[ubuntu/maverick-security] mahara, mahara_1.2.5-2ubuntu0.2_i386_translations.tar.gz (delayed) 1.2.5-2ubuntu0.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed May 18 17:03:34 UTC 2011


mahara (1.2.5-2ubuntu0.2) maverick-security; urgency=low

  * SECURITY UPDATE: fixes to session key validation (CSRF)
    - debian/patches/CVE-2011-1403.patch: upstream patch

  * SECURITY UPDATE: privilege escalations
    - debian/patches/CVE-2011-1402.patch: upstream patch

  * SECURITY UPDATE: information disclosure in AJAX calls
    - debian/patches/CVE-2011-1404.patch: upstream patch

  * SECURITY UPDATE: https to http downgrade
    - debian/patches/CVE-2011-1406.patch: upstream patch

  * SECURITY UPDATE: sanitisation of HTML emails
    - debian/patches/CVE-2011-1405.patch: upstream patch

Date: Tue, 10 May 2011 16:34:51 +1200
Changed-By: Francois Marier <francois at debian.org>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/mahara/1.2.5-2ubuntu0.2
-------------- next part --------------
Format: 1.8
Date: Tue, 10 May 2011 16:34:51 +1200
Source: mahara
Binary: mahara mahara-apache2
Architecture: source
Version: 1.2.5-2ubuntu0.2
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Francois Marier <francois at debian.org>
Description: 
 mahara     - Electronic portfolio, weblog, and resume builder
 mahara-apache2 - Electronic portfolio, weblog, and resume builder - apache2 config
Changes: 
 mahara (1.2.5-2ubuntu0.2) maverick-security; urgency=low
 .
   * SECURITY UPDATE: fixes to session key validation (CSRF)
     - debian/patches/CVE-2011-1403.patch: upstream patch
 .
   * SECURITY UPDATE: privilege escalations
     - debian/patches/CVE-2011-1402.patch: upstream patch
 .
   * SECURITY UPDATE: information disclosure in AJAX calls
     - debian/patches/CVE-2011-1404.patch: upstream patch
 .
   * SECURITY UPDATE: https to http downgrade
     - debian/patches/CVE-2011-1406.patch: upstream patch
 .
   * SECURITY UPDATE: sanitisation of HTML emails
     - debian/patches/CVE-2011-1405.patch: upstream patch
Checksums-Sha1: 
 e3a368f342e45f711ea24409dc33911a8377071b 2021 mahara_1.2.5-2ubuntu0.2.dsc
 86ad29d902c22e62d704d690412e20b0d7828970 25782 mahara_1.2.5-2ubuntu0.2.debian.tar.gz
Checksums-Sha256: 
 00963bcbb6a24318fba27cd746ccbeab0b3c1f43f135a67d19c13a58147572ed 2021 mahara_1.2.5-2ubuntu0.2.dsc
 a676e4b2a5d4c8552c4aa108903d3910bff5b3bb5c75afedf37a701004d6a3e5 25782 mahara_1.2.5-2ubuntu0.2.debian.tar.gz
Files: 
 39007805cb5125936d9d0c3c7b85f919 2021 web optional mahara_1.2.5-2ubuntu0.2.dsc
 4a67a360eb860804daa11f13ed6d9d1a 25782 web optional mahara_1.2.5-2ubuntu0.2.debian.tar.gz
Original-Maintainer: Mahara Packaging Team <mahara-packaging at lists.launchpad.net>


More information about the Maverick-changes mailing list