You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@couchdb.apache.org by ja...@apache.org on 2013/08/02 22:08:16 UTC

[02/49] git commit: updated refs/heads/1867-feature-plugins to d269b53

Add 1.2.1 changes to docs changelog.


Project: http://git-wip-us.apache.org/repos/asf/couchdb/repo
Commit: http://git-wip-us.apache.org/repos/asf/couchdb/commit/749ddd82
Tree: http://git-wip-us.apache.org/repos/asf/couchdb/tree/749ddd82
Diff: http://git-wip-us.apache.org/repos/asf/couchdb/diff/749ddd82

Branch: refs/heads/1867-feature-plugins
Commit: 749ddd824cd6b1ab208486ba83c89b1157e45e86
Parents: 3acb781
Author: Dirkjan Ochtman <dj...@apache.org>
Authored: Tue Jul 30 16:33:00 2013 +0200
Committer: Dirkjan Ochtman <dj...@apache.org>
Committed: Tue Jul 30 16:33:00 2013 +0200

----------------------------------------------------------------------
 share/doc/src/changelog.rst | 42 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 42 insertions(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/couchdb/blob/749ddd82/share/doc/src/changelog.rst
----------------------------------------------------------------------
diff --git a/share/doc/src/changelog.rst b/share/doc/src/changelog.rst
index e9afaad..afd447d 100644
--- a/share/doc/src/changelog.rst
+++ b/share/doc/src/changelog.rst
@@ -338,6 +338,48 @@ Compression can be disabled by setting ``compression = none`` in your
 ``local.ini`` ``[couchdb]`` section, but the on-disk format will still be
 upgraded.
 
+Version 1.2.1
+-------------
+
+Security
+^^^^^^^^
+
+* Fixed CVE-2012-5641: Apache CouchDB Information disclosure via unescaped
+  backslashes in URLs on Windows
+* Fixed CVE-2012-5649: Apache CouchDB JSONP arbitrary code execution with Adobe
+  Flash
+* Fixed CVE-2012-5650: Apache CouchDB DOM based Cross-Site Scripting via Futon
+  UI
+
+HTTP Interface
+^^^^^^^^^^^^^^
+
+* No longer rewrites the X-CouchDB-Requested-Path during recursive
+  calls to the rewriter.
+* Limit recursion depth in the URL rewriter. Defaults to a maximum
+  of 100 invocations but is configurable.
+
+Build System
+^^^^^^^^^^^^
+
+* Fix couchdb start script.
+* Win: fix linker invocations.
+
+Futon
+^^^^^
+
+* Disable buttons that aren't available for the logged-in user.
+
+Replication
+^^^^^^^^^^^
+
+* Fix potential timeouts.
+
+View System
+^^^^^^^^^^^
+
+* Change use of signals to avoid broken view groups.
+
 Version 1.2.0
 -------------