p15693087
/
django
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

[3.1.x] Refs #32718 -- Corrected CVE-2021-31542 release notes. 

Backport of d1f1417cae from main.
This commit is contained in:
Mariusz Felisiak 2021-05-12 10:42:01 +02:00
parent 0688874504
commit 9fb9944d1c
2 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
docs/releases/2.2.21.txt
View File

@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files
directory-traversal via uploaded files with suitably crafted file names. directory-traversal via uploaded files with suitably crafted file names.
In order to mitigate this risk, stricter basename and path sanitation is now In order to mitigate this risk, stricter basename and path sanitation is now
applied. Specifically, empty file names and paths with dot segments will be applied.
rejected.

3
docs/releases/3.1.9.txt
View File

@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files
directory-traversal via uploaded files with suitably crafted file names. directory-traversal via uploaded files with suitably crafted file names.
In order to mitigate this risk, stricter basename and path sanitation is now In order to mitigate this risk, stricter basename and path sanitation is now
applied. Specifically, empty file names and paths with dot segments will be applied.
rejected.