[ubuntu/lucid-security] mako, mako (delayed) 0.2.5-2ubuntu1.3 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Sep 29 17:03:26 BST 2010


mako (0.2.5-2ubuntu1.3) lucid-security; urgency=low

  * SECURITY UPDATE: cross-site scripting via inadequate escaping
    - lib/mako/filters.py: use xml.sax.saxutils.escape instead of
      cgi.escape so we can escape single quotes.
    - CVE-2010-2480

Date: Tue, 28 Sep 2010 09:35:53 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/mako/0.2.5-2ubuntu1.3
-------------- next part --------------
Format: 1.8
Date: Tue, 28 Sep 2010 09:35:53 -0400
Source: mako
Binary: python-mako
Architecture: source
Version: 0.2.5-2ubuntu1.3
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 python-mako - fast and lightweight templating for the Python platform
Changes: 
 mako (0.2.5-2ubuntu1.3) lucid-security; urgency=low
 .
   * SECURITY UPDATE: cross-site scripting via inadequate escaping
     - lib/mako/filters.py: use xml.sax.saxutils.escape instead of
       cgi.escape so we can escape single quotes.
     - CVE-2010-2480
Checksums-Sha1: 
 2aff4807bb2c3a107f162d0300cdaab343fa9506 1452 mako_0.2.5-2ubuntu1.3.dsc
 e5b8d91d55ee5ef9479c9d4bc3c79aef605572df 5622 mako_0.2.5-2ubuntu1.3.diff.gz
Checksums-Sha256: 
 2d6abb75c2126e7a5a0320f457b46ac781eb96389223726d1bdbf05886131a14 1452 mako_0.2.5-2ubuntu1.3.dsc
 81d30f5dfff04e24934dd9cd9beec3eabc28fb172c7f08df5a915668838d009e 5622 mako_0.2.5-2ubuntu1.3.diff.gz
Files: 
 fd281df3c78bc4ca4fb2f1a96a5cf9c9 1452 python optional mako_0.2.5-2ubuntu1.3.dsc
 9cc948447247736d5d37f2ada66f2e59 5622 python optional mako_0.2.5-2ubuntu1.3.diff.gz
Original-Maintainer: Piotr Ożarowski <piotr at debian.org>


More information about the Lucid-changes mailing list