release 2.063001

2023-06-28 17:03:46 +01:00
parent a2da6a7a04
commit 4ec1c2abec
4 changed files with 14 additions and 5 deletions
--- a/9
+++ b/9
@@ -1,3 +1,12 @@
+2.063001 - 2023-06-28
+
+  [BUG FIXES]
+
+  * avoid CSS vulnerability in Job Queue page
+  * avoid CSS vulnerability in Find Anything
+  * explicitly use SameSite=Lax Cookie Attribute for dancer.session cookies
+  * avoid open redirect vulnerability with return_url login helper
+
 2.063000 - 2023-06-28

  [NEW FEATURES]