Mercurial > p > roundup > code

comparison doc/upgrading.txt @ 8371:7d1b50c02835

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
doc: link to security page for link to formal CVE report.
author John Rouillard <rouilj@ieee.org>
date Fri, 11 Jul 2025 22:27:18 -0400
parents 4ac0bbb3e440
children ef1ea918b07a
comparison
equal deleted inserted replaced
8370:58a1b4051a57 8371:7d1b50c02835
116 There are actually two different issues under this heading. 116 There are actually two different issues under this heading.
117 117
118 1. incorrect use of the ``structure`` keyword with 118 1. incorrect use of the ``structure`` keyword with
119 ``tal:content`` 119 ``tal:content``
120 2. use of ``tal:replace`` on unsafe input 120 2. use of ``tal:replace`` on unsafe input
121
122 See the `security page for a link to CVE-2025-53865
123 <security.html#cve-announcements>`_.
121 124
122 In the discussion below, the :term:`html directory` means one or 125 In the discussion below, the :term:`html directory` means one or
123 more directories listed in the ``templates`` key of your 126 more directories listed in the ``templates`` key of your
124 tracker's ``config.ini`` file. 127 tracker's ``config.ini`` file.
125 128
Roundup Issue Tracker: http://roundup-tracker.org/