Apply security patch from pleroma to prevent nested file names being uploaded to the server. #507

Merged
floatingghost merged 2 commits from foxing/akkoma:foxing-patch-2 into develop 2023-03-13 00:29:51 +00:00
Contributor
https://git.pleroma.social/pleroma/pleroma/-/commit/e4925f813afda5883fd12a48b99b2b12f83678d9
foxing added 1 commit 2023-03-12 19:15:22 +00:00
Apply Patch
Some checks are pending
ci/woodpecker/pr/woodpecker Pipeline is pending
3f76de76da
foxing added 1 commit 2023-03-12 19:23:23 +00:00
Merge branch 'develop' into foxing-patch-2
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
c2ae3273d5

ah, good spot - i hadn't noticed pleroma patched this

thanks!

ah, good spot - i hadn't noticed pleroma patched this thanks!
floatingghost merged commit 377d1483b6 into develop 2023-03-13 00:29:51 +00:00
floatingghost deleted branch foxing-patch-2 2023-03-13 00:29:51 +00:00
Author
Contributor

ah, good spot - i hadn't noticed pleroma patched this

thanks!

Would it be worth a backdate (since the last release is so soon?) or do a mini release as well? I think pleroma backmerged this into a previous version so maybe that is a simple solution to just quietly fix it.

> ah, good spot - i hadn't noticed pleroma patched this > > thanks! Would it be worth a backdate (since the last release is so soon?) or do a mini release as well? I think pleroma backmerged this into a previous version so maybe that is a simple solution to just quietly fix it.
Sign in to join this conversation.
No description provided.