Accepted drupal 4.5.5-1 (source)
Martin Pitt
martin.pitt at ubuntu.com
Thu Sep 1 11:00:02 CDT 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Origin: Debian/unstable
Format: 1.7
Date: Thu, 01 Sep 2005 16:53:03 +0100
Source: drupal
Binary: drupal
Architecture: source
Version: 4.5.5-1
Distribution: breezy
Urgency: high
Maintainer: Hilko Bengen <bengen at debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description:
drupal - fully-featured content management/discussion engine
Closes: 316903
Changes:
drupal (4.5.5-1) unstable; urgency=HIGH
.
* Justification: Fixes security vulnerability
* New upstream version
- Fixes the following XMLRPC vulnerability:
CAN-2005-2498 / DRUPAL-SA-2005-004: Through the bundled xmlrpc
module, an attacker could execute arbitrary PHP code on the target
site (see http://drupal.org/files/sa-2005-004/advisory.txt).
* cron.sh fix for the case when no sites are configured
(Closes: #316903)
Files:
c09b71288678f73c42317f77de8d2f1d 465874 web extra drupal_4.5.5.orig.tar.gz
27ed51e1f53ff6024bdd23a9e87b3646 609 web extra drupal_4.5.5-1.dsc
165c46da155ec19dc7457017fae4f479 42749 web extra drupal_4.5.5-1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iQEVAwUBQxcj3wF4adwMEr3XAQJFIwf/cY9Oc8osGvvr5OswPbiZkDMNxmBuUs4d
keZQbwGi+mV6bEzNwieVfAwprxeg7nVsXF1o0ld3u8J2j+nLk+JeZLFe3BuR3Bv3
aQvIa3Av6y9jeixB3q60mYjBtwsPzuC1bQP3ocjJ4XV+Xm4vp5oC/nw+3I/kBJLH
6LxG5ZZi9FV9G1ib42BHliETd40lMxzBipEhMd+YAb7arIkwfno0ulhFY2rbURnS
TsjBkqjUQ2jjCwZyWWABEbDNm3+VVICqHUpnq68z13bdQE21+4U8nKclqjpZWABX
mCWnAJmuklyg0ZzKgEt2zgrAp01WP6Mja6jNDzKMaMMrGlufGAzsBQ==
=gjcM
-----END PGP SIGNATURE-----
Accepted:
drupal_4.5.5-1.diff.gz
to pool/universe/d/drupal/drupal_4.5.5-1.diff.gz
drupal_4.5.5-1.dsc
to pool/universe/d/drupal/drupal_4.5.5-1.dsc
drupal_4.5.5.orig.tar.gz
to pool/universe/d/drupal/drupal_4.5.5.orig.tar.gz
More information about the breezy-changes
mailing list