|
|
|
|
Changelog for irssi-1.4.4-bp156.3.6.x86_64.rpm :
* Wed Jul 19 2023 Ailin Nemui - add perl-ntype.patch, fixes broken scripting during run-time with perl 5.37 and later (#1474) * Fri Mar 31 2023 Ailin Nemui - update to 1.4.4 * Expose location of signals.txt via pkg-config + Levels can now be inverted using `^\' prefix in the /WINDOW (HIDE)LEVEL commands + Support receiving monospace - Fix config broken by /WINDOW LOGFILE without parameter - Fix broken /LASTLOG -window switch - Fix logic in how actions are printed for other protocols - Fix stale special collector use after free CVE-2023-29132 boo#1210077 - Help and message fixes * Mon Oct 31 2022 Ailin Nemui - update to 1.4.3 - Fix freeze on Alt+arrows (#1416, #1417) - Fix crash on /upgrade (#1399, #1419) - Fix saving of -disallow_starttls (#1401, #1420) - Fix libnv detection on FreeBSD (freebsd#265397, #1407). By Guido Falsi and Kristof Provost - Minor help and script fixes (#1380, #1393, #1411, #1413, [#1414], #1415) * Sat Jul 16 2022 Ailin Nemui - drop patches; upstreamed - drop use-isystem-for-include.patch, upstreamed - drop fix-textbuffer-view.patch, upstreamed - drop default-hash-chan.patch, upstreamed- update to 1.4.2 * Add irssimoduledir to irssi-1.pc in the Meson build (#1383, [#1378]) - Use -isystem includes, limiting warnings to Irssi code. Fixes compilation with Perl 5.36 (#1381, gentoo#851522, #1384) - Fix missing lines when changing dynamic textbuffer contents (#1382, #1387). Reported by externalserver15 - Fix Perl cross compilation with Meson 0.60.0 (#1377) - Fix default channel prefix used for /JOIN to default to `#\' (#1385, #1388) - Fix crash in /LASTLOG by getting line texts before printing (#1367, #1398) * Tue Jun 14 2022 Ailin Nemui - backport first set of fixes: - add use-isystem-for-include.patch, fixes build with perl 5.36 (#1381) - add fix-textbuffer-view.patch, fixes lost lines on display (#1382) - add default-hash-chan.patch, default to joining #-channels again (#1385) * Sat Jun 11 2022 Ailin Nemui - drop irssi.conf, upstream does not install it anymore- drop SOCKS support and related patch irssi-0.8.16_missing_prototype_warnings.patch, was not working- drop irssi-1.2.3-add-libera.patch, upstream- drop irssi-rpmlintrc, did not match- drop botti, not supported by upstream- update to 1.4.1 ! Note: botti no longer compiles; get in touch if you use it * Format the output of /QUOTE HELP (#1371, an#82). By Val Lorentz. Add /SHELP as default alias (an#83) + GLib log message filter: /SET glib_log_domains (an#50, an#59). By Andrej Kacian + An option to clear the cutbuffer: /SET empty_kill_clears_cutbuffer (an#58). By Mikael Magnusson + Scriptable pastebin (an#60, an#88) + Configurable actlist separator: /SET actlist_separator (#1364, an#61) - Fix window left/right not skipping visible windows (an#57). By Mikael Magnusson - Fix wrong printf-format on OpenBSD (an#66, an#68). Reported by Aaron Bieber - Fix erroneous output produced by autoload_modules (an#72) - Fix scroll_page_count setting with `.\' (#1365, an#76) - Fix memory leak in /IGNORE (#1373, an#84). Found by Jookia - Misc fixes (an#45, an#67, an#70, #1368, an#77) - CHANTYPES take precedence over (missing) STATUSMSG in /join (#1358, an#54) - Fix crash in Perl\'s $view->set_bookmark (freebsd#254237, an#56) - Minor help fixes (an#51, an#52) - Fix regression where own channel status was forgotten after /UPGRADE (#1357, an#53) * /SET resolve_reverse_lookup setting was removed (#1034, [#1135]) * Irssi will try to connect on IPv4 if IPv6 connection failed (#1146). By Shivaram Lingamneni * The display system now renders formats on the fly (#1079, [#1188], #1191, #1192, #1204, #1205, #1209, #1349, #1355, an#13, an#14, an#28, an#29, an#36, an#37, an#49) This major change will break scripts that try to modify printed text during \"print text\" signal (#1189). They need to be ported to modify the text during \"print format\" instead. It also breaks the usage of using /FORMAT to add different colours to a line. Such usage needs to be ported to using $expando variables instead. Affected scripts include format_identify.pl, friends_peder.pl, nickcolor.pl, nm.pl, people.pl The \"gui print text finished\" and \"gui print text after finished\" signals gained a TEXT_DEST_REC *parameter in the process. A new \"gui render line text\" signal is available to change the rendering of a line * made the $Z expando (time) dynamic (#1087, #1207, #1208) This change breaks the usage of /SET timestamp_format to supply a custom displayed time stamp. Affected