diff options
| author | Mariusz Felisiak <felisiak.mariusz@gmail.com> | 2021-05-12 10:42:01 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-05-12 10:42:01 +0200 |
| commit | d1f1417caed648db2f81a1ec28c47bf958c01958 (patch) | |
| tree | 040e6ed7cedbea4d3978ea7cf20dd228d946f2ee /docs/releases/2.2.21.txt | |
| parent | e6406853c326ea9210d07766138d2b193c6d1fba (diff) | |
Refs #32718 -- Corrected CVE-2021-31542 release notes.
Diffstat (limited to 'docs/releases/2.2.21.txt')
| -rw-r--r-- | docs/releases/2.2.21.txt | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/docs/releases/2.2.21.txt b/docs/releases/2.2.21.txt index f32aeadff7..2302df4285 100644 --- a/docs/releases/2.2.21.txt +++ b/docs/releases/2.2.21.txt @@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files directory-traversal via uploaded files with suitably crafted file names. In order to mitigate this risk, stricter basename and path sanitation is now -applied. Specifically, empty file names and paths with dot segments will be -rejected. +applied. |