mc 4.8.32 rpms released

mc 4.8.32 rpms released and added to all supported platforms

S3 and uc1541 are now included in new mc-python package (that requires Python 3).

Major changes since 4.8.31

Core

  • Tell the current directory to the terminal using OSC 7 sequence (so it can open new tabs there)
  • Preserve ext2fs attributes on copy/move operations
  • Change name of temporary directory: make it unique for each run
  • Hide password in file operation progress dialog
  • Support reget in file move operation
  • Implement nanosecond precision timestamps on non-Linux (macOS, BSD, AIX, Solaris)
  • Remove remaining mmap code to simplify maintenance

VFS

  • extfs: support unrar-7

Editor

  • Improve syntax highlighting:
    • C and C++

Viewer

Diff viewer

  • Add man page mcdiff.1

Misc

  • Code cleanup
  • New skins
    • xoria256-thin, xoria256root-thin
    • modarcon16-defbg-thin, modarcon16-thin, modarcon16root-defbg-thin, modarcon16root-thin
    • modarin256-defbg-thin, modarin256-thin, modarin256root-defbg-thin, modarin256root-thin
    • julia256root
  • mc.ext.ini: clarify escaping of spaces and parenthesis

Fixes

  • External editor does not work with arguments in $EDITOR
  • fish shell: strings ” cd (printf ‘%b’ … ” in history
  • Redundant back slashes for autocomplete
  • subshell: call execl with argv[0] that is not an actual path to Bash
  • mcedit: php.syntax: comment highlight from start of light only
  • mcedit: wrong replacement using regular expressions with begin or end of line
  • mcedit: losing column position when navigating up/down
  • mcedit: macro deletes text
  • mcedit: macros are applied to the pasted text
  • extfs: iso9660: xorriso is slow to open an ISO image
  • extfs: u7z: wrong add of nested directories to archive
  • extfs: segfault on enter to deleted archive
  • tar: segfault on copy files from archive
  • man: typo

NGINX 1.27.1 Mainline with Brotli, TLS 1.3, OpenSSL 3.0.14, HTTP/2 and HTTP/3 for Red Hat Enterprise Linux, CentOS, Rocky, Oracle, Alma Linux EL7/EL8/EL9

nginx 1.27.1 Mainline with HTTP/3 support added to EL7, EL8, EL9 repositories. brotli compression module from Google, http2, ngx cache purge and ngx http geoip2 modules added or built-in. OpenSSL built dynamically using OpenSSL+QUIC 3.0.14.

Fixes CVE-2024-7347.

NGINX 1.26.2 Stable with Brotli, TLS 1.3, OpenSSL 3.0.14, HTTP/2 and HTTP/3 for Red Hat Enterprise Linux, CentOS, Rocky, Oracle, Alma Linux EL7/EL8/EL9

nginx 1.26.2 Stable with HTTP/3 support added to EL7, EL8, EL9 repositories. brotli compression module from Google, http2, ngx cache purge and ngx http geoip2 modules added or built-in. OpenSSL built dynamically using OpenSSL+QUIC 3.0.14.

Fixes CVE-2024-7347.

UPD. EL7 build also added.

Apache httpd 2.4.62-2 with brotli support, TLS 1.3, OpenSSL 3.0.14 with http2, mod_http2 2.0.29 and ALPN for Red Hat Enterprise Linux, CentOS 7/8/9, Alma Linux, Rocky Linux 8/9

Apache httpd 2.4.62-2 added to the repository.

Changes:

  • spec file updated to be close to match next EL10
  • mod_lua moved to the separate package (now it is required to avoid problems with current setup)
  • mod_lua requirement will be removed in 2.4.63, thus it will be available for deletion

Apache httpd 2.4.62 with brotli support, TLS 1.3, OpenSSL 3.0.14 with http2, mod_http2 2.0.29 and ALPN for Red Hat Enterprise Linux, CentOS 7/8/9, Alma Linux, Rocky Linux 8/9

Apache httpd 2.4.62-1 with brotli compression library from Google, TLS 1.3, http2 (HTTP/2) support for Red Hat Enterprise Linux and CentOS (including CentOS 7), Alma Linux, Rocky Linux 8/9 added to repository. mod_http2 2.0.29 and mod_ssl are built dynamically against OpenSSL 3.0.14.

Important security fixes: CVE-2024-40725: Apache HTTP Server: source code disclosure with handlers configured via AddType; CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows.

Brotli conf loading file is now separated to align with new fedora builds.

