-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2012-05-29 15:39:24 UTC
-
mfrom:
(80.1.3 natty-proposed)
-
Revision ID:
package-import@ubuntu.com-20120529153924-nsua1nb4jvako00a
Tags: 1.6.2-0ubuntu2.1
* SECURITY UPDATE: MITM via incorrect ssl cert validation (LP: #882062)
- debian/patches/CVE-2011-4409.patch: use pycurl instead of urllib2 and
send hostname for validation in ubuntuone/syncdaemon/action_queue.py,
use correct URL in data/syncdaemon.conf, use pycurl instead of
urllib2 in tests/syncdaemon/test_action_queue.py.
- debian/control: bump python-ubuntuone-storageprotocol and
ubuntu-sso-client dependencies to security updates.
- CVE-2011-4409