scripts include binary_time.pl * /HILIGHT -priority now affects which hilight rule gets applied (#1228, #1232) * The NAMES list is now hidden by default if there are more than 18 users on the channel (an#7) To revert to the previous behaviour /SET show_names_on_join_limit -1 * -tls_verify is now enabled by default (#1170, an#18, #1309, an#23, #1343, #1351) This may cause an ugly display of notls_verify in the output of /SERVER LIST, even on plain-text connection, on old configs. Kindly remove the \"tls_verify = \"no\";\" entries from your config file manually. * Irssi will now attempt STARTTLS if advertised (#1170, #1312, an#19) Use -disallow_starttls if you absolutely do not want this In order to check for a STARTTLS advertisement, Irssi will now wait for a response (even an error) to CAP LS 302. If your bouncer/server does not want to communicate before receiving USER/PASS at all, use -nocap to disable the CAP check. * Channel sync requests (WHO, MODE) are now sent \"later\" than user commands. This should improve responsiveness to user commands in the autojoin phase (an#26, an#32, an#33) * Irssi is now using full paths in #include directives and consequently does not add all directories to the include path anymore (#1040) * The Build System was ported to Meson (#1064, #1065, #1068, [#1071], #1072, #1073, #1074, #1075, #1084, #1085, #1118, #1166, [#1223], #1224, #1245, #1313, #1314, an#31) * Scriptassist was changed to use a YAML database (#1163) It will tell you when you need to update your setting * /BIND shows all partial matches (#1155) * Cleanup of unused functions (#1017, #1132, #1145, #1182, [#1246], #1264) Functions removed: NET_CALLBACK NET_HOST_CALLBACK RESOLVED_NAME_REC net_gethostbyaddr_nonblock net_connect_nonblock [ SIMPLE_THREAD_REC, simple_init, simple_readpipe ] hash_save_key Functions deprecated: dec2octal g_timeval_cmp get_timeval_diff Function names corrected: g_input -> i_input g_istr -> i_istr g_io_channel -> i_io_channel g_hash_free_value -> i_hash_free_value remove g_free_true gslist -> i_slist glog_func -> i_log_func glist -> i_list If multi-version compatibility is desired, module authors can find an example of backwards compatible code in cdidier/irssi-xmpp#55 + Add MSGLEVEL_HIDDEN to Perl (#1044) + Add $view->set_hidden_level and $view->remove_lines_by_level to Perl (#1026) + Add a /SET scrollback_max_age setting (#1022). By Heikki Orsila + Add /SET actlist_prefer_window_name (#1025) + Add -window option to /CAT (#1023, #1159) + Add an option to list specific sections with /SET -section lookandfeel (#1048) + Add support for IRCv3 CAP LS 302 (#1091) + Add a new \"print noformat\" signal that goes together with \"print format\" (#1088, #1192) + Add support for IRCv3 extended-join. /SET show_extended_join to enable (#1097, #1107, #1124) There are two new /FORMATs, join_extended and join_extended_account, that theme writers need to take into account if desired. + Add support for IRCv3 setname (#1093, #1104, #1254, GL#33) + Add support for IRCv3 account-notify (#1100, #1098, GL#33, [#1105], #1131). Credit to oss-fuzz /SET show_account_notify to enable + Add support for IRCv3 invite-notify (#1094) + Add support for receiving IRCv3 message-tags (#576, #1090) + Add support for sending IRCv3 message-tags (#1092, an#34) + Enable the znc.in/self-message CAP by default (#1123) + Add support for IRCv3 away-notify. /SET away_notify_public to enable (#1099, GL#33, #1105) + Add support for IRCv3 chghost (#1096, GL#33, #1105) For servers with broken chghost implementation that fill the status window with host changed messages, one may add \"quote cap req -chghost\" to the -autosendcmd or, if the host change messages are entirely undesired, \"/format -delete host_changed\" + Add support for IRCv3 server-time. /SET show_server_time to enable (#1108) + Add support for logging IRCv3 server-time. /SET log_server_time to disable (#1318, an#16) + Add IRCv3 features to signals.txt (#1111) In particular, \"message join\" now takes 2 additional arguments, script and module authors must beware of this change. + Show the unignore time in /IGNORE output (#1158, #1161) + Add /SET quit_on_hup to make the behaviour of SIGHUP configurable (#828, #1169). By Pinguin1234 + Support numeric 489 as ERR_SECUREONLYCHAN (#1193, #1196). By Michael Hansen + Improve support for building Irssi in Termux-Android with Meson (#1199) + Add usermode key to Irssi::Irc::Chatnet in Perl (#1288). By Jessica Sophie Porter + Add format_string_expand and format_string_unexpand functions to Perl (#1286) + Add ...