2.7.7: Security Release

jomaxro · July 23, 2021, 2:57pm

Discourse 2.7.7 Stable Release

Discourse strongly recommends that all sites follow the default tests-passed branch of Discourse. The “stable” branch is more focused on lack of change than lack of bugs - all releases, including those on tests-passed and beta are production ready.

Changes

Security:

Do not reveal post whisperer in personal messages (CVE-2021-32788)
Don’t leak user of previous whisper post when deleting a topic (CVE-2021-32788)

Topic		Replies	Views
2.8.7: Security Release announcements release-notes	0	753	July 27, 2022
2.7.10: Security Release announcements release-notes	0	856	November 15, 2021
2.7.8: Security Release announcements release-notes	0	931	September 1, 2021
2.7.5: Security Release announcements release-notes	1	841	July 8, 2021
2.7.9: Security Release announcements release-notes	1	1028	October 20, 2021

2.7.7: Security Release

Discourse 2.7.7 Stable Release

Changes

Security:

Related Topics