Viewing all changes in revision 127.
- Committer: Bazaar Package Importer
- Date: 2011-07-28 08:49:08 UTC
- mfrom: (125.1.3 maverick-proposed)
- Revision ID: james.westby@ubuntu.com-20110728084908-1wiq3wgb1iboe179
* SECURITY UPDATE: cross-site scripting in SWAT
- debian/patches/CVE-2011-2694.patch: don't display username in
source3/web/swat.c.
- CVE-2011-2694
* SECURITY UPDATE: cross-site request forgery in SWAT
- debian/patches/CVE-2011-2522.patch: implement nonce in
source3/web/{cgi.c,statuspage.c,swat.c,swat_proto.h}.
- CVE-2011-2522
- debian/patches/CVE-2011-2694.patch: don't display username in
source3/web/swat.c.
- CVE-2011-2694
* SECURITY UPDATE: cross-site request forgery in SWAT
- debian/patches/CVE-2011-2522.patch: implement nonce in
source3/web/{cgi.c,statuspage.c,swat.c,swat_proto.h}.
- CVE-2011-2522
- files added:
- .pc/CVE-2011-2522.patch
- .pc/CVE-2011-2522.patch/source3
- .pc/CVE-2011-2522.patch/source3/web
- .pc/CVE-2011-2694.patch
- .pc/CVE-2011-2694.patch/source3
- .pc/CVE-2011-2694.patch/source3/web
- .pc/ntlm-auth-lp623342.patch
- .pc/ntlm-auth-lp623342.patch/source3
- .pc/ntlm-auth-lp623342.patch/source3/winbindd
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
