Releases: linuxserver/docker-bookstack
v24.05.3-ls157
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Updated translations with latest Crowdin changes. (#5065)
- Updated callouts with LTR text handling where supported. (#5104)
- Updated project PHP and JavaScript dependencies.
- Fixed blocked diagrams.net loading when using a custom URL that includes a port. (#5107)
- Fixed OIDC incorrectly calling userinfo endpoint when valid empty groups provided. (#5101)
- Fixed image replacement being case-sensitive when it should not be. Thanks to @DanielGordonIT. (#5096) (#5095)
- Fixed HTML code block highlighting when custom self-closing tags are used. (#5078)
- Fixed testing when custom ALLOWED_IFRAME_SOURCES is set. Thanks to @mueller-contria. (#5069) (#5068)
v24.05.3-ls156
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Updated translations with latest Crowdin changes. (#5065)
- Updated callouts with LTR text handling where supported. (#5104)
- Updated project PHP and JavaScript dependencies.
- Fixed blocked diagrams.net loading when using a custom URL that includes a port. (#5107)
- Fixed OIDC incorrectly calling userinfo endpoint when valid empty groups provided. (#5101)
- Fixed image replacement being case-sensitive when it should not be. Thanks to @DanielGordonIT. (#5096) (#5095)
- Fixed HTML code block highlighting when custom self-closing tags are used. (#5078)
- Fixed testing when custom ALLOWED_IFRAME_SOURCES is set. Thanks to @mueller-contria. (#5069) (#5068)
v24.05.3-ls155
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Updated translations with latest Crowdin changes. (#5065)
- Updated callouts with LTR text handling where supported. (#5104)
- Updated project PHP and JavaScript dependencies.
- Fixed blocked diagrams.net loading when using a custom URL that includes a port. (#5107)
- Fixed OIDC incorrectly calling userinfo endpoint when valid empty groups provided. (#5101)
- Fixed image replacement being case-sensitive when it should not be. Thanks to @DanielGordonIT. (#5096) (#5095)
- Fixed HTML code block highlighting when custom self-closing tags are used. (#5078)
- Fixed testing when custom ALLOWED_IFRAME_SOURCES is set. Thanks to @mueller-contria. (#5069) (#5068)
v24.05.3-ls154
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Updated translations with latest Crowdin changes. (#5065)
- Updated callouts with LTR text handling where supported. (#5104)
- Updated project PHP and JavaScript dependencies.
- Fixed blocked diagrams.net loading when using a custom URL that includes a port. (#5107)
- Fixed OIDC incorrectly calling userinfo endpoint when valid empty groups provided. (#5101)
- Fixed image replacement being case-sensitive when it should not be. Thanks to @DanielGordonIT. (#5096) (#5095)
- Fixed HTML code block highlighting when custom self-closing tags are used. (#5078)
- Fixed testing when custom ALLOWED_IFRAME_SOURCES is set. Thanks to @mueller-contria. (#5069) (#5068)
v24.05.2-ls153
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Fixed initial page publish changelog message not being saved if set. (#5056)
- Fixed incorrect WYSIWYG code shortcut reference. Thanks to @bradenterpstra01. (#5036)
- Added role create/update validation to warn about too-long external auth ID values. (#5037)
- Updated GIF thumbnail generation to no support animation, to avoid issues with large-frame-count GIFs. (#5029)
- Updated translations with latest Crowdin changes. (#5022)
- Updated backup code description text to clarify their use. (#5017)
- Updated docker-compose.yml to remove deprecated version. Thanks to @michaelortnerit. (#5052)
v24.05.2-ls152
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Fixed initial page publish changelog message not being saved if set. (#5056)
- Fixed incorrect WYSIWYG code shortcut reference. Thanks to @bradenterpstra01. (#5036)
- Added role create/update validation to warn about too-long external auth ID values. (#5037)
- Updated GIF thumbnail generation to no support animation, to avoid issues with large-frame-count GIFs. (#5029)
- Updated translations with latest Crowdin changes. (#5022)
- Updated backup code description text to clarify their use. (#5017)
- Updated docker-compose.yml to remove deprecated version. Thanks to @michaelortnerit. (#5052)
v24.05.2-ls151
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Fixed initial page publish changelog message not being saved if set. (#5056)
- Fixed incorrect WYSIWYG code shortcut reference. Thanks to @bradenterpstra01. (#5036)
- Added role create/update validation to warn about too-long external auth ID values. (#5037)
- Updated GIF thumbnail generation to no support animation, to avoid issues with large-frame-count GIFs. (#5029)
- Updated translations with latest Crowdin changes. (#5022)
- Updated backup code description text to clarify their use. (#5017)
- Updated docker-compose.yml to remove deprecated version. Thanks to @michaelortnerit. (#5052)
v24.05.2-ls150
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Links
Full List of Changes
This release contains the following fixes and changes:
- Fixed initial page publish changelog message not being saved if set. (#5056)
- Fixed incorrect WYSIWYG code shortcut reference. Thanks to @bradenterpstra01. (#5036)
- Added role create/update validation to warn about too-long external auth ID values. (#5037)
- Updated GIF thumbnail generation to no support animation, to avoid issues with large-frame-count GIFs. (#5029)
- Updated translations with latest Crowdin changes. (#5022)
- Updated backup code description text to clarify their use. (#5017)
- Updated docker-compose.yml to remove deprecated version. Thanks to @michaelortnerit. (#5052)
v24.05.1-ls149
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Security Release
BookStack v24.05.1 has been released.
This is a security release that adds extra rate-limiting to some forms that are accessible without authentication, while also implementing changes to prevent methods that could be used to indicate if specific user emails exist in the system.
Upgrade is advised for instances accessible on the public web.
Full List of Changes
- Updated PHP dependencies.
- Updated routes with IP-based rate limiting. (#4993)
- Updated email confirmation flow to not require email submission form.
- Updated translations with latest Crowdin changes. (#4994)
- Updated WYSIWYG alignment handling to also consider table
alignattributes. (#5011) - Fixed attachment upload validation errors appearing as JSON. (#4996)
- Fixed incorrect notification preferences URL in email. Thanks to @KiDxS. (#5008, #5005)
- Fixed non-visible MFA setup titles in dark mode. (#5018)
- Fixed outdated path in visual theme system guidance. (#4998)
- Fixed potential cache permission issues by reverting cache location. (#4999)
v24.05.1-ls148
LinuxServer Changes:
Rebase to Alpine 3.20. Existing users should update their nginx confs to avoid http2 deprecation warnings.
bookstack Changes:
Security Release
BookStack v24.05.1 has been released.
This is a security release that adds extra rate-limiting to some forms that are accessible without authentication, while also implementing changes to prevent methods that could be used to indicate if specific user emails exist in the system.
Upgrade is advised for instances accessible on the public web.
Full List of Changes
- Updated PHP dependencies.
- Updated routes with IP-based rate limiting. (#4993)
- Updated email confirmation flow to not require email submission form.
- Updated translations with latest Crowdin changes. (#4994)
- Updated WYSIWYG alignment handling to also consider table
alignattributes. (#5011) - Fixed attachment upload validation errors appearing as JSON. (#4996)
- Fixed incorrect notification preferences URL in email. Thanks to @KiDxS. (#5008, #5005)
- Fixed non-visible MFA setup titles in dark mode. (#5018)
- Fixed outdated path in visual theme system guidance. (#4998)
- Fixed potential cache permission issues by reverting cache location. (#4999)