-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 20 May 2008 10:26:34 +0200 Source: mantis Binary: mantis Architecture: source all Version: 1.0.8-4.1 Distribution: unstable Urgency: medium Maintainer: Patrick Schoenfeld <[EMAIL PROTECTED]> Changed-By: Steffen Joeris <[EMAIL PROTECTED]> Description: mantis - web-based bug tracking system Closes: 481504 Changes: mantis (1.0.8-4.1) unstable; urgency=medium . * Non-maintainer upload by the security team * Fix Cross-site request forgery (CSRF) vulnerability that allowed certain actions via HTTP requests without performing any validity checks (Closes: #481504) Fixes: CVE-2008-2276 Checksums-Sha1: 6d16d4fa8368b4ad063378d86fd1e290edad17b3 1157 mantis_1.0.8-4.1.dsc 16f8b42533e4849369543389a4715151f9f3f622 40597 mantis_1.0.8-4.1.diff.gz c6701a2439f1e40ac1f09cce2dabc24d01af1e85 1284984 mantis_1.0.8-4.1_all.deb Checksums-Sha256: 3f03d2446c8a574c5dd501d9bc39b4399b678f44f600348f9308b749b7424017 1157 mantis_1.0.8-4.1.dsc bc2bf60277256b2ec590ad0745bd03ac77e66e4c74ea00146e327c6c7ba8bbea 40597 mantis_1.0.8-4.1.diff.gz 7b25c96bff260f2b2205d627a0d37402e0f087e4e483b2091f03d49bf56baff1 1284984 mantis_1.0.8-4.1_all.deb Files: 8d45b5ec51febf6be9d12950741e0f82 1157 web optional mantis_1.0.8-4.1.dsc 9ece443220e50f4369a4e6fd5eaed186 40597 web optional mantis_1.0.8-4.1.diff.gz db287509554d3547625d62796fbed8ce 1284984 web optional mantis_1.0.8-4.1_all.deb
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIMozT62zWxYk/rQcRAok1AJ4gYLRR85X+5OG3CtlL0+xcXfPh7ACgukYQ uuxJxKc/ds+h02tPpIwE484= =iAZd -----END PGP SIGNATURE----- Accepted: mantis_1.0.8-4.1.diff.gz to pool/main/m/mantis/mantis_1.0.8-4.1.diff.gz mantis_1.0.8-4.1.dsc to pool/main/m/mantis/mantis_1.0.8-4.1.dsc mantis_1.0.8-4.1_all.deb to pool/main/m/mantis/mantis_1.0.8-4.1_all.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]