diff options
| author | Nicolas Werner <nicolas.werner@hotmail.de> | 2022-09-28 14:11:19 +0200 |
|---|---|---|
| committer | Nicolas Werner <nicolas.werner@hotmail.de> | 2022-09-28 14:11:19 +0200 |
| commit | 031a129591d79266055c7bebb9751f893766d4ea (patch) | |
| tree | 8e13dc702f0d09e9237dc5c52dc7d9de31a85116 /CHANGELOG.md | |
| parent | Prevent the homeserver from inserting malicious secrets (diff) | |
| download | nheko-031a129591d79266055c7bebb9751f893766d4ea.tar.xz | |
Bump version to 0.10.2
Diffstat (limited to 'CHANGELOG.md')
| -rw-r--r-- | CHANGELOG.md | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index 928ea944..7af2ceb2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,18 @@ # Changelog +## [0.10.2] -- 2022-09-22 + +### Security release + +- Fixes potential secret poisoning by the homeserver +- A crash when validation malicious html + +Thanks to the matrix.org security team for disclosing this issue. + +An update is highly recommended. Otherwise you can temporarily protect against +this issue by not verifying your own devices and not pressing the request button +in the setting. + ## [0.10.1] -- 2022-09-07 ### Highlights |