Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

Hi Adam, On Mon, 2011-02-21 at 23:18 +, Adam D. Barratt wrote: > > Only squeeze version is wrong. I fixed it and > > uploaded it here [0] again. > > > > [0] http://people.debian.org/~metal/magpierss/ > > That looks much better :-) Thanks. I uploaded magpierss package to s-p-u, thanks! Ch

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

On Mon, 2011-02-21 at 19:59 -0300, Marcelo Jorge Vieira wrote: > On Mon, 2011-02-21 at 22:21 +, Adam D. Barratt wrote: > > On Mon, 2011-02-21 at 18:58 -0300, Marcelo Jorge Vieira wrote: > > > [0] http://people.debian.org/~metal/magpierss/ > > > > Thanks. The patch itself looks okay, but it do

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

Hi Adam, On Mon, 2011-02-21 at 22:21 +, Adam D. Barratt wrote: > Hi, > > On Mon, 2011-02-21 at 18:58 -0300, Marcelo Jorge Vieira wrote: > > On Mon, 2011-02-21 at 19:30 +, Adam D. Barratt wrote: > [...] > > > If the diff for squeeze is the same as the diff for lenny then that > > > should

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

Hi, On Mon, 2011-02-21 at 18:58 -0300, Marcelo Jorge Vieira wrote: > On Mon, 2011-02-21 at 19:30 +, Adam D. Barratt wrote: [...] > > If the diff for squeeze is the same as the diff for lenny then that > > should be okay, but a mail to -release would still be appreciated. > > > Here [0] you w

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

Hi Adam, On Mon, 2011-02-21 at 19:30 +, Adam D. Barratt wrote: > On Sun, 2011-02-20 at 22:50 -0300, Marcelo Jorge Vieira wrote: > > Hi Jonathan, > > > > On Sat, 2011-02-19 at 22:14 +, Jonathan Wiltshire wrote: > > > > > > Please arrange to backport your fix and liase with the release te

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

On Sun, 2011-02-20 at 22:50 -0300, Marcelo Jorge Vieira wrote: > Hi Jonathan, > > On Sat, 2011-02-19 at 22:14 +, Jonathan Wiltshire wrote: > > > > Please arrange to backport your fix and liase with the release team for > > permission to upload. I will happily assist you if the patch is > > st

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

Hi Jonathan, On Sat, 2011-02-19 at 22:14 +, Jonathan Wiltshire wrote: > Dear maintainer, > > Recently you fixed one or more security problems and as a result you closed > this bug. These problems were not serious enough for a Debian Security > Advisory, so they are now on my radar for fixing

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

Dear maintainer, Recently you fixed one or more security problems and as a result you closed this bug. These problems were not serious enough for a Debian Security Advisory, so they are now on my radar for fixing in the following suites through point releases: lenny (5.0.9) squeeze (6.0.1) Pleas

Bug#611940: magpierss: CVE-2011-0740 Cross-site scripting vulnerability in scripts/magpie_slashbox.php

Package: magpierss Version: 0.72-2 Severity: important Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for magpierss. Although this description is for the WordPress plugin, the problem appears to apply to scripts/magpie_slashbox.php in your package. CVE