[WLANware] [ANNOUNCE][SECURITY] Gluon v2021.1.2
Matthias Schiffer
mschiffer at universe-factory.net
Thu May 5 19:38:00 CEST 2022
Hi everyone,
with mixed feelings, we're announcing the release of Gluon v2021.1.2.
**This version fixes a critical vulnerability in the autoupdater:**
https://github.com/freifunk-gluon/gluon/security/advisories/GHSA-xqhj-fmc7-f8mv
All nodes with autoupdater must be updated.
Furthermore, the new release also contains the usual round of smaller fixes
and other improvements, including a low-severity security issue allowing
Cross-Site Request Forgery in the config mode. The full list of changes can
be found in the release notes as usual:
https://gluon.readthedocs.io/en/latest/releases/v2021.1.2.html
In addition to v2021.1.x, we have pushed the autoupdater bugfix to the
v2020.2.x, v2020.1.x, v2019.1.x and v2018.2.x branches.
-- NeoRaider
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://lists.freifunk.net/pipermail/wlanware-freifunk.net/attachments/20220505/f75e97c3/attachment.sig>
More information about the WLANware
mailing list