Accepted: cherrypy3,cherrypy3 3.0.2-1ubuntu0.1 (source,i386)

Ubuntu Installer archive at
Fri Mar 14 20:56:27 GMT 2008

 OK: cherrypy3_3.0.2.orig.tar.gz
 OK: cherrypy3_3.0.2-1ubuntu0.1.diff.gz
 OK: cherrypy3_3.0.2-1ubuntu0.1.dsc
     -> Component: universe Section: python
 OK: python-cherrypy3_3.0.2-1ubuntu0.1_all.deb

Format: 1.7
Date: Sun, 09 Mar 2008 15:31:25 +1100
Source: cherrypy3
Binary: python-cherrypy3
Architecture: all source
Version: 3.0.2-1ubuntu0.1
Distribution: gutsy-security
Urgency: low
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at>
Changed-By: William Grant <william.grant at>
 python-cherrypy3 - Python web development framework - version 3
 cherrypy3 (3.0.2-1ubuntu0.1) gutsy-security; urgency=low
   * SECURITY UPDATE: directory traversal via session cookie ID.
     - debian/patches/10_CVE-2008-0252.diff: Add. Ensure that the path
       generated from the session ID is within the session directory. Patch
       from upstream SVN. (LP: #187481)
     - References:
       + CVE-2008-0252
   * Modify Maintainer value to match the DebianMaintainerField specification.
 88d90159139b7dc79b0d278f8f7f0b16 1230770 python optional python-cherrypy3_3.0.2-1ubuntu0.1_all.deb
 7ffa948433e659f80c6a6f5cc4051299 997 python optional cherrypy3_3.0.2-1ubuntu0.1.dsc
 8d2b714eb541538f3d1cab200e33e373 6798 python optional cherrypy3_3.0.2-1ubuntu0.1.diff.gz
Launchpad-Bugs-Fixed: 187481
Original-Maintainer: Gustavo Noronha Silva <kov at>

More information about the gutsy-changes mailing list