Do not rely on cookie path for session riding Change-Id: Ib285a797485ec3180cb9dad0ade556078456073c

commit: b4d3b2a82107e231f4c53d85c8cf5f40831789cb [log] [tgz]
author: Akron <nils@diewald-online.de> Thu Nov 30 13:55:21 2023 +0100
committer: Akron <nils@diewald-online.de> Thu Dec 07 06:49:53 2023 +0100
tree: ff1a866ffc21910546057c4881aab825fb01efcf
parent: d1084dc00ce02369c9c6fa8c8072b8a968319375 [diff] [blame]
diff --git a/Changes b/Changes
index f91d5d9..7b57cfb 100644
--- a/Changes
+++ b/Changes

@@ -2,6 +2,7 @@
     - Change default api port to 443.
     - Update dependency of logback-classic.
     - Add warning regarding protected data.
+    - Do not rely on cookie path for session riding.
 
       This fixes a security issue! Please update!
commit	b4d3b2a82107e231f4c53d85c8cf5f40831789cb	[log] [tgz]
author	Akron <nils@diewald-online.de>	Thu Nov 30 13:55:21 2023 +0100
committer	Akron <nils@diewald-online.de>	Thu Dec 07 06:49:53 2023 +0100
tree	ff1a866ffc21910546057c4881aab825fb01efcf
parent	d1084dc00ce02369c9c6fa8c8072b8a968319375 [diff] [blame]