2.8.1

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

B

NodeBB 2.8.1 Security Update
Watching Ignoring Scheduled Pinned Locked Moved NodeBB Development security 2.8.1
4

3 Votes

4 Posts

614 Views

B

It is basically the same vulnerability exploited with a different socket call. The initial fix in 2.6.1 only prevented a specific case, the fix in 2.8.1 should cover all cases. You can either upgrade to 2.8.1 or only get the changes from the specific commit.

NodeBB 2.8.1 Security Update