All Versions
48
Latest Version
Avg Release Cycle
44 days
Latest Release
-

Changelog History
Page 3

  • v2.2.8 Changes

    April 08, 2020

    ๐Ÿ”’ โš ๏ธ Security fixes

    • โšก๏ธ Update bleach to fix a regular expression denial of service vulnerability
    • โšก๏ธ Update Pillow to fix a buffer overflow vulnerability
  • v2.2.7 Changes

    March 23, 2020

    ๐Ÿฑ ๐ŸŽ‰ Improvements

    • โž• Add support for event labels to indicate e.g. postponed or cancelled events (#3199)

    ๐Ÿ›  ๐Ÿ› Bugfixes

    • ๐Ÿ‘ Allow slashes in roomName export API
    • ๐Ÿ‘‰ Show names instead of IDs of local groups in ACLs (#3700)
  • v2.2.6 Changes

    February 27, 2020

    ๐Ÿ›  ๐Ÿ› Bugfixes

    • ๐Ÿ›  Fix some email fields (error report contact, agreement cc address) being required even though they should be optional
    • ๐Ÿ’ป Avoid browsers prefilling stored passwords in togglable password fields such as the event access key
    • ๐Ÿ‘‰ Make sure that tickets are not attached to emails sent to registrants for whom tickets are blocked (#4242)
    • ๐Ÿ›  Fix event access key prompt not showing when accessing an attachment link (#4255)
    • ๐Ÿ“‡ Include event title in OpenGraph metadata (#4288)
    • ๐Ÿ›  Fix error when viewing abstract with reviews that have no scores
    • โšก๏ธ Update requests and pin idna to avoid installing incompatible dependency versions (#4327)
  • v2.2.5 Changes

    December 06, 2019

    ๐Ÿฑ ๐ŸŽ‰ Improvements

    • Sort posters in timetable PDF export by board number (#4147, thanks @bpedersen2)
    • ๐Ÿ‘‰ Use lat/lng field order instead of lng/lat when editing rooms (#4150, thanks @bpedersen2)
    • โž• Add additional fields to the contribution csv/xlsx export (authors and board number) (#4148, thanks @bpedersen2)

    ๐Ÿ›  ๐Ÿ› Bugfixes

    • โšก๏ธ Update the Pillow library to 6.2.1. This fixes an issue where some malformed images could result in high memory usage or slow processing.
    • Truncate long speaker names in the timetable instead of hiding them (#4110)
    • ๐Ÿ›  Fix an issue causing errors when using translations for languages with no plural forms (like Chinese).
    • ๐Ÿ›  Fix creating rooms without touching the longitude/latitude fields (#4115)
    • ๐Ÿ›  Fix error in HTTP API when Basic auth headers are present (#4123, thanks @uxmaster)
    • ๐Ÿ›  Fix incorrect font size in some room booking dropdowns (#4156)
    • โž• Add missing email validation in some places (#4158)
    • Reject requests containing NUL bytes in the POST data (#4159)
    • ๐Ÿ›  Fix truncated timetable PDF when using "Print each session on a separate page" in an event where the last timetable entry of the day is a top-level contribution or break (#4134, thanks @bpedersen2)
    • Only show public contribution fields in PDF exports (#4165)
    • ๐Ÿ‘ Allow single arrival/departure date in accommodation field (#4164, thanks @bpedersen2)
  • v2.2.4 Changes

    October 16, 2019

    ๐Ÿ”’ โš ๏ธ Security fixes

    • ๐Ÿ›  Fix more places where LaTeX input was not correctly sanitized.

    ๐Ÿš€ While the biggest security impact (reading local files) has already been mitigated when fixing the initial vulnerability in the previous release, it is still strongly recommended to update.

  • v2.2.3 Changes

    October 08, 2019

    ๐Ÿš€ Released on October 08, 2019

    ๐Ÿ”’ Security fixes ^

    • Strip @, +, - and = from the beginning of strings when exporting CSV files to avoid security issues <https://www.owasp.org/index.php/CSV_Injection>_ when opening the CSV file in Excel
    • ๐Ÿ‘‰ Use 027 instead of 000 umask when temporarily changing it to get the current umask
    • ๐Ÿ›  Fix LaTeX sanitization to prevent malicious users from running unsafe LaTeX commands through specially crafted abstracts or contribution descriptions, which could lead to the disclosure of local file contents

    ๐Ÿ‘Œ Improvements ^

    • ๐Ÿ‘Œ Improve room booking interface on small-screen devices (:issue:4013)
    • โž• Add user preference for room owners/manager to select if they want to receive notification emails for their rooms (:issue:4096, :issue:4098)
    • ๐Ÿ‘‰ Show family name field first in user search dialog (:issue:4099)
    • ๐Ÿ‘‰ Make date headers clickable in room booking calendar (:issue:4099)
    • ๐ŸŒฒ Show times in room booking log entries (:issue:4099)
    • ๐Ÿ‘Œ Support disabling server-side LaTeX altogether and hide anything that requires it (such as contribution PDF export or the Book of Abstracts). LaTeX is now disabled by default, unless the :data:XELATEX_PATH is explicitly set in indico.conf. explicitly set in indico.conf.

