The following Fedora EPEL 9 Security updates need testing:
Age URL
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-747e8b0ab1
salt-3005.4-1.el9
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-44e123cf66
mlpack-4.2.1-5.el9
The following builds have been pushed to Fedora EPEL 9 updates-testing
ampache_browser-1.0.6-1.el9
ascii-3.18-18.el9
drbd-9.26.0-1.el9
go-rpm-macros-epel-3.3.0.2-1.el9
libopenmpt-0.6.12-1.el9
libretls-3.8.1-1.el9
netcat-1.225-3.el9
nwipe-0.35-2.el9
objfw-1.0.5-1.el9
optipng-0.7.8-1.el9
perl-Data-Report-1.001-40.el9
python3-saml-1.16.0-1.el9
qm-0.5.8-1.el9
radare2-5.8.8-2.el9
rpki-client-8.6-2.el9
snapraid-12.2-1.el9
tripwire-2.4.3.7-16.el9
unrealircd-6.1.2.3-2.el9
Details about builds:
================================================================================
ampache_browser-1.0.6-1.el9 (FEDORA-EPEL-2023-c4c4af7963)
C++ and Qt based client library for Ampache access
--------------------------------------------------------------------------------
Update Information:
# ampache_browser 1.0.6 (2023-09-01) * Do not autodetect Qt version during
build. # ampache_browser 1.0.5 (2023-02-22) * Add compatibilty with Qt 6.
# ampache_browser 1.0.4 (2022-07-25) * Fix One Definition Rule violation
(`-Wodr`) when building with `-flto`.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 4 2023 Michael Schwendt <mschwendt(a)fedoraproject.org> - 1.0.6-1
- Update to 1.0.6 for Qt 6 support but build with USE_QT6=OFF.
* Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.4-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Wed Jan 18 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.4-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Dec 10 2022 Michael Schwendt <mschwendt(a)fedoraproject.org> - 1.0.4-1
- Update to 1.0.4 (no build needed, just a potential compilation fix).
* Wed Jul 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.3-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Wed Jan 19 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.3-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
ascii-3.18-18.el9 (FEDORA-EPEL-2023-60fa663b80)
Interactive ascii name and synonym chart
--------------------------------------------------------------------------------
Update Information:
migrated to SPDX license
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 4 2023 Didier Fabert <didier.fabert(a)gmail.com> - 3.18-18
- migrated to SPDX license
* Wed Jul 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.18-17
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Wed Jan 18 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.18-16
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
drbd-9.26.0-1.el9 (FEDORA-EPEL-2023-1917c69c27)
DRBD user-land tools and scripts
--------------------------------------------------------------------------------
Update Information:
Upstream release of 9.26.0
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 5 2023 Peter Hanecak <hany(a)hany.sk> - 9.26.0-1
- Upstream release of 9.26.0
- Build now requires keyutils-libs-devel
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2165406 - drbd-10.0.0a4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2165406
--------------------------------------------------------------------------------
================================================================================
go-rpm-macros-epel-3.3.0.2-1.el9 (FEDORA-EPEL-2023-5b535ea855)
Backport of certain Fedora Go RPM macros to EPEL
--------------------------------------------------------------------------------
Update Information:
- Update to new source git source - Remove go_mod_vendor.prov from this package.
It's already upstream. - Add -L flag to %%gometa and %%gorpmname - Add direct
dependency on go-rpm-macros-golist-symlink
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 4 2023 Maxwell G <maxwell(a)gtmx.me> - 3.3.0.2-1
- Update to 3.3.0.2.
* Sun Oct 29 2023 Maxwell G <maxwell(a)gtmx.me> - 3.3.0-1
- Update to new source git source
- Remove go_mod_vendor.prov from this package. It's already upstream.
- Add -L flag to %gometa and %gorpmname
- Add direct dependency on go-rpm-macros-golist-symlink
--------------------------------------------------------------------------------
================================================================================
libopenmpt-0.6.12-1.el9 (FEDORA-EPEL-2023-dcb9fb3818)
C/C++ library to decode tracker music module (MOD) files
--------------------------------------------------------------------------------
Update Information:
# libopenmpt 0.6.12 (2023-09-09) * `set_pitch_factor` no longer affected OPL
instruments since version 0.6.0. * FLAC: Update to v1.4.3 (2022-06-23). *
zlib: Update to v1.3 (2022-08-18).
