-
Committer:
Bazaar Package Importer
-
Author(s):
Kees Cook
-
Date:
2007-05-07 03:36:59 UTC
-
Revision ID:
james.westby@ubuntu.com-20070507033659-aha13t1ozd0bne5i
Tags: 1.5.3-1ubuntu1.3
* SECURITY UPDATE: XSS via AttachFile actions, unchecked ACLs.
* Add 092_fix-attach-xss.patch: upstream patch.
* Add 093_fix-acl-checks.patch: upstream patches.
* References
http://hg.thinkmo.de/moin/1.5/rev/288694f8dfde
http://hg.thinkmo.de/moin/1.5/rev/4949ad88af4e
http://hg.thinkmo.de/moin/1.5/rev/0e41a0429ee1
CVE-2007-2423