Skip to content

v1.22.3

Choose a tag to compare

View all tags
@conjur-jenkins conjur-jenkins released this 24 Sep 21:09
v1.22.3
d65d499

[1.22.3] - 2025-08-12

Security

  • Remove the policy factory API endpoints from the config/routes.rb file to prevent
    anyone being able to call these endpoints and trigger the marshal.load call. CONJSE-2038
  • Fix unsafe shell command executions. CONJSE-2039. CONJSE-2041-2046.
  • Remove vulnerable activestorage gem from the dependencies to address CVE-2025-24293. CONJSE-2050
Assets 12
Loading