[ubuntu/xenial-updates] moin 1.9.8-1ubuntu1.16.04.3 (Accepted)

Ubuntu Archive Robot Wed, 11 Nov 2020 06:58:57 -0800

moin (1.9.8-1ubuntu1.16.04.3) xenial-security; urgency=medium

  * SECURITY UPDATE: XSS vulnerability
    - debian/patches/CVE-2020-15275.patch: fix stored XSS vulnerability
      via SVG attachment in MoinMoin/config/__init__.py,
      MoinMoin/config/multiconfig.py.
    - CVE-2020-15275
  * SECURITY UPDATE: Remote code execution
    - debian/patches/CVE-2020-25074.patch: fix remote code execution
      via cache action in MoinMoin/action/cache.py.
    - CVE-2020-25074


Date: 2020-11-10 13:33:13.910034+00:00
Changed-By: [email protected] (Leonidas S. Barbosa)
Signed-By: Ubuntu Archive Robot 
<[email protected]>
https://launchpad.net/ubuntu/+source/moin/1.9.8-1ubuntu1.16.04.3

Sorry, changesfile not available.

-- 
Xenial-changes mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-updates] moin 1.9.8-1ubuntu1.16.04.3 (Accepted)

Reply via email to