[libplack-perl] 01/01: d/changelog: add a note about the security fix in this release
gregor herrmann
gregoa at debian.org
Sat Aug 2 14:28:19 UTC 2014
This is an automated email from the git hooks/post-receive script.
gregoa pushed a commit to branch master
in repository libplack-perl.
commit c0fbd34d980cbc3695317b7a270657c0d2f710df
Author: gregor herrmann <gregoa at debian.org>
Date: Sat Aug 2 16:27:59 2014 +0200
d/changelog: add a note about the security fix in this release
Git-Dch: Ignore
---
debian/changelog | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index 910a3f8..4645b02 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -8,6 +8,10 @@ libplack-perl (1.0031-1) UNRELEASED; urgency=medium
[ gregor herrmann ]
* New upstream release.
+ [SECURITY] Plack::App::File would previously strip trailing slashes off
+ provided paths. This could under specific circumstances lead to the
+ unintended delivery of files. For details cf. the upstream Changes file
+ and https://github.com/plack/Plack/pull/446 .
* Update years of packaging copyright.
* Make build dependency on libfile-sharedir-install-perl versioned.
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-perl/packages/libplack-perl.git
More information about the Pkg-perl-cvs-commits
mailing list