-- ChangeLog --
+ngIRCd Release 13 (2008-12-25)
+
+ - Updated documentation, especially doc/Services.txt and doc/SSL.txt.
+ - Make the test suite work on OpenSolaris.
+
+ ngIRCd 13~rc1 (2008-11-21):
+ - New version numer scheme :-)
+ - Initial support for IRC services, using a RFC1459 styel interface,
+ tested with IRCServices (http://www.ircservices.za.net/) version 5.1.13.
+ For this to work, ngIRCd now supports server-server links conforming
+ to RFC 1459. New ngircd.conf(5) option: ServiceMask.
+ - Support for SSL-encrypted server-server and client-server links using
+ OpenSSL (configure: --with-openssl) or GNUTLS (configure: --with-gnutls).
+ New ngircd.conf(5) options: SSLPorts, SSLKeyFile, SSLKeyFilePassword,
+ SSLCertFile, SSLDHFile, and SSLConnect.
+ - Server local channels have been implemented, prefix "&", that are only
+ visible to users of the same server and are not visible in the network.
+ In addition ngIRCd creates a "special" channel &SERVER on startup and logs
+ all the messages to it that a user with mode +s receives.
+ - New make target "osxpkg" to build a Mac OS X installer package.
+ - Debug mode: enable support for GNU libc memory tracing (see mtrace(3)).
+ - SysV init script: use LSB logging functions, if available.
+ - Added some more FAQ entries (regarding logging and IRC operators).
+ - Allow IRC operators to overwrite channel limits.
+ - Support for enhanced PRIVMSG and NOTICE message targets.
+ - More tests have been added to the test-suite ("make check"), and two
+ servers are started for testing server-server linking.
+ - Added a timestamp to log messages to the console.
+ - New configuration option "NoIdent" to disable IDENT lookups even if the
+ daemon is compiled with IDENT support.
+
ngIRCd 0.12.1 (2008-07-09)
- Allow mixed line terminations (CR+LF/CR/LF) in non-RFC-compliant mode
ngIRCd 0.11.0-pre2 (2008-01-07)
- SECURITY: IRC_PART could reference invalid memory, causing
- ngircd to crash [from HEAD].
+ ngircd to crash [from HEAD]. (CVE-2008-0285)
ngIRCd 0.11.0-pre1 (2008-01-02)
- Use dotted-decimal IP address if hostname is >= 64.
ngIRCd 0.10.4 (2008-01-07)
- SECURITY: IRC_PART could reference invalid memory, causing
- ngircd to crash [from HEAD].
+ ngircd to crash [from HEAD]. (CVE-2008-0285)
ngIRCd 0.10.3 (2007-08-01)
- SECURITY: Fixed a severe bug in handling JOIN commands, which could
cause the server to crash. Thanks to Sebastian Vesper, <net@veoson.net>.
+ (CVE-2007-6062)
ngIRCd 0.10.2 (2007-06-08)
- Fixed a bug that could case a root exploit when the daemon is compiled
to do IDENT lookups and is logging to syslog. Bug discovered by CoKi,
<coki@nosystem.com.ar>, thanks a lot!
- (http://www.nosystem.com.ar/advisories/advisory-11.txt)
+ (CVE-2005-0226; http://www.nosystem.com.ar/advisories/advisory-11.txt)
ngIRCd 0.8.2 (2005-01-26)
- Added doc/SSL.txt to distribution.
- Fixed a buffer overflow that could cause the daemon to crash. Bug found
- by Florian Westphal, <westphal@foo.fh-furtwangen.de>.
+ by Florian Westphal, <westphal@foo.fh-furtwangen.de>. (CVE-2005-0199)
- Fixed a possible buffer underrun when reading the MOTD file. Thanks
to Florian Westphal, <westphal@foo.fh-furtwangen.de>.
- Fixed detection of IRC lines which are too long to send. Detected by