Overview
Request 1090979 accepted
- Update to 2.54
* Security:
+ Improved process memory protection of secure edit controls (CVE-2023-32784, boo#1211397).
* New Features:
+ Triggers, global URL overrides, password generator profiles and a few more settings are now stored in the enforced configuration file.
+ Added dialog 'Enforce Options (All Users)' (menu 'Tools' → 'Advanced Tools' → 'Enforce Options'), which facilitates storing certain options in the enforced configuration file.
+ In report dialogs, passwords (and other sensitive data) are now hidden using asterisks by default (if hiding is activated in the main window); the hiding can be toggled using the new '***' button in the toolbar.
+ The 'Print' command in most report dialogs now requires the 'Print' application policy flag, and the master key must be entered if the 'Print - No Key Repeat' application policy flag is deactivated.
+ The 'Export' command in most report dialogs now requires the 'Export' application policy flag, and the master key must be entered.
+ Single line edit dialogs now support hiding the value using asterisks.
+ Commands that require elevation now have a shield icon like on Windows.
+ TrlUtil: added 'Move Selected Unused Text to Dialog Control' command.
* Improvements:
* The content mode of the configuration elements '/Configuration/Application/TriggerSystem', '/Configuration/Integration/UrlSchemeOverrides' and '/Configuration/PasswordGenerator/UserProfiles' is now 'Replace' by default.
* The built-in override for the 'ssh' URI scheme is now deactivated by default (it can be activated in the 'URL Overrides' dialog).
* When opening the password generator dialog without a derived profile, the '(Automatically generated passwords for new entries)' profile is now selected by default, if profiles are enabled (otherwise the default profile is used).
* The clipboard workarounds are now disabled by default (they are not needed anymore on most systems).
* Improved clipboard clearing.
* Improved starting of an elevated process.
* Bugfixes:
+ In report dialogs, the 'Print' and 'Export' commands now always use the actual data (in previous versions, asterisks were printed/exported when the application policy flag 'Unhide Passwords' was turned off).
Request History
theMarix created request
- Update to 2.54
* Security:
+ Improved process memory protection of secure edit controls (CVE-2023-32784, boo#1211397).
* New Features:
+ Triggers, global URL overrides, password generator profiles and a few more settings are now stored in the enforced configuration file.
+ Added dialog 'Enforce Options (All Users)' (menu 'Tools' → 'Advanced Tools' → 'Enforce Options'), which facilitates storing certain options in the enforced configuration file.
+ In report dialogs, passwords (and other sensitive data) are now hidden using asterisks by default (if hiding is activated in the main window); the hiding can be toggled using the new '***' button in the toolbar.
+ The 'Print' command in most report dialogs now requires the 'Print' application policy flag, and the master key must be entered if the 'Print - No Key Repeat' application policy flag is deactivated.
+ The 'Export' command in most report dialogs now requires the 'Export' application policy flag, and the master key must be entered.
+ Single line edit dialogs now support hiding the value using asterisks.
+ Commands that require elevation now have a shield icon like on Windows.
+ TrlUtil: added 'Move Selected Unused Text to Dialog Control' command.
* Improvements:
* The content mode of the configuration elements '/Configuration/Application/TriggerSystem', '/Configuration/Integration/UrlSchemeOverrides' and '/Configuration/PasswordGenerator/UserProfiles' is now 'Replace' by default.
* The built-in override for the 'ssh' URI scheme is now deactivated by default (it can be activated in the 'URL Overrides' dialog).
* When opening the password generator dialog without a derived profile, the '(Automatically generated passwords for new entries)' profile is now selected by default, if profiles are enabled (otherwise the default profile is used).
* The clipboard workarounds are now disabled by default (they are not needed anymore on most systems).
* Improved clipboard clearing.
* Improved starting of an elevated process.
* Bugfixes:
+ In report dialogs, the 'Print' and 'Export' commands now always use the actual data (in previous versions, asterisks were printed/exported when the application policy flag 'Unhide Passwords' was turned off).
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
licensedigger accepted review
ok
staging-bot added as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:11"
staging-bot accepted review
Picked "openSUSE:Factory:Staging:adi:11"
dimstar accepted review
dimstar_suse accepted review
Staging Project openSUSE:Factory:Staging:adi:11 got accepted.
dimstar_suse approved review
Staging Project openSUSE:Factory:Staging:adi:11 got accepted.
dimstar_suse accepted request
Staging Project openSUSE:Factory:Staging:adi:11 got accepted.
