Hello community,
here is the log from the commit of package patchinfo.1538 for
openSUSE:12.1:Update checked in at 2013-04-10 22:41:25
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:12.1:Update/patchinfo.1538 (Old)
and /work/SRC/openSUSE:12.1:Update/.patchinfo.1538.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.1538", Maintainer is ""
Changes:
--------
New Changes file:
NO CHANGES FILE!!!
New:
----
_patchinfo
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo>
<issue id="809940" tracker="bnc">CVE-2013-1857: rubygem-actionpack*: XSS
Vulnerability in the `sanitize` helper of Ruby on Rails</issue>
<issue id="809935" tracker="bnc">CVE-2013-1855: rubygem-actionpack*: XSS
vulnerability in sanitize_css in Action Pack</issue>
<issue id="CVE-2013-1855" tracker="cve" />
<issue id="CVE-2013-1857" tracker="cve" />
<category>security</category>
<rating>moderate</rating>
<packager>jordimassaguerpla</packager>
<description>
Changes in rubygem-actionpack-2_3:
- add 2 patches to fix security issues:
- bug-809935_2-3-css_sanitize.patch:
CVE-2013-1855: rubygem-actionpack*: XSS vulnerability in
sanitize_css in Action Pack (bnc#809935)
- bug-809940_2-3-sanitize_protocol.patch:
CVE-2013-1857: rubygem-actionpack*: XSS Vulnerability in the
`sanitize` helper of Ruby on Rails (bnc#809940)
</description>
<summary>update for rubygem-actionpack-2_3</summary>
</patchinfo>
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
