- Fixed CVE-2022-32212 (DNS rebinding on macOS), CVE-2022-32213 (OBS fold bypass), CVE-2022-35255 (weak randomness in WebCrypto), and CVE-2022-35256 (HTTP request smuggling).
- Patched crypto module to use strong randomness for WebCrypto key generation and disabled chunked encoding when OBS fold is used.
- Corrected IPv4 validation to reject non‑routable addresses.
Community impact
Community ratings: 0 Useful, 0 Noise, 0 Risky, 0 Broke, 0 Try.