[Bug 178715] Re: [Sync request] Please sync gallery2 2.2.4-1 (universe) from Debian unstable (main)
James-C
james-launchpad at cummingsfamily.org.uk
Sun Dec 30 22:47:45 GMT 2007
Could I add another voice in support of this?
This shouldn't just be wishlist ... 2.2.4 adds significant security
fixes after a complete professional security audit including:
* Added protection from brute force attacks on setup and account passwords.
* Added protection from "Cross Site Request Forgery" attacks.
* Added protection from "Cross Site Scripting" through item titles, summaries and description (only applies to the non-default HTML markup).
* Added protection from "HTTP Response Splitting" attacks.
* Fixed information disclosure through application errors.
* Hardened Session Handling in upgrade, install and support area.
--
[Sync request] Please sync gallery2 2.2.4-1 (universe) from Debian unstable (main)
https://bugs.launchpad.net/bugs/178715
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list