[ubuntu/lucid-security] mahara, mahara_1.2.4-1ubuntu0.1_i386_translations.tar.gz (delayed) 1.2.4-1ubuntu0.1 (Accepted)

[Ubuntu Installer]

mahara (1.2.4-1ubuntu0.1) lucid-security; urgency=low

  * SECURITY UPDATE: multiple cross-site scripting vulnerabilities
    - debian/patches/CVE-2010-1667.patch: upstream patch
    - CVE-2010-1667

  * SECURITY UPDATE: multiple cross-site request forgery vulnerabilities
    - debian/patches/CVE-2010-1668.patch: upstream patch
    - CVE-2010-1668

  * SECURITY UPDATE: SQL injection
    - debian/patches/CVE-2010-1669.patch: upstream patch
    - CVE-2010-1669

  * SECURITY UPDATE: unsafe auth plugins configuration options
    - debian/patches/CVE-2010-1670.patch: upstream patch
    - CVE-2010-1670

  * SECURITY UPDATE: IE-only cross-site scripting bug in HTML Purifier
    - depend on php-htmlpurifier and stop using the bundled version
    - CVE-2010-2479

Date: Thu, 08 Jul 2010 17:02:43 +1200
Changed-By: Francois Marier <francois at debian.org>
Maintainer: Mahara Packaging Team <mahara-packaging at lists.launchpad.net>
https://launchpad.net/ubuntu/lucid/+source/mahara/1.2.4-1ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Thu, 08 Jul 2010 17:02:43 +1200
Source: mahara
Binary: mahara mahara-apache2
Architecture: source
Version: 1.2.4-1ubuntu0.1
Distribution: lucid-security
Urgency: low
Maintainer: Mahara Packaging Team <mahara-packaging at lists.launchpad.net>
Changed-By: Francois Marier <francois at debian.org>
Description: 
 mahara     - Electronic portfolio, weblog, and resume builder
 mahara-apache2 - Electronic portfolio, weblog, and resume builder - apache2 config
Changes: 
 mahara (1.2.4-1ubuntu0.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: multiple cross-site scripting vulnerabilities
     - debian/patches/CVE-2010-1667.patch: upstream patch
     - CVE-2010-1667
 .
   * SECURITY UPDATE: multiple cross-site request forgery vulnerabilities
     - debian/patches/CVE-2010-1668.patch: upstream patch
     - CVE-2010-1668
 .
   * SECURITY UPDATE: SQL injection
     - debian/patches/CVE-2010-1669.patch: upstream patch
     - CVE-2010-1669
 .
   * SECURITY UPDATE: unsafe auth plugins configuration options
     - debian/patches/CVE-2010-1670.patch: upstream patch
     - CVE-2010-1670
 .
   * SECURITY UPDATE: IE-only cross-site scripting bug in HTML Purifier
     - depend on php-htmlpurifier and stop using the bundled version
     - CVE-2010-2479
Checksums-Sha1: 
 02b7c2d7bf903d5c71b1fac1c738aee12432e89e 1302 mahara_1.2.4-1ubuntu0.1.dsc
 031713936bff534fce28441831cd03456546f4b7 28792 mahara_1.2.4-1ubuntu0.1.debian.tar.gz
Checksums-Sha256: 
 e7e185ab5e5c94e8d6089079169d8f19b6d436ddcc04311ceaaed5ea640cfda7 1302 mahara_1.2.4-1ubuntu0.1.dsc
 597ce3bd3f376bf1f4581260ee6f168249908913068a342962291f203744b2eb 28792 mahara_1.2.4-1ubuntu0.1.debian.tar.gz
Files: 
 aad565097fb482762b07c9d4dae68747 1302 web optional mahara_1.2.4-1ubuntu0.1.dsc
 faf8d4e4e388933b09167aa512a837d5 28792 web optional mahara_1.2.4-1ubuntu0.1.debian.tar.gz