[Bug 123740] Please sync knowledgeroot 0.9.8.2 (universe) from Debian unstable (main)
Emmet Hikory
emmet.hikory at gmail.com
Tue Jul 3 12:17:41 BST 2007
Public bug reported:
Binary package hint: knowledgeroot
Please sync knowledgeroot 0.9.8.2 (universe) from Debian unstable (main)
Rationale:
New Debian version fixes CVE-2007-3215
New Debian version fixes CVE-2007-3163
New Debian version compiles successfully in gutsy
Additional Debian changelog:
knowledgeroot (0.9.8.2-2) unstable; urgency=high
* Applied patch from phpmailer upstream to fix shell command execution in
the included phpmailer code [CVE-2007-3215] (Closes: #429196).
* Applied patch from svn repository for fckeditor to fix incomplete
blacklist vulnerability in the filemanager [CVE-2007-3163]
(Closes: #429204).
-- Frank Habermann <lordlamer at lordlamer.de> Sun, 01 Jul 2007 23:27:23
+0200
** Affects: knowledgeroot (Ubuntu)
Importance: Wishlist
Status: Confirmed
** Tags: sync
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-3215
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-3163
** Changed in: knowledgeroot (Ubuntu)
Importance: Undecided => Wishlist
Status: New => Confirmed
--
Please sync knowledgeroot 0.9.8.2 (universe) from Debian unstable (main)
https://bugs.launchpad.net/bugs/123740
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list