Update of mhonarc
Modified Files:
homepage.html
Log Message:
======================================================================
FILE: mhonarc/homepage.html
<http://www.mhonarc.org/cgi-bin/viewcvs.cgi/*checkout*/mhonarc/homepage.html?rev=1.86>
<http://www.mhonarc.org/cgi-bin/viewcvs.cgi/mhonarc/homepage.html.diff?r1=1.85&r2=1.86&diff_format=h>
--- homepage.html 9 Jan 2011 09:44:29 -0000 1.85
+++ homepage.html 9 Jan 2011 16:17:59 -0000 1.86
@@ -75,5 +75,5 @@
<tr><td colspan="2" width="100%" style="background:yellow;"><p style="text-align:center; color:red;"><strong>*** SECURITY ADVISORY ***</strong></p></td></tr>
<tr><td valign="top" colspan="2" style="background:yellow;"><p>MHonArc
-releases prior to v2.6.17 have
+releases prior to v2.6.18 have
known vulnerabilities to the HTML filter, making web sites hosting
MHonArc web archives vulnerable to XSS attackes. All users
@@ -92,4 +92,15 @@
<td valign=top><strong>Jan 09, 2011: </strong>
</td>
+<td width="100%"><p><b>v2.6.18</b> released:
+Emergency update to HTML filter to correct/improve filter
+of HTML event-based attributes. The v2.6.18 release should
+be used instead of v2.6.17.
+</p>
+</td>
+</tr>
+<tr><td colspan="2"> </td></tr>
+<tr>
+<td valign=top><strong>Jan 09, 2011: </strong>
+</td>
<td width="100%"><p><b>v2.6.17</b> released:
Security vulnerabilities and numerous bugs have been fixed.
---------------------------------------------------------------------
To sign-off this list, send email to majordomo(_at_)mhonarc(_dot_)org with the
message text UNSUBSCRIBE MHONARC-COMMITS