xmrscott

joined 3 years ago
MODERATOR OF
 

Here’s a recap of what happened this May in the Monero community: Breaking

  • tevador released a security advisory for a ‘medium severity’ vulnerability in Monero wallets that can be exploited by malicious remote nodes (1)
    
  • jeffro256 posted a vulnerability disclosure highlighting a ‘high severity’ bug that was patched in Monero v0.18.2.2 (2)
    
  • KuCoin temporarily suspended XMR deposits and withdrawals due to ‘node maintenance’ (3)
    
  • Binance was getting ready to delist XMR in France, Italy, Poland and Spain due to ‘local regulatory requirements’ (4)
    

R&D

  • There were 5 Monero Research Lab meetings in May (5,6,7,8,9)
    
  • The Seraphis Wallet Workgroup held 3 meetings (10,11,12)
    
  • The ETH-XMR atomic swap beta release v0.2.1 was deployed on mainnet (13)
    
  • The Nym team announced a new mixnet integration with the Monero network (14)
    
  • selsta posted a Monero dev report for April 2023, finalizing their CCS proposal (15)
    
  • SChernykh released P2Pool v3.4 with several bug fixes and improvements (16)
    
  • m2049r released Monerujo v3.1.3 ‘Fluorine Fermi’ & v3.2.0 ‘Decoy Selection’ (17,18)
    
  • LocalMonero/AgoraDesk mobile apps versions 1.1.1-1.1.4 were released with several bug fixes and improvements (19,20,21)
    
  • Cake Labs announced the first Cake Wallet beta release for Linux and ‘Cake 2FA’, a new security feature (22,23)
    
  • Haveno versions 0.0.5 & 0.0.6 were released with binary installers for live test network and support for gold and silver (24,25)
    
  • hinto-janai released Gupax v1.2.2 with fixes, UI improvements and remote node changes (26)
    
  • rehrar released Stack Wallet versions 1.7.7-1.7.11 with support for Trocador.app and various fixes and updates (27,28,29,30)
    
  • lukeprofits released ‘Monero Subscriptions Wallet’, as promised (31,32)
    
  • keef1337 released noderowallet v1.1.0-1.1.2 (33)
    
  • pokkst released Mysu Wallet v0.4.3 with ‘high priority’ fixes (34)
    
  • tobtoht released Feather Wallet v2.4.9 with security fixes (35)
    
  • ANON v0.4.1 updated to Monero 0.18.2.2 (36)
    

Funding

  • selsta submitted a new CCS proposal for 3 more months of part-time Monero dev work, which was fully funded (37,38)
    
  • valldrac submitted a CCS proposal to develop a Monero Wallet SDK for Android (39)
    
  • jeffro256 submitted a CCS proposal for 4 months of full-time Monero dev work (40)
    
  • VostoEmisio submitted a CCS proposal to create an animated video explaining Monero’s Tail Emission (41)
    
  • john_r365 proposed a bounty for the review of a Trezor PR to the core Monero codebase (42)
    
  • plowsof will continue working as CCS coordinator for 3 months after their proposal was fully funded (43)
    
  • Justin Berman completed his latest Monero dev work CCS proposal (44)
    
  • CryptoGrampy completed his HotShop CCS proposal (45)
    
  • Lovera posted a CCS progress report for April 2023 (46)
    
  • moneromooo-monero was planning to work on Townforge after completing 520 hours of Monero dev work (47)
    

Culture

  • There were 4 MoneroKon 2023 Planning Meetings in May (48,49,50,51)
    
  • A Community Workgroup Meeting took place on the 27th (52)
    
  • Monero Magazine interviewed ‘Katie The Russian’, Juraj Bednar, Nam Sardar and ‘Mano Crypto’ (53,54,55,56)
    
  • Monero Talk interviewed crypto-anarchist Pavol Luptak (57)
    
  • rbrunner7 published a new Monero-themed fictional short story titled ‘RingCT’ (58)
    
  • rottenwheel published Revuo Monero issues #169-172 (59,60,61,62)
    
  • LocalMonero published The Monero Standard issues #52-55 (63,64,65,66)
    
  • Ledger came under fire for its controversial ‘Ledger Recover’ firmware update (67)
    

Community Messages (10/51)

  • [AFH] Foreign Language Teacher: Spanish and Portuguese (by pedrosfreitas) (68)
    
