Published July 20, 2023
| Version v3.2.6
Software
Open
indico/indico: v3.2.6
Creators
- Adrian1
- Pedro Ferreira2
- Alejandro Avilés
- Michito3
- Ilias Trichopoulos
- Jose Benito Gonzalez Lopez3
- Alberto Resco Perez4
- Marco Vidal García
- Florian Vessaz
- David Martín Clavo5
- Tomas R3
- Pedro Lourenço6
- Jakub Trzaskoma
- DavidAndreev
- panagiotappl
- Duarte Galvão7
- Leats
- Björn Pedersen
- Javier Ferrer2
- Parth Shandilya8
- Segilola Mustapha
- Vasant Vohra
- Natalia Juszka
- Dominic H.2
- Pedro Gaudêncio9
- ferhat elmas10
- Giorgio Pieretti11
- Dirk Hoffmann12
- Jeffrey Clark13
- 1. CERN / @indico
- 2. @CERN
- 3. CERN
- 4. Pivotal
- 5. Swisscom
- 6. @cisco
- 7. @indico at CERN
- 8. @cern @cernanalysispreservation
- 9. @genericwebsite
- 10. @cloudflare
- 11. UNOG
- 12. CNRS/IN2P3
- 13. @puppetlabs
Description
:warning: Security fixes
- Fix an XSS vulnerability in various confirmation prompts commonly used when deleting things. Exploitation requires someone with at least submission privileges (such as a speaker) and then rely on someone else to attempt to delete this content. However, considering that event organizers may indeed delete suspicious-looking content when encountering it, there is a non-negligible risk of such an attack to succeed. Because of this it is strongly recommended to upgrade as soon as possible (#5862, CVE-2023-37901, GHSA-fmqq-25x9-c6hm)
- New translation: Czech
- Show which files were added or modified on each editing timeline revision (#5802)
- Support rendering Japanese, Chinese & Korean letters in PDFs (#3120, #5842, thanks @adamjenkins)
- Add button to adapt columns widths on the reviewing area's abstracts list (#5837)
- Allow cloning category-level badge/poster templates into another category (#5775, thanks @SegiNyn)
- Allow using a custom link text in the
{event_link}email placeholder, using the{event_link:something-else-here}syntax (#5858, #5860) - Add option to add "event cancelled" semantics for event labels, which will disable reminders for events having this label (#5285, #5861)
- Use correct name formatting in person link fields (#5835)
- Support Python 3.11
Files
indico/indico-v3.2.6.zip
Files
(14.4 MB)
| Name | Size | Download all |
|---|---|---|
|
md5:5e9b904fa7b5de8189db4e219210df9b
|
14.4 MB | Preview Download |
Additional details
Related works
- Is supplement to
- https://github.com/indico/indico/tree/v3.2.6 (URL)