Updated changelog. Updated version to 2025.3.3. Set last tested NVDA version to 2024.4.2

Author: jmdaweb

buildVars.py

@@ -19,7 +19,7 @@
 	# Translators: Long description to be shown for this add-on on add-on information from add-ons manager
 	"addon_description" : _("""Allows remote control of and remote access to another machine. This add-on is based on NVDA Remote."""),
 	# version
-	"addon_version" : "2025.1.17",
+	"addon_version" : "2025.3.3",
 	# Author(s)
 	"addon_author" : "Asociación Comunidad Hispanohablante de NVDA <contacto@nvda.es> and other contributors. Original work by Tyler Spivey <tspivey@pcdesk.net>, Christopher Toth <q@q-continuum.net>",
 	# URL for the add-on documentation support
@@ -29,7 +29,7 @@
 	# Minimum NVDA version supported (e.g. "2018.3.0", minor version is optional)
 	"addon_minimumNVDAVersion": "2019.3.0",
 	# Last NVDA version supported/tested (e.g. "2018.4.0", ideally more recent than minimum version)
-	"addon_lastTestedNVDAVersion": "2024.4.1",
+	"addon_lastTestedNVDAVersion": "2024.4.2",
 	# Add-on update channel (default is None, denoting stable releases, and for development releases, use "dev"; do not change unless you know what you are doing)
 	"addon_updateChannel" : None,
 	# Add-on license such as GPL 2

changelog.md

@@ -1,6 +1,7 @@
 This release brings the following changes:
 
-* Updated translations.
+* Fixed CVE-2025-26326, thanks to @RafaelFernandesBR. Now, TeleNVDA will fail to connect or save settings when attempting to use passwords with less than 6 characters or easily discoverable.
+* Last tested NVDA version is now 2024.4.2.
 
 Important: some anti-virus software are flagging parts of this add-on as malicious. Specifically, `url_handler.exe`, which opens `remote://` and `tele://` links. If you don't use this feature, you can safely quarantine or delete the file. Otherwise, you must add it as an exception.