website/docs: update 2024.2 release notes with security fixes (#10232)

2024-06-26 12:40:01 +02:00
parent f40feaf95f
commit a1153d3393
1 changed files with 5 additions and 0 deletions
--- a/website/docs/releases/2024/v2024.2.md
+++ b/website/docs/releases/2024/v2024.2.md
@ -347,6 +347,11 @@ helm upgrade authentik authentik/authentik -f values.yaml --version ^2024.2
 -   stages/user_write: ensure user data is json-serializable (cherry-pick #8926) (#8928)
 -   tenants: really ensure default tenant cannot be deleted (cherry-pick #8875) (#8876)

+## Fixed in 2024.2.4
+
+-   security: fix [CVE-2024-37905](../../security/CVE-2024-37905.md), reported by [@m2a2](https://github.com/m2a2) (cherry-pick #10230) (#10238)
+-   security: fix [CVE-2024-38371](../../security/CVE-2024-38371.md), reported by Stefan Zwanenburg (cherry-pick #10229) (#10235)
+
 ## API Changes

 #### What's New