Lemmy 0.18.2 Security Release | BE ➡ 0.18.2 | UI ➡ 0.18.2
Lemmy 0.18.2 Security Release | BE ➡ 0.18.2 | UI ➡ 0.18.2
![the background blur](https://lemmy.world/pictrs/image/5a91df6a-e9cb-4ddd-aef9-a0d0b32202ff.png?thumbnail=256&format=webp)
![](https://lemmy.world/pictrs/image/5a91df6a-e9cb-4ddd-aef9-a0d0b32202ff.png?format=webp)
Security and Performance Improvements
https://join-lemmy.org/news/2023-07-11_-_Lemmy_Release_v0.18.2
Latest Backend (BE) Release Candidate (RC)
- Latest Release
Candidate:
https://github.com/LemmyNet/lemmy/releases/tag/0.18.2 - Compare with previous Release:
https://github.com/LemmyNet/lemmy/compare/0.18.1...0.18.2 - Compare with release/v0.18:
https://github.com/LemmyNet/lemmy/compare/0.18.2...release/v0.18
Latest Frontend (UI) Release Candidate (RC)
- Latest Release
Candidate:
https://github.com/LemmyNet/lemmy-ui/releases/tag/0.18.2 - Compare with previous Release:
https://github.com/LemmyNet/lemmy-ui/compare/0.18.1...0.18.2 - Compare with release/v0.18:
https://github.com/LemmyNet/lemmy-ui/compare/0.18.2...release/v0.18
BE ➡ 0.18.2-rc.2 | UI ➡ 0.18.2-rc.2
Now using release branches (
release/v0.18
) forBE
andUI
4 0 ReplyBE ➡ 0.18.2 | UI ➡ 0.18.2
@[email protected]
Probably does not hurt to upgrade, despite the fact that we didn't have any custom emojis.Additionally it disallows inline Javascript using Content Security Policy. This should ensure that XSS vulnerabilities are impossible from now on.
4 0 Reply@[email protected] If
lemmy.wtf
is using custom emojis, you should probably update to the latest UI Release Candidate, i. e. the latest lemmy-ui docker image.3 0 ReplyIt is not, so we are safe.
4 0 Reply3 0 Reply