Jellyfin is the volunteer-built media solution that puts you in control of your media. Stream to any device from your own server, with no strings attached. Your media, your server, your way.
@ -32,10 +32,16 @@ path: ""
defaultUsername:""
defaultPassword:""
releaseNotes:>-
⚠️ CRITICAL SECURITY ADVISORY:There's a significant security issue in previous versions, where two vulnerabilities can be paired to allow any Jellyfin user, even those without admin rights, to remotely control the system. One of these issues has been around since the 10.8.0 release, while the other has been present in all versions of Jellyfin up to now. It's essential for all Jellyfin administrators to update to this version, especially if they have untrusted users or if their Jellyfin is accessible on the Internet.
⚠️ PREVIOUS CRITICAL SECURITY ADVISORY:For user's still running Jellyfin version 10.8.9 and below, please update Jellyfin immediately.
There is a significant security issue in previous versions, where two vulnerabilities can be paired to allow any Jellyfin user, even those without admin rights, to remotely control the system.
One of these issues has been around since the 10.8.0 release, while the other has been present in all versions of Jellyfin up to now. It's essential for all Jellyfin administrators to update to this version,
especially if they have untrusted users or if their Jellyfin is accessible on the Internet.
This update is a hotfix release with no new features or major improvements.
Full changelogs for Jellyfin releases can be found here:https://github.com/jellyfin/jellyfin/releases
Full release notes can be found here:https://github.com/jellyfin/jellyfin/releases
Parth Jadhav
1 year ago
GitHub