faveo/vendor/zendframework/zend-http/CHANGELOG.md

Changelog

All notable changes to this project will be documented in this file, in reverse chronological order by release.

2.5.3 - 2015-09-14

Added

• Nothing.

Deprecated

• Nothing.

Removed

• Nothing.

Fixed

• #23 fixes a BC break introduced with fixes for ZF2015-04, pertaining specifically to the SetCookie header. The fix backs out a check for message splitting syntax, as that particular class already encodes the value in a manner that prevents the attack. It also adds tests to ensure the security vulnerability remains patched.

2.5.2 - 2015-08-05

Added

• Nothing.

Deprecated

• Nothing.

Removed

• Nothing.

Fixed

• #7 fixes a call in the proxy adapter to Response::extractCode(), which does not exist, to Response::fromString()->getStatusCode(), which does.
• #8 ensures that the Curl client adapter enables the CURLINFO_HEADER_OUT, which is required to ensure we can fetch the raw request after it is sent.
• #14 fixes Zend\Http\PhpEnvironment\Request to ensure that empty SCRIPT_FILENAME and SCRIPT_NAME values which result in an empty $baseUrl will not raise an E_WARNING when used to do a strpos() check during base URI detection.