Skip to content

Commit ae59cc7

Browse files
committed
Bump version to 0.20.0 and update ChangeLog
Add Version 0.20.0 header with bauth conditional compilation and security fix entries. Bump version in configure.ac to match.
1 parent 507d29a commit ae59cc7

File tree

2 files changed

+8
-2
lines changed

2 files changed

+8
-2
lines changed

ChangeLog

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,8 @@
1-
Version 0.19.0 - 2023-06-15
1+
Version 0.20.0
22

3+
Added conditional compilation for basic auth (HAVE_BAUTH), mirroring
4+
existing HAVE_DAUTH pattern for digest auth. Basic auth support
5+
is auto-detected via AC_CHECK_LIB and can be disabled at build time.
36
Fixed path traversal vulnerability in file uploads when
47
generate_random_filename_on_upload is disabled.
58
Fixed TOCTOU race in file_response by replacing stat-then-open with
@@ -12,6 +15,9 @@ Version 0.19.0 - 2023-06-15
1215
Fixed auth skip path bypass via path traversal (e.g. /public/../protected).
1316
Fixed use of free() instead of MHD_free() for digest auth username.
1417
Fixed unchecked write error during file upload.
18+
19+
Version 0.19.0 - 2023-06-15
20+
1521
Considering family_url as part of the priority when selecting a URL to match.
1622
More explicit selection of C++ version.
1723
Ability to handle multiple parameters with the same name on the URL.

configure.ac

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -21,7 +21,7 @@
2121

2222
AC_PREREQ(2.57)
2323
m4_define([libhttpserver_MAJOR_VERSION],[0])dnl
24-
m4_define([libhttpserver_MINOR_VERSION],[19])dnl
24+
m4_define([libhttpserver_MINOR_VERSION],[20])dnl
2525
m4_define([libhttpserver_REVISION],[0])dnl
2626
m4_define([libhttpserver_PKG_VERSION],[libhttpserver_MAJOR_VERSION.libhttpserver_MINOR_VERSION.libhttpserver_REVISION])dnl
2727
m4_define([libhttpserver_LDF_VERSION],[libhttpserver_MAJOR_VERSION:libhttpserver_MINOR_VERSION:libhttpserver_REVISION])dnl

0 commit comments

Comments
 (0)