->format_create_dest(...)->printformat(\"format\", args...) and ...->printformat_module(\"module\", \"format\", args...) methods to Perl (#1284) You can avoid any CORE::GLOBAL::caller hacks using the printformat_module method, especially sind that hack was not safe during signal emissions + Add tracking of user accounts in the channel nicklist using WHOX on join (#1250) + Add auto-loading of the Perl and otr module from /SET autoload_modules (#1295) + Add /IGNORE ... NOHILIGHT to ignore some hilights (#1260) + Do not beep on hidden lines with /SET beep_msg_level ... -HIDDEN (#1259) + Added /CS, /MS, /NS, and /OS aliases to the default config (#1316). By Mathis Beer + Allow -tls_ca{file,path} \'\' to unset an argument (#730, [#1060], an#30) + Add a \"server outgoing modify\" signal to intercept outgoing messages (#1148, #1151, an#15, an#43). Original by JustAnotherArchivist - remove some hard-coded 510 byte assumptions (#1086) - Several fixes for error checks in SSL (#944, #1037, #943, [#1036]). Reported by Chi Li - Wrong variable tested in mask_match (#902, #1035) - Fix bug where irssi-proxy with `?\'-port would not reconnect (#1041) - Allow shrinking of /SET rawlog_lines (#957, #1020). By Marcus \"Teschi\" Prinz - Fix /WINDOW BALANCE warning (#1054) - fix overflow when first command history entry expires (#1070) - begin modularising IRC module (#1067, #1112, #1113) - fix some memory leaks in /DCC RESUME and settings_add (#1077). By Zero King - fix cut-off text with theme_indent module and /SET indent_always OFF (#1078) - fix the cap_queue order (#1095) - add reference counted strings (#1089) - Fix irc_op_public messages not triggering hilights (#354, [#891], #1129). By Dan Collins - Fix /IGNORE not setting the right level in irc_op_public messages (#1280). Credit to oss-fuzz - Fix GTimeVal deprecation (#1141, #1144, #1145, #1350, an#44) If multi-version compatibility is desired, module authors can find an example of backwards compatible code in cdidier/irssi-xmpp#53 - Fix /IGNORE ... MODES NO_ACT not working (#1164) - Deprecated -ssl * options are hidden from tab completion (#1171) - Make /SET actlist_sort a choice type (#1198) - Fix crash from self-unloading script (#1206). By Thomas Stagner - Fix crash during Perl signal emission (#1233, #1234) - Fix a case where empty lines or comments inside channels or servers in the config would confuse Irssi (#1062, #1242, [#1243]) - Fix reported freezing in DCC GET on slow disks (#159, #1271) - Fix message-tags parsing (#1274, #1275). Credit to oss-fuzz - Fail redirects when receiving numeric 263 (RPL_TRYAGAIN) in response to /WHO (#1283) - Some updates to .gitignore (#1302). By Rene Kita - Fix build on operating systems with X/Open Curses, version 2 (#1305, #1308). By Nia Alarie (Regression introduced with [#1290], alternative fix for Irssi 1.2.3 no-term.h.patch) - Fix otr module not using g_strndup, e.g. on Solaris 10 (#1315). By Claes Nästén - Fix cursor getting stuck for auto completions that changes case (#1176, #1322, an#8). By ffrogman - Restore operation of tag/ * in /SET activity_hide_targets (#1337, an#11) nb. the ::all syntax was working in Irssi 1.1 and 1.2 (and continues to work) - Fix /SERVER ADD -matrix -network my_matrix_network (an#12). By Andrej Kacian - Fix /SERVER ADD creating duplicated entries in the config file (#1317, an#22, an#41) - Fix critical when SASL user is set and SASL password is empty (#1325, an#21) - Misc fixes (#1106, #1141, #1272, #1297, an#35) - Fuzz fixes (#1116, #1117, #1119, #1125, #1126, an#20) - Build system fixes (#1101, #1102, #1069, #1140, #1181, #1253) - Sync docs and scripts (an#39) - Text and Help updates - add -tls_ * options to manual (#1029, #1030). By Jacob V. Rasmussen - missing targets in /MSG (#1032) - wrong parameter in /ECHO (#1024) - Spelling in OTR (#1047). By David Gall - Clarify statusbar priority (#1049). By Marius Gedminas - Document get_irssi_dir in Perl (#1051, #1052). By Alex Shafer - typo in /HILIGHT help (#1081). By DFrostByte - improved clarity of your_nick_owned (#1138). By Mike Quin - Update some URLs to https (#1163) - Add documentation for escaping some characters (#1329, [#1330], an#9). By Guntbert Reiter - Fix some typos (#1336, an#10). By Francis Mteo - Document $abiversion and parse_special (an#38). By bw1 - Infrastructure updates: - Support for Github Actions (#1039, #1103, #1160, #1212, [#1231], #1252, #1261, an#40) - Run clang-format on pull requests (#1172, #1173, #1184, [#1230], #1247, #1287) - Run abidiff on