  • [ANN] Rucknium Monerotopia 2023 Presentation (by Rucknium) (69)
    
  • [ANN] Results after 4 months of mining (Jan - Apr 2023) (by SeaFailure) (70)
    
  • [ANN] Os Moneristas - Brazilian community project (by OsMoneristas) (71)
    
  • [ANN] The next nautilus update will remove support for monero (by fossephate) (72)
    
  • [LTH] C++ developer to enchant a project (by Nico) (73)
    
  • [WTB] [~45 XMR] NLJD (Non-linear Junction Detector) & [1-2.25 XMR] IR Thermal Camera (by freQniK) (74)
    
  • [WTB] [US] 1/10oz Gold Coin with crypto (BTC/XMR) (by ValleyEliminator) (75)
    
  • [WTS] [~180€ XMR/BTC] OLED PS Vita with Minecraft (by derBehr98) (76)
    
  • [WTS] [35 USD] Schmidt Hammer (by burntbooks) (77)
    

[escapethe3RA's] personal contributions

Daily

  • published 75 Monero Observer Reports (78) (consult the Archive page for a complete list (79))
    
  •  updated Changelog (80) and XMR Stats (81)
    

As needed/On demand

  • updated reports, listed 51 Community Messages and 14 Calendar events (82,83) & added 5 new Resources (84)
    
  • published Meeting summary: Monero Research Lab, 3 May 2023 (85) and uploaded 13 meeting logs (MRL 2023-05-03, MRL 2023-05-10, MRL 2023-05-17, MRL 2023-05-24, MRL 2023-05-31, Community 2023-05-27, MoneroKon23 2023-05-06, Monerokon23 2023-05-13, Monerokon23 2023-05-20, Monerokon23 2023-05-27, Seraphis 2023-05-15, Seraphis 2023-05-22, Seraphis 2023-05-29) (86,87,88,89,90,91,92,93,94,95,96,97,98)
    

Weekly

  • published 4 Monero Dev Activity Reports (Weeks: 18-21, 2023) (99,100,101,102)
    
  • published 4 MO Artistic Saturday Top 5 reports (Weeks: 18-21, 2023) (102,103,104,105)
    

Monthly

  • published MO Blitz Report: #21 (April 2023) (106)
    

Credits/special thanks to:

  • everyone that reported broken links, suggested edits, sent anonymous news tips and shared my reports
    
  • the cypherpunks for their encrypted emails and XMPP (OMEMO) messages
    
  • gnuteardrops from Monero.Graphics for the amazing art and plowsof for the consistent pings
    
  • all anon MO loyal readers and generous CCS contributors
    
  • hard working people that keep building and maintaining cool stuff for the Monero community
    
 

Overview

This is the v0.17.3.0 point release of the Monero GUI software.

The latest CLI release notes can be found on the precedent blog post

Some highlights of this release are:

Add import / export output function (#3435)
Export all key images by default (#3282)
Update translations (#3773)
Add description to CSV export (#3572)
Add colors to password strength meter (#3682)
Add Cut, Copy, Delete and Select All to context menu (#3689)
Fix buffer overflow in zxcvbn library (#3735)
Fix font issue on Arch Linux (#3753)
Fix compilation for Apple ARM (#3697, #3723, #3731)
Mining page design tweaks (#3742)

The complete list of changes is available on GitHub, along with the source code.

Contributors for this Release

This release was the direct result of 65 people who worked, largely unpaid and altruistically, to put out 93 commits containing 31902 new lines of code. We'd like to thank them very much for their time and effort. In no particular order they are:

selsta
luigi1111
maltejur
free-as-in-beer
netrik182
rex4539
JeremyRand
kinghat
tobtoht
MoneroArbo
dsc
benevanoff
rating89us

A special thanks to translators

TheFuzzStone, reketen, castorp, Alex Osinniy, nemecis rojas, Samuel, Josep Mengual, jaime diaz, Dynse Clyde Sacote, devuana, mihaipe, v1docq47. L. P. Pereira, netrik182, Gilberto F da Silva, Zsolt András Kovács, Pozsonyi Péter, Közepes Gábor, anonym szeretnék maradni, Nicolas, Martin, MortiZ, GreenPiece, Crusty, Paul Janowitz

 

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

Dear Monero users and participants of the Monero ecosystem,

Some vulnerabilities have been identified in the implementation of Monero multisignature wallets. These vulnerabilities do not affect the theory supporting multisigs, but affect the current wallet code implementing them.

