-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2013-01-10 09:35:41 UTC
-
Revision ID:
package-import@ubuntu.com-20130110093541-olgyu15r27qx56hi
Tags: 7.0.30-0ubuntu1.1
* SECURITY UPDATE: CSRF bypass via request with no session identifier
- debian/patches/CVE-2012-4431.patch: check for session identifier in
java/org/apache/catalina/filters/CsrfPreventionFilter.java.
- CVE-2012-4431