-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 05 Jul 2010 15:45:27 +1200
Source: mahara
Binary: mahara mahara-apache2
Architecture: source all
Version: 1.2.5-1
Distribution: unstable
Urgency: high
Maintainer: Mahara Packaging Team <mahara-packag...@lists.launchpad.net>
Changed-By: Francois Marier <franc...@debian.org>
Description:
mahara - Electronic portfolio, weblog, and resume builder
mahara-apache2 - Electronic portfolio, weblog, and resume builder - apache2
config
Changes:
mahara (1.2.5-1) unstable; urgency=high
.
* New upstream release
- multiple cross-site scripting vulnerabilities (CVE-2010-1667)
- multiple cross-site request forgery vulnerabilities (CVE-2010-1668)
- sql injection (CVE-2010-1669)
- unsafe auth plugins configuration options (CVE-2010-1670)
.
* Use system's version of HTML purifier (CVE-2010-2479)
* Add missing symlink to PEAR's File module to fix csv parsing
.
* Remove reference to the common BSD license in debian/copyright
* Bump Standards-Version to 3.9.0
Checksums-Sha1:
af71f4eea2050765bbc6b52cb3710343bcc8ddad 1906 mahara_1.2.5-1.dsc
98fe1e3b9339953532d16fdacd4f5665e482f209 4056907 mahara_1.2.5.orig.tar.gz
2eb507cae4b64288a9ffb6354eacee97d47539aa 21241 mahara_1.2.5-1.debian.tar.gz
4c547a0a1d57bebc4b1bb47a822bfc4337906258 2359494 mahara_1.2.5-1_all.deb
925819e6d5a943b6abf2e34fce1914fdf76cdb6e 11886 mahara-apache2_1.2.5-1_all.deb
Checksums-Sha256:
3edacbd5cca9903ba06db0f2692a6507844db3515da979a858e9f0cc099632f5 1906
mahara_1.2.5-1.dsc
8d1f1d5c490c57efabf8f7962bf8c5953f2dbaa2f881db5a898beee44263e95f 4056907
mahara_1.2.5.orig.tar.gz
43eea2557e52c98b709bd11e9ee9c908961d1258c929b0824d6ce551ac96b9f2 21241
mahara_1.2.5-1.debian.tar.gz
ee6b2feaf7a918286d9f2b187714b335c790bbc5333ff11476324077d54899e6 2359494
mahara_1.2.5-1_all.deb
be5b1115de5c7fed76a6da863998d98d1b5b6b31e40453ea1a835aae9f9fd590 11886
mahara-apache2_1.2.5-1_all.deb
Files:
8267a57077e5b40a9055577ceba0aeb8 1906 web optional mahara_1.2.5-1.dsc
c78a8503b3079f345648eed140a8ec56 4056907 web optional mahara_1.2.5.orig.tar.gz
ac55136443b5825fedc0793a31e0c8f2 21241 web optional
mahara_1.2.5-1.debian.tar.gz
831d110816312092573d92beb20a29b5 2359494 web optional mahara_1.2.5-1_all.deb
4d0b4cf6d4fd161694d50af53173fafe 11886 web optional
mahara-apache2_1.2.5-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)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=0AUO
-----END PGP SIGNATURE-----
Accepted:
mahara-apache2_1.2.5-1_all.deb
to main/m/mahara/mahara-apache2_1.2.5-1_all.deb
mahara_1.2.5-1.debian.tar.gz
to main/m/mahara/mahara_1.2.5-1.debian.tar.gz
mahara_1.2.5-1.dsc
to main/m/mahara/mahara_1.2.5-1.dsc
mahara_1.2.5-1_all.deb
to main/m/mahara/mahara_1.2.5-1_all.deb
mahara_1.2.5.orig.tar.gz
to main/m/mahara/mahara_1.2.5.orig.tar.gz
--
To UNSUBSCRIBE, email to debian-devel-changes-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/e1ovdm5-0002bm...@franck.debian.org
