Revisions of matrix-synapse
Forwarded request #1177339 from darix - Update to 1.108.0
Forwarded request #1174027 from darix - Update to 1.107.0
- Update to 1.106.0
- Update to 1.105.1 (boo#1223319) - Security - GHSA-3h7q-rfh9-xm4v / CVE-2024-31208 — High Severity Weakness in auth chain indexing allows DoS from remote room members through disk fill and high CPU usage. See the advisories for more details. If you have any questions, email security@element.io.
1.98.0
- Update to 1.97.0
- Update to 1.96.0
add missing bugnumber
- Update to 1.95.1 - Security: - GHSA-mp92-3jfm-3575 / CVE-2023-43796 — Moderate Severity Cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver.
- Update to 1.95.0
- Update to 1.94.0 (boo#1216126 CVE-2023-45129) GHSA-5chr-wjw5-3gq4 / CVE-2023-45129 — Moderate Severity A malicious server ACL event can impact performance temporarily or permanently leading to a persistent denial of service. Homeservers running on a closed federation (which presumably do not need to use server ACLs) are not affected.
- Update to 1.94.0 (forwarded request 1116682 from darix)
- Update to 1.93.0 The following issues are fixed in 1.93.0 (and RCs). GHSA-4f74-84v3-j9q5 / CVE-2023-41335 — Low Severity https://github.com/matrix-org/synapse/security/advisories/GHSA-4f74-84v3-j9q5 Temporary storage of plaintext passwords during password changes. GHSA-7565-cq32-vx2x / CVE-2023-42453 — Low Severity https://github.com/matrix-org/synapse/security/advisories/GHSA-7565-cq32-vx2x Improper validation of receipts allows forged read receipts. See the advisories for more details. If you have any questions, email security@matrix.org.
- Update to 1.91.2
- switch to _multibuild - Update to 1.88.0 This release - raises the minimum supported version of Python to 3.8, as Python 3.7 is now end-of-life, and - removes deprecated config options related to worker deployment. See the upgrade notes for more information. https://github.com/matrix-org/synapse/blob/release-v1.88/docs/upgrade.md#upgrading-to-v1880 - Features - Add not_user_type param to the list accounts admin API. (#15844) - Bugfixes - Revert "Stop writing to column user_id of tables profiles and user_filters", which was introduced in Synapse 1.88.0rc1. (#15953) - Pin pydantic to ^=1.7.4 to avoid backwards-incompatible API changes from the 2.0.0 release. Contributed by @PaarthShah. (#15862) - Correctly resize thumbnails with pillow version >=10. (#15876) - Improved Documentation - Fixed header levels on the Admin API "Users" documentation page. Contributed by @sumnerevans at @beeper. (#15852) - Remove deprecated worker_replication_host, worker_replication_http_port and worker_replication_http_tls configuration options. (#15872) - Deprecations and Removals - Remove deprecated worker_replication_host, worker_replication_http_port and worker_replication_http_tls
Displaying revisions 1 - 20 of 101