Power Pack 5.3 Release Notes¶
Release date: August 6, 2024
Installation/Upgrade¶
Power Pack 5.3 is compatible with Review Board 3.0 - 7.0, and Python 2.7 or 3.6 - 3.12.
Follow our installation guide to prepare your system for Review Board or to upgrade your existing install.
To install this release, run:
$ pip install ReviewBoardPowerPack==5.3
Make sure to use the correct version of pip for your system.
To learn more, see:
Power Pack comes with paid support for Power Pack features. To add full support coverage for your whole Review Board server and related products, talk to us about a support contract.
New Features¶
Dark Mode (experimental)¶
Review Board 7 introduced an experimental Dark Mode. In this release, we add Dark Mode support for our Power Pack features.
For best compatibility, please use Review Board 7.0.1 or higher.
Security Fixes¶
Fixed a vulnerability where JavaScript code could be executed when opening and viewing PDFs.
In April 2024, security vulnerability CVE-2024-4367 was discovered in PDF.js, the library that we use to display PDF documents. The vulnerability allows arbitrary JavaScript code to be injected into PDFs, which will then execute when the document is viewed.
This is an issue if users upload malicious PDFs to the Review Board server. While this is fixed with this release, as a reminder you should only upload files that you trust to your server.
Bug Fixes¶
PDF Review¶
Fixed comments when diffing a document in Review Board 7.
When diffing versions of a document in the PDF viewer, creating and viewing comments on the later revision was broken in Review Board 7. All comments would appear on the earlier revision instead.
Fixed moving and resizing draft comments on a document.
Note
The fix for this bug requires both Review Board 7.0.1 or higher and Power Pack 5.3. If you are running Review Board 7.0.0 you will need to upgrade to 7.0.1 or higher.
Enable lock scroll by default when viewing diffs of documents.