** Branch linked: lp:ubuntu/gutsy-updates/rails
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
Please close for Feisty as Won't Fix? This goes for all the other Feisty
bugs.
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs
Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued
for this release. Marking Feisty as Won't Fix.
** Changed in: rails (Ubuntu Feisty)
Status: New = Won't Fix
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this
Ubuntu Edgy Eft is no longer supported, so a SRU will not be issued for
this release. Marking Edgy as Won't Fix.
** Changed in: rails (Ubuntu Edgy)
Status: New = Won't Fix
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug
Thanks for preparing this! I've uploaded it to the security queue; it
should be published shortly.
** Changed in: rails (Ubuntu Gutsy)
Status: In Progress = Fix Committed
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug
rails (1.2.4-1ubuntu1.1) gutsy-security; urgency=low
* SECURITY UPDATE: Session fixation attack via broken :cookie_only
attribute. (LP: #173203)
* debian/patches/20_CVE-2007-6077: Fix broken session fixation catching.
Patch from upstream bug.
* References
CVE-2007-6077
--
** Changed in: rails (Ubuntu Gutsy)
Assignee: (unassigned) = William Grant (fujitsu)
Status: New = In Progress
** Attachment added: gutsy debdiff
http://launchpadlibrarian.net/10680779/gutsy.diff
--
[CVE-2007-6077] Potential session fixation attack
** Changed in: rails
Status: Unknown = Fix Released
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list