notfire/Iceshrimp.NET
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

[sln] Update version to be in line with security hotfix release

Browse source 
This avoids "am I vulnerable to this?" confusion if running a :dev image or a -git package.
This commit is contained in:
Laura Hausmann 2024-11-27 22:08:08 +01:00
parent 112d6affd0
commit c6408805d0
No known key found for this signature in database
GPG key ID: D044E84C5BE01605
2 changed files with 13 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
CHANGELOG.md
View file

@ -1,3 +1,15 @@
## v2024.1-beta4.security2
This is a security hotfix release. It's identical to v2024.1-beta4.security1, except for the security mitigations listed below. Upgrading is strongly recommended for all server operators.
### Backend
- Several DoS & stack overflow vulnerabilities in the MFM parser were resolved
### Miscellaneous
- Performance of the MFM parser (and by extension, the frontend) should be significantly improved, as the backport of the security fixes also contains all other performance-related changes since v2024.1-beta4.
### Attribution
This release was made possible by project contributors: Laura Hausmann
## v2024.1-beta4.security1
This is a security hotfix release. It's identical to v2024.1-beta4, except for the security mitigations listed below. Upgrading is strongly recommended for all server operators.

2
Directory.Build.props
View file

@ -27,7 +27,7 @@
<!-- Version metadata -->
<PropertyGroup>
<VersionPrefix>2024.1</VersionPrefix>
<VersionSuffix>beta4.security1</VersionSuffix>
<VersionSuffix>beta4.security2</VersionSuffix>
</PropertyGroup>
<ItemGroup>