loggerhead 1.18.1
Milestone information
- Project:
- loggerhead
- Series:
- 1.18
- Version:
- 1.18.1
- Released:
- Registrant:
- William Grant
- Release registered:
- Active:
- No. Drivers cannot target bugs and blueprints to this milestone.
Activities
- Assigned to you:
- No blueprints or bugs assigned to you.
- Assignees:
- 1 William Grant
- Blueprints:
- No blueprints are targeted to this milestone.
- Bugs:
- 1 Fix Released
Download files for this release
Release notes
Loggerhead 1.18.1 brings security and stability fixes. Filenames are now correctly escaped in revision views, removing a cross-site scripting vector (CVE-2011-0728). A crash in start-loggerhead when log rotation was enabled has also been fixed.
Changelog
View the full changelog
0 blueprints and 1 bug targeted
Bug report | Importance | Assignee | Status | |||
---|---|---|---|---|---|---|
740142 | #740142 | persistent xss vector in (unescaped) filenames in revision views | 2 Critical | William Grant | 10 Fix Released |