27.0.2 with important security fixes was released on Aug-10: https://nextcloud.com/changelog/#27-0-2
Thanks for the report! I wish https://nextcloud.com/changelog/ would be clearer on vulnerabilities without having to wait for the CVE or digging through individual bugs, though I understand their 3 weeks delay reasoning (does not make spotting security bumps easy though)
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=815eee2b6a78ff13eb5cf7153cecb51e17b1203a commit 815eee2b6a78ff13eb5cf7153cecb51e17b1203a Author: Bernard Cafarelli <voyageur@gentoo.org> AuthorDate: 2023-08-16 21:44:49 +0000 Commit: Bernard Cafarelli <voyageur@gentoo.org> CommitDate: 2023-08-16 21:45:35 +0000 www-apps/nextcloud: add 25.0.10, 26.0.5, 27.0.2 Also allow php 8.2 for 27.x branch Closes: https://bugs.gentoo.org/911384 Closes: https://bugs.gentoo.org/912157 Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org> www-apps/nextcloud/Manifest | 3 ++ www-apps/nextcloud/nextcloud-25.0.10.ebuild | 43 +++++++++++++++++++++++++++++ www-apps/nextcloud/nextcloud-26.0.5.ebuild | 43 +++++++++++++++++++++++++++++ www-apps/nextcloud/nextcloud-27.0.2.ebuild | 43 +++++++++++++++++++++++++++++ 4 files changed, 132 insertions(+)
