From f72a26d340fb675e03d21d7a86dbb5803cd18831 Mon Sep 17 00:00:00 2001
From: Daniel Stenberg <daniel@haxx.se>
Date: Mon, 8 Sep 2008 11:36:19 +0000
Subject: - Stefan Krause pointed out that libcurl would wrongly send away
 cookies to   sites in cases where the cookie clearly has a very old expiry
 date. The   condition was simply that libcurl's date parser would fail to
 convert the   date and it would then count as a (timed-based) match. Starting
 now, a   missed date due to an unsupported date format or date range will now
 cause   the cookie to not match.

---
 RELEASE-NOTES | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'RELEASE-NOTES')

diff --git a/RELEASE-NOTES b/RELEASE-NOTES
index f96e060dc..3c4885dcb 100644
--- a/RELEASE-NOTES
+++ b/RELEASE-NOTES
@@ -19,6 +19,7 @@ This release includes the following bugfixes:
  o MingW32 non-configure builds are now largefile feature enabled by default
  o NetWare LIBC builds are now largefile feature enabled by default
  o curl_easy_pause() could behave wrongly on unpause
+ o cookie with invalid expire dates are now considered expired
 
 This release includes the following known bugs:
 
@@ -32,6 +33,6 @@ This release would not have looked like this without help, code, reports and
 advice from friends like these:
 
  Keith Mok, Yang Tse, Daniel Fandrich, Guenter Knauf, Dmitriy Sergeyev,
- Linus Nielsen Feltzing, Martin Drasar
+ Linus Nielsen Feltzing, Martin Drasar, Stefan Krause
 
         Thanks! (and sorry if I forgot to mention someone)
-- 
cgit v1.2.3