]> git.openstreetmap.org Git - nominatim.git/blobdiff - SECURITY.md
projects / nominatim.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Merge remote-tracking branch 'upstream/master'
[nominatim.git] / SECURITY.md
diff --git a/SECURITY.md b/SECURITY.md
index 41a6f2ef281f82870b02ae61750ad9d6b6921d4a..a14eba13169129ed498c3fcf8e2487ce5753e326 100644 (file)
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -9,10 +9,10 @@ versions.
 
 | Version | End of support for security updates |
 | ------- | ----------------------------------- |
-| 3.7.x   | 2023-04-05                          |
-| 3.6.x   | 2022-12-12                          |
-| 3.5.x   | 2022-06-05                          |
-| 3.4.x   | 2021-10-24                          |
+| 4.4.x   | 2026-03-07                          |
+| 4.3.x   | 2025-09-07                          |
+| 4.2.x   | 2024-11-24                          |
+| 4.1.x   | 2024-08-05                          |
 
 ## Reporting a Vulnerability
 
@@ -36,4 +36,6 @@ incident. Announcements will also be published at the
 
 ## List of Previous Incidents
 
+* 2023-11-20 - [SQL injection vulnerability](https://nominatim.org/2023/11/20/release-432.html)
+* 2023-02-21 - [cross-site scripting vulnerability](https://nominatim.org/2023/02/21/release-421.html)
 * 2020-05-04 - [SQL injection issue on /details endpoint](https://lists.openstreetmap.org/pipermail/geocoding/2020-May/002012.html)
Open Source search based on OpenStreetMap data