---
title: PingAccess 8.1.1 (August 2024)
description: Security PA-15776
component: pingaccess
version: 8.3
page_id: pingaccess:release_notes:pa_811_rn
canonical_url: https://docs.pingidentity.com/pingaccess/8.3/release_notes/pa_811_rn.html
llms_txt: https://docs.pingidentity.com/pingaccess/llms.txt
docs_for_agents: https://developer.pingidentity.com/build-with-ai/docs-for-agents.md
revdate: August 7, 2024
section_ids:
  fixed-a-security-vulnerability-with-url-encoded-characters: Fixed a security vulnerability with URL-encoded characters
  set-response-headers-for-oauth-errors: Set response headers for OAuth errors
  fixed-default-value-rendering: Fixed default value rendering
---

# PingAccess 8.1.1 (August 2024)

## Fixed a security vulnerability with URL-encoded characters

Security PA-15776

Added the `pa.uri.canonicalize` parameter to the [Configuration file reference](../reference_guides/pa_config_file_ref.html) to fix a security vulnerability. Learn more in an upcoming security advisory.

## Set response headers for OAuth errors

Improved PA-15764

Added the `oauth.error.headers` and `oauth.error.header.Content-Security-Policy` parameters to the [Configuration file reference](../reference_guides/pa_config_file_ref.html).

## Fixed default value rendering

Fixed PA-15763

Fixed an issue that caused some authentication challenge policy (ACP) configuration fields to render their default value only after they were saved.