bustin'

9001 released this 09 Oct 00:57

· 803 commits to hovudstraum since this release

e400155

okay, i swear this is the last version for weeks! probably

read-only demo server at https://a.ocv.me/pub/demo/
docker image ╱ similar software ╱ client testbed

no vulnerabilities since 2023-07-23

there is a discord server with an @everyone in case of future important updates
v1.8.7 (2023-07-23) - CVE-2023-38501 - reflected XSS
v1.8.2 (2023-07-14) - CVE-2023-37474 - path traversal (first CVE)
- all serverlogs reviewed so far (5 public servers) showed no signs of exploitation

bugfixes

cachebuster didn't apply to dynamically loaded javascript files
- READMEs could fail to render with ReferenceError: DOMPurify is not defined after upgrading from a copyparty older than v1.9.2

⚠️ not the latest version!

Assets 7