Release 2.1.5

git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/branches/php4@1814 48356398-32a2-884e-a903-53898d9a118a
2025-07-31 19:30:21 +02:00 · 2008-06-19 22:57:15 +00:00
parent 2cc829a8cf
commit f38e81785f
7 changed files with 13 additions and 12 deletions
--- a/2
+++ b/2
@@ -31,7 +31,7 @@ PROJECT_NAME           = HTMLPurifier
 # This could be handy for archiving the generated documentation or 
 # if some version control system is used.

-PROJECT_NUMBER         = 2.1.4
+PROJECT_NUMBER         = 2.1.5

 # The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) 
 # base path where the generated documentation will be put. 
--- a/2
+++ b/2
@@ -14,7 +14,7 @@ ERRATA
  If you desire to use it, please use it with the latest, PHP5-only version of 
  HTML Purifier.

-2.1.5, unknown release date
+2.1.5, released 2008-06-19
 ! More robust imagecrash protection with height/width CSS with %CSS.MaxImgLength,
  and height/width HTML with %HTML.MaxImgLength.
 - AttrValidator operations are now atomic; updates to attributes are not
--- a/2
+++ b/2
@@ -1 +1 @@
-2.1.4
+2.1.5
--- a/13
+++ b/13
@@ -1,6 +1,7 @@
-Security release 2.1.4 is a backport release that fixes a vulnerability
-related to URI handling. In addition, it also includes a number of
-bugfixes that have accumulated in the HTML Purifier 3 series but had
-not been merged back yet. Please remember that HTML Purifier 2.1 will
-be deprecated and will be officially dropped by the end of 2008. Please
-only use it for legacy PHP 4 installs.
+Security and bugfix release 2.1.5 is a backport that fixes two vulnerabilities
+related to CSS, one of which only occurs under Shift_JIS. It also improves
+imagecrash protection (percent CSS width and height is now disabled for
+images, and you can control the bounds with %CSS.MaxImgLength and
+%HTML.MaxImgLength). Finally, there are number of bug fixes, most notably 
+support for text-decoration: none, improved adherence to Unicode and increased
+percent encoding checks.
--- a/library/HTMLPurifier.php
+++ b/library/HTMLPurifier.php
@@ -22,7 +22,7 @@
 */

 /*
-    HTML Purifier 2.1.4 - Standards Compliant HTML Filtering
+    HTML Purifier 2.1.5 - Standards Compliant HTML Filtering
    Copyright (C) 2006-2007 Edward Z. Yang

    This library is free software; you can redistribute it and/or
@@ -83,7 +83,7 @@ since 2.0.0.
 class HTMLPurifier
 {
    
-    var $version = '2.1.4';
+    var $version = '2.1.5';
    
    var $config;
    var $filters = array();
--- a/library/HTMLPurifier/Config.php
+++ b/library/HTMLPurifier/Config.php
@@ -42,7 +42,7 @@ class HTMLPurifier_Config
    /**
     * HTML Purifier's version
     */
-    var $version = '2.1.4';
+    var $version = '2.1.5';
    
    /**
     * Two-level associative array of configuration directives
--- a/release2-tag.php
+++ b/release2-tag.php
@@ -1 +1 @@
 .1.4
 .1.5