-
Committer:
Yolanda Robla
-
Date:
2012-12-17 11:08:01 UTC
-
Revision ID:
yolanda.robla@canonical.com-20121217110801-0rzuxxamzrxozsdl
* Resynchronize with stable/essex (5ce39422):
- [7e651d7] stable/essex horizon installs unusable version of glance
(LP: #1057125)
- [35eada8] open redirect / phishing attack via "next" parameter
(CVE-2012-3540)
- [8889311] TypeError when trying to delete an unnamed volume via dashboard
(LP: #1031291)
- [f862d9e] Wrong 'Download CSV Summary' link (LP: #1020555)
* Dropped patches, superseeded by snapshot:
- debian/patches/CVE-2012-3540.patch [35eada8]
* SECURITY UPDATE: open redirect / phishing attack via "next"
parameter (LP: #1039077)
- debian/patches/CVE-2012-3540.patch: disallow redirects to anywhere
other than the same origin
- CVE-2012-3540