You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@couchdb.apache.org by ja...@apache.org on 2013/06/18 16:32:49 UTC
[30/41] git commit: updated refs/heads/1832-fix-empty-attachment-name
to ad774b6
Added CVE-2010-3854 to NEWS and CHANGES
Project: http://git-wip-us.apache.org/repos/asf/couchdb/repo
Commit: http://git-wip-us.apache.org/repos/asf/couchdb/commit/242ea0b8
Tree: http://git-wip-us.apache.org/repos/asf/couchdb/tree/242ea0b8
Diff: http://git-wip-us.apache.org/repos/asf/couchdb/diff/242ea0b8
Branch: refs/heads/1832-fix-empty-attachment-name
Commit: 242ea0b8a28111e725e3f0e3075482d3ab4de90d
Parents: a03848a
Author: Noah Slater <ns...@apache.org>
Authored: Wed Feb 27 22:04:01 2013 +0000
Committer: Noah Slater <ns...@apache.org>
Committed: Wed Feb 27 22:04:16 2013 +0000
----------------------------------------------------------------------
CHANGES | 4 ++++
NEWS | 1 +
2 files changed, 5 insertions(+)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/couchdb/blob/242ea0b8/CHANGES
----------------------------------------------------------------------
diff --git a/CHANGES b/CHANGES
index d41ab3f..12aa177 100644
--- a/CHANGES
+++ b/CHANGES
@@ -350,6 +350,10 @@ Windows:
Version 1.0.2
-------------
+Security:
+
+ * Fixed CVE-2010-3854: Apache CouchDB Cross Site Scripting Issue
+
Futon:
* Make test suite work with Safari and Chrome.
http://git-wip-us.apache.org/repos/asf/couchdb/blob/242ea0b8/NEWS
----------------------------------------------------------------------
diff --git a/NEWS b/NEWS
index 517a87f..2a3558c 100644
--- a/NEWS
+++ b/NEWS
@@ -184,6 +184,7 @@ Version 1.0.3
Version 1.0.2
-------------
+ * Fixed CVE-2010-3854: Apache CouchDB Cross Site Scripting Issue
* Make test suite work with Safari and Chrome.
* Fix leaking file handles after compacting databases and views.
* Fix databases forgetting their validation function after compaction.