Merge pull request #1 from onionshare/release-2.6.2security-updates

Release 2.6.2
author: Saptak Sengupta <saptak013@gmail.com> 2024-03-21 13:32:01 +0000
committer: GitHub <noreply@github.com> 2024-03-21 13:32:01 +0000
commit: 23d409d599d536ec55428748ec9ffc333a907698 (patch)
tree: ad9bc4175e8a34c6224eef8fa99ff3d3dce253e4 /CHANGELOG.md
parent: 3083382a5669f12aac19cf04b8d2ff690dc784d8 (diff)
parent: 7a7f0b52b12501f0c4f576a8d5a93d7a62626a94 (diff)
download: onionshare-security-updates.tar.gz
onionshare-security-updates.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 495a07ea..a0715f83 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,13 @@
 # OnionShare Changelog
 
+## 2.6.2
+
+* Security fix: Removes newlines from History item path
+* Security fix: Set a maximum length of 524288 characters for text messages in Receive mode
+* Security fix: Allows only specific ASCII characters for usernames and removes control characters
+* Security fix: Forcefully disconnect user from chat on `disconnect` event
+* Security fix: Handle username validation excpeptions to prevent silent joining
+
 ## 2.6.1
 
 * Release updates: Automate builds with CI, make just 64-bit Windows release, make a single universal2 release for both Intel and Apple Silicon macOS
author	Saptak Sengupta <saptak013@gmail.com>	2024-03-21 13:32:01 +0000
committer	GitHub <noreply@github.com>	2024-03-21 13:32:01 +0000
commit	23d409d599d536ec55428748ec9ffc333a907698 (patch)
tree	ad9bc4175e8a34c6224eef8fa99ff3d3dce253e4 /CHANGELOG.md
parent	3083382a5669f12aac19cf04b8d2ff690dc784d8 (diff)
parent	7a7f0b52b12501f0c4f576a8d5a93d7a62626a94 (diff)
download	onionshare-security-updates.tar.gz onionshare-security-updates.zip