[ubuntu/quantal] mahara 1.5.1-2 (Accepted)

Fri, 07 Sep 2012 11:44:13 -0700 

mahara (1.5.1-2) unstable; urgency=high

  * SECURITY UPDATE: Fix multiple cross-site scripting vulnerabilities
    - Sanitize json-encode login form when injected by js
    - Sanitize links in links and resources menu
    - Sanitize file description for blog image editor
    - Add escaping to user_display_name by adding to dwoo template
    - debian/patches/CVE-2012-2237-0001.patch: upstream patch
    - debian/patches/CVE-2012-2237-0002.patch: upstream patch
    - debian/patches/CVE-2012-2237-0003.patch: upstream patch
    - debian/patches/CVE-2012-2237-0004.patch: upstream patch

Date: 2012-08-13 16:22:54.635563+00:00
Changed-By: Mahara Packaging <[email protected]>
Signed-By: Scott Kitterman <[email protected]>
https://launchpad.net/ubuntu/quantal/+source/mahara/1.5.1-2

Sorry, changesfile not available.
-- 
Quantal-changes mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/quantal-changes

Reply via email to