X-Git-Url: https://git.openstreetmap.org./nominatim.git/blobdiff_plain/ec474594105d8c60f04a10a48afe8420cd41b299..f960a9bf7fd1702b3d66995dd69307bd91d61a08:/SECURITY.md diff --git a/SECURITY.md b/SECURITY.md index f6215f64..3ec22cbd 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -9,10 +9,10 @@ versions. | Version | End of support for security updates | | ------- | ----------------------------------- | +| 4.5.x | 2026-09-12 | +| 4.4.x | 2026-03-07 | | 4.3.x | 2025-09-07 | | 4.2.x | 2024-11-24 | -| 4.1.x | 2024-08-05 | -| 4.0.x | 2023-11-02 | ## Reporting a Vulnerability @@ -36,5 +36,6 @@ incident. Announcements will also be published at the ## List of Previous Incidents -* 2020-05-04 - [SQL injection issue on /details endpoint](https://lists.openstreetmap.org/pipermail/geocoding/2020-May/002012.html) +* 2023-11-20 - [SQL injection vulnerability](https://nominatim.org/2023/11/20/release-432.html) * 2023-02-21 - [cross-site scripting vulnerability](https://nominatim.org/2023/02/21/release-421.html) +* 2020-05-04 - [SQL injection issue on /details endpoint](https://lists.openstreetmap.org/pipermail/geocoding/2020-May/002012.html)