Important security fix in Mono 2.8.2
Saturday, 08 January 2011
Mono 2.8.2 has just released been released. It contains an important security fix for users of ASP.NET as well as various updates to the Parallel Frameworks.

The security fix rectifies an unloading bug that can, under some circumstances, let ASP.NET applications misbehave and return the source code (.aspx) of the application or any other file in the web application directory. The Mono Project blog notes:

We strongly advise every Mono 2.8.xx user to upgrade to Mono 2.8.2 if they host web applications with it

mono

The other changes are:

  • Backport ParallelFx improvements from master (jlaval)
  • Fix state check for short-circuiting with SupportRecursion in ReaderWriterLockSlim #655361 (jlaval)
  • Increment Count even on single-processor in SpinWait. Fix #624849. (jlaval)
  • Update ThreadLocal to use default(T) for initialization with parameterless ctor. Fix #658689. (jlaval)

Related article: Mono 2.8

Banner

Can C++ Be As Safe As Rust?
10/04/2024

Herb Sutter is a well known and respected C++ champion and he thinks that the language only needs a few tweaks to make it as safe as Rust. Can this be true?


+ Full Story
Apache Shiro 2.0 Released
21/03/2024

Apache Shiro 2.0 has been released. The Java security framework now requires at least Java 11, and has added support for Jakarta EE 10.


+ Full Story
More News


 
Last Updated ( Saturday, 08 January 2011 )