Skip to content

Zulip Server 5.6
Compare
Choose a tag to compare
@timabbott timabbott released this 24 Aug 23:30
· 11161 commits to main since this release
5.6
d653397

5.6 -- 2022-08-24

  • CVE-2022-36048: Change the Markdown renderer to only rewrite known
    local links as relative links, rather than rewriting all local
    links. This fix also protects against a vulnerability in the Zulip
    mobile app (CVE-2022-35962).
  • Added hardening against timing attacks to an internal authentication check.
  • Improved documentation for hosting multiple organizations on a server.
  • Updated dependencies.
  • Updated translations.
Assets 3