We build OpenSSL+QUIC separately since v2.4.56-2, installing it separately to /lib64 with .so.81.3 suffix to ensure it won’t interfere with your system libraries. You can safely delete openssl111* packages. On EL8 and EL9 please enable httpd module:

dnf module enable httpd:codeit

Since 2.4.33 we added brotli compression library. Since 2.4.35 release we start building Apache httpd against OpenSSL 1.1.1*. Since 2.4.37 release TLS 1.3 final version (not to be confused with any draft versions) is supported and enabled by default. Please note that TLS 1.3 final version is supported in Chrome 70+ and Mozilla Firefox 63+. brotli support is already included in base RPM file. All you need is to add filters like

AddOutputFilterByType BROTLI_COMPRESS text/html text/plain text/xml text/css text/javascript application/javascript

mod_http2 v2.0.29 rpms released

mod_http2 v2.0.29 rpms released and added to all supported platforms.

Changes:

  • When HTTP/2 flow controls blocks further writes, return processing to an
  • async mpm to free a worker thread. The connection needs window updates from
  • the client in such a case and can leave monitoring the socket to the mpm.
  • So far, only effective on Apache httpd 2.5.0 (trunk).
  • [ylavic, icing]
  • Backport fix of CVE-2024-36387 from Apache 2.4.60
  • fixed a compiler warning about an unused static var when AP_MPMQ_CAN_WAITIO is not defined.

Apache httpd 2.4.61 with brotli support, TLS 1.3, OpenSSL 3.0.14 with http2, mod_http2 2.0.27 and ALPN for Red Hat Enterprise Linux, CentOS 7/8/9, Alma Linux, Rocky Linux 8/9

Apache httpd 2.4.61-1 with brotli compression library from Google, TLS 1.3, http2 (HTTP/2) support for Red Hat Enterprise Linux and CentOS (including CentOS 7), Alma Linux, Rocky Linux 8/9 added to repository. mod_http2 2.0.27 and mod_ssl are built dynamically against OpenSSL 3.0.14.

Important security fixes: CVE-2024-39884: Apache HTTP Server: source code disclosure with handlers configured via AddType.

We build OpenSSL+QUIC separately since v2.4.56-2, installing it separately to /lib64 with .so.81.3 suffix to ensure it won’t interfere with your system libraries. You can safely delete openssl111* packages. On EL8 and EL9 please enable httpd module:

dnf module enable httpd:codeit

Since 2.4.33 we added brotli compression library. Since 2.4.35 release we start building Apache httpd against OpenSSL 1.1.1*. Since 2.4.37 release TLS 1.3 final version (not to be confused with any draft versions) is supported and enabled by default. Please note that TLS 1.3 final version is supported in Chrome 70+ and Mozilla Firefox 63+. brotli support is already included in base RPM file. All you need is to add filters like

AddOutputFilterByType BROTLI_COMPRESS text/html text/plain text/xml text/css text/javascript application/javascript

Apache httpd 2.4.60 with brotli support, TLS 1.3, OpenSSL 3.0.14 with http2, mod_http2 2.0.27 and ALPN for Red Hat Enterprise Linux, CentOS, Alma Linux, Rocky Linux 8/9

Apache httpd 2.4.60-1 with brotli compression library from Google, TLS 1.3, http2 (HTTP/2) support for Red Hat Enterprise Linux and CentOS, Alma Linux, Rocky Linux 8/9 added to repository. mod_http2 2.0.27 and mod_ssl are built dynamically against OpenSSL 3.0.14.

Important security fixes: CVE-2024-39573, CVE-2024-38477, CVE-2024-38476, CVE-2024-38475, CVE-2024-38474, CVE-2024-38473, CVE-2024-38472, CVE-2024-36387.

We build OpenSSL+QUIC separately since v2.4.56-2, installing it separately to /lib64 with .so.81.3 suffix to ensure it won’t interfere with your system libraries. You can safely delete openssl111* packages. On EL8 and EL9 please enable httpd module:

dnf module enable httpd:codeit

Since 2.4.33 we added brotli compression library. Since 2.4.35 release we start building Apache httpd against OpenSSL 1.1.1*. Since 2.4.37 release TLS 1.3 final version (not to be confused with any draft versions) is supported and enabled by default. Please note that TLS 1.3 final version is supported in Chrome 70+ and Mozilla Firefox 63+. brotli support is already included in base RPM file. All you need is to add filters like

AddOutputFilterByType BROTLI_COMPRESS text/html text/plain text/xml text/css text/javascript application/javascript

CentOS 7 EOL

CentOS 7 reached its EOL and not supported now.

Feel free to discuss here if someone needs new builds for it on donation basis, as it requires much more efforts to support/patch software.

UPD. CentOS 7 builds continued after EOL and are available for patreon subscribers (“Small company” and higher) or $5+/mo recurring PayPal donation (please be sure to set it as recurring or consider 1-time yearly payment) for up to 20 IP addresses, $20+ for 21+ IP addresses.

Then send me a PM to Telegram @AlexG32 or E-Mail: codeguard@ gmail with your IP addresses list.