[prev in list] [next in list] [prev in thread] [next in thread]
List: gallery-checkins
Subject: [Gallery-checkins] CVS: gallery ChangeLog,1.158,1.159 version.php,1.88,1.89
From: Bharat Mediratta <bharat () users ! sourceforge ! net>
Date: 2001-11-27 20:48:18
[Download RAW message or body]
Update of /cvsroot/gallery/gallery
In directory usw-pr-cvs1:/tmp/cvs-serv32332
Modified Files:
ChangeLog version.php
Log Message:
2001-11-27 Bharat Mediratta <bharat@menalto.com> (1.2.3-p1)
* [SECURITY] Fixed a bug where a bad guy could use a malicious search
string or comment value to see the cookie. Thanks to Cabezon Aurelien
for finding the flaw.
Index: ChangeLog
===================================================================
RCS file: /cvsroot/gallery/gallery/ChangeLog,v
retrieving revision 1.158
retrieving revision 1.159
diff -u -r1.158 -r1.159
--- ChangeLog 2001/11/21 08:06:48 1.158
+++ ChangeLog 2001/11/27 20:48:16 1.159
@@ -1,3 +1,9 @@
+2001-11-27 Bharat Mediratta <bharat@menalto.com> (1.2.3-p1)
+
+ * [SECURITY] Fixed a bug where a bad guy could use a malicious search
+ string or comment value to see the cookie. Thanks to Cabezon Aurelien
+ for finding the flaw.
+
2001-11-20 Bharat Mediratta <bharat@menalto.com> (1.2.3)
* v1.2.3 ships!
Index: version.php
===================================================================
RCS file: /cvsroot/gallery/gallery/version.php,v
retrieving revision 1.88
retrieving revision 1.89
diff -u -r1.88 -r1.89
--- version.php 2001/11/21 08:06:49 1.88
+++ version.php 2001/11/27 20:48:16 1.89
@@ -38,7 +38,7 @@
$gallery = new stdClass();
}
-$gallery->version = "1.2.3";
+$gallery->version = "1.2.3-p1";
$gallery->config_version = 26;
$gallery->album_version = 4;
$gallery->remote_protocol_version = 1;
_______________________________________________
Gallery-checkins mailing list
Gallery-checkins@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gallery-checkins
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic