##// END OF EJS Templates
fix(mailing): don't default to empty string for smtp_password and user, since mailing lib only expects None as empty values
fix(mailing): don't default to empty string for smtp_password and user, since mailing lib only expects None as empty values

File last commit:

r2665:f42f8690 stable
r5488:186b51dd default
Show More
release-notes-4.11.6.rst
41 lines | 489 B | text/x-rst | RstLexer

|RCE| 4.11.6 |RNS|

Release Date

  • 2018-03-28

New Features

General

Security

  • api(high): fixed unauthorized access to repositories using forged api requests.

Performance

Fixes

Upgrade notes

  • Unscheduled security release addressing found vulnerability in the API that allows attackers to gain access to repositories in unauthorized way by forging data in the API request.