Critical security update. - pkgsrc

diff options

author	morr <morr@pkgsrc.org>	2010-12-30 22:27:45 +0000
committer	morr <morr@pkgsrc.org>	2010-12-30 22:27:45 +0000
commit	c0a0e0277946f2befe31342bdd54742dacfe40bd (patch)
tree	8813c090e1f17f614850425eccb64a855971270c /www/py-webpy
parent	8a859cb9e47b8157ce9f06cd267c1df31f93df44 (diff)
download	pkgsrc-c0a0e0277946f2befe31342bdd54742dacfe40bd.tar.gz

Critical security update.

ChangeLog: * Fix XSS vulnerabilities in the KSES library: Don't be case sensitive to attribute names. Handle padded entities when checking for bad protocols. Normalize entities before checking for bad protocols in esc_url().

Diffstat (limited to 'www/py-webpy')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: