##// END OF EJS Templates
ssh: use proper way of extracting the HOOK_PROTOCOL out of vcssettings....
ssh: use proper way of extracting the HOOK_PROTOCOL out of vcssettings. - it might be not stored inside the .ini file so we should use the config that has proper defaults, and it's used in many other places.

File last commit:

r1:854a839a default
r2212:dc0a58ba default
Show More
release-notes-3.3.2.rst
25 lines | 499 B | text/x-rst | RstLexer

|RCE| 3.3.2 |RNS|

Release Date

  • 2015-06-05

security fixes

  • Stored XSS attempts on user login fields, and other text input fields.
  • DOM Based XSS attempts
  • HTML Injection
  • Cross frame scripting (XFS)
  • Invalidation of concurrent sessions on password change.
  • Downgrading of HTTPS connections.

fixes

  • Generation of URLs on system with custom URL prefixes.
  • VCSServer: Improved memory management of the cache data used by the server.