[Bug 5297] Trac 0.9.1 and 0.9.2 to fix SQL injection vulnerabilities, 0.9.3 – XSS vulnerabilities
Shot
shot at hot.pl
Mon Jan 9 06:28:14 UTC 2006
Public bug report changed:
https://launchpad.net/malone/bugs/5297
Summary changed to:
Trac 0.9.1 and 0.9.2 to fix SQL injection vulnerabilities, 0.9.3 – XSS vulnerabilities
Description changed to:
Debian’s trac changelog:
trac (0.9.3-1) unstable; urgency=high
* New upstream release.
* Security update (thus urgengy high), fixing:
- Fixed XSS vulnerabilities.
* Also, fixes:
- Timeline RSS feed validity issue resolved.
- "trac-admin initenv" now handles empty repositories.
- Textile unicode support.
trac (0.9.2-1) unstable; urgency=high
* New upstream release.
* Security update (urgency high), fixing:
- an SQL injection vulnerability in the search module.
- broken email ticket notifications.
trac (0.9.1-1) unstable; urgency=HIGH
* New upstream release
- Fix a SQL injection security bug.
More information about the universe-bugs
mailing list