@@ -14,30 +14,24 @@ All notable changes to this project will be documented in this file.
1414
1515### Bugfixes
1616
17- - Add an check before config exists before searching it (#2930 )
18- - Fixed an issue with v-change-web-domain-name does not clean up it everything (#2915 )
19- - Fixed issue with search function. (#2977 #2974 and #2973 )
20-
21- ### Enhancements
22-
23- - Cleanup old VestaCP html/js/css code (#2949 , #2941 #2941 #2940 #2919 #2907 @alecrust )
24-
25- ### Security
26-
27- - Implement quoteshellarg as replacement for escapeshellarg (#2720 @divinity76 )
17+ - Update Ipverse url for United Kingdom (#2962 )
2818
2919### Dependencies
3020
31- ## [ 1.6.10] - Service release
21+ - Update Rainloop to 1.17.0 (#2957 )
22+ - Update Zlib to 1.2.13
23+ - Update hestia-nginx to 1.23.2
24+
25+ ## [ 1.6.10] - Service release
3226
3327### Security
3428
3529- Delete temp files after password has been verified (#2958 )
3630
3731### Dependencies
3832
39- - Update Filegator to 7.8.7
40- - Update Zlib to 1.2.13
33+ - Update Filegator to 7.8.3
34+ - Update PHPmailer to 6.6.5
4135
4236## [ 1.6.9] - Service release
4337
@@ -75,7 +69,7 @@ All notable changes to this project will be documented in this file.
7569
7670- Force update composer to v2 instead of v1 when no version is provided (#2839 #2777 )
7771- Fixed an issue with v-change-web-domain-owner and mail only domains (#2840 , #2841 )
78- - Grey out phpmyadmin buttons + add link to docs.hestiacp .com for support (#2843 )
72+ - Grey out phpmyadmin buttons + add link to docs.hestia .com for support (#2843 )
7973- Block the use of CNAME records on @ or root records DNS domain (#2838 , #2842 )
8074- Code clean up and remove unused tests and templates (#2829 and #2831 )
8175- Fixed an issue where no password was send when a user create a new mail account (#2819 #2815 )
@@ -156,7 +150,8 @@ All notable changes to this project will be documented in this file.
156150- Improve random bytes generator (#2774 )
157151- Don't allow /inc/2fa/secret.php called from the web browser directly (#2784 @mayappear )
158152- Improve CSRF Origin Check Bypass (#2785 @mayappear )
159- - Fix vulnerability in Docuwiki Quick Install App @redstarp2 (CVE-2022 -2550)
153+ - Fix vulnerability in Dokuwiki Quick Install App @redstarp2 (CVE-2022 -2550)
154+ - Fixed an issue where custom ports where not saved on restart fail2ban service making Hestia login screen vulnerable for brute force
160155
161156### Dependencies
162157
@@ -167,26 +162,26 @@ All notable changes to this project will be documented in this file.
167162### Bugfixes
168163
169164- Fixed an issue with downloading log files ()
170- - Fixed an issue with installing Quick Installers (#2762 , #2760 , @Hestiacp )
165+ - Fixed an issue with installing Quick Installers (#2762 , #2760 , @divinity76 )
171166- Fixed an issue with Apache Access / Awstats logs IP after using v-update-sys-ip (#2759 @adion-gorani )
172167
173168## [ 1.6.3] - Service release
174169
175170### Features
176171
177- - Add additional support for bcrypt for mail passwords (#2752 @Hestiacp )
172+ - Add additional support for bcrypt for mail passwords (#2752 @divinity76 )
178173
179174### Enhancements
180175
181- - Simplify md5crypt on reset form email (#2751 @Hestiacp )
176+ - Simplify md5crypt on reset form email (#2751 @divinity76 )
182177- Use secure RNG to generate passwords (#2726 )
183178- Add twig support filemanger (#2714 , @anvme )
184179
185180### Bugfixes
186181
187182- Fixed an issue with restart Apache2 and Nginx after v-update-letsencrypt (#2748 , #2563 , #2744 , #2677 )
188183- Prevent transversing path in Quick installer apps (#2742 )
189- - Avoid out of memory serving large logfiles (#2741 , #2736 , @Hestiacp
184+ - Avoid out of memory serving large logfiles (#2741 , #2736 , @divinity76
190185- Improve passwords loading in password_valid (#2739 )
191186- Use secure RNG to generate passwords (#2726 )
192187- Utilise entire alphabet for random string (#2735 @Shadowfied )
0 commit comments