8000 Release Airsonic 10.3.0 · airsonic/airsonic · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
This repository was archived by the owner on Sep 8, 2021. It is now read-only.

Airsonic 10.3.0
Compare
Choose a tag to compare
@muff1nman muff1nman released this 20 May 22:53
· 588 commits to master since this release
v10.3.0
This tag was signed with the committer’s verified signature. The key has expired.
muff1nman Andrew DeMaria
GPG key ID: 0A3F5E91F8364EDF
Expired
Verified
Learn about vigilant mode.
b4e081f

v10.3.0 - 20 May 2019

Fixes:

  • Fix a javascript null-deref occuring when localstorage isn't available/supported by the browser
  • Fix StringIndexOutOfBounds errors thrown by DWR/YUI
  • Fix a small resource leak
  • Fix #611 Add support for Java 9 and greater
  • Fix typo in anonymous user name (#663)

Changes:

  • Maven Dependency Updates
  • HSQL: Checkpoint/defrag/shutdown optimizations
  • HSQL: Log tweaks
  • Remove momentjs, pngfix
  • Codebase modernization
  • Systemd unit hardening
  • Remove the external fonts usage
  • Update mediaelement from 4.1.1 to 4.2.9
  • Remove script.aculo.us dependency
  • Add description and viewport meta tags
  • Javascript cleanup/optimizations
  • Remove Google+ relics
  • Remove jquery-contextmenu since it's not used anywhere
  • Remove webfx stuff, since they're apparently not used
  • Remove WAP-related stuff
  • Do not show stack trace for client-side connection errors
  • Show more informative messages while streaming
  • Replace latin encoding with utf-8
  • Don't autocomplete the password field
  • Clicking on the logo now redirects to home instead of about
  • Remove mentions of subsonic premium
  • Add a permission check for the podcast folder
  • Replace the double-mustache anti-pattern
  • Remove the /db page
  • Bump jQuery/jquery-ui to the latest versions
  • Replace the flash player with medialement.js for the shared media
  • Add system properties for persisting the 'remember me' key
  • Replace the usage of prototypejs with jquery in changeCoverArt.jsp
  • Add the required keyword to some forms
  • Update docker base image to alpine 3.9

Security:

  • CVE-2019-10908 Generate new passwords in a secure way
  • Fix a xss and clean up some js
  • CVE-2019-10907 Use a random key to "encrypt" the remember-me cookie's value
  • Use https for external links
  • Fix a bunch of dom-based xss
  • Add a noopener and noreferrer to external urls
  • Avoid logging sensitive URL parameters in the Subsonic API
  • Fix various minor issues found by LGTM
Assets 4
Loading
0