Hello everybody,

A new version of web2py, 2.25.1, is out. 

It contains some bug fixes, #2468 #2468 #2236, http headers sanitization, 
and fixes this vulenarbility https://jvn.jp/en/jp/JVN80476432/ (to be 
published soon).

The vulnerabily does not affect most users. It is only in the optional 
MessageBoxHandler for logging when using Tkinter. I do know think anybody 
is was using it.

I am reviewing some old PRs and I may have another version out today 
including those fixes as well. Sorry I have been slow but as you know, I am 
spending more time on py4web than web2py these days. 

Massimo


-- 
Resources:
- http://web2py.com
- http://web2py.com/book (Documentation)
- http://github.com/web2py/web2py (Source code)
- https://code.google.com/p/web2py/issues/list (Report Issues)
--- 
You received this message because you are subscribed to the Google Groups 
"web2py-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to web2py+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/web2py/07157d0b-2486-47df-b83a-36d5e1282866n%40googlegroups.com.

Reply via email to