Hi Nicolas,
Could you upload that security update for Debian stable. I have updated
(and attached) that patch, to mention the CVE number as suggested by
Raphael.
Thanks,
Franklin
Nc Golde wrote:
> Hi,
> any news on this bug report? It's a bit sad to see a fix but nothing
> happening. Frank, if
Hi,
any news on this bug report? It's a bit sad to see a fix but nothing
happening. Frank, if you need sponsoring I can sponsor your upload or Jonas
please pick this up and upload. I don't want to hijack this, hence the mail
but it would be nice to get this fixed.
Cheers
Nico
--
Nico Golde -
On Sun, Jul 04, 2010 at 09:23:15PM +0200, Jonas Smedegaard wrote:
On Sun, Jul 04, 2010 at 05:28:59PM +0200, Frank Lin PIAT wrote:
P.S. I am working on the new upstream release for unstable, which fix
this CVE.
Same here.
I already prepared that update last week - just forgot to push it.
D
On Sun, Jul 04, 2010 at 05:28:59PM +0200, Frank Lin PIAT wrote:
Raphael Geissert wrote:
This issue has been assigned CVE-2010-2487, please mention it in the
uploads fixing the issues.
Jonas, Franklin, does any of you have time to prepare the package for
lenny?
Hi Raphael,
A patch is incl
Raphael Geissert wrote:
>
> This issue has been assigned CVE-2010-2487, please mention it in the
> uploads
> fixing the issues.
>
> Jonas, Franklin, does any of you have time to prepare the package for
> lenny?
Hi Raphael,
A patch is included in this BR, it just needs to be uploaded
(well, one ne
retitle 584809 CVE-2010-2487: multiple XSS vulnerabilities in moin
severity 584809 grave
thanks
Hi,
This issue has been assigned CVE-2010-2487, please mention it in the uploads
fixing the issues.
Jonas, Franklin, does any of you have time to prepare the package for lenny?
Cheers,
--
Raphael G
On Mon, Jun 07, 2010 at 07:25:08AM +0200, Frank Lin PIAT wrote:
Hi,
Find attached a patch for moin 1.7 (lenny).
Jonas, are you available to upload it?
Sorry, not today and maybe not tomorrow either.
- Jonas
--
* Jonas Smedegaard - idealist & Internet-arkitekt
* Tlf.: +45 40843136 Websit
Hi,
Find attached a patch for moin 1.7 (lenny).
Jonas, are you available to upload it?
Regards,
Franklin
diff --git a/debian/changelog b/debian/changelog
index 2d7ce4a..0bb8a7c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+moin (1.7.1-3+lenny5) stable-security; urgency=
Package: moin
Version: 1.7.1-3+lenny2
Severity: important
Tags: security
An XSS have been reported upstream:
> There is a possible reflected Cross-Site Scripting attack. An attacker
> able to cause a user to follow a specially crafted malicious link may be
> able to recover session identifiers or
9 matches
Mail list logo