This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Topics
Affected surfaces
Summary
AI summaryFixed server crashes caused by duplicate refresh tokens, author renaming conflicts, and malformed metadata files.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Bugfix | Medium |
Fixes server crash caused by invalid `metadata.json` during scan. Fixes server crash caused by invalid `metadata.json` during scan. Source: llm_adapter@2026-05-28 Confidence: high |
— |
| Bugfix | Medium |
Fixes duplicate refresh tokens causing unexpected logout across sessions. Fixes duplicate refresh tokens causing unexpected logout across sessions. Source: llm_adapter@2026-05-28 Confidence: high |
— |
| Bugfix | Medium |
Fixes server crash when renaming an author to another author on the same book. Fixes server crash when renaming an author to another author on the same book. Source: llm_adapter@2026-05-28 Confidence: low |
— |
| Refactor | Low |
Improves Sequelize user queries to use direct case‑insensitive username/email matching. Improves Sequelize user queries to use direct case‑insensitive username/email matching. Source: llm_adapter@2026-05-28 Confidence: high |
— |
Full changelog
Important: New authentication system was added in v2.26.0. See https://github.com/advplyr/audiobookshelf/discussions/4460 for details.
Fixed
- Duplicate refresh tokens across sessions can cause unexpected logout #5253 by @nichwall in #5255
- Server crash when renaming an author to another author when they are both on the same book #5247 by @nichwall in #5256
- Server crash when invalid
metadata.jsonis scanned in #5268 - Sequelize user queries to use direct case-insensitive username/email matching
Full Changelog: https://github.com/advplyr/audiobookshelf/compare/v2.35.0...v2.35.1
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
Related context
Beta — feedback welcome: [email protected]