-
moin (1.2.4-1ubuntu2.2) breezy-security; urgency=low
* SECURITY UPDATE: XSS via debug output.
* Add 'debian/patches/091_fix-debug-report-xss.patch': escape debug report,
add "show_traceback" option to provide the ability to silence tracebacks
completely. Configurable as "show_traceback=0" in your /etc/moin/*.py
instance configurations.
* References
CVE-2007-0901
CVE-2007-0902
-- Kees Cook <email address hidden> Thu, 15 Feb 2007 16:05:55 -0800
-
moin (1.2.4-1ubuntu2.1) breezy-security; urgency=low
* SECURITY UPDATE: fix XSS in pagename displays.
* Add 'debian/patches/090_fix-pagename-xss.patch': based on patches from
upstream. Added fixes for "LikePages".
* References
http://hg.thinkmo.de/moin/1.5?fl=28eb59256911;file=docs/CHANGES
CVE-2007-0857
-- Kees Cook <email address hidden> Fri, 9 Feb 2007 13:38:32 -0800
-
moin (1.2.4-1ubuntu2) breezy; urgency=low
* Recommend: postfix | mail-transport-agent
-- LaMont Jones <email address hidden> Mon, 2 May 2005 19:28:08 -0600