-
Committer:
Package Import Robot
-
Author(s):
Jamie Strandboge
-
Date:
2012-05-02 08:19:13 UTC
-
Revision ID:
package-import@ubuntu.com-20120502081913-ij2ianer4avofl2k
Tags: 2012.1-0ubuntu8.1
* SECURITY UPDATE: fix XSS when refreshing logs
- debian/patches/CVE-2012-2094.patch: interpret logs as text
- CVE-2012-2094
* SECURITY UPDATE: fix session fixation and reuse
- debian/patches/CVE-2012-2144.patch: properly verify existing session and
also log user out on error
- CVE-2012-2144