The diaspora* blog
diaspora* version 0.7.13.0 released with security fixes! 12 February 2020
This is an unscheduled update which includes some urgent security fixes, so please update soon. Since the last release, this release collects 67 commits made by 4 contributors. It's only a maintenance release, as you can tell. :)
A huge thanks to all the contributors from diaspora*'s amazing community! If you want to help make diaspora* even better, please check out our getting started guide. Please see the changelog for a complete list of changes made in this release.
- Fixes USN-4274-1, a potential Denial-of-Service vulnerability in Nokogiri.
- Introduces an automatic cleanup job to remove photos that have been uploaded but never got submitted in a post.
- Removes the dependency to
rails-assets.orgto prevent installation or upgrade issues when the service is down.
Podmins, please update your pods as soon as possible. Update instructions are available as usual in the wiki. For those of you who have been testing the release candidate, run
git checkout master before the update to get back to the stable release branch.
If you are a user not running your own pod, there is nothing you need to do!