Partial Release notes for 2019.003

Unknown
Unknown
edited March 2019 in Product

UPDATE

See the full release notes over on the help documentation site.

https://docs.vanillaforums.com/help/releases/2019-003/


Client Notes (1 - 12)

Developer Notes (13 - 19)

Security Patches (20 - 33)


  1. Fix keystone javascript error for signed out users
  2. Fix boilerplate theme link color 
  3. Fix administrator permission error when accessing pockets
  4. Fix notification sort in React MeBox components (Knowledge Base only)
  5. Enable category headings in advanced search
  6. Add themes API v2 resource (Knowledge Base only)
  7. Add better responsive theme support (Keystone can now be enabled on mobile or desktop separately)
  8. Fix permission check for api/v2/discussions/search
  9. Fix Theme-boilerplate and Keystone paddings
  10. Fix users/me endpoint for Admin=2 users (Already backported and available in 2.8 release)
  11. Fix user profiles with duplicate user titles
  12. Fix hitting enter on autocomplete search suggestions causing form submission (Knowledge Base only)
  13. Normalize reaction Model (DB UPDATE) (Knowledge Base only)
  14. Make APIv2 upload file check extension case insensitively (Rich Editor fix)
  15. Add form error component (Knowledge Base only)
  16. Add fixed scroll position back to the dashboard
  17. Fix the props & styles of <NextPrevious /> (Knowledge Base only)
  18. Add toggle-able labels in SiteNav components (Knowledge Base only)
  19. Add cache options to SQL driver to cache getProviders query response
  20. Fix permission check when adding a feed
  21. Fix CSRF when deleting a feed
  22. Fix reported activity posts displaying as html
  23. Fix ability to view comment after revoking permission
  24. Fix adding tags to discussions without proper permission
  25. Fix discussion permissions when flagging a discussion
  26. Fix permission check when resolving a discussion
  27. Fix XSS in Ignore plugin
  28. Fix stored XSS when deleting a tag
  29. Fix XSS in username field of InThisDiscussion plugin
  30. Fix SQL injection in Advanced Search (without Sphinx) using discussionid param
  31. Fix: Bypassing trusted domains to post links using Right-to-left unicode character
  32. Fix Bump addon not validating CSRF
  33. Fix Ignore plugin not authenticating postback


GitHub

  1. https://github.com/vanilla/vanilla/pull/8473
  2. https://github.com/vanilla/vanilla/pull/8462
  3. https://github.com/vanilla/vanilla/pull/8455
  4. https://github.com/vanilla/vanilla/pull/8452
  5. https://github.com/vanilla/internal/pull/1828
  6. https://github.com/vanilla/vanilla/pull/8430
  7. https://github.com/vanilla/vanilla/pull/8412
  8. https://github.com/vanilla/internal/pull/1823
  9. https://github.com/vanilla/vanilla/pull/8387
  10. https://github.com/vanilla/vanilla/pull/8325
  11. https://github.com/vanilla/internal/pull/1820
  12. https://github.com/vanilla/vanilla/pull/8347
  13. https://github.com/vanilla/vanilla/pull/8454
  14. https://github.com/vanilla/vanilla/pull/8467
  15. https://github.com/vanilla/vanilla/pull/8457
  16. https://github.com/vanilla/vanilla/pull/8469
  17. https://github.com/vanilla/vanilla/pull/8420
  18. https://github.com/vanilla/vanilla/pull/8392
  19. https://github.com/vanilla/addons/pull/655
  20. https://github.com/vanilla/addons-patches/pull/24
  21. https://github.com/vanilla/addons-patches/pull/22
  22. https://github.com/vanilla/vanilla/pull/8398
  23. https://github.com/vanilla/vanilla-patches/pull/483
  24. https://github.com/vanilla/vanilla-patches/pull/480
  25. https://github.com/vanilla/vanilla-patches/pull/479
  26. https://github.com/vanilla/addons-patches/pull/21
  27. https://github.com/vanilla/addons-patches/pull/20
  28. https://github.com/vanilla/vanilla-patches/pull/478
  29. https://github.com/vanilla/vanilla-patches/pull/477
  30. https://github.com/vanilla/internal/pull/1817
  31. https://github.com/vanilla/vanilla-patches/pull/492
  32. https://github.com/vanilla/addons-patches/pull/25
  33. https://github.com/vanilla/addons-patches/pull/26


Comments

This discussion has been closed.

Categories