Changelog for
proftpd-postgresql-debuginfo-1.3.9-0.3.rc3.el10_0.x86_64.rpm :
* Thu Dec 12 2024 Paul Howarth
- 1.3.9-0.3.rc3- Update mod_vroot to 0.9.12 - Implement a realpath(3) callback for the FSIO API, for better interoperability of other modules when mod_vroot is in effect
* Thu Dec 12 2024 Paul Howarth - 1.3.9-0.2.rc3- Update to 1.3.9rc3 - Bad handling of lack of extended attributes lead to SFTP out of memory error (GH#1785) - Using mod_facl and mod_vroot at same time caused unexpected permissions issues (GH#1780) - mod_sftp_sql logged \"header value too long\" due to unexpected key header text (GH#1529) - SFTP statvfs extension failed when mod_vroot was in use (GH#1792) - Implement limitsAATTopenssh.com SFTP extension (GH#1798) - Implement SFTPAuthPublicKeys directive for configuring the list of public key algorithms allowed for authentication (GH#1806) - Fix stack trace changing to directory with DisplayChdir file using %F variable on a large filesystem (GH#1819) - Remove inherited supplemental groups when started with root privileges (GH#1836) - SSH ECDSA host key algorithms were not being used as expected despite configuring appropriate key (GH#1839) - RADIUS Message-Authenticator verification failed with ProFTPD mod_radius (GH#1840) - Supplemental group inheritance granted unintended access to GID 0 due to lack of supplemental groups from mod_sql (GH#1830)
* Fri Oct 11 2024 Paul Howarth - 1.3.9-0.1.rc2- Update to 1.3.9rc2 - Fix mod_tls build failing for OpenSSL before 1.1.x (Bug #4494) - Fix mod_sftp not advertising standard extensions for protocol version 3 (GH#1570) - Fix mod_sftp \"check-file\" extension using wrong block size when offset and length are specified (GH#1569) - Use JSON for Controls protocol messages (GH#379) - Provide richer exit status values for ftpdctl for better scripting (GH#1114) - Enforce requirement of preceding RewriteCondition for RewriteRule directives to avoid confusion (Bug #4495) - Implement LogFormat variable for data transfer average speed (GH#535) - Optimize per-connection file I/O when reading SFTPHostKey from disk (GH#1596) - ProFTPD did not detect FIPS when using OpenSSL 3.x built with FIPS support (GH#1610) - Reduce latency due to signal handling in the daemon process (GH#1623) - SSH key exchange requests should be classified into the \"SEC\" ExtendedLog class (GH#1626) - Update mod_exec to use the Jot API for resolving variables (GH#1630) - Use system TCP backlog value by default (GH#1636) - Gracefully handle directory creation requests when the directory already exists (GH#1639) - Remove asynchronous FTP responses emitted while computing digest values (GH#1661) - Support terminating connection after USER command when TLS is required (GH#1640) - Support OPTS commands for querying configured policy for resumed uploads, downloads (GH#1676) - MaxStoreFileSize for single user was not properly honored for SFTP uploads (GH#1686) - DisplayChdir using absolute path should work properly with DefaultRoot (GH#1688) - Clients should be disconnected when unable to be added to the ScoreboardFile (GH#1700) - Support injecting random delay when clients connect via DelayOnEvent (GH#1701) - Support OpenSSH FIDO security keys in mod_sftp (GH#1118) - Support obtaining default UID/GID values for AD directories in mod_ldap (GH#1716) - Update upload progress in scoreboard when throttling (GH#1433) - Null pointer reference encountered for FTPS connection due to config parser ignoring Include file problem (GH#1721) - Support the chacha20-poly1305AATTopenssh.com SSH cipher (GH#456) - mod_auth_otp should require per-user OTP entries by default (GH#1562) - 1.3.9rc1 mod_sftp failed to compile if EVP_chacha20 was unavailable, as when using older OpenSSL versions (GH#1730) - Error resolving DNS name for implicit \"server config\" vhost lead to DelayTable not being found (GH#1746) - Log message for exceeding quota did not include the user/group/class quota type (GH#1749) - Build system failed for specific module names (GH#1756) - \"Terrapin\" Prefix Truncation Attacks in SSH Specification affected mod_sftp (CVE-2023-48795, GH#1760)- Additional C compatibility fix
