[3.1.x] Refs #32718 -- Corrected CVE-2021-31542 release notes.

Backport of d1f1417cae from main.
2021-05-12 10:42:01 +02:00 · 2021-05-12 10:42:01 +02:00 · 9fb9944d1c
parent 0688874504
commit 9fb9944d1c
2 changed files with 2 additions and 4 deletions
--- a/docs/releases/2.2.21.txt
+++ b/docs/releases/2.2.21.txt
@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files
 directory-traversal via uploaded files with suitably crafted file names.

 In order to mitigate this risk, stricter basename and path sanitation is now
-applied. Specifically, empty file names and paths with dot segments will be
-rejected.
+applied.
--- a/docs/releases/3.1.9.txt
+++ b/docs/releases/3.1.9.txt
@ -13,5 +13,4 @@ CVE-2021-31542: Potential directory-traversal via uploaded files
 directory-traversal via uploaded files with suitably crafted file names.

 In order to mitigate this risk, stricter basename and path sanitation is now
-applied. Specifically, empty file names and paths with dot segments will be
-rejected.
+applied.