Skip to content

BookStack v23.12.3
Compare
Choose a tag to compare
@ssddanbrown ssddanbrown released this 26 Feb 12:09
· 364 commits to development since this release
v23.12.3
This tag was signed with the committer’s verified signature.
ssddanbrown Dan Brown
GPG key ID: 46D9F943C24A2EF9
Learn about vigilant mode.
350e0b2
This commit was signed with the committer’s verified signature.
ssddanbrown Dan Brown
GPG key ID: 46D9F943C24A2EF9
Learn about vigilant mode.

Security Release

BookStack v23.12.3 has been released.
This is a security release that addresses a vulnerability in PDF generation that could be exploited to perform blind server-side-request forgery.

Upgrade is advised where untrusted users have permission to create/edit/update page content in your instance.

Full List of Changes

  • Updated PHP dependencies, primarily to update php-svg-lib package.
Assets 2
Loading