Skip to content

Commit

Permalink
Update CHANGELOG with CVEs
Browse files Browse the repository at this point in the history
  • Loading branch information
@hermanzdosilovic
hermanzdosilovic committed Apr 18, 2024
1 parent e195469 commit a999e31
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,12 @@ This is the Changelog for Judge0 CE. The Changelog for Judge0 Extra CE can be fo
# v1.13.1 (2024-04-18)
Security researcher [Daniel Cooper](https://www.linkedin.com/in/daniel-cooper4) (@stacksparrow4) found three critical vulnerabilities in Judge0 versions `<= 1.13.0`, which this release fixes. Thank you, Daniel, for your contribution.

## Security Fixes
This release fixes the following security vulnerabilities:
- [CVE-2024-28185](https://github.com/judge0/judge0/security/advisories/GHSA-h9g2-45c8-89cf)
- [CVE-2024-28189](https://github.com/judge0/judge0/security/advisories/GHSA-3xpw-36v7-2cmg)
- [CVE-2024-29021](https://github.com/judge0/judge0/security/advisories/GHSA-q7vg-26pg-v5hr)

## Deployment Procedure
Judge0 is collecting telemetry data to help improve the product and understand its use in various production environments. Read more about telemetry [here](https://github.com/judge0/judge0/blob/v1.13.1/TELEMETRY.md).

Expand Down

0 comments on commit a999e31

Please sign in to comment.