[ubuntu/trusty-security] horizon 1:2014.1.2-0ubuntu1.1 (Accepted)

Thu Aug 21 19:23:20 UTC 2014

horizon (1:2014.1.2-0ubuntu1.1) trusty-security; urgency=medium

  * Pull in security fixes from trusty-updates:
    - [32a7b71] Fix multiple Cross-Site Scripting (XSS) vulnerabilities.
      + CVE-2014-3473
      + LP: #1308727
      + CVE-2014-3474
      + LP: #1322197
      + CVE-2014-3475
      + LP: #1320235
  * SECURITY UPDATE: Fix XSS issue with the unordered_list filter
    - debian/patches/CVE-2014-3594.patch: properly perform input sanitization
      in dashboards/admin/aggregates/tables.py
    - CVE-2014-3594
    - LP: #1349491

Date: 2014-08-21 15:19:11.683832+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Chuck Short <chuck.short at canonical.com>
https://launchpad.net/ubuntu/trusty/+source/horizon/1:2014.1.2-0ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.