Skip to content
This repository
Browse code

Add release notes for todays releases

  • Loading branch information...
commit a5cc74bee5d6d2a4685fe70d1844a6a28661626f 1 parent 6f237e4
James Tucker authored February 07, 2013

Showing 1 changed file with 17 additions and 0 deletions. Show diff stats Hide diff stats

  1. 17  README.rdoc
17  README.rdoc
Source Rendered
@@ -511,6 +511,23 @@ run on port 11211) and memcache-client installed.
511 511
   * Added hash-like methods to Abstract::ID::SessionHash for compatibility
512 512
   * Various documentation corrections
513 513
 
  514
+* February 7th, Thirty fifth public release 1.1.6, 1.2.8, 1.3.10
  515
+  * Fix CVE-2013-0263, timing attack against Rack::Session::Cookie
  516
+
  517
+* February 7th, Thirty fifth public release 1.4.5
  518
+  * Fix CVE-2013-0263, timing attack against Rack::Session::Cookie
  519
+  * Fix CVE-2013-0262, symlink path traversal in Rack::File
  520
+
  521
+* February 7th, Thirty fifth public release 1.5.2
  522
+  * Fix CVE-2013-0263, timing attack against Rack::Session::Cookie
  523
+  * Fix CVE-2013-0262, symlink path traversal in Rack::File
  524
+  * Add various methods to Session for enhanced Rails compatibility
  525
+  * Request#trusted_proxy? now only matches whole stirngs
  526
+  * Add JSON cookie coder, to be default in Rack 1.6+ due to security concerns
  527
+  * URLMap host matching in environments that don't set the Host header fixed
  528
+  * Fix a race condition that could result in overwritten pidfiles
  529
+  * Various documentation additions
  530
+
514 531
 == Contact
515 532
 
516 533
 Please post bugs, suggestions and patches to

0 notes on commit a5cc74b

James Tucker

Awww! :cookie: for you sir!

Oscar Del Ben

Is it maybe time to consider adding a changelog file? The readme is becoming quite long.

James Tucker

We have a changelog file. It is created by the release process.

Please sign in to comment.
Something went wrong with that request. Please try again.