diff options
| author | Mariusz Felisiak <felisiak.mariusz@gmail.com> | 2021-05-12 10:42:01 +0200 |
|---|---|---|
| committer | Mariusz Felisiak <felisiak.mariusz@gmail.com> | 2021-05-12 10:43:12 +0200 |
| commit | 9fb9944d1cddf84335c2ab6cfa3d7c2672541ab6 (patch) | |
| tree | fd0f6766aa5879f1afe13d6096ec030e85de2b67 | |
| parent | 068887450479e035247d410863de662687cee2dc (diff) | |
[3.1.x] Refs #32718 -- Corrected CVE-2021-31542 release notes.
Backport of d1f1417caed648db2f81a1ec28c47bf958c01958 from main.
| -rw-r--r-- | docs/releases/2.2.21.txt | 3 | ||||
| -rw-r--r-- | docs/releases/3.1.9.txt | 3 |
2 files changed, 2 insertions, 4 deletions
diff --git a/docs/releases/2.2.21.txt b/docs/releases/2.2.21.txt index f32aeadff7..2302df4285 100644 --- a/docs/releases/2.2.21.txt +++ b/docs/releases/2.2.21.txt @@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files directory-traversal via uploaded files with suitably crafted file names. In order to mitigate this risk, stricter basename and path sanitation is now -applied. Specifically, empty file names and paths with dot segments will be -rejected. +applied. diff --git a/docs/releases/3.1.9.txt b/docs/releases/3.1.9.txt index 682270b901..a97b9b6cee 100644 --- a/docs/releases/3.1.9.txt +++ b/docs/releases/3.1.9.txt @@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files directory-traversal via uploaded files with suitably crafted file names. In order to mitigate this risk, stricter basename and path sanitation is now -applied. Specifically, empty file names and paths with dot segments will be -rejected. +applied. |