couchdb-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From j..@apache.org
Subject [13/41] git commit: updated refs/heads/1832-fix-empty-attachment-name to ad774b6
Date Tue, 18 Jun 2013 14:32:32 GMT
Correcting NEWS and CHANGES discrepancies


Project: http://git-wip-us.apache.org/repos/asf/couchdb/repo
Commit: http://git-wip-us.apache.org/repos/asf/couchdb/commit/66fd2e68
Tree: http://git-wip-us.apache.org/repos/asf/couchdb/tree/66fd2e68
Diff: http://git-wip-us.apache.org/repos/asf/couchdb/diff/66fd2e68

Branch: refs/heads/1832-fix-empty-attachment-name
Commit: 66fd2e6811d3556f680ad3ea61d4ad52816b6013
Parents: 22ea84e
Author: Noah Slater <nslater@apache.org>
Authored: Wed Feb 27 19:27:32 2013 +0000
Committer: Noah Slater <nslater@apache.org>
Committed: Wed Feb 27 19:27:32 2013 +0000

----------------------------------------------------------------------
 NEWS | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/couchdb/blob/66fd2e68/NEWS
----------------------------------------------------------------------
diff --git a/NEWS b/NEWS
index 625862e..3a445a8 100644
--- a/NEWS
+++ b/NEWS
@@ -148,6 +148,21 @@ This release contains backwards incompatible changes.
    to lack of permissions.
  * Added a "change password"-feature to Futon.
 
+Version 1.0.4
+-------------
+
+ * Fixed CVE-2012-5641: Apache CouchDB Information disclosure via unescaped
+   backslashes in URLs on Windows
+ * Fixed CVE-2012-5649: Apache CouchDB JSONP arbitrary code execution with Adobe
+   Flash
+ * Fixed CVE-2012-5650: Apache CouchDB DOM based Cross-Site Scripting via Futon
+   UI
+ * Fix file descriptor leak in _log.
+ * Fix missing revisions in _changes?style=all_docs.
+ * Fix validation of attachment names.
+ * Avoid invalidating view indexes when running out of file descriptors.
+ * Fix a race condition where replications can go stale
+
 Version 1.0.3
 -------------
 


Mime
View raw message