diff options
author | Andrey Andreev <narf@devilix.net> | 2016-10-28 16:46:31 +0200 |
---|---|---|
committer | Andrey Andreev <narf@devilix.net> | 2016-10-28 16:46:31 +0200 |
commit | 57fa143448577b670d8dd0e02b6e4cf31c4a7cff (patch) | |
tree | 32599fec5bf13cc84b61a065e12c02de4a4227f8 /user_guide_src/source/changelog.rst | |
parent | e02ebabb19242e1cfc6b37217bc799ff7591e941 (diff) |
[ci skip] xss_clean() hardening
- percent-sign tag (IE)
- data: URI scheme inclinding whitespace (Chrome)
Diffstat (limited to 'user_guide_src/source/changelog.rst')
-rw-r--r-- | user_guide_src/source/changelog.rst | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/user_guide_src/source/changelog.rst b/user_guide_src/source/changelog.rst index 4be0b31d3..2482c493c 100644 --- a/user_guide_src/source/changelog.rst +++ b/user_guide_src/source/changelog.rst @@ -9,7 +9,7 @@ Release Date: Not Released - **Security** - - Fixed a new URL-encoding attack vector in :doc:`Security Library <libraries/security>` method ``xss_clean()`` affecting Firefox. + - Fixed a number of new vulnerabilities in :doc:`Security Library <libraries/security>` method ``xss_clean()``. - General Changes |