Browse Source

Documented security fix in changelog

pull/154/head
Armin Ronacher 14 years ago
parent
commit
b92120b190
  1. 3
      CHANGES

3
CHANGES

@ -40,6 +40,9 @@ Bugfix release, release date to be announced.
module setups. module setups.
- Fixed an issue where the subdomain setting for modules was - Fixed an issue where the subdomain setting for modules was
ignored for the static folder. ignored for the static folder.
- Fixed a security problem that allowed clients to download arbitrary files
if the host server was a windows based operating system and the client
uses backslashes to escape the directory the files where exposed from.
Version 0.6 Version 0.6
----------- -----------

Loading…
Cancel
Save