- Fixed multiple high‑severity vulnerabilities (CVE‑2021‑22883, CVE‑2021‑22884, CVE‑2021‑23840) in HTTP/2, inspector DNS rebinding, and OpenSSL integer overflow.
- Updated OpenSSL dependency to 1.1.1j and added an HTTP/2 unknownProtocol timeout.
- Removed “localhost6” from the inspector whitelist to close the DNS rebinding vector.
Community impact
Community ratings: 0 Useful, 0 Noise, 0 Risky, 0 Broke, 0 Try.