From f46fef1a6c69987a566b32abcdc147be48213a08 Mon Sep 17 00:00:00 2001 From: Maxim Kadushkin Date: Fri, 26 Dec 2025 09:26:17 +0000 Subject: [PATCH] Update CHANGELOG.md (#19) Co-authored-by: Maxim Kadushkin Co-committed-by: Maxim Kadushkin --- .aspell.en.pws | 4 +++- CHANGELOG.md | 34 ++++++++++++++++++++++++++++++++++ 2 files changed, 37 insertions(+), 1 deletion(-) diff --git a/.aspell.en.pws b/.aspell.en.pws index 9b28765..b9d2586 100644 --- a/.aspell.en.pws +++ b/.aspell.en.pws @@ -394,4 +394,6 @@ HEIF HWPML MCP checkboxes -websocket \ No newline at end of file +websocket +textarea +RCE \ No newline at end of file diff --git a/CHANGELOG.md b/CHANGELOG.md index 00acacc..43cf95e 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,39 @@ # Change log +## 9.2.1 + +### Fixes + +#### Document Editor + +* Fixed word break in Korean + +#### Spreadsheet Editor + +* Fixed an issue with data overlap when transferring sheets between documents + via Move or Copy + +#### PDF Editor + +* Fixed an error when opening a PDF file +* Fixed an error when scrolling pages in a PDF file +* Fixed errors when copying, pasting, and undoing actions with the Find panel in + PDF Editing mode +* Fixed an error when deleting a page from a document while working with the Find + panel in PDF Editing mode + +#### Security + +* Fixed the XSS injection in the Color theme name using a custom Prepared exploit +* Fixed the XSS injection of JS code in the Font field for the Multilevel list + settings window +* Fixed a vulnerability in the textarea of the comment editing form +* Fixed the possibility of memory manipulation when converting XLS to XLSX, + which can lead + to information leakage +* Fixed issues with memory manipulation when converting XLS to XLSX, which can + lead to RCE + ## 9.2.0 ### New features