Accepted:
OK: python-cherrypy_2.2.1.orig.tar.gz
OK: python-cherrypy_2.2.1-3ubuntu1.7.04.diff.gz
OK: python-cherrypy_2.2.1-3ubuntu1.7.04.dsc
-> Component: universe Section: python
OK: python-cherrypy_2.2.1-3ubuntu1.7.04_all.deb
Format: 1.7
Date: Sun, 09 Mar 2008 15:59:14 +1100
Source: python-cherrypy
Binary: python-cherrypy
Architecture: all source
Version: 2.2.1-3ubuntu1.7.04
Distribution: feisty-security
Urgency: low
Maintainer: Ubuntu MOTU Developers <[EMAIL PROTECTED]>
Changed-By: William Grant <[EMAIL PROTECTED]>
Description:
python-cherrypy - Python web development framework
Changes:
python-cherrypy (2.2.1-3ubuntu1.7.04) feisty-security; urgency=low
.
* SECURITY UPDATE: directory traversal via session cookie ID.
- debian/patches/10_CVE-2008-0252.diff: Add. Ensure that the path
generated from the session ID is within the session directory. Patch
from upstream SVN. (LP: #187481)
- References:
+ CVE-2008-0252
Files:
d0e2ca8a129b356d40d3534f4fb5a3c9 220540 python optional
python-cherrypy_2.2.1-3ubuntu1.7.04_all.deb
cd5e21bcc79763ca9f74d81ebeb39cd0 913 python optional
python-cherrypy_2.2.1-3ubuntu1.7.04.dsc
96fda6241d799bc3024adf0c095e3cd2 6272 python optional
python-cherrypy_2.2.1-3ubuntu1.7.04.diff.gz
Launchpad-Bugs-Fixed: 187481
Original-Maintainer: Gustavo Noronha Silva <[EMAIL PROTECTED]>
--
feisty-changes mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/feisty-changes
