[ubuntu/maverick] mahara 1.2.5-2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu Jul 8 16:09:17 BST 2010
mahara (1.2.5-2) unstable; urgency=low
* Remove postgresql8.3 from recommends, add postgresql8.4
* Add mysql-server-5.1 to recommends
mahara (1.2.5-1) unstable; urgency=high
* New upstream release
- multiple cross-site scripting vulnerabilities (CVE-2010-1667)
- multiple cross-site request forgery vulnerabilities (CVE-2010-1668)
- sql injection (CVE-2010-1669)
- unsafe auth plugins configuration options (CVE-2010-1670)
* Use system's version of HTML purifier (CVE-2010-2479)
* Add missing symlink to PEAR's File module to fix csv parsing
* Remove reference to the common BSD license in debian/copyright
* Bump Standards-Version to 3.9.0
Date: Thu, 08 Jul 2010 16:08:06 +0100
Changed-By: Michael Bienia <michael at bienia.de>
Maintainer: Mahara Packaging Team <mahara-packaging at lists.launchpad.net>
Origin: Debian/unstable
https://launchpad.net/ubuntu/maverick/+source/mahara/1.2.5-2
-------------- next part --------------
Origin: Debian/unstable
Format: 1.7
Date: Thu, 08 Jul 2010 16:08:06 +0100
Source: mahara
Binary: mahara, mahara-apache2
Architecture: source
Version: 1.2.5-2
Distribution: maverick
Urgency: high
Maintainer: Mahara Packaging Team <mahara-packaging at lists.launchpad.net>
Changed-By: Michael Bienia <michael at bienia.de>
Description:
mahara - Electronic portfolio, weblog, and resume builder
Changes:
mahara (1.2.5-2) unstable; urgency=low
.
* Remove postgresql8.3 from recommends, add postgresql8.4
* Add mysql-server-5.1 to recommends
.
mahara (1.2.5-1) unstable; urgency=high
.
* New upstream release
- multiple cross-site scripting vulnerabilities (CVE-2010-1667)
- multiple cross-site request forgery vulnerabilities (CVE-2010-1668)
- sql injection (CVE-2010-1669)
- unsafe auth plugins configuration options (CVE-2010-1670)
.
* Use system's version of HTML purifier (CVE-2010-2479)
* Add missing symlink to PEAR's File module to fix csv parsing
.
* Remove reference to the common BSD license in debian/copyright
* Bump Standards-Version to 3.9.0
Files:
c78a8503b3079f345648eed140a8ec56 4056907 web optional mahara_1.2.5.orig.tar.gz
10f9ab29efa4e560939ac21f3c4cdac4 1906 web optional mahara_1.2.5-2.dsc
f45febeacf0abac9e3df4f4c8a4267ad 21295 web optional mahara_1.2.5-2.debian.tar.gz
More information about the Maverick-changes
mailing list