aboutsummaryrefslogtreecommitdiff
path: root/CHANGELOG.md
diff options
context:
space:
mode:
authordcc <dcc@logografos.com>2023-09-04 02:54:35 -0700
committerdcc <dcc@logografos.com>2023-09-04 02:54:35 -0700
commita127041c8b3e31c9fa487dd5ca4faa29a0a59e6e (patch)
tree563a301e6dfc8e419a787542f233976a5b761160 /CHANGELOG.md
parent40bfe7919694619570c3e2192dff895c78ce44b9 (diff)
downloadanni-a127041c8b3e31c9fa487dd5ca4faa29a0a59e6e.tar.gz
anni-a127041c8b3e31c9fa487dd5ca4faa29a0a59e6e.tar.bz2
anni-a127041c8b3e31c9fa487dd5ca4faa29a0a59e6e.zip
move to 2.5.5
Diffstat (limited to 'CHANGELOG.md')
-rwxr-xr-x[-rw-r--r--]CHANGELOG.md7
1 files changed, 6 insertions, 1 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9d9aadc..32ec440 100644..100755
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -14,7 +14,12 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
### Removed
-## 2.5.54
+## 2.5.5
+
+## Security
+- Prevent users from accessing media of other users by creating a status with reused attachment ID
+
+## 2.5.4
## Security
- Fix XML External Entity (XXE) loading vulnerability allowing to fetch arbitary files from the server's filesystem
generated by cgit v1.2.3 (git 2.26.2) at 2026-04-29 10:46:05 +0000