Skip to content

Releases: linuxserver/docker-bookstack

v22.03.1-ls10

07 Apr 16:13
Compare
Choose a tag to compare

LinuxServer Changes:

Add symlinks for theme support.

bookstack Changes:

Links

Full List of Changes

This release contains the following fixes and changes:

  • Fixed issue where /settings redirect would lead to wrong location in some scenarios. (#3356)
  • Fixed non-active prevention of custom HTML head content on settings views. (#3355)
  • Updated translations with latest Crowdin changes. (#3354)
  • Updated project PHP dependencies.

v22.03.1-ls9

31 Mar 16:16
Compare
Choose a tag to compare

LinuxServer Changes:

Add symlinks for theme support.

bookstack Changes:

Links

Full List of Changes

This release contains the following fixes and changes:

  • Fixed issue where /settings redirect would lead to wrong location in some scenarios. (#3356)
  • Fixed non-active prevention of custom HTML head content on settings views. (#3355)
  • Updated translations with latest Crowdin changes. (#3354)
  • Updated project PHP dependencies.

v22.03.1-ls8

30 Mar 21:16
Compare
Choose a tag to compare

LinuxServer Changes:

Add symlinks for theme support.

bookstack Changes:

Links

Full List of Changes

This release contains the following fixes and changes:

  • Fixed issue where /settings redirect would lead to wrong location in some scenarios. (#3356)
  • Fixed non-active prevention of custom HTML head content on settings views. (#3355)
  • Updated translations with latest Crowdin changes. (#3354)
  • Updated project PHP dependencies.

v22.03-ls8

30 Mar 13:48
Compare
Choose a tag to compare

LinuxServer Changes:

Add symlinks for theme support.

bookstack Changes:

Links

Upgrade Notices

  • Webhook Data Changes - Properties found at the related_item -> created_by/updated_by/owned_by path of the webhook data will now be an object instead of an ID integer. If you were using these ids you'd now need to access them within the relevant objects. (For example related_item.created_by.id).

Full List of Changes

  • Added support for checkbox tasklists in the WYSIWYG editor. (#3333, #4)
  • Added WYSIWYG control to remove & edit links. (#3276, #3298)
  • Added WYSIWYG Ctrl+Shift+K shortcut to show entity selector popup shortcut in WYSIWYG editor. (#3244, #3298)
  • Added LDAP user group debugging option. (#3345)
  • Added support for the Basque language. (#3296)
  • Updated settings view with a re-organized layout for a less confusing user experience. (#3349, #3221)
  • Updated code block rendering in WYSIWYG to help prevent scroll jumping upon undo/redo. (#3326)
  • Updated translations with latest Crowdin updates. (#3320)
  • Updated webhook data to include details of page/chapter/shelf/book creator/updater/owner. (#3279)
  • Updated webhook data to include revision details on page_update and page_create events. (#3218)
  • Fixed lack of translation support for some editor buttons. (#3342)
  • Fixed incorrect page concatenation in book markdown export. (#3341)
  • Fixed usage of <br> tags within code blocks instead of newlines when using the WYSIWYG editor. (#3327)
  • Fixed image thumbnail generation not taking EXIF rotation data into account. (#1854)

v22.02.3-ls8

24 Mar 16:42
Compare
Choose a tag to compare

LinuxServer Changes:

Add symlinks for theme support.

bookstack Changes:

Security Release

This is a security release that adds better protections against embedded content that could be used in malicious ways. This effectively restricts embedded iframe content in an allow-list approach.

A new ALLOWED_IFRAME_SOURCES option has been added to provide configuration of allowed embed/iframe sources within BookStack pages, and this defaults to a couple of popular services such as YouTube and Vimeo.

Please see this link for more detail regarding this option:

It's advised to upgrade as soon as possible if untrusted users can create or update pages within your BookStack instance.

Thanks to @416e6e61 (Anna) for discovering and reporting this vulnerability via huntr.dev.

Full List of Changes

  • Added iframe allow-list control to prevent a range of malicious uses of untrusted iframe sources. (#3314)
  • Updated translations with latest Crowdin changes. (#3312)

v22.02.3-ls7

17 Mar 16:17
Compare
Choose a tag to compare

LinuxServer Changes:

Add symlinks for theme support.

bookstack Changes:

Security Release

This is a security release that adds better protections against embedded content that could be used in malicious ways. This effectively restricts embedded iframe content in an allow-list approach.

