[Bug 676336] Re: Blogs get deleted without sesskey check

Launchpad Bug Tracker Fri, 08 Apr 2011 15:11:32 -0700

This bug was fixed in the package mahara - 1.2.4-1ubuntu0.2

---------------
mahara (1.2.4-1ubuntu0.2) lucid-security; urgency=low


  * SECURITY UPDATE: cross-site scripting vulnerability
    - debian/patches/CVE-2011-0439.dpatch: upstream patch
    - CVE-2011-0439
    - LP: #676336

  * SECURITY UPDATE: possible cross-site request forgery (deleting blogs)
    - debian/patches/CVE-2011-0440.dpatch: upstream patch
    - CVE-2011-0440
 -- Francois Marier <[email protected]>   Fri, 18 Mar 2011 15:51:03 +1300

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/676336

Title:
  Blogs get deleted without sesskey check

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 676336] Re: Blogs get deleted without sesskey check

Reply via email to