pull requests (#1179, #1195) - Test CI-Fuzz (#1279, #1304, an#17) * Mon May 09 2022 Andreas Stieger - add the Libera chat network to the default configuration to improve the new user experience - irssi-1.2.3-add-libera.patch * Fri Apr 09 2021 Ailin Nemui - update to 1.2.3 (boo#1184848) - Fix the compilation of utf8proc (#1021) - Fix wrong call to free. By Zero King (#1076) - Fix a colour reset in true colour themes when encountering mIRC colours (#1059) - Fix memory leak on malformed CAP requests (#1120) - Fix an erroneous free of SASL data. Credit to Oss-Fuzz (#1128, [#1130]) - Re-set the TLS flag when reconnecting (#1027, #1134) - Fix the scrollback getting stuck after /clear (#1115, #1136) - Fix the input of Ctrl+C as the first character (#1153, #1154) - Fix crash on quit during unloading of modules on certain platforms (#1167) - Fix Irssi freezing input after Ctrl+Space on GLib >2.62 (#1180, [#1183]) - Fix layout of IDCHANs. By Lauri Tirkkonen (#1197) - Fix crash when server got reconnected before it was properly connected (#1210, #1211) - Fix multiple identical active caps (#1249) - Minor help corrections (#1156, #1213, #1214, #1255) - Remove erroneous colour in the colorless theme. Reported and fixed by Nutchanon Wetchasit (#1220, #1221) - Fix invalid bounds calculation when editing the text entry. Found and fixed by Sergey Valentey (#1269) - Fix passing of negative size in buffer writes. Found and fixed by Sergey Valentey (#1270) - Fix Irssi freezing on slow hardware and fast DCC transfers (#159, [#1271]) - Fix compilation on Solaris (#1291) - Fix null pointer dereference when receiving broken JOIN record. Credit to Oss-Fuzz (#1292) - Fix crash on /connect to some sockets (#1239, #1298) - Fix Irssi rendering on Apple ARM. By Misty De Méo (#1267, [#1268], #1290) - Fix crash on /lastlog with broken lines (#1281, #1299) - Fix memory leak when receiving bogus SASL authentication data. Found and fixed by Sergey Valentey (#1293) * Tue Apr 28 2020 Ailin Nemui - added glib-2-63.patch: - Backport a fix that froze Irssi on GLib >2.62 when typing Ctrl+Space (#1180, #1183) * Thu Aug 29 2019 Ailin Nemui - update to 1.2.2 - Fix a use after free issue when receiving IRCv3 CAP information from the server (GL#34) CVE-2019-15717 - Fix a crash during startup when windows weren\'t fully initialised yet (#1114, bdo#935813) * Fri Jun 28 2019 Ailin Nemui - update to 1.2.1 ! Contains all changes from 1.1.3 ! Contains all changes from 1.0.8 - Fix a test on big endian machines (#1014) - Fix the compile time conditionality of wcwidth implementation (#1019, gentoo#677804, #720) - Fix /save no longer working on old Solaris (pre POSIX.1-2008) (#1042, #1043) - Fix regression of #764 where display of 8-bit (legacy encoding) in the input prompt was broken (#1018, [#1057]). Initial patch by Артём Курашов - Fix regression of #779 where autolog_ignore_targets would not matching itemless windows anymore (#1012, #1013) - Fix a use after free issue when sending the SASL login on (automatic and manual) reconnects (#1055, #1058). Reported by ilbelkyr. CVE-2019-13045 * Mon Feb 11 2019 Ailin Nemui - update to 1.2.0 * Improved the /STATUSBAR commands (#858) * /SET no longer shows `=\' between setting and value (#886) * /CUBES removed from default config (available as script) (#956) * /1 /2 /3 ... removed from default config (available as new setting window_number_commands) (#958) * Always redraw the screen on resize. By David Phillips (#896) * Private notices intended for channels are now displayed on the channel (new setting notice_channel_context) (#959) + Imported the \"Off-the-record\" module into Irssi tree (#854, [#589], #196) + Initial support for sideways split windows (#697, #431, [#224], #807, FS#310, #947, #955, #989) + Change the implementation of `wcwidth\'. This is used to calculate the width of emojis on your terminal screen (#917, [#720]) + Make the wcwidth functions available from Perl (#973): string_width(str) string_chars_for_width(str, width) wcwidth(char) + Added completion_keep_word setting (#979) + Allow activity_hide_targets to hide activity in itemless windows (#967, #997, #1001, #1003) + Added activity_hide_visible setting (#990) + Allow hiding of lines through the /IGNORE system (#901, [#900], #892, #890, #884, #937) + Add window_default_hidelevel setting. By Doug Freed (#941) + Add activity_hide_window_hidelevel setting, defaulting to ON (#938) + Add autolog_only_saved_channels setting, to autolog only channels that are in the config (#968) + Add format support for