~ubuntu-branches/ubuntu/dapper/mailman/dapper-updates

Viewing all changes in revision 10.

  • Committer: Bazaar Package Importer
  • Author(s): Marc Deslauriers
  • Date: 2011-02-17 10:14:56 UTC
  • Revision ID: james.westby@ubuntu.com-20110217101456-th4ufn9epf44ay7e
Tags: 2.1.5-9ubuntu4.4
* SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
  - debian/patches/101_CVE-2011-0707.dpatch: properly clean strings in
    Mailman/Cgi/confirm.py.
  - CVE-2011-0707
* SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
  information and description fields
  - debian/patches/102_CVE-2010-3089.dpatch: properly clean strings in
    Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
  - CVE-2010-3089

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: