notfire/Iceshrimp.NET
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Release: v2024.1-beta2.security2

Browse source
This commit is contained in:
Laura Hausmann 2024-07-23 21:22:09 +02:00
parent b536ca2c03
commit f39dd7885c
No known key found for this signature in database
GPG key ID: D044E84C5BE01605
2 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
CHANGELOG.md
View file

@ -1,3 +1,12 @@
## v2024.1-beta2.security2
This is a security hotfix release. It's identical to v2024.1-beta2.security1, except for referencing an updated version of the `SixLabors.ImageSharp` dependency, fixing a Denial of Service vulnerability ([GHSA-63p8-c4ww-9cg7](https://github.com/advisories/GHSA-63p8-c4ww-9cg7)). Upgrading is strongly recommended for all server operators.
### Backend
- Updated SixLabors.ImageSharp to 3.1.5 (addressing [GHSA-63p8-c4ww-9cg7](https://github.com/advisories/GHSA-63p8-c4ww-9cg7))
### Attribution
This release was made possible by project contributors: Laura Hausmann
## v2024.1-beta2.security1
This is a security hotfix release. It's identical to v2024.1-beta2, except for referencing an updated version of the `System.Text.Json` dependency, fixing a Denial of Service vulnerability ([GHSA-hh2w-p6rv-4g7w](https://github.com/advisories/GHSA-hh2w-p6rv-4g7w)). Upgrading is strongly recommended for all server operators.

2
Iceshrimp.Backend/Iceshrimp.Backend.csproj
View file

@ -7,7 +7,7 @@
<InvariantGlobalization>true</InvariantGlobalization>
<SatelliteResourceLanguages>none</SatelliteResourceLanguages>
<VersionPrefix>2024.1</VersionPrefix>
<VersionSuffix>beta2.security1</VersionSuffix>
<VersionSuffix>beta2.security2</VersionSuffix>
<UseCurrentRuntimeIdentifier>true</UseCurrentRuntimeIdentifier>
<PublishTrimmed>false</PublishTrimmed>
<GarbageCollectionAdaptationMode>1</GarbageCollectionAdaptationMode>