the input line. By Ben Paxton, originally by Jonas Hurrelmann (#764, FS#621, #1004) use Irssi::TextUI; gui_input_set_extent(pos, text) gui_input_set_extents(pos, len, left, right) gui_input_clear_extents(pos, len) gui_input_get_extent(pos) gui_input_get_text_and_extents() gui_input_set_text_and_extents(...) + Parsing of IRCv3 CAP 3.2 (#775, #869) + Show CAP-related events in the user interface (#918, #916, [#870], #704) + Continue using separators when addressing multiple nicks with tab completion. By Manish Goregaokar (#822) + Bind Shift-tab by default. By Niklas Luokkala (#830, #829) + Fuzzing more things (#913, #780, #813) - Disconnect SASL properly in case the SASL module got unloaded from server (#931, #629, #618, #616) - Fix backward completion jumping to the first instead of last word (#979) - Improve empty topic handling (#961, #905, #911, #897, #888) - Prevent config truncation when no space left. By dequis and Lukas Waymann (#922, #925, #910, #909, #906, #871, #817) - Also time-out servers in lookup phase (#866, #130) - Fix build with LibreSSL 2.7. By Dorian Harmans (#865) - Fix a crash when appending to a textbuffer without line. Reported by Jari Matilainen (#862) - Fix segfault on sending large messages (#803, #796, #802) - Fix segfault on invalid statusbar config (#993, #994) - Fix random memory writes on restoring queries of foreign protocols (#999, #1000) - Make default keybinds deletable (#859, #507) - Fix freeze when resizing Irssi very small (#946) - Compare channels case-insensitively, avoiding confusions with the config file (#857, #856) - Fix DCC GET on Android. By Martin Staron (#844) - Improve rawlog performance (#957) - Fix nick escaping erroneously escaping quotes (#978, #974, [#709]) - Protect against theme recursion, improve padding performance, limit alignment padding. Credit to Oss-Fuzz (#835, #851, #850, #846, #848) - Fix recursive loop in replaces (#833, GL#23) - Fix headers for compilation of C modules (#939) - Documentation. By Zero King (#814). (#852) - Sync NEWS, docs, scripts (#849, #855) - Build system (#868, #867, #985, #988) - Fix build on IBM i and AIX. By Calvin Buckley (#975) - Misc fixes (#840, #839, #843, #953, #962). Tests (#806, [#875], #905, #964, #1011). Fuzzing (#929). * Tue Feb 05 2019 Jan Engelhardt - Trim filler wording from description. * Wed Jan 09 2019 Ailin Nemui - update to 1.1.2 - Fix the resetting of window hiddenlevel (#861) - Fix clearing of hidelevel in layout (#951) - Fix accessing unallocated text when checking entry position (#930) - Fix uninitialised memory on empty lines (#873, GL#31, #878, [#877], #907, #914) - Fix use-after-free on expiration of hidden lines (#948) (CVE-2019-5882 boo#1121396) - Fix use-after-frees. By Maya Rashish (#919) - Fix out of bounds access in help display when window width is small (#949) - Fix paste_join_multiline (#971) - Correctly check for errno when displaying SSL errors. By Janik Rabe (#895) - Fix wrong signal emission argument count (#965) - Documentation (#920). Sync NEWS, scripts (#849) - Fix Perl detection on MacOS. By Dominyk Tiller (#927) - Misc fixes. By Jaroslav Škarvada (#982) * Thu Feb 15 2018 ailin.nemuiAATTgmail.com- update to 1.1.1 (bsc#1081238): - Restore compatibility with OpenSSL < 1.0.2 (#820, #831) - Fix test compilation on some platforms (#815, #816) - Fix portability and backwards compatibility of test runner (#818, #845) - Prevent use after free error during the execution of some commands. Found by Joseph Bisch (GL#17, GL!24). - Revert netsplit print optimisation due to crashes (#465, #809, [#812], #819, #824). CVE-2018-7054 - Fix use after free when SASL messages are received in unexpected order (GL#26, GL!33). CVE-2018-7053 - Fix null pointer dereference in the tab completion when an empty nick is joined (GL#24, GL!31). CVE-2018-7050 - Fix use after free when entering oper password (GL#22, GL!32). - Fix null pointer dereference when too many windows are opened (GL#27, #837). CVE-2018-7052 - Fix out of bounds access in theme strings when the last escape is incomplete. Credit to Oss-Fuzz (#842). CVE-2018-7051 - Fix out of bounds write when using negative counts on window resize (GL#25, GL#29, #836). - Minor help correction. By William Jackson (#834). * Tue Jan 16 2018 avindraAATTopensuse.org- update to 1.1.0 * Changes + Colour is now re-set when reaching a comma, matching mIRC behaviour + Irssi now shows the initial nick and name on first start + lynx is no longer required to run autogen.sh + The command history no longer permits wrapping