Commit 8624ebb9 authored by Jonne Haß's avatar Jonne Haß

bump to 0.5.1.2

parent e92c8000
# 0.5.1.2
diaspora\* versions prior 0.5.1.2 leaked potentially private profile data (namely the bio, birthday, gender and location fields) to
unauthorized users. While the frontend properly hid them, the backend missed a check to not include them in responses.
Thanks to @cmrd-senya for finding and reporting the issue.
# 0.5.1.1
Update rails to 4.2.2, rack to 1.6.2 and jquery-rails to 4.0.4. This fixes
......
......@@ -4,7 +4,7 @@
defaults:
version:
number: "0.5.1.1" # Do not touch unless doing a release, do not backport the version number that's in master
number: "0.5.1.2" # Do not touch unless doing a release, do not backport the version number that's in master
heroku: false
environment:
url: "http://localhost:3000/"
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment