Documented security fix in changelog
This commit is contained in:
Armin Ronacher
parent
aeed530e32
commit
179da5895f
1 changed files with 3 additions and 0 deletions
3
CHANGES
3
CHANGES
|
|
@ -15,6 +15,9 @@ Bugfix release, release date to be announced.
|
|||
module setups.
|
||||
- Fixed an issue where the subdomain setting for modules was
|
||||
ignored for the static folder.
|
||||
- Fixed a security problem that allowed clients to download arbitrary files
|
||||
if the host server was a windows based operating system and the client
|
||||
uses backslashes to escape the directory the files where exposed from.
|
||||
|
||||
Version 0.6
|
||||
-----------
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue