]> git.ipfire.org Git - thirdparty/tornado.git/commitdiff
projects / thirdparty / tornado.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1ae91f6)
Release notes for 2.2.1
authorBen Darnell <ben@bendarnell.com>
Tue, 24 Apr 2012 05:03:17 +0000 (22:03 -0700)
committerBen Darnell <ben@bendarnell.com>
Tue, 24 Apr 2012 05:03:17 +0000 (22:03 -0700)
website/sphinx/releases.rst patch | blob | blame | history
website/sphinx/releases/v2.2.1.rst [new file with mode: 0644] patch | blob

diff --git a/website/sphinx/releases.rst b/website/sphinx/releases.rst
index 05af64fe07e89292dba7f7d7406447d972e0976f..24aebe3e48d46714f9ee2862d86e1e73c2ecf859 100644 (file)
--- a/website/sphinx/releases.rst
+++ b/website/sphinx/releases.rst
@@ -4,6 +4,7 @@ Release notes
 .. toctree::
    :maxdepth: 2
 
+   releases/v2.2.1
    releases/v2.2.0
    releases/v2.1.1
    releases/v2.1.0
diff --git a/website/sphinx/releases/v2.2.1.rst b/website/sphinx/releases/v2.2.1.rst
new file mode 100644 (file)
index 0000000..a47b1b4
--- /dev/null
+++ b/website/sphinx/releases/v2.2.1.rst
@@ -0,0 +1,20 @@
+What's new in Tornado 2.2.1
+===========================
+
+Apr 23, 2012
+------------
+
+Security fixes
+~~~~~~~~~~~~~~
+
+* `tornado.web.RequestHandler.set_header` now properly sanitizes input
+  values to protect against header injection, response splitting, etc.
+  (it has always attempted to do this, but the check was incorrect).
+  Note that redirects, the most likely source of such bugs, are protected
+  by a separate check in `RequestHandler.redirect`.
+
+Bug fixes
+~~~~~~~~~
+
+* Colored logging configuration in `tornado.options` is compatible with
+  Python 3.2.3 (and 3.3).
Mirror of https://github.com/tornadoweb/tornado.git