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 4 2023 Michael Schwendt <mschwendt(a)fedoraproject.org> - 0.6.12-1
- update to 0.6.12
--------------------------------------------------------------------------------
================================================================================
libretls-3.8.1-1.el9 (FEDORA-EPEL-2023-655b025273)
Port of libtls from LibreSSL to OpenSSL
--------------------------------------------------------------------------------
Update Information:
- Upgrade to 3.8.1 (#2243450)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 5 2023 Robert Scheck <robert(a)fedoraproject.org> 3.8.1-1
- Upgrade to 3.8.1 (#2243450)
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.7.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.7.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2243450 - libretls-3.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2243450
--------------------------------------------------------------------------------
================================================================================
netcat-1.225-3.el9 (FEDORA-EPEL-2023-655b025273)
OpenBSD netcat to read and write data across connections using TCP or UDP
--------------------------------------------------------------------------------
Update Information:
- Upgrade to 3.8.1 (#2243450)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 5 2023 Robert Scheck <robert(a)fedoraproject.org> 1.225-3
- Rebuilt for libretls 3.8.1
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.225-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2243450 - libretls-3.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2243450
--------------------------------------------------------------------------------
================================================================================
nwipe-0.35-2.el9 (FEDORA-EPEL-2023-56ab9b8dd4)
Securely erase disks using a variety of recognized methods
--------------------------------------------------------------------------------
Update Information:
bump to bugfix release 0.35
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 4 2023 Michal Ambroz <rebus at, seznam.cz> 0.35-2
- fix build for rhel7/8
* Fri Nov 3 2023 Michal Ambroz <rebus at, seznam.cz> 0.35-1
- bump to 0.35
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.34-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2247772 - nwipe-0.35 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2247772
--------------------------------------------------------------------------------
================================================================================
objfw-1.0.5-1.el9 (FEDORA-EPEL-2023-5aa230eac1)
Portable, lightweight framework for the Objective-C language
--------------------------------------------------------------------------------
Update Information:
Update to 1.0.5 from upstream
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 5 2023 Jonathan Schleifer <js(a)nil.im> - 1.0.5-1
- Update to 1.0.5
--------------------------------------------------------------------------------
================================================================================
optipng-0.7.8-1.el9 (FEDORA-EPEL-2023-27fd009f63)
PNG optimizer and converter
--------------------------------------------------------------------------------
Update Information:
Update to 0.7.8 Security fix for CVE-2023-43907
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 5 2023 Peter Hanecak <hany(a)hany.sk> - 0.7.8-1
- Update to 0.7.8
* Thu Jul 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.7-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jan 19 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.7-11
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.7-10
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.7-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2242461 - CVE-2023-43907 optipng: global buffer overflow via the
'buffer' variable at gifread.c. [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2242461
[ 2 ] Bug #2247874 - optipng-0.7.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2247874
--------------------------------------------------------------------------------
================================================================================
perl-Data-Report-1.001-40.el9 (FEDORA-EPEL-2023-afb15a9d07)
A flexible plugin-driven reporting framework
--------------------------------------------------------------------------------
Update Information:
Build for EPEL9
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.001-40
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue May 31 2022 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.001-39
- Perl 5.36 rebuild
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.001-38
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.001-37
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Fri May 21 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.001-36
- Perl 5.34 rebuild
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.001-35
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.001-34
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2243745 - Please branch and build perl-Data-Report for EPEL 9
https://bugzilla.redhat.com/show_bug.cgi?id=2243745
--------------------------------------------------------------------------------
================================================================================
python3-saml-1.16.0-1.el9 (FEDORA-EPEL-2023-b7588f71c6)
Add SAML support to your Python software using this library
--------------------------------------------------------------------------------
Update Information:
Update to 1.16.0.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 4 2023 Kefu Chai <tchaikov(a)gmail.com> - 1.16.0-1
- Update to 1.16.0.
* Sat Aug 19 2023 Kefu Chai <tchaikov(a)gmail.com> - 1.15.0-1
- Update to 1.15.0.
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.14.0-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Tue Jun 27 2023 Python Maint <python-maint(a)redhat.com> - 1.14.0-3
- Rebuilt for Python 3.12
* Fri Jan 20 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.14.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Sat Jul 23 2022 Kefu Chai <tchaikov(a)gmail.com> - 1.14.0-1
- Update to 1.14.0.
