Commit graph

10903 commits

Author SHA1 Message Date
Pierre Bourdon
43559fec9f blurhash_transcoder: prevent out-of-bound reads with <8bpp images (#20388)
The Blurhash library used by Mastodon requires an input encoded as 24
bits raw RGB data. The conversion to raw RGB using Imagemagick did not
previously specify the desired bit depth. In some situations, this leads
Imagemagick to output in a pixel format using less bpp than expected.
This then manifested as segfaults of the Sidekiq process due to
out-of-bounds read, or potentially a (highly noisy) memory infoleak.

Fixes #19235.
2023-02-06 16:28:36 +09:00
noellabo
52026656d8 Add remote domain validator for AccountDomainBlock 2023-02-06 16:28:36 +09:00
noellabo
160af83314 Add synchronization of remote featured_tag 2023-02-06 16:28:36 +09:00
noellabo
a97312571c Add indicator when default expires is set 2023-02-06 16:28:36 +09:00
noellabo
206b5dbf04 Add safety and privacy features 2023-02-06 16:28:36 +09:00
noellabo
1885016a4c Add emoji picker and single emoji resizing 2023-02-06 16:28:36 +09:00
noellabo
dc138ccb32 Add default expires date setting 2023-02-06 16:28:36 +09:00
noellabo
695f9a7d08 Add phrase confirmation to domain block dialog 2023-02-06 16:28:36 +09:00
noellabo
c297bf5471 Add column width customize features 2023-02-06 16:28:36 +09:00
noellabo
2bee3e3fdb Add advanced mode to the account column 2023-02-06 16:28:36 +09:00
noellabo
4b3f4be472 Add account conversations column 2023-02-06 16:28:36 +09:00
noellabo
ccafeaf32f Add the ability to make status reference notifications followee-only 2023-02-06 16:28:36 +09:00
noellabo
91910d7d2d Fix spec for notiry_service 2023-02-06 16:28:36 +09:00
noellabo
2faf4c44f7 Add setting to notify mentions email only for dm 2023-02-06 16:28:36 +09:00
noellabo
17ecde6a6e Add reload button for iOS 2023-02-06 16:28:36 +09:00
noellabo
73df565bde Add REST compact mode for statuses 2023-02-06 16:28:35 +09:00
noellabo
91d6b018df Add searchability features 2023-02-06 16:28:35 +09:00
noellabo
cf18642b99 Support EmojiReact activity with custom emoji 2023-02-06 16:28:35 +09:00
noellabo
1f66fa7b5d Fix add InvalidURIError handler to TagManager 2023-02-06 16:28:35 +09:00
noellabo
3a9977ed5d Add feature to reflect the theme on public pages 2023-02-06 16:28:35 +09:00
Eugen Rochko
04c3a50e3c Add ability to follow hashtags in web UI 2023-02-06 16:28:35 +09:00
noellabo
eee07915f3 Add compatibility to follow hashtags 2023-02-06 16:28:35 +09:00
noellabo
ee27368a79 Add Publish & Update date to announcements 2023-02-06 16:28:35 +09:00
noellabo
439f9c18b2 Add confirmation for follow from the bot 2023-02-06 16:28:35 +09:00
noellabo
40d4f82690 Add ability to hide bots and media from public timelines 2023-02-06 16:28:35 +09:00
noellabo
dc76262f26 Add setting to hide moderator badge 2023-02-06 16:28:35 +09:00
noellabo
0124a17cf1 Change nodeinfo software name to fedibird 2023-02-06 16:28:35 +09:00
noellabo
1b9f659e97 Fix emoji reactions compativility for Pleroma and akkoma 2023-02-06 16:28:35 +09:00
noellabo
d0b97a2fcb Add WebUI element size adjustment 2023-02-06 16:28:35 +09:00
noellabo
a89569c3a8 Add the ability to compact the display of Emoji reactions 2023-02-06 16:28:35 +09:00
Eugen Rochko
0b857ad422 Fix being able to post URLs longer than 4096 characters 2023-02-06 16:28:35 +09:00
Eugen Rochko
5bf2a564b3 Fix being able to bypass e-mail restrictions 2023-02-06 16:28:35 +09:00
Eugen Rochko
363a763a09 Fix confirmation redirect to app without Location header 2023-02-06 16:28:35 +09:00
Eugen Rochko
d6df33da2e Fix empty votes arbitrarily increasing voters count in polls 2023-02-06 16:28:35 +09:00
Eugen Rochko
e10bf7d51a Fix suspended users being able to access APIs that don't require a user 2023-02-06 16:28:35 +09:00
Eugen Rochko
2b95673709 Fix being able to report otherwise inaccessible statuses 2023-02-06 16:28:35 +09:00
Eugen Rochko
fd2517cb24 Fix concurrent unfollowing decrementing follower count more than once 2023-02-06 16:28:35 +09:00
noellabo
f583aefdea Add modern theme 2023-02-06 16:28:35 +09:00
noellabo
66b7eca9b1 Bump ruby version to 2.7.6 2023-02-06 16:28:35 +09:00
noellabo
2d68765088 Add the ability to close the last column 2023-02-06 16:28:35 +09:00
noellabo
79dfb04f64 Add hard silence mode 2023-02-06 16:28:35 +09:00
noellabo
609d431ac0 Change MAX_VIDEO_MATRIX_LIMIT 2_304_000 to 3_061_440 2023-01-16 12:58:29 +09:00
noellabo
8b3ef9cc81 Add full text search for accounts 2023-01-16 12:58:29 +09:00
noellabo
57ddd35698 Fix missing status_reference to push notification 2023-01-16 12:58:29 +09:00
noellabo
913cf3520a Fix missing emoji_reaction to push notification 2023-01-16 12:58:29 +09:00
noellabo
6bd24ab1ee Fix missing status to push notification 2023-01-16 12:58:29 +09:00
noellabo
7c3e6e03a5 Add emoji reaction bar to public page 2023-01-16 12:58:29 +09:00
noellabo
d80efbad2b Change emoji reactions ids to snowflake ids 2023-01-16 12:58:29 +09:00
noellabo
b12778caeb Add emoji reactions to note object 2023-01-16 12:58:29 +09:00
noellabo
cf35497935 Fix circle 2023-01-16 12:58:29 +09:00