diff --git a/CHANGELOG.md b/CHANGELOG.md index 8c0a6e5c4..004432e45 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -53,6 +53,18 @@ SPDX-License-Identifier: GPL-3.0-or-later - xfer: fix out-of-bounds read when receiving empty line in DCC chat ([#2323](https://github.com/weechat/weechat/issues/2323)) - xfer: fix out-of-bounds write in xfer file transfer resume ([#2326](https://github.com/weechat/weechat/issues/2326)) +## Version 4.9.3 (2026-07-05) + +### Fixed + +- core: fix buffer overflow in connection to SOCKS5 proxy ([#2325](https://github.com/weechat/weechat/issues/2325)) +- core: fix possible buffer overflow in command /color alias ([#2330](https://github.com/weechat/weechat/issues/2330)) +- core: fix possible buffer overflow in list of commands displayed by /help ([#2330](https://github.com/weechat/weechat/issues/2330)) +- api: do not free dynamic string on error in function string_dyn_concat +- relay/api: fix memory leak in resources "handshake", "input" and "completion" ([GHSA-wmpc-m6g9-fwj8](https://github.com/weechat/weechat/security/advisories/GHSA-wmpc-m6g9-fwj8)) +- relay: fix read of uncompressed websocket frame ([#2331](https://github.com/weechat/weechat/issues/2331)) +- xfer: fix out-of-bounds write in xfer file transfer resume ([#2326](https://github.com/weechat/weechat/issues/2326)) + ## Version 4.9.2 (2026-06-07) ### Fixed diff --git a/version.sh b/version.sh index d63a146df..f43aeacb5 100755 --- a/version.sh +++ b/version.sh @@ -41,7 +41,7 @@ # devel-number the devel version as hex number ("0x04010000" for "4.1.0-dev") # -weechat_stable="4.9.2" +weechat_stable="4.9.3" weechat_devel="4.10.0-dev" stable_major=$(echo "${weechat_stable}" | cut -d"." -f1)