Initially disclosed and discussed via the vulnerability response process*, the discussion has been enlarged to other key developers and MRL contributors. We agreed together that a public announcement had to be made.

These vulnerabilities affect (i) multisignature wallet creation and (ii) multisignature transaction signing. They can lead to funds being stolen by one of the signing parties.

Until a fix is released, we strongly recommend not to perform any multisignature transaction unless all signing parties can be trusted. If all signing parties cannot be trusted, no transaction should be attempted. Funds are not at risk if they are not moved and if the wallet-creation process was not abused.

A fix is currently being reviewed. At this stage we hope to have a pull request ready within a week, together with a more detailed description of the issues.

Regards,

binaryFate

iQIzBAEBCAAdFiEEgaxZH+nEtlxYBq/D8K9NRioL35IFAmGtGA0ACgkQ8K9NRioL 35JLBw//fZ4tcOCFRgoM+kiLVNVgziqio1PJl7w73BGjP7A3I0ieGPZtHfDk28ua okSRzWVKqm94Ruy7qAaDHwASxwmJ4MELaBzufx5WqMjhKWhYi87P6ZLEP2n1eVee TXmQ2lIy5JfKBXRI+wtmZsXLjWLajgztP0MCJGF1+QW9RawpsIuTkfyDPkrHsK32 0u3oC5XsdxETP8wu9LAsGVAsQ+xISZ//zkWlyqOWEkRxXhFUOLBmJ8OOPJ96WZ4x RMqijDjE2ZcOXPT5pLKwX+A+p9wHEpe7tDLe6F179F+rkWda3Cy6wqBztR8+LtI0 yPBDqI5k1eu4kwTke7WcNKBjwzkd8qxvPo1kQ1btj4PukxrlDLPcJc2g4vCvuSkb XkYzZB6fcT64bXqVnJJdeWYTBI3mDAQgOMGnU63zIA3pqYpPG44hXpFH9KXeFOwq O60xuKd7uYVkCRA0FckkSWABy2008/qk9APwKCWwg9Md07advkCAOlNVqjF9CrTE CZvyL3tywbbCpQsV1qeM29WM+yU5mjkz4Q3NvtHdL+c0jWElOmJDgs7RRz2bmsiX ZCfbR78Y4fTnUMOdBVqU1yLDUg7nZYRnTyD6ORhpgEc12BJV4nDc+mkBqPiR2hTe DLh4ZNqeIRFgX2M1Q1w9Kap2xXLV5dRMe0e/3amASKf2KJ8WBSY= =HZgv -----END PGP SIGNATURE-----

 

There are also two other CCS in the Funding Required stage: https://ccs.getmonero.org/funding-required/

 

This is a bugfix release:

  • Fixed startup logic when p2pool is started before monerod or monerod is not yet fully synchronized. It should be safe to start p2pool before monerod now.
  • Fixed a crash in p2pool.exe built with msys2
  • Multiple smaller fixes and performance improvements
  • Slightly reduced memory usage

Wallets with confirmed P2Pool support:

  • Official Monero CLI and GUI v0.17.2.3 and newer
  • Monerujo v2.1.0 "Vertant" and newer
  • Cake Wallet v4.2.7 and newer
  • MyMonero

Other wallets might not see P2Pool payouts if they're not updated. Before you start mining, create a new wallet and don't use it for anything else but mining for privacy reasons - all wallet addresses are public on P2Pool! Only primary wallet address is supported - no subaddresses or integrated addresses.

Usage:

  • Run monerod binary from the archive: ./monerod --zmq-pub tcp://127.0.0.1:18083 --disable-dns-checkpoints --enable-dns-blocklist
  • Run p2pool: ./p2pool --host 127.0.0.1 --wallet YOUR_WALLET_ADDRESS
  • Start mining to port 3333 on your machine: ./xmrig -o 127.0.0.1:3333
  • You can set custom difficulty for your miner to get more accurate stats on P2Pool side: ./xmrig -o 127.0.0.1:3333 -u x+50000 (it doesn't affect mining rewards in any way)

GPG key to verify SHA256 sums can be downloaded from github or p2pool.io

view more: next ›