Accepted: cherrypy3 3.0.2-2 (source)
Ubuntu Installer
archive at ubuntu.com
Tue Jan 29 03:07:26 GMT 2008
Accepted:
OK: cherrypy3_3.0.2.orig.tar.gz
OK: cherrypy3_3.0.2-2.diff.gz
OK: cherrypy3_3.0.2-2.dsc
-> Component: universe Section: python
Origin: Debian/unstable
Format: 1.7
Date: Tue, 29 Jan 2008 02:34:16 +0000
Source: cherrypy3
Binary: python-cherrypy3
Architecture: source
Version: 3.0.2-2
Distribution: hardy
Urgency: low
Maintainer: Gustavo Noronha Silva <kov at debian.org>
Changed-By: Michael Bienia <michael at vorlon.ping.de>
Changes:
cherrypy3 (3.0.2-2) unstable; urgency=low
.
[ Piotr Ożarowski ]
* Vcs-Browser and Homepage fields added
* Rename XS-Vcs-Svn to Vcs-Svn
.
[ Sandro Tosi ]
* debian/control
- fix Vcs-Browser field
.
[ Gustavo Noronha Silva ]
* This update addresses the following security issue:
- Directory traversal vulnerability in the _get_file_path function
in filter/sessionfilter.py allows remote attackers to create or
delete arbitrary files, and possibly read and write portions of
arbitrary files, via a crafted session id in a cookie
(CVE-2008-0252).
* debian/control:
- updated standards-version to 3.7.3; no changes
Files:
eb5fbf5147854a9a2a1d6231667b87f6 1027 python optional cherrypy3_3.0.2-2.dsc
3f38151bb2dead36b495735d8720a44a 6732 python optional cherrypy3_3.0.2-2.diff.gz
More information about the Hardy-changes
mailing list