Update to 2.42.8, fixes CVE-2021-46829.