Changeset 33967 in project


Ignore:
Timestamp:
04/16/17 12:41:33 (4 months ago)
Author:
sjamaan
Message:

Update spiffy changelog with 5.4.2

File:
1 edited

Legend:

Unmodified
Added
Removed
  • wiki/eggref/4/spiffy

    r33263 r33967  
    777777=== Changelog
    778778
     779* 5.4.2: Use proper 2-element vectors for {{date}} and {{last-modified}} headers, for compatibility with intarwebs newer than 1.6.1.
    779780* 5.4.1: Once again allow backslashes in paths on UNIX-like platforms in CHICKENs where {{make-pathname}} was fixed.  Improve request handling performance.  Remove over-reliance on undocumented {{alist-ref}} comparison procedure's argument order (which will be changed in CHICKEN 4.11).
    780781* 5.4: Fix critical security vulnerability (path traversal, CVE-2015-8235) by disallowing backslashes in request paths (thanks to Benedikt Rosenau for reporting the vulnerability).  Use {{spiffy}} in the gensym'ed name of spiffy's threads, for easier debugging.  Thanks to Evan Hanson.
     
    806807=== License
    807808
    808   Copyright (c) 2005-2016, Felix L. Winkelmann and Peter Bex
     809  Copyright (c) 2005-2017, Felix L. Winkelmann and Peter Bex
    809810  All rights reserved.
    810811 
Note: See TracChangeset for help on using the changeset viewer.