around + /foreach now correctly sends arguments as commands, stopping you from embarassing AMSGs + /server does not connect to servers anymore, use /server connect to change servers + The net_ip_compare API function is now deprecated, and the previously deprecated net_connect has been removed * Additions + Add an option to ignore all channels or ignore all queries using /set activity_hide_targets + Add a startup warning if the TERM var is wrong inside tmux / screen + Add option to hide certain levels from the textbuffer using / window hidelevel + Irssi now has its first unit test (for mode parsing) + Added access to global command history when using window history, and a binding to erase entries from the command history (erase_history_entry) + -alternate_nick is now available as a network specific property + On FreeBSD, Irssi now supports Capsicum sandbox (/capsicum enter) + Filenames (directories) ending with a / now tab-complete + UTF-8 should now work in regular expressions when using GRegex (the default) + Nicks are now properly escaped on completion + /server add -port now works + Add a setting key_timeout to make key sequences automatically re-set when not finished + Warn users about expired client certificates, as servers may refuse them + Add a new net_start_ssl function for StartTLS. This is available from ABI 8 and can be used by protocol modules + The %# code is now stored in the textbuffer, so for example web scripts can make use of it + Add new setting break_wide which can be used to enable breaking of wide characters (for east-asian users) + Add fuzzing code * Fixes + Netsplits show properly again + Do not error on blank lines when using /exec -o + Detect used nickname as reported by server + Prevent use after free error during the execution of some commands + Fix MODE parameter parsing when colon was used at a place Irssi didn\'t expect + Fixed code to compile with -Werror=declaration-after-statement + Clang-format is now supported for git-clang-format + Fix use after free when changing the network of hilights + Fix positioning error when tab-completing non-ascii strings + In-development issues + Clarify Alis in /help list + Improve /lastlog performance from O(N^2) to O(N) + Fix a segfault on \"script destroyed\" signal + Fix early ISON error + Documentation improvements + Minor cleanups + Fix space issue in glib-2.0.m4- cleanup with spec-cleaner- drop regex-patch-653.patch * fixed upstream in 79bbca4644cad7f2dee89c7ac6b8f9acc2c8b427 * Sat Jan 06 2018 ailin.nemuiAATTgmail.com- update to 1.0.6 (bsc#1074958) - Fix invalid memory access when reading hilight configuration (#787, #788). - Fix null pointer dereference when the channel topic is set without specifying a sender (GL#20, GL!25). CVE-2018-5206 - Fix return of random memory when using incomplete escape codes (GL#21, GL!26). CVE-2018-5205 - Fix heap buffer overflow when completing certain strings (GL#19, GL!27). CVE-2018-5208 - Fix return of random memory when using an incomplete variable argument (GL#18, GL!28). CVE-2018-5207 * Sun Oct 22 2017 ailin.nemuiAATTgmail.com- update to 1.0.5 (boo#1064540) - Fix missing -sasl_method \'\' in /NETWORK (#718, #719). - Fix incorrect restoration of term state when hitting SUSP inside screen (#737, #733). - Fix out of bounds read when compressing colour sequences. Found by Hanno Böck (GL#12, GL!18). CVE-2017-15228 - Fix use after free condition during a race condition when waiting on channel sync during a rejoin (GL#13, GL!19). CVE-2017-15227 - Fix null pointer dereference when parsing certain malformed CTCP DCC messages (GL#14, GL!20). CVE-2017-15721 - Fix crash due to null pointer dereference when failing to split messages due to overlong nick or target (GL#15, GL!21). CVE-2017-15723 - Fix out of bounds read when trying to skip a safe channel ID without verifying that the ID is long enough (GL#16, GL!22). CVE-2017-15722 - Fix return of random memory when inet_ntop failed (#769). - Minor statusbar help update. By Robert Bisewski (#758, [#763]). * Thu Jul 06 2017 ailin.nemuiAATTgmail.com- update to 1.0.4 - Fix null pointer dereference when parsing invalid timestamp (GL#10, GL!15). Reported by Brian \'geeknik\' Carpenter. CVE-2017-10965 boo#1047709 - Fix use-after-free condition when removing nicks from the internal nicklist (GL#11, GL!16). Reported by Brian \'geeknik\' Carpenter. CVE-2017-10966 - Fix incorrect string comparison in DCC file names (#714). - Fix regression in Irssi 1.0.3 where it would claim \"Invalid time \'-1\'\" (#716, #722). - Fix a bug when using \ to separate lines with expand_escapes (#723). - Retain screen output on improper exit, to better see any error messages (#287, #721). - Minor help update (#729). * Tue Jun 06 2017 ailin.nemuiAATTgmail.com- update to 1.0.3 - Fix out of bounds read when scanning expandos (GL!11). - Fix invalid memory access with quoted filenames in DCC (GL#8, GL!12). bsc#1043052 CVE-2017-9469 - Fix null-pointer dereference on DCC without address (GL#9, GL!13). bsc#1043051 CVE-2017-9468 - Improve integer overflow handling. Originally reported by oss-fuzz#525 (#706). - Improve nicklist performance from O(N^2) to O(N) (#705). - Fix initial screen redraw delay. By Stephen Oberholtzer (#680, bdo#856201). - Fix incorrect reset of true colours when resetting background. (#711). - Fix missing -notls option in /SERVER. By Jari Matilainen (#117, #702). - Fix minor history glitch on overcounter (#462, #685). - Improved OpenSSL detection at compile time. By Rodrigo Rebello (#677). - Improved NetBSD Terminfo detection. By Maya Rashish (#694, #698). - Add missing syntax info for COMPLETION (#687, #688). - Minor typo correction in help. By Michael Hansen (#707). * Mon Mar 13 2017 astiegerAATTsuse.com- add references to previous change * Sat Mar 11 2017 ailin.nemuiAATTgmail.com- irssi 1.0.2 fixes a vulnerability that could result in denial of service or worse during a netjoin in certain circumstances (CVE pending) bsc#1029020 - Prevent some null-pointer crashes (GL!9). - Fix compilation with OpenSSL 1.1.0 (#628, #597). - Correct dereferencing of already freed server objects during output of netjoins. Found by APic (GL!10, GL#7). - Fix in command arg parser to detect missing arguments in tail place (#652, #651). - Fix regression that broke incoming DCC file transfers (#667, #656). - Fix issue with escaping \\ in evaluated strings (#669, #520).- Added regex-patch-653.patch from Upstream PR#653 to improve UTF8 support in GRegex * Mon Feb 06 2017 astiegerAATTsuse.com- irssi 1.0.1: * Fix Perl compilation in object dir * Fix incorrect HELP SERVER example * Correct memory leak in /OP and /VOICE * Fix regression that broke second level completion * Correct missing NULL termination in perl_parse boo#1023638 * Sync broken mail.pl script * Prevent a memory leak during the processing of the SASL response boo#1023637 * Fri Jan 06 2017 idonmezAATTsuse.com- Update to version 1.0.0 * irssiproxy can now forward all tags through a single port. * The kill buffer now remembers consecutive kills. New bindings were added: yank_next_cutbuffer and append_next_kill. * autolog_ignore_targets and activity_hide_targets learn a new syntax tag/ * and * to ignore whole networks or everything. * hilight got a -matchcase flag to hilight case sensitively. * Display TLS connection information upon connect. You can disable this by setting tls_verbose_connect to FALSE * Certificate pinning for TLS certificates * /names and $[…] now uses utf8 string operations. * New setting completion_nicks_match_case * /channel /server /network now support modify subcommand. * New option sasl_disconnect_on_failure to disconnect when SASL log-in failed.- Drop not applied irssi-0.8.15_ssl_proxy.patch- Run through spec-cleaner, remove support for old openSUSE/SUSE releases. * Fri Jan 06 2017 astiegerAATTsuse.com- irssi 0.8.21 fixes four vulnerabilities that could result in denial of service (remote crash) when connecting to malicious servers or receiving specially crafted data [boo#1018357]: * CVE-2017-5193: NULL pointer dereference in the nickcmp function * CVE-2017-5194: out of bounds read in certain incomplete control codes * CVE-2017-5195: out of bounds read in certain incomplete character sequences * CVE-2017-5196: Correct an error when receiving invalid nick message * CVE-2017-5356: out of bounds read in format string [boo#1019809]- drop irssi-0.8.20-buf.pl.patch, upstream * Thu Oct 06 2016 meissnerAATTsuse.com- irssi-0.8.20-buf.pl.patch: Fixed a information disclosure in buf.pl (CVE-2016-7553 bsc#1001215) * Wed Sep 21 2016 mrueckertAATTsuse.de- disable PIE on sle11 * Wed Sep 21 2016 mrueckertAATTsuse.de- add BR for xz to fix build on sle11- switch to %{?