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.11.0-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 1.11.0-3
- Rebuilt for Python 3.11
* Fri Jan 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.11.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
qm-0.5.8-1.el9 (FEDORA-EPEL-2023-6baa9ca836)
Containerized environment for running Quality Management software
--------------------------------------------------------------------------------
Update Information:
Automatic update for qm-0.5.8-1.el9.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 1 2023 Packit <hello(a)packit.dev> - 0.5.8-1
- [packit] 0.5.8 upstream release
--------------------------------------------------------------------------------
================================================================================
radare2-5.8.8-2.el9 (FEDORA-EPEL-2023-1c3e19a13a)
The reverse engineering framework
--------------------------------------------------------------------------------
Update Information:
- cherrypick from upstream master patches for known vulnerabilities: -
CVE-2023-4322 - heap-buffer-overflow in the brainfuck dissassembler -
CVE-2023-5686 - heap-buffer-overflow in /radare2/shlr/java/code.c
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 26 2023 Michal Ambroz <rebus at, seznam.cz> 5.8.8-2
- cherrypick from upstream master patches for known vulnerabilities:
- CVE-2023-4322 - heap-buffer-overflow in the brainfuck dissassembler
- CVE-2023-5686 - heap-buffer-overflow in /radare2/shlr/java/code.c
* Fri Jul 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.8.8-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2233321 - CVE-2023-4322 radare2: Heap-based Buffer Overflow in the bf
dissassembler [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2233321
[ 2 ] Bug #2233322 - CVE-2023-4322 radare2: Heap-based Buffer Overflow in the bf
dissassembler [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2233322
[ 3 ] Bug #2245329 - CVE-2023-5686 radare2: heap-buffer-overflow in
/radare2/shlr/java/code.c:211:21 in java_print_opcode [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2245329
[ 4 ] Bug #2245330 - CVE-2023-5686 radare2: heap-buffer-overflow in
/radare2/shlr/java/code.c:211:21 in java_print_opcode [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2245330
--------------------------------------------------------------------------------
================================================================================
rpki-client-8.6-2.el9 (FEDORA-EPEL-2023-655b025273)
OpenBSD RPKI validator to support BGP Origin Validation
--------------------------------------------------------------------------------
Update Information:
- Upgrade to 3.8.1 (#2243450)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 5 2023 Robert Scheck <robert(a)fedoraproject.org> 8.6-2
- Rebuilt for libretls 3.8.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2243450 - libretls-3.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2243450
--------------------------------------------------------------------------------
================================================================================
snapraid-12.2-1.el9 (FEDORA-EPEL-2023-2cfdea2096)
Disk array backup for many large rarely-changed files
--------------------------------------------------------------------------------
Update Information:
Update to 12.2
--------------------------------------------------------------------------------
ChangeLog:
* Sat Aug 5 2023 Jens Kuehnel <bugzilla-redhat(a)jens.kuehnel.org> - 12.2-1
- Update to 12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2247915 - Please branch and build snapraid in epel9
https://bugzilla.redhat.com/show_bug.cgi?id=2247915
--------------------------------------------------------------------------------
================================================================================
tripwire-2.4.3.7-16.el9 (FEDORA-EPEL-2023-03b71c1cef)
IDS (Intrusion Detection System)
--------------------------------------------------------------------------------
Update Information:
migrated to SPDX license
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 4 2023 Didier Fabert <didier.fabert(a)gmail.com> - 2.4.3.7-16
- migrated to SPDX license
* Sat Jul 22 2023 Fedora Release Engineering <releng(a)fedoraproject.org> -
2.4.3.7-15
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Sat Jan 21 2023 Fedora Release Engineering <releng(a)fedoraproject.org> -
2.4.3.7-14
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
unrealircd-6.1.2.3-2.el9 (FEDORA-EPEL-2023-663821fc6f)
Open Source IRC server
--------------------------------------------------------------------------------
Update Information:
# UnrealIRCd 6.1.2.3 UnrealIRCd 6.1.2 focuses on adding spamfilter features but
also contains various other new features and some fixes. * The 6.1.2.1
release fixed a `spamfilter::rule` crash in 6.1.2. * The 6.1.2.2 release
fixed tkldb accidentally storing central spamfilters, a crash while booting if
you previously used spamfilters with non-UTF-8 characters in them, and fix a
possible crash with `SETNAME` when using the SPAMFILTER `u` target. * The
6.1.2.3 release fixed UTF-8 not working in `spamfilter { }` blocks and a
possible crash on `REHASH` if you have typos or other errors in the config file.
