X-Git-Url: http://git.vanrenterghem.biz/git.ikiwiki.info.git/blobdiff_plain/a9cf5810a6c6d2f266d9ddcc5b676f836d4d11e6..6c546c8f3182668c6d21d578b789674894f18c39:/debian/NEWS diff --git a/debian/NEWS b/debian/NEWS index 6a410866d..e169658ea 100644 --- a/debian/NEWS +++ b/debian/NEWS @@ -1,3 +1,85 @@ +ikiwiki (3.20160506) unstable; urgency=medium + + To mitigate CVE-2016-3714 and similar ImageMagick security vulnerabilities, + the [[!img]] directive is now restricted to these common web formats by + default: + + * JPEG (.jpg, .jpeg) + * PNG (.png) + * GIF (.gif) + * SVG (.svg) + + (In particular, by default resizing PDF files is no longer allowed.) + + Additionally, resized SVG files are displayed in the browser as SVG + instead of being converted to PNG. + + If all users who can attach images are fully trusted, this restriction + can be removed with the new img_allowed_formats setup option. + See + or for + more details. + + -- Simon McVittie Fri, 06 May 2016 07:49:56 +0100 + +ikiwiki (3.20150610) unstable; urgency=low + + The new "emailauth" plugin allows users to authenticate using an email + address, without otherwise creating an account. + + The openid plugin now enables emailauth by default. Please include + emailauth in the disable_plugins setting if this is not desired. + Conversely, if emailauth is required on a wiki that does not enable + openid, you can list it in the enable_plugins setting. + + -- Simon McVittie Wed, 10 Jun 2015 21:56:56 +0100 + +ikiwiki (3.20150107) experimental; urgency=medium + + By default, this version of IkiWiki tells mobile browsers that its + layout is suitable for small screens. The default layout and the + actiontabs, blueview, goldtype and monochrome themes have been adjusted. + + If you have custom CSS that does not work in a small window (a typical + phone is 320 to 400 CSS pixels wide), please set the new responsive_layout + config option to 0. + + -- Simon McVittie Mon, 05 Jan 2015 23:48:42 +0000 + +ikiwiki (3.20110122) unstable; urgency=low + + If you have custom CSS that uses "#feedlinks" or "#blogform", you will + need to change it to instead use ".feedlinks" and ".blogform" + + -- Joey Hess Fri, 14 Jan 2011 14:34:54 -0400 + +ikiwiki (3.20100515) unstable; urgency=low + + There are two significant changes to the page.tmpl template in this version. + If you have a locally modified version of that template, you will need to + update it at least to contain the following in the HTML : + + + + + + + + Also, the footer should be wrapped in ... + + There is a new "comment()" pagespec, that can be used to match a + comment on a page. It is recommended it be used instead of the old + method of using a pagespec such as "internal(comment_*)" to match + things that looked like comments. The old pagespec will now also match + comments that are held for moderation; likely not what you want. + + There have also been some changes to the style.css in this version, + particularly to support the new openid selector. If you have a modified + version, of style.css, updating it (or moving it to local.css) is + recommended. + + -- Joey Hess Wed, 05 May 2010 21:47:08 -0400 + ikiwiki (3.20100427) unstable; urgency=low This version of ikiwiki has a lot of changes that you need to know about. @@ -10,7 +92,7 @@ ikiwiki (3.20100427) unstable; urgency=low extension is not recommended, as that allows anyone to change a wiki's templates. - The --getctime switch is renamed to --gettimes, and it also gets the + The --getctime switch is renamed to --gettime, and it also gets the file modification time. And it's a lot faster (when using git). But the really important change is, you don't have to remember to use this switch. Now ikiwiki will do it when it needs to. @@ -30,9 +112,6 @@ ikiwiki (3.20100427) unstable; urgency=low has been moved to the new sortnaturally plugin, which is not enabled by default since it requires the Sort::Naturally perl module. - * TMPL_INCLUDE is no longer supported in any template used by ikiwiki. - It used to be allowed in certian templates, but not in others. - * The add_templates option has been removed from the underlay plugin. If you used this option, you can instead use templates/ subdirectories inside underlay directories added by the add_underlays option. @@ -68,7 +147,7 @@ ikiwiki (3.13) unstable; urgency=low The `ikiwiki-transition deduplinks` command introduced in the last release was buggy. If you followed the NEWS file instructions - and ran it, you should run `ikiwiki -setup` to rebuild your wiki + and ran it, you should run `ikiwiki --setup` to rebuild your wiki to fix the problem. -- Joey Hess Fri, 22 May 2009 13:04:02 -0400 @@ -166,7 +245,7 @@ ikiwiki (2.49) unstable; urgency=low Also, wikis that use the search plugin will need to be rebuilt, since the search form has changed. This will not be done automatically, but can be done by running `ikiwiki-mass-upgrade` as root, or - running `ikiwiki -setup` on individual setup files. + running `ikiwiki --setup` on individual setup files. -- Joey Hess Wed, 04 Jun 2008 00:29:28 -0400