New LinkStack release (version 4.2.3)
Security Update
New additions:
- Improved security
- Added support for more image formats
Improved security for custom user images. Users can no longer upload SVGs as their background image for improved security.
Hardened checks to make sure only supported image types are used. Users can now use multiple image formats for their profile picture.
If users have the Imagick PHP extension enabled, the app will sanitize images when uploaded and remove all EXIF and metadata.
In short:
- Fixed JS exploit using SVG
- Now sanitizing EXIF and metadata
- Now allowing multiple file types as profile picture
- Added new error messages
New Translations:
- Brazilian Portuguese
Issues:
Users may get an erroneous error when trying to delete their profile or background image. We do not know what's causing this. For now, you can ignore this error, you will be able to delete your images by trying again eventually.