*** This bug is a security vulnerability *** Public security bug reported:
Dear Universe Security Team, there seems to be several security issue in the current typo3-src 4.5.10 version available for precise: - TYPO3-SA-2013-001. - TYPO3-SA-2012-5 - TYPO3-CORE-SA-2012-004 - TYPO3-CORE-SA-2012-002 - TYPO3-CORE-SA-2012-001 (see http://typo3.org/teams/security/security-bulletins/) The ones that are listed on http://typo3.org/teams/security/security-bulletins/ are fixed in the debian wheezy version 4.5.19+dfsg1-5 and also in raring. This makes me wonder if it would be feasible to move from 4.5.10 to the debian 4.5.19+dfsg1-5 version and work with debian so that the wheezy and the precise security updates can be maintained together instead of having to backport the load of patches from 4.5.19+ to 4.5.10. Cheers, Michael ** Affects: typo3-src (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1186904 Title: Security issue in 4.5.10 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/typo3-src/+bug/1186904/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs