diff options
| author | akr <akr@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2008-09-18 09:42:28 +0000 |
|---|---|---|
| committer | akr <akr@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2008-09-18 09:42:28 +0000 |
| commit | 40b3c3c057d3e47ef08eef0788f7a9450d4f6567 (patch) | |
| tree | 621d30080b49b24d7c4aaa35f0a6f65bf8d201b3 | |
| parent | 5b69fe49e2f960bd96def0a65f3a6dbb63631f5d (diff) | |
| download | ruby-40b3c3c057d3e47ef08eef0788f7a9450d4f6567.tar.gz ruby-40b3c3c057d3e47ef08eef0788f7a9450d4f6567.tar.xz ruby-40b3c3c057d3e47ef08eef0788f7a9450d4f6567.zip | |
add a ref.
git-svn-id: http://svn.ruby-lang.org/repos/ruby/trunk@19410 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
| -rw-r--r-- | ChangeLog | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -1520,7 +1520,8 @@ Thu Sep 4 19:10:27 2008 Tanaka Akira <akr@fsij.org> * include/ruby/encoding.h (ECONV_INVALID_IGNORE): removed because it tend to cause security problem. If the behaviour is really required, ECONV_INVALID_REPLACE with empty string can be used. - For example, CVE-2006-2313, CVE-2008-1036, [ruby-core:15645] + For example, CVE-2006-2313, CVE-2008-1036, [ruby-core:15645], + http://unicode.org/reports/tr36/ (ECONV_UNDEF_IGNORE): ditto. * transcode.c (rb_econv_convert): follow the above change. |