W3C home > Mailing lists > Public > www-jigsaw@w3.org > November to December 2002

Re: Security fix.

From: Yves Lafon <ylafon@w3.org>
Date: Wed, 20 Nov 2002 23:15:44 +0100 (MET)
To: Rakesh Khatumria <Rkhatumria@quark.co.in>
cc: www-jigsaw@w3.org
Message-ID: <Pine.GSO.4.44.0211202314410.20338-100000@tarantula.inria.fr>

On Fri, 8 Nov 2002, Rakesh Khatumria wrote:

> Jigsaw 2.2.1 release notes specify that it also includes an important
> security fix.
> We are using Jigsaw 2.0.5, do we assume that it too still has the security
> bugs inside ('URI parsing' and 'cross scripting attacks')?
> Or can we check this?
> Can you tell/refer us some implications and/or workarounds?

Oops, realized that I rpelied only to the private jigsaw alias. So for the
archives...
The updated class zip and source zip are available from:

http://jigsaw.w3.org/Devel/classes-2.0/20020131/

-- 
Yves Lafon - W3C
"Baroula que barouleras, au tiéu toujou t'entourneras."
Received on Wednesday, 20 November 2002 17:15:51 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 9 April 2012 12:13:36 GMT