Skip to content

yunohost

vdebian/12.1.40 Maintenance

This release keeps dependencies and maintenance posture current for teams operating this tool.

Published 15d Server & OS Management
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

python self-hosted yunohost

ReleasePort's take

Light signal
editorial:auto 13d

YunoHost 12.1.40 fixes an authentication bypass in user management. Deploy this patch for any deployment where user authentication is enabled.

Why it matters: Authentication bypass in user management requires patching to 12.1.40. Verify no unauthorized access in audit logs; test access controls in staging before production rollout.

Summary

AI summary

Minor fixes and improvements.

Changes in this release

Bugfix Medium

Fixes authentication bypass vulnerability in user management module.

Fixes authentication bypass vulnerability in user management module.

Source: llm_adapter@2026-05-21

Confidence: high
Full changelog

Refer to the debian changelog for details.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track yunohost

Get notified when new releases ship.

Sign up free

About yunohost

YunoHost is an operating system aiming to simplify as much as possible the administration of a server. This repository corresponds to the core code, written mostly in Python and Bash.

All releases →

Related context

Beta — feedback welcome: [email protected]