RhodeCode Enterprise 3.3.2 Release Notes

Release Date

• 2015-06-05

security fixes

• Stored XSS attempts on user login fields, and other text input fields.

• DOM Based XSS attempts

• HTML Injection

• Cross frame scripting (XFS)

• Invalidation of concurrent sessions on password change.

• Downgrading of HTTPS connections.

fixes

• Generation of URLs on system with custom URL prefixes.

• VCSServer: Improved memory management of the cache data used by the server.