_smp_mflags}- pass --disable-silent-rules to get verbose makefiles again * Wed Sep 21 2016 meissnerAATTsuse.com- Update to version 0.8.20 - Correct the name of an emitted sasl signal (#484) - Correct the prototype for the \'message private\' signal (#515) - Corrections in away and hilight help text (#477, #518) - /squery and /servlist commands have been restored. - Where Irssi would previously only report \"System error\" on connect, it will now try harder to retrieve the system error message. - Fixed issue with +channels not working properly (#533) - Fixed crash in optchan when item has no server (#485) - Fixed random remote crash in the nicklist handling (#529) - Fixed remote crash due to incorrect bounds checking on formats, reported by Gabriel Campana and Adrien Guinet from Quarkslab. (CVE-2016-7044, CVE-2016-7045, bsc#999199) * Sat Mar 26 2016 idonmezAATTsuse.com- Update to version 0.8.19 * Fixed regression when joining and parting channels on IRCnet * Fixed SASL EXTERNAL * Fixed regression when not using SASL * Fixed incorrect SSL disconnects when using SSL from modules/scripts * Fixed regression where proxy_string could not be configured or certain file transfers could not be accepted * Fixed storing layout of !channels * Fixed restoration of bracketed paste mode on quit * Make the usage of meta-O for cursor keys configurable with /set term_appkey_mode off * Wed Mar 02 2016 idonmezAATTsuse.com- Update to version 0.8.18 New Features + CAP SASL PLAIN login is now supported natively. + Paste bracket markers can be requested from terminal with /set paste_use_bracketed_mode on + \"Self messages\" generated by some bouncers can now be received in the proper window. + Try to split long lines on spaces to avoid words being splitted. Adds a new option: split_line_on_space which defaults to on. + Add setting hilight_nick_matches_everywhere (#56). + The config parser is more robust and prints out better diagnostics on incorrect config files. + Ctrl+^ (FS#721) and Ctrl+J can now be bound. + Command history can be cleared with /window history -clear + /hilight -mask -line is now supported (FS#275). + CHANTYPES are now supported. + Improved reload speed of ignores. + Add -date feature to /lastlog + irssiproxy can be more easily enabled and disabled. + Expando for hostname (FS#829). + UNIX sockets can now also be specified in the config file. + Disable SSLv3 due to the POODLE vulnerability. + SSL ciphers can now be specified per server. + Added SNI support for SSL. Bugfixes + /ignore now respects -pattern on merge (#78). + irssiproxy (BNC) module now uses correct line endings. + Fix missing lines on large pastes (FS#905). + Correctly preserve STATUSMSG prefixes (#291). + Fix infinite recursion in key bindings (FS#817). + Fix incomplete awaylog caused by buffering. + Fix calculation of UTF-8 string length display in some cases. + Fix some Perl warnings related to AATTISA. + EXEC windowitems now get proper references on the Perl side. + Incremental help file improvements. + ANSI attributes are now properly reset. + Fixed regression where text would blink when terminal lacks color support. + Permit the usage of Freenode extban syntax in /ban (#150) + Fixed regression in scriptassist on unload of scripts. + Fixed regression in -actcolor %n- Remove irssi-0.8.15-ssl-passphrase.patch, fixed upstream. * Sun Jan 10 2016 astiegerAATTsuse.com- downloads moved to github- verify source signature * Thu Jan 01 2015 meissnerAATTsuse.com- build with PIE * Fri Oct 17 2014 mrueckertAATTsuse.de- update to 0.8.17 + Document that SSL connections aren\'t properly handled during /UPGRADE. See Github PR #39. + Synchronize scripts with scripts.irssi.org. + Performance enhancement of the nicklist as well as the window_item_find function. See Github PR #24. + Disallow unloading of static modules. + Allow UTF-8 characters in /bind. See Github PR #18. + Split overlong outgoing messages instead of silently truncating them. Adds two new options: \'split_line_end\' and \'split_line_start\'. - \'split_line_end\' contains a string added to the end of line fragments. - \'split_line_start\' contains a string added to the beginning of line fragments. See Github PR #29. + Added special /ignore NO_ACT level to ignore only activity (see /help ignore). + Support for 256 and true color terminals (see Github PR #48). + Support for italics (see Github PR #58). + Rewrote many help files. - Fixed various compiler warnings and use of deprecated functions. - Fixed Perl API usage and added PERL_NO_GET_CONTEXT to reduce code size. - Fixed format_get_text Perl API. See Github PR #23. - Fixed gui_printtext_after and term_refresh_ *() visibility. See Github PR #22. - Fixed issue where UTF-8 characters was corrupted once for every 32k text. See Github PR #12. - Fixed redrawing issue with right-aligned statusbar. - Fixed use-after-free bug with cached settings values. See Github PR #147.
|
|
|