Pleroma security release: 2.6.2
Pleroma 2.6.2 is a security release. Fixes lack of shortcode sanitization in MRF StealEmojiPolicy.
Upgrade notes
From source only
- Pull updates
- Recompile Pleroma:
MIX_ENV=prod mix compile
- Restart Pleroma
Everyone
- Update and Restart Pleroma
Frontend changes
None.
Backend changes
Security
- MRF StealEmojiPolicy: Sanitize shortcodes (thanks to Hazel K for the report)