[geeklog-cvs] geeklog-1.3/public_html/docs history,1.168.2.3,1.168.2.4
dhaun at iowaoutdoors.org
dhaun at iowaoutdoors.org
Thu Oct 7 15:44:17 EDT 2004
- Previous message (by thread): [geeklog-cvs] geeklog-1.3/public_html comment.php,1.54.2.2,1.54.2.3
- Next message (by thread): [geeklog-cvs] geeklog-1.3/language bulgarian.php,1.6,1.6.2.1 chinese_big5.php,1.6,1.6.2.1 chinese_gb2312.php,1.4,1.4.2.1 chinese_simplified_utf-8.php,1.2,1.2.2.1 chinese_traditional_utf-8.php,1.2,1.2.2.1 croatian.php,1.3,1.3.2.1 croatian_utf-8.php,1.1,1.1.2.1 czech.php,1.4,1.4.2.1 danish.php,1.5,1.5.2.1 dutch.php,1.17,1.17.2.1 english.php,1.113,1.113.2.1 english_utf-8.php,1.2,1.2.2.1 finnish.php,1.2,1.2.2.1 finnish_utf-8.php,1.2,1.2.2.1 french_canada.php,1.5,1.5.2.1 french_france.php,1.10,1.10.2.1 german_formal.php,1.19,1.19.2.1 hebrew.php,1.3,1.3.2.1 hellenic.php,1.9,1.9.2.1 italian.php,1.17,1.17.2.1 japanese.php,1.18,1.18.2.1 japanese_utf-8.php,1.1,1.1.2.1 norwegian.php,1.3,1.3.2.1 polish.php,1.21,1.21.2.1 portuguese.php,1.4,1.4.2.1 portuguese_brazil.php,1.8,1.8.2.1 romanian.php,1.4,1.4.2.1 slovak.php,1.5,1.5.2.1 spanish.php,1.9,1.9.2.1 spanish_argentina.php,1.10,1.10.2.1 swedish.php,1.8,1.8.2.1 turkish.php,1.5,1.5.2.1
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Update of /var/cvs/geeklog-1.3/public_html/docs
In directory www:/tmp/cvs-serv17668/public_html/docs
Modified Files:
Tag: geeklog_1_3_9_1
history
Log Message:
Don't use $topic in the language files (use %s instead).
Index: history
===================================================================
RCS file: /var/cvs/geeklog-1.3/public_html/docs/history,v
retrieving revision 1.168.2.3
retrieving revision 1.168.2.4
diff -C2 -d -r1.168.2.3 -r1.168.2.4
*** history 31 May 2004 19:50:40 -0000 1.168.2.3
--- history 7 Oct 2004 19:44:15 -0000 1.168.2.4
***************
*** 1,4 ****
--- 1,25 ----
GeekLog History/Changes:
+ Oct 8, 2004 (1.3.9sr2)
+ -----------
+
+ This release addresses 2 security issues:
+
+ - Fixed a cross site scripting vulnerability caused by using the $topic
+ variable in the language files ($LANG05[3]) where it should have been
+ using '%s' instead (bug #293) [Vinny, Dirk]
+ - It was possible to post comments to stories or polls for which comment
+ posting had been switched off [Dirk]
+ This was only a problem if you allowed anonymous posts or when spammers
+ went through the trouble of actually signing up for an account before
+ posting.
+
+ Non-security related fixes:
+
+ - Fixed lib-plugins.php to be compatible with PHP 5 [Dirk]
+ - Includes updated PEAR packages to resolve email problems some users were
+ having (especially with safe_mode being on).
+
+
Jun 1, 2004 (1.3.9sr1)
-----------
- Previous message (by thread): [geeklog-cvs] geeklog-1.3/public_html comment.php,1.54.2.2,1.54.2.3
- Next message (by thread): [geeklog-cvs] geeklog-1.3/language bulgarian.php,1.6,1.6.2.1 chinese_big5.php,1.6,1.6.2.1 chinese_gb2312.php,1.4,1.4.2.1 chinese_simplified_utf-8.php,1.2,1.2.2.1 chinese_traditional_utf-8.php,1.2,1.2.2.1 croatian.php,1.3,1.3.2.1 croatian_utf-8.php,1.1,1.1.2.1 czech.php,1.4,1.4.2.1 danish.php,1.5,1.5.2.1 dutch.php,1.17,1.17.2.1 english.php,1.113,1.113.2.1 english_utf-8.php,1.2,1.2.2.1 finnish.php,1.2,1.2.2.1 finnish_utf-8.php,1.2,1.2.2.1 french_canada.php,1.5,1.5.2.1 french_france.php,1.10,1.10.2.1 german_formal.php,1.19,1.19.2.1 hebrew.php,1.3,1.3.2.1 hellenic.php,1.9,1.9.2.1 italian.php,1.17,1.17.2.1 japanese.php,1.18,1.18.2.1 japanese_utf-8.php,1.1,1.1.2.1 norwegian.php,1.3,1.3.2.1 polish.php,1.21,1.21.2.1 portuguese.php,1.4,1.4.2.1 portuguese_brazil.php,1.8,1.8.2.1 romanian.php,1.4,1.4.2.1 slovak.php,1.5,1.5.2.1 spanish.php,1.9,1.9.2.1 spanish_argentina.php,1.10,1.10.2.1 swedish.php,1.8,1.8.2.1 turkish.php,1.5,1.5.2.1
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the geeklog-cvs
mailing list