A new ALLOWED_IFRAME_SOURCES option has been added to provide configuration of allowed embed/iframe sources within BookStack pages, and this defaults to a couple of popular services such as YouTube and Vimeo.

Please see this link for more detail regarding this option:

It's advised to upgrade as soon as possible if untrusted users can create or update pages within your BookStack instance.

Thanks to @416e6e61 (Anna) for discovering and reporting this vulnerability via huntr.dev.

Full List of Changes

  • Added iframe allow-list control to prevent a range of malicious uses of untrusted iframe sources. (#3314)
  • Updated translations with latest Crowdin changes. (#3312)

v22.02.3-ls6

14 Mar 20:53
Compare
Choose a tag to compare

LinuxServer Changes:

Add symlinks for theme support.

bookstack Changes:

Security Release

This is a security release that adds better protections against embedded content that could be used in malicious ways. This effectively restricts embedded iframe content in an allow-list approach.

A new ALLOWED_IFRAME_SOURCES option has been added to provide configuration of allowed embed/iframe sources within BookStack pages, and this defaults to a couple of popular services such as YouTube and Vimeo.

Please see this link for more detail regarding this option:

It's advised to upgrade as soon as possible if untrusted users can create or update pages within your BookStack instance.

Thanks to @416e6e61 (Anna) for discovering and reporting this vulnerability via huntr.dev.

Full List of Changes

  • Added iframe allow-list control to prevent a range of malicious uses of untrusted iframe sources. (#3314)
  • Updated translations with latest Crowdin changes. (#3312)

v22.02.3-ls5

14 Mar 20:31
139c220
Compare
Choose a tag to compare

LinuxServer Changes:

Rebase to Alpine 3.14.

bookstack Changes:

Security Release

This is a security release that adds better protections against embedded content that could be used in malicious ways. This effectively restricts embedded iframe content in an allow-list approach.

A new ALLOWED_IFRAME_SOURCES option has been added to provide configuration of allowed embed/iframe sources within BookStack pages, and this defaults to a couple of popular services such as YouTube and Vimeo.

Please see this link for more detail regarding this option:

It's advised to upgrade as soon as possible if untrusted users can create or update pages within your BookStack instance.

Thanks to @416e6e61 (Anna) for discovering and reporting this vulnerability via huntr.dev.

Full List of Changes

  • Added iframe allow-list control to prevent a range of malicious uses of untrusted iframe sources. (#3314)
  • Updated translations with latest Crowdin changes. (#3312)

v22.02.3-ls4

10 Mar 17:02
Compare
Choose a tag to compare

LinuxServer Changes:

Rebase to Alpine 3.14.

bookstack Changes:

Security Release

This is a security release that adds better protections against embedded content that could be used in malicious ways. This effectively restricts embedded iframe content in an allow-list approach.

A new ALLOWED_IFRAME_SOURCES option has been added to provide configuration of allowed embed/iframe sources within BookStack pages, and this defaults to a couple of popular services such as YouTube and Vimeo.

Please see this link for more detail regarding this option:

It's advised to upgrade as soon as possible if untrusted users can create or update pages within your BookStack instance.

Thanks to @416e6e61 (Anna) for discovering and reporting this vulnerability via huntr.dev.

Full List of Changes

  • Added iframe allow-list control to prevent a range of malicious uses of untrusted iframe sources. (#3314)
  • Updated translations with latest Crowdin changes. (#3312)

v22.02.3-ls3

07 Mar 15:41
Compare
Choose a tag to compare

LinuxServer Changes:

Rebase to Alpine 3.14.

bookstack Changes:

Security Release

This is a security release that adds better protections against embedded content that could be used in malicious ways. This effectively restricts embedded iframe content in an allow-list approach.

A new ALLOWED_IFRAME_SOURCES option has been added to provide configuration of allowed embed/iframe sources within BookStack pages, and this defaults to a couple of popular services such as YouTube and Vimeo.

Please see this link for more detail regarding this option:

It's advised to upgrade as soon as possible if untrusted users can create or update pages within your BookStack instance.

Thanks to @416e6e61 (Anna) for discovering and reporting this vulnerability via huntr.dev.

Full List of Changes

  • Added iframe allow-list control to prevent a range of malicious uses of untrusted iframe sources. (#3314)
  • Updated translations with latest Crowdin changes. (#3312)