Version v0.14.1 (#3501)v0.14.1 helm-dendrite-0.15.1

author: Till <2353100+S7evinK@users.noreply.github.com> 2025-01-16 19:42:51 +0100
committer: GitHub <noreply@github.com> 2025-01-16 19:42:51 +0100
commit: 40bef6a423d91fff69afb1cfb926d0b1612f38ec (patch)
tree: 14890d37d2bcd658380e7b17b56f42a47dbbf2ea /CHANGES.md
parent: e9cc37ac52ff1611ddf055a95e65869806041038 (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/CHANGES.md b/CHANGES.md
index 7d69459e..b5947c44 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -1,5 +1,23 @@
 # Changelog
 
+## Dendrite 0.14.1 (2025-01-16)
+
+### ⚠ Important
+
+This is a security release, [gomatrixserverlib](https://github.com/matrix-org/gomatrixserverlib) was vulnerable to 
+server-side request forgery, serving content from a private network it can access, under certain conditions. 
+
+Upgrading to this version is **highly** recommended.
+
+### Security
+
+- Support for blocking access to certain networks, fixing [CVE-2024-52594](https://www.cve.org/CVERecord?id=CVE-2024-52594) and 
+  [GHSA-4ff6-858j-r822](https://github.com/matrix-org/gomatrixserverlib/security/advisories/GHSA-4ff6-858j-r822)
+
+### Fixes
+
+- Speed-up loading server ACLs on startup, this is mostly noticeable on larger instances with many rooms.
+
 ## Dendrite 0.14.0 (2024-12-18)
 
 This is the first release after forking matrix-org/dendrite, this repository is now licensed under AGPLv3.0.
author	Till <2353100+S7evinK@users.noreply.github.com>	2025-01-16 19:42:51 +0100
committer	GitHub <noreply@github.com>	2025-01-16 19:42:51 +0100
commit	40bef6a423d91fff69afb1cfb926d0b1612f38ec (patch)
tree	14890d37d2bcd658380e7b17b56f42a47dbbf2ea /CHANGES.md
parent	e9cc37ac52ff1611ddf055a95e65869806041038 (diff)