[ubuntu-cloud-archive/juno-updates] requests (Accepted)
James Page
james.page at ubuntu.com
Thu May 21 16:59:37 UTC 2015
requests (2.3.0-1ubuntu0.1~cloud0) trusty-juno; urgency=medium
.
* New update for the Ubuntu Cloud Archive.
.
requests (2.3.0-1ubuntu0.1) utopic-security; urgency=medium
.
* SECURITY UPDATE: Session fixation and cookie stealing issue
(LP: #1432555).
- debian/patches/CVE-2015-2296.patch: extract cookies from the original
request (which still has the host which returned the cookies)
- CVE-2015-2296
Date: Mon, 16 Mar 2015 14:02:54 +0000
Changed-By: Openstack Ubuntu Testing Bot <openstack-testing-bot at ubuntu.com>
Signed-By: Openstack Ubuntu Testing Bot
Published-By: James Page <james.page at ubuntu.com>
More information about the Cloud-archive-changes
mailing list