Releases: linuxserver/docker-bookstack
v23.02.1-ls65
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
v23.02-ls65
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Links
Upgrade Notices
- PHP Version Requirement Change - The minimum supported PHP version has changed from PHP 7.4 to PHP 8.0.2 in this release. Please see the v23.02 version-specific update instructions for guidance on updating PHP.
- Logical Theme System Event Change - The
commonmark_environment_configureevent argument and return types have changed. Please see the event definition to understand the new types if using this logical theme system event.
Full List of Changes
- Added user roles API endpoints. (#4051, #4034)
- Added configuration option for the sendmail command. (#4001)
- Added sort actions and accessible controls to the shelf book management interface. (#4049, #4031, #2050)
- Updated framework to Laravel 9. (#4021, #3123)
- Updated project minimum supported PHP version from 7.4 to 8.0.2. (#4029)
- Updated the URL length limit for link attachments to 2k characters. (#4044)
- Updated app icon handling to generate favicon.ico file where possible. (#4032)
- Updated setting loading to be more efficient. (#4062)
- Updated test handling with cleaner centralized filed/image handling. (#3995)
- Updated translations with latest Crowdin changes. (#4025)
- Fixed issue where uploaded images would not show in the gallery for draft pages. (#4028)
- Fixed issue with increasing WYSIWYG editor lag as pages grow. (#3981)
- Fixed potential pluralization issues in some languages. (#4040)
- Fixed slow response time when saving page due to URL parsing and handling. (#3932)
v23.01.1-ls64
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Security Release
This is a security release that addresses a potential vulnerability in PDF generation that could be used to make server-side requests or run potential other PHP code.
Upgrade is advised where untrusted users have permission to create page content in your instance.
From testing, it appears that successful exploitation of this would require either the disabling of BookStack default security options, or access to the host machine system, but out of caution we're advising upgrade in any environment as specified above.
Full List of Changes
v23.01.1-ls63
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Security Release
This is a security release that addresses a potential vulnerability in PDF generation that could be used to make server-side requests or run potential other PHP code.
Upgrade is advised where untrusted users have permission to create page content in your instance.
From testing, it appears that successful exploitation of this would require either the disabling of BookStack default security options, or access to the host machine system, but out of caution we're advising upgrade in any environment as specified above.
Full List of Changes
v23.01.1-ls62
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Security Release
This is a security release that addresses a potential vulnerability in PDF generation that could be used to make server-side requests or run potential other PHP code.
Upgrade is advised where untrusted users have permission to create page content in your instance.
From testing, it appears that successful exploitation of this would require either the disabling of BookStack default security options, or access to the host machine system, but out of caution we're advising upgrade in any environment as specified above.
Full List of Changes
v23.01.1-ls61
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Security Release
This is a security release that addresses a potential vulnerability in PDF generation that could be used to make server-side requests or run potential other PHP code.
Upgrade is advised where untrusted users have permission to create page content in your instance.
From testing, it appears that successful exploitation of this would require either the disabling of BookStack default security options, or access to the host machine system, but out of caution we're advising upgrade in any environment as specified above.
Full List of Changes
v23.01-ls60
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Links
Upgrade Notices
- Permission Changes - There have been changes to the permission system which can affect how permissions apply and therefore could lead to changes in provided abilities upon upgrade. This is only really relevant to complex permission scenarios that have only been possible since BookStack v22.10. Please see the Permission System Changes section below for more details on this.
- Database Upgrade Time - Changes to the permission system have required permissions to be regenerated upon upgrade. Due to this, the
php artisan migrateupgrade step may take extra time to run, especially where there are a lot of content and/or roles in the system.
Full List of Changes
- Added ability to control app icon (favicon) via settings. (#3994, #3929, #301)
- Added ability to set separate colors for dark mode. (#2314, #4002)
- Added ability to set separate colors for primary color and links. (#3910, #4002)
- Added accessible controls to book sorting & improved user experience. (#3999, #3987)
- Added Scheme code highlight support. (#3954)
- Added SQL variant code highlighting support. (#3942)
- Added ability to configure an ID claim for OIDC. (#3914)
- Updated permission handling to be better defined and predictable. (#3986)
- Updated tag handling to show new row earlier. (#3931)
- Updated translations with latest Crowdin changes. (#3925)
- Updated codebase to address a range of PHP deprecations. (#3969)
- Updated internal testing to run OIDC tests faster. (#3985)
- Fixed header search results preview not being clickable in Safari. (#3926)
- Fixed informal German not receiving correct pluralisation. (#3976)
- Fixed lack of drawing access leading to infinite loading. (#3955)
- Fixed user image id existing after user avatar removal. (#3977)
v22.11.1-ls60
LinuxServer Changes:
Rebase to alpine 3.17 with php8.1.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Added smarty and twig template code language support. Thanks to @jhit. (#3879)
- Updated translations with latest Crowdin changes. (#3881)
- Fixed global search focus issue with arrow keys. (#3920)
- Fixed lack of scroll in editor sidebar views. (#2887)
- Fixed not being able to remove all user roles. (#3922)
v22.11.1-ls59
LinuxServer Changes:
Wrap .env values in quotes.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Added smarty and twig template code language support. Thanks to @jhit. (#3879)
- Updated translations with latest Crowdin changes. (#3881)
- Fixed global search focus issue with arrow keys. (#3920)
- Fixed lack of scroll in editor sidebar views. (#2887)
- Fixed not being able to remove all user roles. (#3922)
v22.11.1-ls58
LinuxServer Changes:
Fix db password setting (sed escape &).
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Added smarty and twig template code language support. Thanks to @jhit. (#3879)
- Updated translations with latest Crowdin changes. (#3881)
- Fixed global search focus issue with arrow keys. (#3920)
- Fixed lack of scroll in editor sidebar views. (#2887)
- Fixed not being able to remove all user roles. (#3922)