There are security issues fixed in both 0.9.5 and 0.9.6 which should probably be backported to Dapper. I'm reopening this.
** This bug is no longer a duplicate of bug 5297 Trac 0.9.1 and 0.9.2 to fix SQL injection vulnerabilities, 0.9.3 – XSS vulnerabilities ** Changed in: trac (Ubuntu) Status: Rejected => Fix Released -- Upgrade to Trac 0.9.5 for dapper (security fixes) https://launchpad.net/bugs/42564 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs