Docker/forgejo
Docker/forgejo
1
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2025-07-25 12:39:40 +02:00
Code Issues Releases Activity
forgejo/release-notes-published/11.0.3.md
forgejo-release-manager 86a13589fa chore(release-notes): Forgejo v11.0.3 (#8472) 
https://codeberg.org/forgejo/forgejo/milestone/20958
Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8472
Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>
Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>
Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>
2025-07-10 10:50:24 +02:00

6 KiB
Raw Blame History

Git update fixing CVE-2025-48385

Git vulnerabilities were disclosed 8 July 2025 and require an update of the Git version used by Forgejo to Git v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, or v2.50.1. The containers of this release include a Git binary that is not vulnerable. If Forgejo was installed using a container, it is enough to upgrade the container to get the latest Git binary.

Security bug fixes are only for Git, there are no security fixes for Forgejo itself in this release.

Wiki permissions manual steps

If collaborators with write access can't edit the wiki, an administrator can now go to the Units settings (<user>/<repo>/settings/units#wiki) and Save the wiki settings (no change is needed) to fix the problem. This is a manual step that will trigger a database update that is currently not possible to automate for Forgejo stable releases.

Release notes

  • User Interface bug fixes
    • PR (backported): fix(ui): add missing lazy load attribute to images (#8246)
    • PR (backported): fix(ui): erroneous list continuation on Cmd+Enter on macOS
  • Localization
    • PR: i18n: backport of translation updates
  • Bug fixes
    • PR (backported): fix: do not ignore automerge while a PR is checking for conflicts
    • PR (backported): fix: user activation with uppercase email address
    • PR (backported): fix: collaborator can edit wiki with write access
  • Included for completeness but not worth a release note
    • PR (backported): chore: disable mismatched root URL e2e test for safari
    • PR (backported): chore: do not navigate to same URL in E2E test
    • PR (backported): fix: corrupted wiki unit default permission (#8234 follow-up) (#8258)
    • PR (backported): fix: skip empty tokens in SearchOptions.Tokens()
    • PR (backported): chore: improve reliability of webauthn e2e test
    • PR (backported): fix: make API /repos/{owner}/{repo}/compare/{basehead} work with forks
    • PR (backported): chore: sort mailer messages in test assertion
    • PR (backported): fix(ui): release: name is overridden with tag name on edit
    • PR (backported): Revert "fix(api): document is_system_webhook field (#7784)"