-
Committer:
Package Import Robot
-
Author(s):
Jamie Strandboge
-
Date:
2012-12-29 18:18:00 UTC
-
Revision ID:
package-import@ubuntu.com-20121229181800-iimizh8d982tchgo
Tags: 1.9.3-1ubuntu1.11.10.2
* SECURITY UPDATE: arbitrary code execution via anywikidraw/twikidraw
- debian/patches/CVE-2012-XXXX.patch: adjust action/anywikidraw.py and
action/twikidraw.py to use wikiutil.taintfilename()
- CVE-2012-XXXX
* SECURITY UPDATE: path traversal via AttachFile
- debian/patches/CVE-2012-YYYY.patch: adjust action/AttachFile.py to use
wikiutil.taintfilename()
- CVE-2012-YYYY