-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 26 Jul 2016 15:37:17 +0200 Source: moodle Binary: moodle Architecture: source all Version: 2.7.15+dfsg-1 Distribution: unstable Urgency: high Maintainer: Moodle Packaging Team <pkg-moodle-maintain...@lists.alioth.debian.org> Changed-By: Joost van Baal-Ilić <joos...@debian.org> Description: moodle - course management system for online learning Changes: moodle (2.7.15+dfsg-1) unstable; urgency=high . * New upstream security release, released 11 July 2016. Security issues fixed: - MSA-16-0020 (CVE-2016-5013) Text injection in email headers. Reported by Pierre Guinoiseau. MDL-55069, CVE-2016-5013 See https://docs.moodle.org/dev/Moodle_2.7.14_release_notes for more details. Note that the upstream 2.7 branch is supported for security fixes only until May 2017 (LTS). For the last year, upstream has shipped a security release every 2nd monday of each odd month; therefore we expect the next release at Sept 12, 2016. * debian/changelog: properly document security issues fixed in previous release 2.7.14. * debian/{rules,links,control}: no longer use bundled /u/s/moodle/lib/jquery/jquery-migrate-1.2.1.{,min.}js, but /usr/share/javascript/jquery-migrate-1.4.1.min.js from package libjs-jquery-migrate-1 1.4.1-1 as shipped with Debian stretch. Thanks Jean-Michel Vourgère <nirgal@d.o>. Checksums-Sha1: ed728b639f154807d7619154d3baf72acdf4be47 1658 moodle_2.7.15+dfsg-1.dsc 99d5dbe9c8acffafba48e58bc2f6aa93cc5cfbd0 23423528 moodle_2.7.15+dfsg.orig.tar.xz c1333562763440538585fe68b803c88811bc4c41 72215824 moodle_2.7.15+dfsg-1.debian.tar.xz 44db99581dbaac48d49dcec5f40a624291f6f99b 15415626 moodle_2.7.15+dfsg-1_all.deb Checksums-Sha256: 002a66362915c082134e3e03dc8d9dd168836fa9746197e15febdf2be52182ea 1658 moodle_2.7.15+dfsg-1.dsc 3c86371eca2e2a6033392e5e1e03793451ab3eff57e36c563fb186ad4a8d1016 23423528 moodle_2.7.15+dfsg.orig.tar.xz 8ee6950e6547e08d2233604893b8c1b1b758fc6d90b7ec1824c7601ff70547f8 72215824 moodle_2.7.15+dfsg-1.debian.tar.xz 730c26c184f628f04a36bb908b2675f55f33885a7d1ac725432eefaba6004372 15415626 moodle_2.7.15+dfsg-1_all.deb Files: 4002433b3d97f6a930b05f91b67c754a 1658 web optional moodle_2.7.15+dfsg-1.dsc c33b4080cead71b6cf3540210503a272 23423528 web optional moodle_2.7.15+dfsg.orig.tar.xz 74547dd672228aa2198b52c8bb7057b0 72215824 web optional moodle_2.7.15+dfsg-1.debian.tar.xz 0bc0da4aba2eed664a43da10e52ba7e2 15415626 web optional moodle_2.7.15+dfsg-1_all.deb
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBAgAGBQJXl23oAAoJEDNRenKl5rDI6asH/0eMYnQ77hctBhqnvlFdJG+O 18DGsWgfUNHNbdW3VkvX8O95eoF+lA5lSitXGO1+tWLFs37wUXg3kbwSiZUcsZ3O /xiF11MB18ZCJDDgdHBy6mE5pq+Lz1No1QYSzY7qPKZFnDbGPZQ91NbetGmUFQRK nA27Yw7+Y3qeDZ2yi7VGTYDzC/TVhOYi8YW3E5XXQKlN+2WJoqDV8eT85PKVC0Lz Ndjja/AitYEV8pQ1ljaH3zPt9OPTk5fUdBiOAFxBt5ErkyLtAmuDOuPU0WX7SfIW 1GOVrOKvzdkftUkq+drAHaunXZ40KV7eRfajeo8nbBPZJccm79jm5yDqZ0YNzpQ= =79Nh -----END PGP SIGNATURE-----