Navigation Menu

Skip to content

Releases: atheme/atheme

Atheme IRC Services v7.2.12

30 Jan 21:25
@aaronmdjones aaronmdjones
v7.2.12
This tag was signed with the committer’s verified signature.
aaronmdjones Aaron Jones
GPG key ID: 5637E805BFE83D24
Learn about vigilant mode.
937b61e
This commit was signed with the committer’s verified signature.
aaronmdjones Aaron Jones
GPG key ID: 5637E805BFE83D24
Learn about vigilant mode.
Compare
Choose a tag to compare
Atheme IRC Services v7.2.12 Latest
Latest

The 7.2 branch is only going to receive security fixes now. For new features, please consider upgrading to 7.3; see its NEWS.md file first.

Changes since v7.2.11:

  • Minor improvements to the build system
  • Don't try to write the database if we couldn't open it
  • Keep track of pending entity ID for SASL login

This release addresses an SASL security issue when used with InspIRCd 3.0+ servers. If you use Atheme IRC Services with such a server, you MUST upgrade.

This same security issue also affects version 7.1 of services, which is no longer receiving security updates or support; if you are using version 7.1 of services with such a server, you MUST upgrade.

NOTE: Please DO NOT use the "Source code" links below; an atheme-services-v7.2.12.tar.xz file has been attached for download instead.

Assets 4

Atheme IRC Services v7.2.11

28 Feb 02:47
@aaronmdjones aaronmdjones
v7.2.11
This tag was signed with the committer’s verified signature. The key has expired and has been revoked.
aaronmdjones Aaron Jones
GPG key ID: 50C25BA590AE7AB4
Expired Revoked
Learn about vigilant mode.
82866a5
This commit was signed with the committer’s verified signature. The key has expired and has been revoked.
aaronmdjones Aaron Jones
GPG key ID: 50C25BA590AE7AB4
Expired Revoked
Learn about vigilant mode.
Compare
Choose a tag to compare
Atheme IRC Services v7.2.11

The 7.2 branch is only going to receive security fixes now. For new features, please consider upgrading to 7.3; see its NEWS.md file first.

Changes since v7.2.10:

  • Support building contrib modules on most non-Linux Operating Systems
  • Add a preliminary Turkish translation
  • Add HMAC-MD5 verify-only support to crypto/pbkdf2v2
  • atheme.conf.example: document needoper not being inherited
  • modules/chanserv/akick: fix unload crash with akicks that have timeouts
  • modules/nickserv/register: check e-mail address validity earlier in the process
  • modules/nickserv/multimark: use IRC case canonicalisation for restored nicks
  • modules/nickserv/multimark: forbid unloading due to the potential for data loss
  • CA_ constants: include CA_EXEMPT (+e) where appropriate
  • libathemecore/conf.c: fix minor memory leak with hide_xop

NOTE: Please DO NOT use the "Source code" links below; an atheme-services-v7.2.11.tar.xz file has been attached for download instead.

Assets 3

Atheme v7.2.10-r2

05 Jul 14:32
@aaronmdjones aaronmdjones
v7.2.10-r2
This tag was signed with the committer’s verified signature. The key has expired and has been revoked.
aaronmdjones Aaron Jones
GPG key ID: 8AF0737488AB3012
Expired Revoked
Learn about vigilant mode.
d524a11
This commit was signed with the committer’s verified signature. The key has expired and has been revoked.
aaronmdjones Aaron Jones
GPG key ID: 8AF0737488AB3012
Expired Revoked
Learn about vigilant mode.
Compare
Choose a tag to compare
Atheme v7.2.10-r2

NOTE: Please DO NOT use the "Source code" links below; an atheme-v7.2.10-r2.tar.xz file has been attached for download instead.

NOTE: This is likely to be the last v7.2 release, unless a bug is discovered that requires fixing.

Changes since v7.2.9:

  • Bugfixes and better logic in verify_password()
  • Fix potential NULL dereference in modules/crypto/posix
  • Backport some modules/crypto/pbkdf2v2 improvements from master
  • Backport modules/crypto/argon2d from master
  • Backport Base-64 codec from master
  • Backport some build/configuration system improvements from master
  • Bump E-Mail address maximum length to 254 characters
  • Use flags setter information in modules/chanserv/access & modules/chanserv/flags
  • Fix issue where modules/misc/httpd wasn't closing its listening socket on deinit
  • Fix GroupServ data loss issue when a group was the founder of another group
Assets 3

Atheme v7.2.9

12 Feb 15:05
@maxteufel maxteufel
v7.2.9
4db7745
Compare
Choose a tag to compare
Atheme v7.2.9

This is a security release fixing use after free that could potentially be abused
by an attacker already having the privilege to use SASL impersonation to cause a
denial of service. Users of 7.2.8 should update to version 7.2.9; older releases
are not affected.

Assets 3

Atheme v7.2.8

04 Feb 07:37
@ilbelkyr ilbelkyr
v7.2.8
ebdeaee
Compare
Choose a tag to compare
Atheme v7.2.8

This is a security release closing a memory leak that could be exploited by attackers to potentially cause a denial of service. Release 7.2.7 is affected; older releases are unaffected. See #539 for technical information.

Assets 3

Atheme v7.2.7

08 Oct 17:04
@maxteufel maxteufel
v7.2.7
ddc1fd7
Compare
Choose a tag to compare
Atheme v7.2.7 
atheme 7.2.7
Assets 3