bookstack/website
Fork 4
Code Issues 5 Pull requests Activity

Added new secruity release to updates page

Browse source
This commit is contained in:
Dan Brown 2024-11-13 12:11:38 +00:00
commit 9caed59902
Signed by: danb
GPG key ID: 46D9F943C24A2EF9
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
content/docs/admin/updates.md
View file

@ -41,6 +41,11 @@ This is primarily a list of breaking changes & security notices.
Details of updates can be found on [our blog](https://www.bookstackapp.com/blog/) or via
the [GitHub releases page](https://github.com/BookStackApp/BookStack/releases).
#### Updating to v24.10.2 or higher
**Security - Environment** - v24.10.2 addresses a vulnerability in our dependencies where specifically formatted requests could be used to manipulate application configuration in environments where a certain PHP option (register_argc_argv) is enabled.
#### Updating to v24.05.4 or higher
**Security - LDAP** - v24.05.4 address an issue found in LDAP group syncing which could mean in certain scenarios a user could be matched to extra roles incorrectly.