The associated CVE security ID for this is: CVE-2021-32062
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32062
-jeff
--
Jeff McKenna
GatewayGeo: Developers of MS4W, MapServer Consulting and Training
co-founder of FOSS4G
http://gatewaygeo.com/
On 2021-04-30 7:55 p.m., Steve Lime
The MapServer team is pleased (kinda) to announce the 7.6.3 security
and maintenance release.
Importantly, this release addresses a flaw, discovered by project
developers, in MapServer CGI mapfile loading that makes it possible to
bypass security controls (ticket #6313). This flaw makes it