[IPython-dev] IPython 2.2 release, including security fix
Thomas Kluyver
takowl at gmail.com
Wed Aug 6 19:25:16 EDT 2014
Hi all,
We've just released IPython 2.2, which rolls up a few bugfixes that have
been backported since the last release. This includes a fix for a security
issue posted a few days ago, which could have allowed an attacker who could
intercept network traffic (e.g. on insecure wifi) to intercept a request
for Mathjax and send back malicious javascript which would run in the
notebook. The fix was simply to always load mathjax over HTTPS:
https://github.com/ipython/ipython/pull/6249
You can see the full list of issues and PRs for this release here:
http://ipython.org/ipython-doc/stable/whatsnew/github-stats-2.0.html#issues-closed-in-2-2-0
You can install this release in any of the usual ways.
http://ipython.org/install.html
Thomas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/ipython-dev/attachments/20140806/e87f82ed/attachment.html>
More information about the IPython-dev
mailing list