diff options
author | Dennis Schubert <mail@dennis-schubert.de> | 2022-04-27 21:26:17 +0300 |
---|---|---|
committer | Dennis Schubert <mail@dennis-schubert.de> | 2022-04-27 21:32:19 +0300 |
commit | 31ea07daa1ca9fcfc7c5c472e16d6b6bc52add23 (patch) | |
tree | 6785a99b5bb4604f6f83a74e09ad7f23e05e8b85 /Changelog.md | |
parent | f88807909caf7411b23d40fc30c8aae56c43f033 (diff) | |
parent | 8e6f3b91d3f896112988c81e79d1edaf6c9588af (diff) |
Merge pull request #8350 into next-minor
Diffstat (limited to 'Changelog.md')
-rw-r--r-- | Changelog.md | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/Changelog.md b/Changelog.md index be4243bbc..5c55dde29 100644 --- a/Changelog.md +++ b/Changelog.md @@ -1,5 +1,8 @@ # 0.7.17.0 +## Security +* Bump Rails to 5.2.7 to address [CVE-2022-22577](https://discuss.rubyonrails.org/t/cve-2022-22577-possible-xss-vulnerability-in-action-pack/80533) and [CVE-2022-27777](https://discuss.rubyonrails.org/t/cve-2022-27777-possible-xss-vulnerability-in-action-view-tag-helpers/80534) [#8350](https://github.com/diaspora/diaspora/pull/8350) + ## Refactor ## Bug fixes |