diff options
| author | Dries Buytaert <dries@buytaert.net> | 2007-01-23 18:58:35 +0000 |
|---|---|---|
| committer | Dries Buytaert <dries@buytaert.net> | 2007-01-23 18:58:35 +0000 |
| commit | 36e554da6618cc49e9532c7fbfdb9499d5144c0a (patch) | |
| tree | 19522de03f33ab9ac0432b8d1ea7de4b1278c3c2 /CHANGELOG.txt | |
| parent | f83368fdf5bd0e11d120cdd905d085276c28fe92 (diff) | |
| download | brdo-36e554da6618cc49e9532c7fbfdb9499d5144c0a.tar.gz brdo-36e554da6618cc49e9532c7fbfdb9499d5144c0a.tar.bz2 | |
- Patch #108282 by vjordan: updated CHANGELOG.txt
Diffstat (limited to 'CHANGELOG.txt')
| -rw-r--r-- | CHANGELOG.txt | 51 |
1 files changed, 51 insertions, 0 deletions
diff --git a/CHANGELOG.txt b/CHANGELOG.txt index eabba02ca..3c4cfb8b8 100644 --- a/CHANGELOG.txt +++ b/CHANGELOG.txt @@ -81,6 +81,33 @@ Drupal 5.0, 2007-01-15 * added nested lists generation. * added a self-clearing block class. +Drupal 4.7.5, 2007-01-05 +------------------------ +- fixed security issue (XSS), see SA-2007-001 +- fixed security issue (DoS), see SA-2007-002 + +Drupal 4.7.4, 2006-10-18 +------------------------ +- fixed security issue (XSS), see SA-2006-024 +- fixed security issue (CSRF), see SA-2006-025 +- fixed security issue (Form action attribute injection), see SA-2006-026 + +Drupal 4.7.3, 2006-08-02 +------------------------ +- fixed security issue (XSS), see SA-2006-011 + +Drupal 4.7.2, 2006-06-01 +------------------------ +- fixed critical upload issue, see SA-2006-007 +- fixed taxonomy XSS issue, see SA-2006-008 +- fixed a variety of small bugs. + +Drupal 4.7.1, 2006-05-24 +------------------------ +- fixed critical SQL issue, see SA-2006-005 +- fixed a serious upgrade related bug. +- fixed a variety of small bugs. + Drupal 4.7.0, 2006-05-01 ------------------------ - added free tagging support. @@ -148,6 +175,30 @@ Drupal 4.7.0, 2006-05-01 * added support for a tolerant Base URL. * output URIs relative to the root, without a base tag. +Drupal 4.6.11, 2007-01-05 +------------------------- +- fixed security issue (XSS), see SA-2007-001 +- fixed security issue (DoS), see SA-2007-002 + +Drupal 4.6.10, 2006-10-18 +------------------------ +- fixed security issue (XSS), see SA-2006-024 +- fixed security issue (CSRF), see SA-2006-025 +- fixed security issue (Form action attribute injection), see SA-2006-026 + +Drupal 4.6.9, 2006-08-02 +------------------------ +- fixed security issue (XSS), see SA-2006-011 + +Drupal 4.6.8, 2006-06-01 +------------------------ +- fixed critical upload issue, see SA-2006-007 +- fixed taxonomy XSS issue, see SA-2006-008 + +Drupal 4.6.7, 2006-05-24 +------------------------ +- fixed critical SQL issue, see SA-2006-005 + Drupal 4.6.6, 2006-03-13 ------------------------ - fixed bugs, including 4 security vulnerabilities. |