summaryrefslogtreecommitdiffstats
path: root/user_guide_src/source/changelog.rst
diff options
context:
space:
mode:
authorAndrey Andreev <narf@devilix.net>2018-04-24 13:55:10 +0200
committerAndrey Andreev <narf@devilix.net>2018-04-24 13:55:10 +0200
commita91c7a9f8406cee67474bd8a8c79e5098cc19e2d (patch)
tree89dc94af9ef09b2c50e6fe8189a9b0ecfc5af8e7 /user_guide_src/source/changelog.rst
parentd9e066b3e462525ebb15089d6e99b01d5f29c8c8 (diff)
parent577e53feff2c7d9ea74c682e5795196c916e7687 (diff)
Merge branch '3.1-stable' into develop
Diffstat (limited to 'user_guide_src/source/changelog.rst')
-rw-r--r--user_guide_src/source/changelog.rst14
1 files changed, 13 insertions, 1 deletions
diff --git a/user_guide_src/source/changelog.rst b/user_guide_src/source/changelog.rst
index b42b21722..4f3cb1c93 100644
--- a/user_guide_src/source/changelog.rst
+++ b/user_guide_src/source/changelog.rst
@@ -133,6 +133,19 @@ Version 3.1.9
Release Date: Not Released
+- **Security**
+
+ - Updated :doc:`URL Helper <helpers/url_helper>` function :php:func:`auto_link()` to add ``rel="noopener"`` to generated links in order to prevent tab hijacking.
+
+- General Changes
+
+ - Updated :doc:`Query Builder <database/query_builder>` method ``limit()`` to allow ``0`` values.
+
+Bug fixes for 3.1.9
+-------------------
+
+- Fixed a regression (#5448) - :doc:`Query Builder <database/query_builder>` methods ``like()``, ``or_like()`` (and siblings) didn't apply *dbprefix* or identifier escaping.
+- Fixed a regression (#5462) - :doc:`Query Builder <database/query_builder>` methods ``like()``, ``or_like()`` (and siblings) produced incorrect SQL syntax when used with ``'before'`` as the third parameter.
Version 3.1.8
=============
@@ -141,7 +154,6 @@ Release Date: Mar 22, 2018
- **Security**
- - Updated :doc:`URL Helper <helpers/url_helper>` function :php:func:`auto_link()` to add ``rel="noopener"`` to generated links in order to prevent tab hijacking.
- Updated :doc:`Security Library <libraries/security>` method ``xss_clean()`` to also filter JavaScript tag functions.
- Fixed a bug where :doc:`Security Library <libraries/security>` method ``xss_clean()`` didn't check for parentheses around JavaScript's ``document``.