A few hours ago, Romain Dorgueil (hartym) fixed a security problem he found in the admin generator (1.2, 1.3) which could cause data loss, or data injection if user did not remove necessary fields in the form class, but did choose some fields for display in generator.yml.
The patch is made by the following changesets, and should be 100% BC, unless someone was relying on the security problem to do strange things: http://trac.symfony-project.org/changeset/17579 http://trac.symfony-project.org/changeset/17580 http://trac.symfony-project.org/changeset/17581 This fix will be included in next release unless any issues arise. -- Blog: http://pookey.co.uk/blog Follow me on twitter: http://twitter.com/ipchristian --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "symfony users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/symfony-users?hl=en -~----------~----~----~----~------~----~------~--~---
