aboutsummaryrefslogtreecommitdiffstats
path: root/vendor/smarty/smarty/CHANGELOG.md
diff options
context:
space:
mode:
Diffstat (limited to 'vendor/smarty/smarty/CHANGELOG.md')
-rw-r--r--vendor/smarty/smarty/CHANGELOG.md6
1 files changed, 6 insertions, 0 deletions
diff --git a/vendor/smarty/smarty/CHANGELOG.md b/vendor/smarty/smarty/CHANGELOG.md
index 06b898223..e3bb93a4f 100644
--- a/vendor/smarty/smarty/CHANGELOG.md
+++ b/vendor/smarty/smarty/CHANGELOG.md
@@ -6,6 +6,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
## [Unreleased]
+## [3.1.39] - 2021-02-17
+
+### Security
+- Prevent access to `$smarty.template_object` in sandbox mode
+- Fixed code injection vulnerability by using illegal function names in `{function name='blah'}{/function}`
+
## [3.1.38] - 2021-01-08
### Fixed
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-28 12:42:18 +0000