summaryrefslogtreecommitdiff
path: root/changelog.d/akkoma-xml-remote-entities.security
diff options
context:
space:
mode:
authorHaelwenn <contact+git.pleroma.social@hacktivis.me>2023-08-05 08:12:25 +0000
committerHaelwenn <contact+git.pleroma.social@hacktivis.me>2023-08-05 08:12:25 +0000
commit1f4be2b3495b6df03843f923a53aff5913e1ef0d (patch)
tree55a72082c7776290cdbbbd16fbf043f9c6fc4bb5 /changelog.d/akkoma-xml-remote-entities.security
parentff2f3862abd4a9eabc0440999337a2d44c8b797e (diff)
parentb631180b38ac63029f08bef137b13231bcf57b59 (diff)
downloadpleroma-1f4be2b3495b6df03843f923a53aff5913e1ef0d.tar.gz
pleroma-1f4be2b3495b6df03843f923a53aff5913e1ef0d.zip
Merge branch 'releases/2.5.4' into 'stable'
Release 2.5.4 See merge request pleroma/pleroma!3929
Diffstat (limited to 'changelog.d/akkoma-xml-remote-entities.security')
-rw-r--r--changelog.d/akkoma-xml-remote-entities.security1
1 files changed, 1 insertions, 0 deletions
diff --git a/changelog.d/akkoma-xml-remote-entities.security b/changelog.d/akkoma-xml-remote-entities.security
new file mode 100644
index 000000000..5e6725e5b
--- /dev/null
+++ b/changelog.d/akkoma-xml-remote-entities.security
@@ -0,0 +1 @@
+Fix XML External Entity (XXE) loading vulnerability allowing to fetch arbitary files from the server's filesystem
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-25 11:48:13 +0000