[Bug 631584] [NEW] Please sync mantis 1.1.8+dfsg-6 (universe) from Debian unstable (main).
Launchpad Bug Tracker
631584 at bugs.launchpad.net
Mon Sep 6 14:57:26 BST 2010
You have been subscribed to a public bug by Bhavani Shankar (bhavi):
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
affects ubuntu/mantis
status new
importance wishlist
subscribe ubuntu-sponsors
Please sync mantis 1.1.8+dfsg-6 (universe) from Debian unstable (main).
Please sync the current version from debian as it fixes CVE
vulnerability
Changelog since current maverick version 1.1.8+dfsg-5:
mantis (1.1.8+dfsg-6) unstable; urgency=high
* debian/patches:
+ Added 08-CVE-2010-2574.diff: Fix for CVE-2010-2574 XSS
vulnerability when deleting categories that have been
maliciously named.(Closes: #595510)
-- Silvia Alvarez <sils at powered-by-linux.com> Sun, 05 Sep 2010
01:58:01 +0200
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFMhPRoUlfC4uPMy3QRAnSnAKDUg1ZD9BkVg8r7pLvH5ain9XLCXgCbByiQ
YN0AwS/Ah+VCkUFMyqN5Qe4=
=mp5g
-----END PGP SIGNATURE-----
** Affects: mantis (Ubuntu)
Importance: Wishlist
Status: New
--
Please sync mantis 1.1.8+dfsg-6 (universe) from Debian unstable (main).
https://bugs.launchpad.net/bugs/631584
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is a direct subscriber.
More information about the Ubuntu-sponsors
mailing list