Home Explore Help
Sign In
yosoyhendrix
/
hestiacp
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Prepare for release 1.8.9

Jaap Marcus 2 years ago
parent
417e69427e
commit
e3f73a4215
5 changed files with 8 additions and 4 deletions
Unified View Show Diff Stats
  1. 4 0
      CHANGELOG.md
  2. 1 1
      install/hst-install-debian.sh
  3. 1 1
      install/hst-install-ubuntu.sh
  4. 1 1
      src/deb/hestia/control
  5. 1 1
      src/rpm/hestia/hestia.spec

+ 4 - 0
CHANGELOG.md
View File 

@@ -6,6 +6,7 @@ All notable changes to this project will be documented in this file.
 
 
 
 ### Security
 
 ### Security
 
 
 
+- Restrict PHP-FPM permissions to a new user to prevent permission escalation to admin or other users
 
 - Reduce Nginx keepalive_requests to 1000 ([Nginx default](https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/#http2_max_concurrent_streams)) to limit risks of [CVE-2023-44487](https://www.cve.org/CVERecord?id=CVE-2023-44487)
 
 - Reduce Nginx keepalive_requests to 1000 ([Nginx default](https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/#http2_max_concurrent_streams)) to limit risks of [CVE-2023-44487](https://www.cve.org/CVERecord?id=CVE-2023-44487)
 
 
 
 ### Bug fixes
 
 ### Bug fixes
 
@@ -18,10 +19,13 @@ All notable changes to this project will be documented in this file.
 
 - Fix: for v-list-sys-services, pidof command in Debian Buster doesn't support option -d #4022
 
 - Fix: for v-list-sys-services, pidof command in Debian Buster doesn't support option -d #4022
 
 - Update main.php humanize_usage_size() #4015
 
 - Update main.php humanize_usage_size() #4015
 
 - Fix: Prevent the script v-add-sys-roundcube from freezing during Roundcube upgrade #4018
 
 - Fix: Prevent the script v-add-sys-roundcube from freezing during Roundcube upgrade #4018
 
+- Fixed an issue with login when 2FA was enabled
 
 
 
 ### Dependencies
 
 ### Dependencies
 
 
 
 - Update Filegator to 7.9.3
 
 - Update Filegator to 7.9.3
 
+- Update Roundcube to 1.6.4
 
+- Update Snappymail to 2.29.1
 
 
 
 ## [1.8.8] - Service release
 
 ## [1.8.8] - Service release

+ 1 - 1
install/hst-install-debian.sh
View File 

@@ -31,7 +31,7 @@ HESTIA_COMMON_DIR="$HESTIA/install/common"
 
 VERBOSE='no'
 
 VERBOSE='no'
 
 
 
 # Define software versions
 
 # Define software versions
 
-HESTIA_INSTALL_VER='1.8.8'
 
+HESTIA_INSTALL_VER='1.8.9'
 
 # Dependencies
 
 # Dependencies
 
 multiphp_v=("5.6" "7.0" "7.1" "7.2" "7.3" "7.4" "8.0" "8.1" "8.2")
 
 multiphp_v=("5.6" "7.0" "7.1" "7.2" "7.3" "7.4" "8.0" "8.1" "8.2")
 
 fpm_v="8.2"
 
 fpm_v="8.2"

+ 1 - 1
install/hst-install-ubuntu.sh
View File 

@@ -31,7 +31,7 @@ HESTIA_COMMON_DIR="$HESTIA/install/common"
 
 VERBOSE='no'
 
 VERBOSE='no'
 
 
 
 # Define software versions
 
 # Define software versions
 
-HESTIA_INSTALL_VER='1.8.8'
 
+HESTIA_INSTALL_VER='1.8.9'
 
 # Dependencies
 
 # Dependencies
 
 multiphp_v=("5.6" "7.0" "7.1" "7.2" "7.3" "7.4" "8.0" "8.1" "8.2")
 
 multiphp_v=("5.6" "7.0" "7.1" "7.2" "7.3" "7.4" "8.0" "8.1" "8.2")
 
 fpm_v="8.2"
 
 fpm_v="8.2"

+ 1 - 1
src/deb/hestia/control
View File 

@@ -1,7 +1,7 @@
 
 Source: hestia
 
 Source: hestia
 
 Package: hestia
 
 Package: hestia
 
 Priority: optional
 
 Priority: optional
 
-Version: 1.8.8
 
+Version: 1.8.9
 
 Section: admin
 
 Section: admin
 
 Maintainer: HestiaCP <info@hestiacp.com>
 
 Maintainer: HestiaCP <info@hestiacp.com>
 
 Homepage: https://www.hestiacp.com
 
 Homepage: https://www.hestiacp.com

+ 1 - 1
src/rpm/hestia/hestia.spec
View File 

@@ -2,7 +2,7 @@
 
 %global _hardened_build 1
 
 %global _hardened_build 1
 
 
 
 Name:           hestia
 
 Name:           hestia
 
-Version:        1.8.8
 
+Version:        1.8.9
 
 Release:        1%{dist}
 
 Release:        1%{dist}
 
 Summary:        Hestia Control Panel
 
 Summary:        Hestia Control Panel
 
 Group:          System Environment/Base
 
 Group:          System Environment/Base