Also fixing `::exclude-security-group` not working and it now gives DNSBL
lookups some more time. # Enhancements * Upstream now gives tips on
(security) best practices depending on settings in your configuration file, such
as using plaintext oper passwords in the config file. It is generally suggested
to follow this advice, but you could disable such advice via [set::best-
practices](https://www.unrealircd.org/docs/Set_block#set::best-practices). *
[`security-group { }`
block](https://www.unrealircd.org/docs/Security-
group_block) and [mask
item](https://www.unrealircd.org/docs/Mask_item)
enhancements: * Add support for `channel "#xyz";` and `channel
"@#need_ops_here";` * Add support for
[
Crule](https://www.unrealircd.org/docs/Crule) to allow things like `rule
"inchannel('@#main')||reputation()>1000";` * DNS Blacklists are now
checked
again some time after the user is connected. This will kill/ban users who are
already online and got blacklisted later by for example DroneBL. * This is
controlled via [`set::blacklist::recheck-
time`](https://www.unrealircd.org/docs/Set_block#set::blacklist::recheck-...
and can also be set to `never` if you don't want rechecking. * To skip
checking for specific blacklists, you can set
[`blacklist::recheck`](https://www.unrealircd.org/docs/Blacklist_block) to `no`.
* The [reputation
score](https://www.unrealircd.org/docs/Reputation_score) of
connected users (actually IP's) is increased every 5 minutes. Upstream still
does this, but only for users who are at least in one channel that has 3 or more
members. This setting is tweakable via [`set::reputation::score-bump-timer-
minimum-channel-
members`](https://www.unrealircd.org/docs/Set_block#set::reputation). Setting
this to 0 means to bump scores also for people who are in no channels at all,
which was the behavior in previous UnrealIRCd versions. Note: this new feature
won't work properly when you have any older UnrealIRCd servers on the network
(older than 6.1.2), as the older servers will still bump scores for everyone,
including users in no channels, and this higher score will get synced back
eventually to all other servers. * [`spamfilter { }`
block](https://www.unrealircd.org/docs/Spamfilter_block) improvements: *
Spamfilters now always run, even for users that are exempt via a [except ban
block](https://www.unrealircd.org/docs/Except_ban_block) with `type spamfilter`.
However, for exempt users no action is taken or logged. This allows it to count
normal hits and count hits for except users. The idea is that the hits for
except users can be a useful measurement to detect false positives. These hit
counts are exposed in `SPAMFILTER` and `STATS spamfilter`. * Optional items
allowing more complex rules: * [`spamfilter::rule`](https://www.unrealircd
.org/docs/Spamfilter_block#Spamfilter_rule): with minimal 'if'-like
preconditions and functions. If this returns false then the spamfilter will not
run at all (no hit). * `spamfilter::except`: this is meant as an
alternative to 'rule' and works like a regular [except
item](https://www.unrealircd.org/docs/Mask_item). If this matches, then the
spamfilter will not run at all (no hit). * New target type `raw` (or `R` on
IRC) to match a raw command / IRC protocol line (except message tags), such as
`LIST*`. Naturally one needs to be very careful with these since a wrong filter
could cause all/essential traffic to be rejected. * The `action` item now
supports multiple actions: * A new action `stop` to stop other spamfilters
from processing. * A new action `set` to [set a
TAG](https://www.unrealircd.org/docs/Spamfilter_block#Setting_tags) on a user,
or change the value of one. It also supports changing the [reputation
score](https://www.unrealircd.org/docs/Reputation_score). * A new action
`report` to call a spamreport block, see next. * A new [spamreport { }
block](https://www.unrealircd.org/docs/Spamreport_block): * This can do a
HTTP(S) call to services like DroneBL to report spam hits, so they can blacklist
the IP address and other users on IRC can benefit. * Optional [Central
Spamfilter](https://www.unrealircd.org/docs/Central_spamfilter): This will fetch
and refresh spamfilter rules every hour from
unrealircd.org. * This feature
is not enabled by default. Use `set { central-spamfilter { enabled yes; } }` to
enable. * `set::central-spamfilter::feed` decides which feed to use: `fast`
for early access to spamfilter rules that are new, and `standard` (the default)
for rules that have been in fast for a while. * `set::central-
spamfilter::except` defines who will never be affected by central spamfilters.
