-
Committer:
Bazaar Package Importer
-
Author(s):
Kees Cook
-
Date:
2007-05-07 03:33:36 UTC
-
Revision ID:
james.westby@ubuntu.com-20070507033336-15v3s57lv970uz31
Tags: 1.5.3-1.1ubuntu3.1
* SECURITY UPDATE: XSS via AttachFile actions, unchecked ACLs.
* Add 092_fix-attach-xss.patch: upstream patch.
* Add 093_fix-acl-checks.patch: upstream patches.
* References
http://hg.thinkmo.de/moin/1.5/rev/288694f8dfde
http://hg.thinkmo.de/moin/1.5/rev/4949ad88af4e
http://hg.thinkmo.de/moin/1.5/rev/0e41a0429ee1
CVE-2007-2423