[ubuntu/maverick-security] mahara, mahara_1.2.5-2ubuntu0.2_i386_translations.tar.gz (delayed) 1.2.5-2ubuntu0.2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Wed May 18 17:03:34 UTC 2011
mahara (1.2.5-2ubuntu0.2) maverick-security; urgency=low
* SECURITY UPDATE: fixes to session key validation (CSRF)
- debian/patches/CVE-2011-1403.patch: upstream patch
* SECURITY UPDATE: privilege escalations
- debian/patches/CVE-2011-1402.patch: upstream patch
* SECURITY UPDATE: information disclosure in AJAX calls
- debian/patches/CVE-2011-1404.patch: upstream patch
* SECURITY UPDATE: https to http downgrade
- debian/patches/CVE-2011-1406.patch: upstream patch
* SECURITY UPDATE: sanitisation of HTML emails
- debian/patches/CVE-2011-1405.patch: upstream patch
Date: Tue, 10 May 2011 16:34:51 +1200
Changed-By: Francois Marier <francois at debian.org>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/mahara/1.2.5-2ubuntu0.2
-------------- next part --------------
Format: 1.8
Date: Tue, 10 May 2011 16:34:51 +1200
Source: mahara
Binary: mahara mahara-apache2
Architecture: source
Version: 1.2.5-2ubuntu0.2
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Francois Marier <francois at debian.org>
Description:
mahara - Electronic portfolio, weblog, and resume builder
mahara-apache2 - Electronic portfolio, weblog, and resume builder - apache2 config
Changes:
mahara (1.2.5-2ubuntu0.2) maverick-security; urgency=low
.
* SECURITY UPDATE: fixes to session key validation (CSRF)
- debian/patches/CVE-2011-1403.patch: upstream patch
.
* SECURITY UPDATE: privilege escalations
- debian/patches/CVE-2011-1402.patch: upstream patch
.
* SECURITY UPDATE: information disclosure in AJAX calls
- debian/patches/CVE-2011-1404.patch: upstream patch
.
* SECURITY UPDATE: https to http downgrade
- debian/patches/CVE-2011-1406.patch: upstream patch
.
* SECURITY UPDATE: sanitisation of HTML emails
- debian/patches/CVE-2011-1405.patch: upstream patch
Checksums-Sha1:
e3a368f342e45f711ea24409dc33911a8377071b 2021 mahara_1.2.5-2ubuntu0.2.dsc
86ad29d902c22e62d704d690412e20b0d7828970 25782 mahara_1.2.5-2ubuntu0.2.debian.tar.gz
Checksums-Sha256:
00963bcbb6a24318fba27cd746ccbeab0b3c1f43f135a67d19c13a58147572ed 2021 mahara_1.2.5-2ubuntu0.2.dsc
a676e4b2a5d4c8552c4aa108903d3910bff5b3bb5c75afedf37a701004d6a3e5 25782 mahara_1.2.5-2ubuntu0.2.debian.tar.gz
Files:
39007805cb5125936d9d0c3c7b85f919 2021 web optional mahara_1.2.5-2ubuntu0.2.dsc
4a67a360eb860804daa11f13ed6d9d1a 25782 web optional mahara_1.2.5-2ubuntu0.2.debian.tar.gz
Original-Maintainer: Mahara Packaging Team <mahara-packaging at lists.launchpad.net>
More information about the Maverick-changes
mailing list