* Fri Oct 11 2024 Paul Howarth - 1.3.8b-8- Drop EL-7 support - Drop mod_geoip support - Drop mod_wrap support - Always build mod_proxy - Always use libpcre2 - Always use maridb client library in preference to mysql - Always use libpq client library in preference to postgresql - Always use OpenSSL Cipher Profiles- Explicitly switch from libmemcached to libmemcached-awesome from Fedora 35 onwards
* Fri Jul 19 2024 Fedora Release Engineering - 1.3.8b-7- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Wed Jul 10 2024 Paul Howarth - 1.3.8b-6- Fix support for building with no ENGINE support in OpenSSL (GH#1816)- Avoid potential null pointer dereference in mod_tls and mod_proxy (GH#1817)
* Sun Mar 31 2024 Paul Howarth - 1.3.8b-5- Add \'proxy\' sub-package with unbundled mod_proxy (rhbz#2272051)- Update fsio.c: if mkdir fails with EEXIST, also clear the cache (GH#1677)
* Fri Jan 26 2024 Fedora Release Engineering - 1.3.8b-4- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering - 1.3.8b-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Mon Jan 01 2024 Paul Howarth - 1.3.8b-2- Use libsodium to provide ed25519 key support for mod_sftp (#2256340)- Update logrotate snippet to use try-reload-or-restart rather than reload for distributions with systemd 229 or later (PR#3)
* Wed Dec 20 2023 Paul Howarth - 1.3.8b-1- Update to 1.3.8b - Compiling ProFTPD 1.3.8a mod_sftp, mod_tls using libressl 3.7.3 failed (GH#1735) - Build system failed for specific module names (GH#1756) - \"Terrapin\" Prefix Truncation Attacks in SSH Specification affected mod_sftp (CVE-2023-48795, GH#1760)
* Fri Dec 08 2023 Florian Weimer - 1.3.8a-2- Additional C compatibility fix
* Mon Oct 09 2023 Paul Howarth - 1.3.8a-1- Update to 1.3.8a - Fix mod_sftp failure to handle SFTP requests to truncate files to zero size (GH#1581) - Fix mod_sftp improperly handling SFTP WRITE requests for files opened for appending (GH#1584) - Build-time detection of Linux POSIX ACL support was broken since 1.3.8rc2 (GH#1568) - Fix failure to load mod_rewrite as a dynamic module due to incomplete/missing library linker flags (GH#1590) - section is allowed to be in , but From directive is not (GH#1597) - ExtendedLog SSH, SFTP classes not working as expected (GH#1617) - Fix mod_sftp not handling multiple concurrent open file handles/transfers well for logging (GH#1646) - \"TLSRequired off\" plus Protocols directive caused mod_tls to terminate the session abruptly (GH#1679) - Fix mod_tls failure to compile against OpenSSL 3.0.8 due to missing ENGINE_METHOD_ flags (GH#1689) - Unknown named connection error when using different SQL backends (GH#1659) - Fix mod_sql not properly closing all named backend connections on session exit (GH#1697) - SSH key exchanges failed unexpectedly with \"unable to write X bytes of raw data\" errors due to small ProFTPD buffer (GH#1694) - Fix high session memory usage caused by SFTP outgoing data buffering (GH#1678) - Out-of-bounds buffer read when handling FTP commands (GH#1683, CVE-2023-51713) - SFTP algorithm settings in section were not being used (GH#1712)
* Thu Jul 27 2023 Paul Howarth - 1.3.8-7- Fix for buffer overflow detected in response.c API test on s390x causing FTBFS in Fedora 39 (rhbz#2226148) (https://github.com/proftpd/proftpd/pull/1692)
* Fri Jul 21 2023 Fedora Release Engineering - 1.3.8-6- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri May 05 2023 Arjun Shankar - 1.3.8-5- Port configure script to C99
* Fri Feb 03 2023 Paul Howarth - 1.3.8-4- Ensure mod_rewrite is linked against libidn2 so that it loads properly (rhbz#2166454, https://github.com/proftpd/proftpd/issues/1590)- No longer need to explicitly remove libtool archives from Fedora 36 onwards
* Sat Jan 21 2023 Paul Howarth - 1.3.8-3- Add PCRE2 support (rhbz#2158885)
* Fri Jan 20 2023 Fedora Release Engineering - 1.3.8-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild