Accepted:
OK: dokuwiki_0.0.20060309.orig.tar.gz
OK: dokuwiki_0.0.20060309-5ubuntu0.1.diff.gz
OK: dokuwiki_0.0.20060309-5ubuntu0.1.dsc
-> Component: universe Section: web
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 02 Oct 2007 22:01:38 +0200
Source: dokuwiki
Binary: dokuwiki
Architecture: source
Version: 0.0.20060309-5ubuntu0.1
Distribution: edgy-security
Urgency: low
Maintainer: Matti Pöllä <[EMAIL PROTECTED]>
Changed-By: Luca Falavigna <[EMAIL PROTECTED]>
Description:
dokuwiki - a standards compliant simple to use wiki
Changes:
dokuwiki (0.0.20060309-5ubuntu0.1) edgy-security; urgency=low
.
* SECURITY UPDATE: a XSS vulnerability in DokuWiki's spellchecker
backend could lead to a malicious Javascript execution.
* Add 'debian/patches/fix_spellchech.php_xss.dpatch', taken from new
upstream release 2007-06-26b.
* References
http://bugs.splitbrain.org/index.php?do=details&task_id=1195
CVE-2007-3930
Files:
51e49aadca6e79249bc433604725ac8d 638 web optional
dokuwiki_0.0.20060309-5ubuntu0.1.dsc
685bbe8a2df7b0caebbf0744808096ee 22457 web optional
dokuwiki_0.0.20060309-5ubuntu0.1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHAr/3H/9LqRcGPm0RAsSbAJ9TtTETeC6n5Y1v8rZ7pLZQuMkiBQCfRa/d
IF//cLTorJzvsEpOZL/20BI=
=z5cW
-----END PGP SIGNATURE-----
--
edgy-changes mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/edgy-changes
