bump to 0.5.1.2
This commit is contained in:
Jonne Haß
parent
e92c8000ba
commit
8624ebb921
2 changed files with 7 additions and 1 deletions
|
|
@ -1,3 +1,9 @@
|
|||
# 0.5.1.2
|
||||
|
||||
diaspora\* versions prior 0.5.1.2 leaked potentially private profile data (namely the bio, birthday, gender and location fields) to
|
||||
unauthorized users. While the frontend properly hid them, the backend missed a check to not include them in responses.
|
||||
Thanks to @cmrd-senya for finding and reporting the issue.
|
||||
|
||||
# 0.5.1.1
|
||||
|
||||
Update rails to 4.2.2, rack to 1.6.2 and jquery-rails to 4.0.4. This fixes
|
||||
|
|
|
|||
|
|
@ -4,7 +4,7 @@
|
|||
|
||||
defaults:
|
||||
version:
|
||||
number: "0.5.1.1" # Do not touch unless doing a release, do not backport the version number that's in master
|
||||
number: "0.5.1.2" # Do not touch unless doing a release, do not backport the version number that's in master
|
||||
heroku: false
|
||||
environment:
|
||||
url: "http://localhost:3000/"
|
||||
|
|
|
|||
Loading…
Reference in a new issue