Version 0.9.3v0.9.3

author: Neil Alexander <neilalexander@users.noreply.github.com> 2022-08-15 10:56:54 +0100
committer: Neil Alexander <neilalexander@users.noreply.github.com> 2022-08-15 10:56:54 +0100
commit: bcdbd5c00a757971f753622b5a9f78347d5160d4 (patch)
tree: 79a90b3afc2dae3a95d0db21ca23a8a1ca8e8190 /CHANGES.md
parent: 65b7db633c07311fea109ca045fcdb20c87d22a3 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/CHANGES.md b/CHANGES.md
index 041816ae..36a1a631 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -1,5 +1,15 @@
 # Changelog
 
+## Dendrite 0.9.3 (2022-08-15)
+
+### Important
+
+* This is a **security release** to fix a vulnerability within event auth, affecting all versions of Dendrite before 0.9.3. Upgrading to this version is highly recommended. For more information, [see here](https://github.com/matrix-org/gomatrixserverlib/security/advisories/GHSA-grvv-h2f9-7v9c).
+
+### Fixes
+
+* Dendrite will now correctly parse the `"events_default"` power level value for event auth.
+
 ## Dendrite 0.9.2 (2022-08-12)
 
 ### Features
author	Neil Alexander <neilalexander@users.noreply.github.com>	2022-08-15 10:56:54 +0100
committer	Neil Alexander <neilalexander@users.noreply.github.com>	2022-08-15 10:56:54 +0100
commit	bcdbd5c00a757971f753622b5a9f78347d5160d4 (patch)
tree	79a90b3afc2dae3a95d0db21ca23a8a1ca8e8190 /CHANGES.md
parent	65b7db633c07311fea109ca045fcdb20c87d22a3 (diff)