There is a security patch release (0.7-rc1) as well as the last release candidate for Serendipity 0.7. It is advised to upgrade to this version.
This release contains a bugfix to the a possibly exploitable HTTP Response Splitting, which may allow intermediate caching/proxy servers to perform man-in-the-middle-attacks.
No comments:
Post a Comment