-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-02-17 10:14:56 UTC
-
Revision ID:
james.westby@ubuntu.com-20110217101456-th4ufn9epf44ay7e
Tags: 2.1.5-9ubuntu4.4
* SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
- debian/patches/101_CVE-2011-0707.dpatch: properly clean strings in
Mailman/Cgi/confirm.py.
- CVE-2011-0707
* SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
information and description fields
- debian/patches/102_CVE-2010-3089.dpatch: properly clean strings in
Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
- CVE-2010-3089