[Bug 137392] [Sync request] Sync websvn 1.61-22.2 from Debian unstable (main)
Michael Bienia
michael at vorlon.ping.de
Tue Sep 4 23:30:52 BST 2007
Public bug reported:
Binary package hint: websvn
Please sync websvn 1.61-22.2 from Debian unstable (main).
The current package has no Ubuntu changes.
The package builds cleanly in a gutsy pbuilder.
Thanks.
Changelog:
websvn (1.61-22.2) unstable; urgency=high
* Non-maintainer upload by the testing-security team
* Include CVE-2007-3056.diff to fix Cross-site scripting (XSS)
vulnerability in filedetails.php (Closes: #439337)
Fixes: CVE-2007-3056
-- Steffen Joeris <white at debian.org> Tue, 4 Sep 2007 09:42:32 +0200
** Affects: websvn (Ubuntu)
Importance: Wishlist
Status: Confirmed
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-3056
** Changed in: websvn (Ubuntu)
Importance: Undecided => Wishlist
Status: New => Confirmed
--
[Sync request] Sync websvn 1.61-22.2 from Debian unstable (main)
https://bugs.launchpad.net/bugs/137392
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list