jupyter-server-proxy versions 4.2.0 and 3.2.4 were released today with a fix for a critical cross-site scripting (XSS) vulnerability. Please update your installations as soon as possible.
For more details see CVE-2024-35225.
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| [ANN] Security releases: JupyterHub 4.1.6, 5.1.0 | 1 | 109 | August 8, 2024 | |
| JupyterHub 4.1.0 - security release | 3 | 279 | March 27, 2024 | |
| [ANN] JupyterHub 2.0.2 | 0 | 482 | January 10, 2022 | |
| Security fix in nbgitpuller and BinderHub | 0 | 651 | August 25, 2021 | |
| Correct Content Security Policy for use with Proxy | 1 | 2816 | December 1, 2020 |