4.5.0

mcoberly2 released this 18 Jul 02:05

17de602

Release Date: August 07, 2023

Bug Fixes

Disable java runtime serialization/deserialization. Deserialization of java runtime serialized objects has been identified as a security risk (CVE-2023-36480) by CodeQL team members @atorralba (Tony Torralba) and @joefarebrother (Joseph Farebrother). See Incompatible API change. [CLIENT-2252]

Full Changelog: 4.4.20...4.5.0

Contributors

joefarebrother and atorralba

Assets 2