From f1439f0af54ca21126546bba372a8cd4a72670c5 Mon Sep 17 00:00:00 2001 From: "Edward Z. Yang" Date: Sun, 27 Mar 2011 23:02:49 +0100 Subject: [PATCH] Release 4.3.0 Signed-off-by: Edward Z. Yang --- Doxyfile | 2 +- FOCUS | 2 +- NEWS | 2 +- TODO | 2 +- VERSION | 2 +- WHATSNEW | 16 ++++++++-------- library/HTMLPurifier.includes.php | 2 +- library/HTMLPurifier.php | 6 +++--- library/HTMLPurifier/Config.php | 2 +- 9 files changed, 18 insertions(+), 18 deletions(-) diff --git a/Doxyfile b/Doxyfile index e5f46907..130cfef1 100644 --- a/Doxyfile +++ b/Doxyfile @@ -31,7 +31,7 @@ PROJECT_NAME = HTMLPurifier # This could be handy for archiving the generated documentation or # if some version control system is used. -PROJECT_NUMBER = 4.2.0 +PROJECT_NUMBER = 4.3.0 # The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) # base path where the generated documentation will be put. diff --git a/FOCUS b/FOCUS index 590c186f..e13b9aa0 100644 --- a/FOCUS +++ b/FOCUS @@ -1,4 +1,4 @@ -4 - Minor feature enhancements +9 - Major security fixes [ Appendix A: Release focus IDs ] 0 - N/A diff --git a/NEWS b/NEWS index 720db5a0..8e7aef02 100644 --- a/NEWS +++ b/NEWS @@ -9,7 +9,7 @@ NEWS ( CHANGELOG and HISTORY ) HTMLPurifier . Internal change ========================== -4.3.0, unknown release date +4.3.0, released 2011-03-27 # Fixed broken caching of customized raw definitions, but requires an API change. The old API still works but will emit a warning, see http://htmlpurifier.org/docs/enduser-customize.html#optimized diff --git a/TODO b/TODO index 1e431cce..32a778b5 100644 --- a/TODO +++ b/TODO @@ -27,7 +27,7 @@ Things to do as soon as possible: FUTURE VERSIONS --------------- -4.3 release [OMG CONFIG PONIES] +4.4 release [OMG CONFIG PONIES] ! Fix Printer. It's from the old days when we didn't have decent XML classes ! Factor demo.php into a set of Printer classes, and then create a stub file for users here (inside the actual HTML Purifier library) diff --git a/VERSION b/VERSION index ef8d7569..81911389 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -4.2.0 \ No newline at end of file +4.3.0 \ No newline at end of file diff --git a/WHATSNEW b/WHATSNEW index 9fecbe97..09110a73 100644 --- a/WHATSNEW +++ b/WHATSNEW @@ -1,8 +1,8 @@ -HTML Purifier 4.2.0 is a minor release that implements a number of -feature requests accumulated over half a year. New configuration -options include %Core.RemoveProcessingInstructions, -%CSS.ForbiddenProperties, %HTML.FlashAllowFullScreen and -%Core.NormalizeNewlines. Additionally,%URI.DisableResources is -now functional and file: is an optionally supported URI scheme. -There are also some minor bugfixes, usability improvements and -documentation updates. +HTML Purifier 4.3.0 is a major security release addressing various +security vulnerabilities related to user-submitted code and legitimate +client-side scripts. It also contains an accumulation of new features +and bugfixes over half a year. New configuration options include +%CSS.Trusted, %CSS.AllowedFonts and %Cache.SerializerPermissions. +There is a backwards-incompatible API change for customized raw +definitions, see +for details. diff --git a/library/HTMLPurifier.includes.php b/library/HTMLPurifier.includes.php index abee9a2e..b9baf8f0 100644 --- a/library/HTMLPurifier.includes.php +++ b/library/HTMLPurifier.includes.php @@ -7,7 +7,7 @@ * primary concern and you are using an opcode cache. PLEASE DO NOT EDIT THIS * FILE, changes will be overwritten the next time the script is run. * - * @version 4.2.0 + * @version 4.3.0 * * @warning * You must *not* include any other HTML Purifier files before this file, diff --git a/library/HTMLPurifier.php b/library/HTMLPurifier.php index 11b217b0..914ba25a 100644 --- a/library/HTMLPurifier.php +++ b/library/HTMLPurifier.php @@ -19,7 +19,7 @@ */ /* - HTML Purifier 4.2.0 - Standards Compliant HTML Filtering + HTML Purifier 4.3.0 - Standards Compliant HTML Filtering Copyright (C) 2006-2008 Edward Z. Yang This library is free software; you can redistribute it and/or @@ -55,10 +55,10 @@ class HTMLPurifier { /** Version of HTML Purifier */ - public $version = '4.2.0'; + public $version = '4.3.0'; /** Constant with version of HTML Purifier */ - const VERSION = '4.2.0'; + const VERSION = '4.3.0'; /** Global configuration object */ public $config; diff --git a/library/HTMLPurifier/Config.php b/library/HTMLPurifier/Config.php index 1fad77b5..b6551398 100644 --- a/library/HTMLPurifier/Config.php +++ b/library/HTMLPurifier/Config.php @@ -20,7 +20,7 @@ class HTMLPurifier_Config /** * HTML Purifier's version */ - public $version = '4.2.0'; + public $version = '4.3.0'; /** * Bool indicator whether or not to automatically finalize