You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@allura.apache.org by br...@apache.org on 2018/02/06 17:56:35 UTC

allura git commit: Publicize security fix in changelog

Repository: allura
Updated Branches:
  refs/heads/master 8c39d4f28 -> 166f8698f


Publicize security fix in changelog


Project: http://git-wip-us.apache.org/repos/asf/allura/repo
Commit: http://git-wip-us.apache.org/repos/asf/allura/commit/166f8698
Tree: http://git-wip-us.apache.org/repos/asf/allura/tree/166f8698
Diff: http://git-wip-us.apache.org/repos/asf/allura/diff/166f8698

Branch: refs/heads/master
Commit: 166f8698f6259250c18cb9a67fc43621fe6e54f9
Parents: 8c39d4f
Author: Dave Brondsema <da...@brondsema.net>
Authored: Tue Feb 6 12:56:21 2018 -0500
Committer: Dave Brondsema <da...@brondsema.net>
Committed: Tue Feb 6 12:56:21 2018 -0500

----------------------------------------------------------------------
 CHANGES | 1 +
 1 file changed, 1 insertion(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/allura/blob/166f8698/CHANGES
----------------------------------------------------------------------
diff --git a/CHANGES b/CHANGES
index fafe854..a1114e5 100644
--- a/CHANGES
+++ b/CHANGES
@@ -15,6 +15,7 @@ Upgrade Instructions
 Bug Fixes & Minor Improvements
 
 Security:
+ * [#8180] StaticFilesMiddleware allows directory traversal CVE-2018-1299
  * [#8155] Record logins to audit log
  * [#8156] Notify user of password changes
  * [#8158] Add antispam measures to login page