta

Revisions of znc

Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 806842 from Factory Maintainer's avatar Factory Maintainer (factory-maintainer) (revision 23) 
Automatic submission by obs-autosubmit
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 712237 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 19) 
- Update to version 1.7.4:
  * This is a security release to fix CVE-2019-12816 boo#1138572
  * Send "Connected!" messages to client to the correct nick
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 705792 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 18) 
- Update to version 1.7.3:
  * This is a security release to fix CVE-2019-9917.
  * Docker only: the znc image now supports --user option of docker
    run.
- Drop no longer needed znc-CVE-2019-9917.patch
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 688197 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 17) 
- Fix boo#1130360 CVE-2019-9917
  * znc-CVE-2019-9917.patch
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 623567 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 15) 
- Update to version 1.7.1:
  * Security critical fixes[edit]
    + CVE-2018-14055: non-admin user could gain admin privileges and shell access by injecting values into znc.conf.
    + CVE-2018-14056: path traversal in HTTP handler via ../ in a web skin name.
  * Core
    + Fix znc-buildmod to not hardcode the compiler used to build ZNC anymore in CMake build (#1536)
    + Fix language selector. Russian and German were both not selectable.
    + Fix build without SSL support (#1554)
    + Fix several broken strings
    + Stop spamming users about debug mode. This feature was added in 1.7.0, now reverted. (#1541)
  * New
    + Add partial Spanish, Indonesian, and Dutch translations
  * Modules
    + adminlog: Log the error message again (regression of 1.7.0) (#1557)
    + admindebug: New module, which allows admins to turn on/off --debug in runtime (#1556)
    + flooddetach: Fix description of commands (#1548)
    + modperl: Fix memory leak in NV handling
    + modperl: Fix functions which return VCString (#1543)
    + modpython: Fix functions which return VCString (#1543)
    + webadmin: Fix fancy CTCP replies editor for Firefox. It was showing the plain version even when JS is enabled
  * Internal
    + Deprecate one of the overloads of CMessage::GetParams(), rename it to CMessage::GetParamsColon()
    + Don't throw from destructor in the integration test
    + Fix a warning with integration test / gmake / znc-buildmod interaction.
- Drop upstream patches:
  * znc-inject2.patch
  * znc-inject.patch
  * znc-traversal.patch

- Fix boo#1101280 CVE-2018-14056
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 584024 from Martin Pluskal's avatar Martin Pluskal (pluskalm) (revision 13) 
- Update to version 1.6.6:
  * Fix use-after-free in znc --makepem. It was broken for a long
    time, but started segfaulting only now. This is a useability
    fix, not a security fix, because self-signed (or signed by a
    CA) certificates can be created without using --makepem, and
    then combined into znc.pem.
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 542254 from Factory Maintainer's avatar Factory Maintainer (factory-maintainer) (revision 12) 
Automatic submission by obs-autosubmit
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 495616 from Factory Maintainer's avatar Factory Maintainer (factory-maintainer) (revision 11) 
Automatic submission by obs-autosubmit
Displaying revisions 1 - 20 of 29
openSUSE Build Service is sponsored by
Places