Question 1

Is there a bug in next 14.1.0?

Accepted Answer

Server Action redirect bypasses middleware CVE-2024-34351 — a redirect inside a Server Action can bypass authentication middleware. Upgrade to 14.1.1 or later. Fixed in next 14.1.1.

Question 2

Is there a bug in next 15.0.0?

Accepted Answer

next/image with remotePatterns and query strings returns 404 on edge Images matched by remotePatterns that included query strings in the src returned 404 when deployed to the Edge runtime in 15.0.0. Fixed in 15.0.1. Fixed in next 15.0.1.

Question 3

Is there a bug in next 15.1.0 - 15.1.2?

Accepted Answer

Server Action with useActionState loses state on navigation Calling a Server Action via useActionState and then navigating with next/link reset the returned state. Fixed in 15.1.3. Fixed in next 15.1.3.

Severity	Affected	Fixed in	Title	Status	Source
high	14.1.0	14.1.1	Server Action redirect bypasses middleware CVE-2024-34351 — a redirect inside a Server Action can bypass authentication middleware. Upgrade to 14.1.1 or later.	closed	github:#62600
medium	15.0.0	15.0.1	next/image with remotePatterns and query strings returns 404 on edge Images matched by remotePatterns that included query strings in the src returned 404 when deployed to the Edge runtime in 15.0.0. Fixed in 15.0.1.	closed	github:#71755
low	15.1.0 - 15.1.2	15.1.3	Server Action with useActionState loses state on navigation Calling a Server Action via useActionState and then navigating with next/link reset the returned state. Fixed in 15.1.3.	closed	github:#74523

next known bugs