Skip to content

koel

v9.3.5 Bugfix

This release fixes issues for SREs watching stability and regressions.

Published 16d Media Servers
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

audio laravel music music-player streaming vue

Affected surfaces

auth rce_ssrf

Summary

AI summary

Fixed validation of redirect targets when downloading podcast episodes.

Changes in this release

Bugfix Medium

validate redirect targets when downloading podcast episodes

validate redirect targets when downloading podcast episodes

Source: granite4.1:8b-q6_K@2026-05-19

Confidence: high
Full changelog

What's Changed

  • fix: validate redirect targets when downloading podcast episodes by @phanan in https://github.com/koel/koel/pull/2486

Full Changelog: https://github.com/koel/koel/compare/v9.3.4...v9.3.5

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track koel

Get notified when new releases ship.

Sign up free

About koel

Music streaming solution that works.

All releases →

Related context

Beta — feedback welcome: [email protected]