** Branch linked: lp:ubuntu/gutsy-updates/rails
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ub
Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued
for this release. Marking Feisty as Won't Fix.
** Changed in: rails (Ubuntu Feisty)
Status: New => Won't Fix
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this
Please close for Feisty as Won't Fix? This goes for all the other Feisty
bugs.
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs ma
Ubuntu Edgy Eft is no longer supported, so a SRU will not be issued for
this release. Marking Edgy as Won't Fix.
** Changed in: rails (Ubuntu Edgy)
Status: New => Won't Fix
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug no
rails (1.2.4-1ubuntu1.1) gutsy-security; urgency=low
* SECURITY UPDATE: Session fixation attack via broken :cookie_only
attribute. (LP: #173203)
* debian/patches/20_CVE-2007-6077: Fix broken session fixation catching.
Patch from upstream bug.
* References
CVE-2007-6077
-- Willi
Thanks for preparing this! I've uploaded it to the security queue; it
should be published shortly.
** Changed in: rails (Ubuntu Gutsy)
Status: In Progress => Fix Committed
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug no
** Changed in: rails (Ubuntu Gutsy)
Assignee: (unassigned) => William Grant (fujitsu)
Status: New => In Progress
** Attachment added: "gutsy debdiff"
http://launchpadlibrarian.net/10680779/gutsy.diff
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/
** Changed in: rails
Status: Unknown => Fix Released
--
[CVE-2007-6077] Potential session fixation attack
https://bugs.launchpad.net/bugs/173203
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
ub