Difference between Play Framework 1.2.5.1 and 1.2.6 release?

StackOverflow https://stackoverflow.com/questions/18228420

  •  24-06-2022
  •  | 
  •  

Question

What is the difference between Play Framework 1.2.5.1 and 1.2.6 ? It seems both been released after detection of vulnerable session handling issue. http://www.playframework.com/security/vulnerability/20130806-SessionInjection

Was it helpful?

Solution

Compared to 1.2.5, version 1.2.5.1 has only changed the cookie handling, resolving the vulnerability you mentioned. You can see in the diff that only 3 files were changed, all related to this issue.

Play 1.2.6 however contains all the changes since the release of 1.2.5 last year. Most of the changes (maybe all, I did not read the commit logs and corresponding issues in detail) seem to pertain to non-critical bugfixes.

OTHER TIPS

See the commits between these versions:

Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
scroll top