moin (1.9.3-1ubuntu3.1) quantal-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via anywikidraw/twikidraw
- debian/patches/CVE-2012-XXXX.patch: adjust action/anywikidraw.py and
action/twikidraw.py to use wikiutil.taintfilename()
- CVE-2012-XXXX
* SECURITY UPDATE: path traversal via AttachFile
- debian/patches/CVE-2012-YYYY.patch: adjust action/AttachFile.py to use
wikiutil.taintfilename()
- CVE-2012-YYYY
Date: 2012-12-30 01:05:36.981639+00:00
Changed-By: Jamie Strandboge <ja...@ubuntu.com>
Signed-By: Ubuntu Archive Robot
<cjwatson+ubuntu-archive-ro...@chiark.greenend.org.uk>
https://launchpad.net/ubuntu/quantal/+source/moin/1.9.3-1ubuntu3.1
Sorry, changesfile not available.
--
Quantal-changes mailing list
Quantal-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/quantal-changes