    ๐Ÿ›  Bugfixes ^

    • โœ‚ Remove 30s timeout from dropzone file uploads
    • ๐Ÿ›  Fix bug affecting room booking from an event in another timezone (:issue:4072)
    • ๐Ÿ›  Fix error when commenting on papers (:issue:4081)
    • ๐Ÿ›  Fix performance issue in conferences with public registration count and a high amount of registrations
    • ๐Ÿ›  Fix confirmation prompt when disabling conference menu customizations (:issue:4085)
    • ๐Ÿ›  Fix incorrect days shown as weekend in room booking for some locales
    • ๐Ÿ›  Fix ACL entries referencing event roles from the old event when cloning an event with event roles in the ACL. Run indico maint fix-event-role-acls after updating to fix any affected ACLs (:issue:4090)
    • ๐Ÿ›  Fix validation issues in coordinates fields when editing rooms (:issue:4103)
  • v2.2.2 Changes

    August 23, 2019

    ๐Ÿ› Bug fixes

    • โœ‚ Remove pyatom from the project's dependencies. It seems to have vanished from PyPI (maybe discontinued?) but luckily werkzeug already includes it as a contrib module (see #4045).
  • v2.2.1 Changes

    August 19, 2019

    ๐Ÿ‘Œ Improvements

    • ๐Ÿ‘‰ Make list of event room bookings sortable (#4022)
    • ๐ŸŒฒ Log when a booking is split during editing (#4031)
    • ๐Ÿ‘Œ Improve "Book" button in multi-day events (#4021)

    ๐Ÿ›  Bugfixes

    • โž• Add missing slash to the template_prefix of the designer module
    • Always use HH:MM time format in book-from-event link
    • ๐Ÿ›  Fix timetable theme when set to "indico weeks view" before 2.2 (#4027)
    • Avoid flickering of booking edit details tooltip
    • ๐Ÿ›  Fix outdated browser check on iOS (#4033)
  • v2.2 Changes

    August 06, 2019

    Major Changes

    • โฌ‡๏ธ โš ๏ธ Drop support for Internet Explorer 11 and other outdated or discontinued browser versions. Indico shows a warning message when accessed using such a browser. The latest list of supported browsers can be found in the README, but generally Indico now supports the last two versions of each major browser (determined at release time), plus the current Firefox ESR.
    • ๐Ÿš€ Rewrite the room booking frontend to be more straightforward and user-friendly. Check the blog for details.

    ๐Ÿ‘Œ Improvements

    • ๐Ÿ“ฑ Rework the event log viewer to be more responsive and not freeze the whole browser when there are thousands of log entries
    • โž• Add shortcut to next upcoming event in a category (#3388)
    • ๐Ÿ‘‰ Make registration period display less confusing (#3359)
    • โž• Add edit button to custom conference pages (#3284)
    • ๐Ÿ‘Œ Support markdown in survey questions (#3366)
    • ๐Ÿ‘Œ Improve event list in case of long event titles (#3607, thanks @nop33)
    • Include event page title in the page's <title> (#3285, thanks @bpedersen2)
    • โž• Add option to include subcategories in upcoming events (#3449)
    • ๐Ÿ‘ Allow event managers to override the name format used in the event (#2455)
    • โž• Add option to not clone venue/room of an event
    • ๐Ÿ‘‰ Show territory/country next to the language name (#3968)
    • โž• Add more sorting options to book of abstracts (#3429, thanks @bpedersen2)
    • โž• Add more formatting options to book of abstracts (#3335, thanks @bpedersen2)
    • ๐Ÿ‘Œ Improve message when the call for abstracts is scheduled to open but hasn't started yet
    • ๐Ÿ”ง Make link color handling for LaTeX pdfs configurable (#3283, thanks @bpedersen2)
    • Preserve displayed order in contribution exports that do not apply any specific sorting (#4005)
    • โž• Add author list button to list of papers (#3978)

    ๐Ÿ›  Bugfixes

    • ๐Ÿ›  Fix incorrect order of session blocks inside timetable (#2999)
    • โž• Add missing email validation to contribution CSV import (#3568, thanks @Kush22)
    • Do not show border after last item in badge designer toolbar (#3607, thanks @nop33)
    • Correctly align centered footer links (#3599, thanks @nop33)
    • ๐Ÿ›  Fix top/right alignment of session bar in event display view (#3599, thanks @nop33)
    • ๐Ÿ›  Fix error when trying to create a user with a mixed-case email address in the admin area
    • ๐Ÿ›  Fix event import if a user in the exported data has multiple email addresses and they match different users
    • ๐Ÿ›  Fix paper reviewers getting notifications even if their type of reviewing has been disabled (#3852)
    • ๐Ÿ”€ Correctly handle merging users in the paper reviewing module (#3895)
    • ๐Ÿ‘‰ Show correct number of registrations in management area (#3935)
    • ๐Ÿ›  Fix sorting book of abstracts by board number (#3429, thanks @bpedersen2)
    • Enforce survey submission limit (#3256)
    • Do not show "Mark as paid" button and checkout link while a transaction is pending (#3361, thanks @driehle)
    • ๐Ÿ›  Fix 404 error on custom conference pages that do not have any ascii chars in the title (#3998)
    • Do not show pending registrants in public participant lists (#4017)

    Internal Changes

    • ๐Ÿ— Use webpack to build static assets
    • โž• Add React+Redux for new frontend modules
    • Enable modern ES201x features
  • v2.1.11 Changes

    October 16, 2019

    ๐Ÿ”’ โš ๏ธ Security fixes

    • ๐Ÿ›  Fix more places where LaTeX input was not correctly sanitized.

    ๐Ÿš€ While the biggest security impact (reading local files) has already been mitigated when fixing the initial vulnerability in the previous release, it is still strongly recommended to update.