SECURITY: [PHP-FPM] Weak ownership on Apache logfiles would allow an attacker - from within a compromised webapp - to unlink a log then create a link to a protected system file potentially resulting in file corruption. CHANGED: [cgroup] A nested group consisting of a sole circular group may be removed. [Invoiceninja] Use releases with bundled React assets.