-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-02-17 10:10:41 UTC
-
mfrom:
(16.1.2 hardy-proposed)
-
Revision ID:
james.westby@ubuntu.com-20110217101041-o3j38jnxtx0y0dif
Tags: 1:2.1.9-9ubuntu1.4
* SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
- debian/patches/101_CVE-2011-0707.patch: properly clean strings in
Mailman/Cgi/confirm.py.
- CVE-2011-0707
* SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
information and description fields
- debian/patches/102_CVE-2010-3089.patch: properly clean strings in
Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
- CVE-2010-3089