Re: CVE-2015-1834 CC Path Traversal vulnerability


I understand the CFF strongly recommends to upgrade to v208 or after, but for
those (including us) who cannot immediately upgrade, I want to know if there
is a workaround against this vulnerability.

I've found that there is a commit which seems related this vulnerability:

Cherry-picking this commit may be a workaround? Or we need another commits
to cherry-pick?

Thanks in advance.

View this message in context:
Sent from the CF Dev mailing list archive at

Join to automatically receive all group messages.