version/2024.10.3
版本发布时间: 2024-11-21 22:52:37
goauthentik/authentik最新发布版本:version/2024.10.5(2024-12-11 01:23:11)
See https://docs.goauthentik.io/docs/releases/2024.10#fixed-in-2024103
Note that this security release includes backwards incompatible database changes; see https://docs.goauthentik.io/docs/security/cves/CVE-2024-52289#patches
What's Changed
- providers/ldap: fix global search_full_directory permission not being sufficient (cherry-pick #12028) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12030
- rbac: fix incorrect object_description for object-level permissions (cherry-pick #12029) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12043
- web/flows: fix invisible captcha call (cherry-pick #12048) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12049
- core: fix source_flow_manager throwing error when authenticated user attempts to re-authenticate with existing link (cherry-pick #12080) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12081
- providers/scim: accept string and int for SCIM IDs (cherry-pick #12093) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12095
- root: fix activation of locale not being scoped (cherry-pick #12091) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12096
- root: check remote IP for proxy protocol same as HTTP/etc (cherry-pick #12094) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12097
- website/docs: group CVEs by year (cherry-pick #12099) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12100
- internal: add CSP header to files in
/media
(cherry-pick #12092) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12108 - website/docs: add CSP to hardening (cherry-pick #11970) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12116
- security: fix CVE 2024 52287 (cherry-pick #12114) by @gcp-cherry-pick-bot in https://github.com/goauthentik/authentik/pull/12117
Full Changelog: https://github.com/goauthentik/authentik/compare/version/2024.10.2...version/2024.10.3
1、 authentik-outpost-ldap_darwin_amd64 39.53MB
2、 authentik-outpost-ldap_darwin_arm64 38.42MB
3、 authentik-outpost-ldap_linux_amd64 39.1MB
4、 authentik-outpost-ldap_linux_arm64 37.82MB
5、 authentik-outpost-proxy_darwin_amd64 61.37MB
6、 authentik-outpost-proxy_darwin_arm64 60.37MB
7、 authentik-outpost-proxy_linux_amd64 60.89MB
8、 authentik-outpost-proxy_linux_arm64 59.51MB
9、 authentik-outpost-radius_darwin_amd64 38.73MB
10、 authentik-outpost-radius_darwin_arm64 37.68MB
11、 authentik-outpost-radius_linux_amd64 38.35MB
12、 authentik-outpost-radius_linux_arm64 37.07MB