summaryrefslogtreecommitdiffstats
path: root/ChangeLog
diff options
context:
space:
mode:
Diffstat (limited to 'ChangeLog')
-rw-r--r--ChangeLog10
1 files changed, 10 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 75c1066..a5a4bf3 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,13 @@
+2014-06-07
+ 0.9.33
+ * Fix various security vulnerabilities - most serious is a
+ Heap Overflow Vulnerability in sliding_buffer.c
+ Reported by Stephen Röttger
+ * Allow PUT and DELETE method (But prefix is still POST/GET)
+ * On POST/PUT, Content-Type is not x-www-urlencoded, then
+ the body of the message is stored verbatim in POST_body=
+
+
2013-20-09
0.9.32
* Regression causing Lua always to be linked, never used