-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Sat, 11 Jul 2009 08:36:29 +0200 Source: sork-passwd-h3 Binary: sork-passwd-h3 Architecture: source all Version: 3.0-2+etch1 Distribution: oldstable-security Urgency: high Maintainer: Debian Horde Maintainers <pkg-horde-hackers@lists.alioth.debian.org> Changed-By: Steffen Joeris <white@debian.org> Description: sork-passwd-h3 - Horde3 module for users to change their password Closes: 536554 Changes: sork-passwd-h3 (3.0-2+etch1) oldstable-security; urgency=high . * Non-maintainer upload by the security team * Fix XSS in backend parameter (Closes: #536554) Fixes: CVE-2009-2360 Files: 9c114c8b4abf6db6b91a94f4e0359f77 722 web optional sork-passwd-h3_3.0-2+etch1.dsc ca5612500c91c4ef3c838e8e94376332 966096 web optional sork-passwd-h3_3.0.orig.tar.gz f8bdcfd6195df252914144f2a9e78869 8070 web optional sork-passwd-h3_3.0-2+etch1.diff.gz 8827158aa7959c230edd2f264061309d 936654 web optional sork-passwd-h3_3.0-2+etch1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkpYM8oACgkQ62zWxYk/rQea5ACeIG1aDbaxo8vGRTpkPBVLJd1B HT0An3n3cmn4tUTvhykhHHlC6QM0Gfki =RbWq -----END PGP SIGNATURE----- Accepted: sork-passwd-h3_3.0-2+etch1.diff.gz to pool/main/s/sork-passwd-h3/sork-passwd-h3_3.0-2+etch1.diff.gz sork-passwd-h3_3.0-2+etch1.dsc to pool/main/s/sork-passwd-h3/sork-passwd-h3_3.0-2+etch1.dsc sork-passwd-h3_3.0-2+etch1_all.deb to pool/main/s/sork-passwd-h3/sork-passwd-h3_3.0-2+etch1_all.deb