By default it is: users with a reputation score of more than 2016 (7 days online
unregged, or 3.5 days as identified user) or having a host of *.irccloud.com.
Spam matches for users that fall in this ::except group are counted as false
positives and no action is taken or logged. * See the [Central
Spamfilter](https://www.unrealircd.org/docs/Central_spamfilter) article for the
disclaimer and all other options you can set. * [`set::spamfilter::utf8`](http
s://www.unrealircd.org/docs/Set_block#set::spamfilter::utf8) is now on by
default: * This means you can safely use UTF-8 characters in like `[]` in
regex. * Case insensitive matches work better. For example, for extended
Latin, a spamfilter on `��` then also matches `��`. * Other PCRE2 features
such as [`\p`](https://www.pcre.org/current/doc/html/pcre2syntax.html#SEC5) can
then be used. For example the regex `\p{Arabic}` would block all Arabic script.
See also this [full list of
scripts](https://www.pcre.org/current/doc/html/pcre2syntax.html#SEC7). Please
use this new tool with care. Blocking an entire language or script is quite a
drastic measure. * You can turn it off via: `set { spamfilter { utf8 no; }
}` * Via [`set::spamfilter::show-message-content-on-
hit`](https://www.unrealircd.org/docs/Set_block#set::spamfilter::show-mes...
content-on-hit) you can now configure to hide the message content in spamfilter
hit messages. Generally it is very useful to see if a spamfilter hit is correct
or not, so the default is 'always', but it also has privacy implications so
there is now this option to disable it. * You can restrict includes to only
contain certain blocks, the style is: `include "some-file-or-url" { restrict-
config { name-of-block; name-of-block2; } }` * A new `~flood` [extended
ban](https://www.unrealircd.org/docs/Extended_bans). This mode allows you to
exempt users from channel mode `+f` and `+F`. It was actually added in a
previous version (6.1.0) but never made it to the release notes. The syntax is:
~flood:types:mask, where *types* are the same letters as used in [channel mode
+f](https://www.unrealircd.org/docs/Channel_anti-flood_settings#Channel_mode_f).
Example: `+e ~flood:t:*!*@*.textflood.example.org` # Changes * The argon2
parameters have been lowered a bit, this so the hashing speed is acceptable for
upstream's purposes. # Fixes * Temporary high CPU usage (99%) under some
conditions * UnrealIRCd has watch away notification since 2008, this is
indicated in `RPL_ISUPPORT` via `WATCHOPTS=A` and then the syntax to actually
use this is `WATCH A +Nick1 +Nick2 etc.`. In UnrealIRCd 6 there was a bug where
it would not always correctly inform about the away status, that bug has now
been fixed. * On 32 bit architectures you can now use more than 32 channel
modes. * [Set block for a security
group](https://www.unrealircd.org/docs/Set_
block#Set_block_for_a_security_group): was not working for the `unknown-users`
group. * A leading slash was silently stripped in config file items, when not
in quotes. # Developers and protocol * Changes in numeric 229
(`RPL_STATSSPAMF`): Now includes hits and hits for users that are exempt, two
counters inserted right before the last argument (the regex). * Several API
changes, like `place_host_ban` to `take_action`
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 5 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.2.3-2
- Build upstream's bundled recent PCRE2 version for RHEL 7 and 8
* Mon Oct 16 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.2.3-1
- Upgrade to 6.1.2.3 (#2238031)
* Sun Oct 8 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.2.2-1
- Upgrade to 6.1.2.2 (#2238031)
* Thu Oct 5 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.2.1-1
- Upgrade to 6.1.2.1 (#2238031)
* Thu Oct 5 2023 Robert Scheck <robert(a)fedoraproject.org> 6.1.2-1
- Upgrade to 6.1.2 (#2238031)
* Thu Oct 5 2023 Remi Collet <remi(a)remirepo.net> - 6.1.1.1-3
- rebuild for new libsodium
* Sat Jul 22 2023 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.1.1.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2238031 - unrealircd-6.1.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2238031
--------------------------------------------------------------------------------