[ubuntu/hardy-security] moin_1.5.8-5.1ubuntu2.3_i386_translations.tar.gz (delayed), moin 1.5.8-5.1ubuntu2.3 (Accepted)

Ubuntu Installer archive at ubuntu.com
Fri Mar 12 00:03:58 GMT 2010


moin (1.5.8-5.1ubuntu2.3) hardy-security; urgency=low

  * SECURITY UPDATE: fix multiple CSRF vulnerabilities
    - debian/patches/30006_CVE-2010-0668.patch: add tickets to prevent CSRF
      attacks in several components.
    - CVE-2010-0668
  * SECURITY UPDATE: properly sanitize user profiles
    - debian/patches/30007_CVE-2010-0669.patch: adjust userprefs/prefs.py,
      user.py and wikiutil.py to sanitize input
    - CVE-2010-0669

Date: Tue, 09 Mar 2010 15:22:12 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Core developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/moin/1.5.8-5.1ubuntu2.3
-------------- next part --------------
Format: 1.7
Date: Tue, 09 Mar 2010 15:22:12 -0600
Source: moin
Binary: moinmoin-common python-moinmoin
Architecture: source
Version: 1.5.8-5.1ubuntu2.3
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 moinmoin-common - Python clone of WikiWiki - common data
 python-moinmoin - Python clone of WikiWiki - library
Changes: 
 moin (1.5.8-5.1ubuntu2.3) hardy-security; urgency=low
 .
   * SECURITY UPDATE: fix multiple CSRF vulnerabilities
     - debian/patches/30006_CVE-2010-0668.patch: add tickets to prevent CSRF
       attacks in several components.
     - CVE-2010-0668
   * SECURITY UPDATE: properly sanitize user profiles
     - debian/patches/30007_CVE-2010-0669.patch: adjust userprefs/prefs.py,
       user.py and wikiutil.py to sanitize input
     - CVE-2010-0669
Files: 
 db1dd97700f22787217f388eb38f9970 990 net optional moin_1.5.8-5.1ubuntu2.3.dsc
 2c68baf991470b12246be536daeb8507 67691 net optional moin_1.5.8-5.1ubuntu2.3.diff.gz
Original-Maintainer: Jonas Smedegaard <dr at jones.dk>


More information about the Hardy-changes mailing list