- From: Yves Lafon <ylafon@w3.org>
- Date: Wed, 20 Nov 2002 23:15:44 +0100 (MET)
- To: Rakesh Khatumria <Rkhatumria@quark.co.in>
- cc: www-jigsaw@w3.org
On Fri, 8 Nov 2002, Rakesh Khatumria wrote:
> Jigsaw 2.2.1 release notes specify that it also includes an important
> security fix.
> We are using Jigsaw 2.0.5, do we assume that it too still has the security
> bugs inside ('URI parsing' and 'cross scripting attacks')?
> Or can we check this?
> Can you tell/refer us some implications and/or workarounds?
Oops, realized that I rpelied only to the private jigsaw alias. So for the
archives...
The updated class zip and source zip are available from:
http://jigsaw.w3.org/Devel/classes-2.0/20020131/
--
Yves Lafon - W3C
"Baroula que barouleras, au tiéu toujou t'entourneras."
Received on Wednesday, 20 November 2002 17:15:51 UTC