Security patches | March 2, 2023 #12156
karolkielecki
announced in
Announcements
Replies: 1 comment
-
We've just released security fixes for Saleor 3.11.12, 3.10.14, 3.9.27, 3.8.30, 3.7.59, and 3.1.48.
Severity: medium Some internal Python exceptions are not handled properly and thus are returned in API as error messages. Some messages might contain sensitive information like a user email address in staff-authenticated requests.
Severity: low Some internal Python exceptions are not handled properly and thus are returned in API as error messages. Some messages might contain sensitive information like infrastructure details in unauthenticated requests. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi Community!
We will release patch versions to Saleor fixing two security defects (one rated as "moderate" and one as "low" severity) for the following versions: 3.1, 3.7, 3.8, 3.9, 3.10, 3.11.
📅 When? At 1200 UTC Thursday, March 2, 2023.
Notes:
Beta Was this translation helpful? Give feedback.
All reactions