[Bug 602772] Re: Sync mahara 1.2.5-1 (universe) from Debian unstable (main)
Jamie Strandboge
jamie at ubuntu.com
Thu Jul 8 18:29:55 BST 2010
mahara (1.0.9-2ubuntu0.7) jaunty-security; urgency=low
* SECURITY UPDATE: multiple cross-site scripting vulnerabilities
- debian/patches/CVE-2010-1667.dpatch: upstream patch
- CVE-2010-1667
* SECURITY UPDATE: multiple cross-site request forgery vulnerabilities
- debian/patches/CVE-2010-1668.dpatch: upstream patch
- CVE-2010-1668
* SECURITY UPDATE: unsafe auth plugins configuration options
- debian/patches/CVE-2010-1670.dpatch: upstream patch
- CVE-2010-1670
* SECURITY UPDATE: IE-only cross-site scripting bug in HTML Purifier
- debian/patches/CVE-2010-2479.dpatch: upstream patch
- CVE-2010-2479
** Changed in: mahara (Ubuntu Jaunty)
Status: Fix Committed => Fix Released
--
Sync mahara 1.2.5-1 (universe) from Debian unstable (main)
https://bugs.launchpad.net/bugs/602772
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list