Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/diaspora/diaspora.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDennis Schubert <mail@dennis-schubert.de>2022-04-27 21:26:17 +0300
committerDennis Schubert <mail@dennis-schubert.de>2022-04-27 21:32:19 +0300
commit31ea07daa1ca9fcfc7c5c472e16d6b6bc52add23 (patch)
tree6785a99b5bb4604f6f83a74e09ad7f23e05e8b85 /Changelog.md
parentf88807909caf7411b23d40fc30c8aae56c43f033 (diff)
parent8e6f3b91d3f896112988c81e79d1edaf6c9588af (diff)
Merge pull request #8350 into next-minor
Diffstat (limited to 'Changelog.md')
-rw-r--r--Changelog.md3
1 files changed, 3 insertions, 0 deletions
diff --git a/Changelog.md b/Changelog.md
index be4243bbc..5c55dde29 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,8 @@
# 0.7.17.0
+## Security
+* Bump Rails to 5.2.7 to address [CVE-2022-22577](https://discuss.rubyonrails.org/t/cve-2022-22577-possible-xss-vulnerability-in-action-pack/80533) and [CVE-2022-27777](https://discuss.rubyonrails.org/t/cve-2022-27777-possible-xss-vulnerability-in-action-view-tag-helpers/80534) [#8350](https://github.com/diaspora/diaspora/pull/8350)
+
## Refactor
## Bug fixes