[Bug 631584] Re: Please sync mantis 1.1.8+dfsg-6 (universe) from Debian unstable (main).
Stefano Rivera
launchpad at rivera.za.net
Mon Sep 6 22:20:42 BST 2010
** Changed in: mantis (Ubuntu)
Assignee: (unassigned) => Stefano Rivera (stefanor)
** Changed in: mantis (Ubuntu)
Status: New => In Progress
** Changed in: mantis (Ubuntu)
Status: In Progress => Fix Committed
** Changed in: mantis (Ubuntu)
Assignee: Stefano Rivera (stefanor) => (unassigned)
--
Please sync mantis 1.1.8+dfsg-6 (universe) from Debian unstable (main).
https://bugs.launchpad.net/bugs/631584
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is a direct subscriber.
Status in “mantis” package in Ubuntu: Fix Released
Bug description:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
affects ubuntu/mantis
status new
importance wishlist
subscribe ubuntu-sponsors
Please sync mantis 1.1.8+dfsg-6 (universe) from Debian unstable (main).
Please sync the current version from debian as it fixes CVE
vulnerability
Changelog since current maverick version 1.1.8+dfsg-5:
mantis (1.1.8+dfsg-6) unstable; urgency=high
* debian/patches:
+ Added 08-CVE-2010-2574.diff: Fix for CVE-2010-2574 XSS
vulnerability when deleting categories that have been
maliciously named.(Closes: #595510)
-- Silvia Alvarez <sils at powered-by-linux.com> Sun, 05 Sep 2010 01:58:01 +0200
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFMhPRoUlfC4uPMy3QRAnSnAKDUg1ZD9BkVg8r7pLvH5ain9XLCXgCbByiQ
YN0AwS/Ah+VCkUFMyqN5Qe4=
=mp5g
-----END PGP SIGNATURE-----
More information about the Ubuntu-sponsors
mailing list