SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for atheme-7.2.9-lp152.3.7.x86_64.rpm :

* Fri Nov 03 2017 jengelhAATTinai.de- Rename the tools dbverify and ecdsakeygen with an \"atheme-\" prefix. This is possible since they do not appear to get invoked by the server, but only by the user.
* Thu Mar 30 2017 jengelhAATTinai.de- Update to new upstream release 7.2.8
* Close a memory leak that could be exploited by attackers to potentially cause a denial of service. [CVE-2017-6384, boo#1027614]- Update to new upstream release 7.2.9
* Fixing use after free that could potentially be used by an attacker already having the privilege to use SASL impersonation to cause a denial of service.
* Sun Nov 20 2016 jengelhAATTinai.de- Update to new upstream release 7.2.7
* NickServ:
* Make `VHOST` set cloak assigner and timestamp the same way HostServ does
* Make `INFO` call the `user_info_noexist` hook for queries that don\'t match an account
* Make `REGAIN` log you in if successful.
* ChanServ:
* Add a `$server:` exttarget accepting server masks
* Add `PUBACL` flag which allows the channel access to be public.
* Don\'t allow `DEOP` or `KICK` of a services bot.
* Don\'t try to expand extbans in various commands.
* Allow users with +O or +V flags to op/voice themselves, since they can regain op/voice by cycling the channel anyway.- +e added to chanserv{} templates and founder_flags- Remove 0001-Do-not-copy-more-bytes-than-were-allocated.patch and 0001-chanserv-flags-make-Anope-FLAGS-compatibility-an-opt.patch (applied upstream)- Abort installation if user/group cannot be created
* Tue May 03 2016 jengelhAATTinai.de- Update to new upstream release 7.2.6
* avoid potential NULL dereference in language code
* Add NOPASSWORD criterion to nickserv/list helpfile
* new nickserv/list criterion VACATION- Add 0001-Do-not-copy-more-bytes-than-were-allocated.patch [CVE-2016-4478]- Add 0001-chanserv-flags-make-Anope-FLAGS-compatibility-an-opt.patch [CVE-2014-9773, boo#978170]- Add atheme-serno.diff, a build fix
* Fri Apr 03 2015 jengelhAATTinai.de- Update to new upstream release 7.2.5
* pbkdf2v2: Newer module implementing PBKDF2-HMAC digest scheme
* Thu Dec 04 2014 jengelhAATTinai.de- Update to new upstream release 7.2.1
* NickServ:
* Make `VHOST` set cloak assigner and timestamp the same way HostServ does
* Make `INFO` call the `user_info_noexist` hook for queries that don\'t match an account
* Make `REGAIN` log you in if successful.
* Allow implementing custom filters for `LIST`
* nickserv/multimark: new module which allows multiple MARK entries per nickname.
* ChanServ:
* Add a `$server:` exttarget accepting server masks
* Add `PUBACL` flag which allows the channel access to be public.
* Don\'t allow `DEOP` or `KICK` of a services bot.
* Don\'t try to expand extbans in various commands.
* Allow users with +O or +V flags to op/voice themselves, since they can regain op/voice by cycling the channel anyway.
* chanserv/clear_akicks: new module providing a `CLEAR AKICKS` command.
* Thu Oct 09 2014 jengelhAATTinai.de- Remove atheme-config.diff and provide a fresh minimal config instead. Update the config to match charybdis\'s.
* Sun Jul 20 2014 jengelhAATTinai.de- Update to new upstream release 7.1.0
* ngircd: New protocol module.
* nefarious: Add Nefarious 2 SASL support.
* nefarious: Send account timestamp in svslogin.
* elemental-ircd: New protocol module.
* dreamforge: Remove protocol module.
* inspircd: Add support for server-side MLOCK and TOPICLOCK enforcement
* inspircd: Add support for matching extbans modifying matching logic
* inspircd: Add +H to channel modes
* inspircd: Add +X and +w to list-like mode list
* ircd-seven: Support charybdis extension cmodes on ircd-seven as well.
* ts6-generic: Add support for serverinfo::hidden
* unreal: Add support for extbans.
* unreal: Add cmode +P for permanent channel.- Remove 0001-build-resolve-compile-warning-in-servtree.c.patch (merged upstream)- Delete sysvinit support (keeping the `rcatheme` shortcut, though)
* Mon Mar 03 2014 jengelhAATTinai.de- Update to new upstream release 7.0.7
* saslserv/{dh-aes,dh-blowfish}: avoid possible buffer overflow with untrusted input size
* saslserv/dh-blowfish: generate a new keypair (but not a new prime) for each authentication session
* saslserv/dh-blowfish: avoid generating DH parameters on each mech_start().
* Use hostname for flood klines if IP isn\'t set, for example on auth-spoofed users
* Mon Sep 30 2013 jengelhAATTinai.de- Update to new upstream release 7.0.6
* chanfix: Restrict registering scored channels
* memoserv/delete: Only accept numeric indexes- Add 0001-build-resolve-compile-warning-in-servtree.c.patch
  
ICM