[3.1.x] Refs #32718 -- Corrected CVE-2021-31542 release notes.

Backport of d1f1417cae from main.
This commit is contained in:
Mariusz Felisiak 2021-05-12 10:42:01 +02:00
parent 0688874504
commit 9fb9944d1c
2 changed files with 2 additions and 4 deletions

View File

@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files
directory-traversal via uploaded files with suitably crafted file names. directory-traversal via uploaded files with suitably crafted file names.
In order to mitigate this risk, stricter basename and path sanitation is now In order to mitigate this risk, stricter basename and path sanitation is now
applied. Specifically, empty file names and paths with dot segments will be applied.
rejected.

View File

@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files
directory-traversal via uploaded files with suitably crafted file names. directory-traversal via uploaded files with suitably crafted file names.
In order to mitigate this risk, stricter basename and path sanitation is now In order to mitigate this risk, stricter basename and path sanitation is now
applied. Specifically, empty file names and paths with dot segments will be applied.
rejected.