tag 863586 pending
thanks
Hello,
Bug #863586 reported by you has been fixed in the Git repository. You can
see the changelog below, and you can check the diff of the fix at:
https://anonscm.debian.org/cgit/openstack/rabbitmq-server.git/commit/?id=b7e220a
---
commit b7e220a1505974928053193f07de85da06c7c8f1
Author: Thomas Goirand <[email protected]>
Date: Wed Jun 28 15:03:36 2017 +0200
* New upstream release (Closes: #863586), fixing multiple issues:
- CVE-2017-4965: XSS vulnerabilities in management UI
- CVE-2017-4966: authentication details are stored in browser-local
storage
without expiration
- CVE-2017-4967: XSS vulnerabilities in management UI
diff --git a/debian/changelog b/debian/changelog
index ce6823c..08e3b69 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+rabbitmq-server (3.6.10-1) unstable; urgency=medium
+
+ * New upstream release (Closes: #863586), fixing multiple issues:
+ - CVE-2017-4965: XSS vulnerabilities in management UI
+ - CVE-2017-4966: authentication details are stored in browser-local storage
+ without expiration
+ - CVE-2017-4967: XSS vulnerabilities in management UI
+
+ -- Thomas Goirand <[email protected]> Wed, 28 Jun 2017 15:00:41 +0200
+
rabbitmq-server (3.6.6-1) unstable; urgency=medium
[ Ondřej Nový ]
