diff options
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 19 |
1 files changed, 16 insertions, 3 deletions
@@ -1,3 +1,16 @@ +2015-02-15 + 0.9.34 + * Fixes for Lua 5.3 compatibility + * Move sys/fnctl.h to fnctl.h + * Victor Cook sent in a patch to rfc2388.c - + "In rfc2388.c rfc2388_handler() during processing of the header information, + if a buffer read falls on the point where the next character is crlf it + results in the header reading to be terminated early. When the error occurs + the results are unpredictable and depend on what is then incorrectly interpreted. + + The chance of a failure depends on the length and complexity of the header data, + but can become very significant." + 2014-06-07 0.9.33 * Fix various security vulnerabilities - most serious is a @@ -13,14 +26,14 @@ * Regression causing Lua always to be linked, never used 2013-15-09 - 0.9.31 + 0.9.31 * Modernize configure.ac * more Lua 5.2 fixes 2013-27-06 0.9.30 - * The Mayhem Team of CMU found an undisclosed segfault when the first + * The Mayhem Team of CMU found an undisclosed segfault when the first command-line argument is '' or "" (null-quoted string). Chow Loong Jin supplied a patch. * Natanael Copa supplied a patch to rename the deprecated string.gfind @@ -53,7 +66,7 @@ 0.9.27 * Daniel Griscom reported clarification on RFC 2616 compliance Ralph Siemsen provided the actual man-page update - * Natanael Copa fixed the Makefile.am for gnu make 3.82+ + * Natanael Copa fixed the Makefile.am for gnu make 3.82+ * Cleanup temp files on error (Anonymous) SF bug tracker id 2991410 * Pavel Chromy reported a vulnerability where the name of a the tempfile on a file upload could be modified by the client |