Security release: Talkyard v0.2021.39
It's good to upgrade to Talkyard v0.2021.39, if you're self hosted and have disabled automatic upgrades.
If you have auto upgrades enabled, your Talkyard site (if any), should have upgraded itself automatically last night. — Sites hosted by us have also been upgraded.
This security release is because of another vulnerability in Log4j2, a popular Java logging framework. This vulnerability is of low severity (3.7 out of 10, as of 2021-12-17), see https://nvd.nist.gov/vuln/detail/CVE-2021-45046.
- 0 replies