This is a new release for 1.7 series, including bug fixes and a security fix.
- [security fix][redirect] uri-escape the user-supplied portion of the redirect path (CVE-2016-1133) #682 #684 (Kazuho Oku)
- [core][file] preserve query paramaters upon redirection to a directory #690 (Tatsuhiro Tsujikawa)
- [core] use uppercase letters in URI-escape sequence #695 (Kazuho Oku)
- [file] fix a bug that incorrectly returns 403 when a file is requested with a trailing slash #686 (Yamagishi Kazutoshi)
- [websocket] fix crash when access logging is enabled #698 (Shota Fukumori)
- [libh2o] fix memory leak on dispose #683 (Kazuho Oku)