-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 5 Dec 2007 16:58:25 +0100 Source: sitebar Binary: sitebar Architecture: source all Version: 3.3.8-12.1 Distribution: unstable Urgency: high Maintainer: Kevin Coyner <kcoyner@debian.org> Changed-By: Steffen Joeris <white@debian.org> Description: sitebar - A web based bookmark manager written in PHP Closes: 447135 448689 448690 Changes: sitebar (3.3.8-12.1) unstable; urgency=high . * Non-maintainer upload by the testing-security team * Fix multiple security issues in the translator module (translator.php) Fixes: CVE-2007-5491, CVE-2007-5492, CVE-2007-5693, CVE-2007-5694 (Closes: #447135) * Fix possible redirect to other websites via the forward parameter in command.php Fixes: CVE-2007-5695 (Closes: #448690) * Fix multiple XSS by adding more checks for certain parameters Fixes: CVE-2007-5692 (Closes: #448689) Files: 748cfcd112066e3be32be59d1f0a5b06 578 web optional sitebar_3.3.8-12.1.dsc 2ae7e1e0872a2c03a9591a17ebacb2b6 24525 web optional sitebar_3.3.8-12.1.diff.gz 9fc4fac487e1a606acc118278999c5c4 711326 web optional sitebar_3.3.8-12.1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHVs0v62zWxYk/rQcRAvZTAJ9OaKc4rEoJjp0+T99gCQkSKIFobwCguKg3 MtLPpxMxPzy4WanF4/h4fK8= =pHG5 -----END PGP SIGNATURE----- Accepted: sitebar_3.3.8-12.1.diff.gz to pool/main/s/sitebar/sitebar_3.3.8-12.1.diff.gz sitebar_3.3.8-12.1.dsc to pool/main/s/sitebar/sitebar_3.3.8-12.1.dsc sitebar_3.3.8-12.1_all.deb to pool/main/s/sitebar/sitebar_3.3.8-12.1_all.deb
