Update Changelog and bump version.

andialbrecht · Sep 10, 2021 · 3eec44e · 3eec44e
1 parent 8238a9e
commit 3eec44e
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 3 deletions.
diff --git a/CHANGELOG b/CHANGELOG
@@ -1,5 +1,14 @@
-Development Version
--------------------
+Release 0.4.2 (Sep 10, 2021)
+----------------------------
+
+Notable Changes
+
+* IMPORTANT: This release fixes a security vulnerability in the
+  strip comments filter. In this filter a regular expression that was
+  vulnerable to ReDOS (Regular Expression Denial of Service) was
+  used.
+  The vulnerability was discovered by @erik-krogh and @yoff from
+  GitHub Security Lab (GHSL). Thanks for reporting!
 
 Enhancements
 

diff --git a/sqlparse/__init__.py b/sqlparse/__init__.py
@@ -16,7 +16,7 @@
 from sqlparse import formatter
 
 
-__version__ = '0.4.2.dev0'
+__version__ = '0.4.2'
 __all__ = ['engine', 'filters', 'formatter', 'sql', 'tokens', 'cli']