-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 3 Feb 2005 19:15:56 +0100 Source: info2www Binary: info2www Architecture: source all Version: 1.2.2.9-23 Distribution: unstable Urgency: high Maintainer: Uwe Hermann <uwe@debian.org> Changed-By: Uwe Hermann <uwe@debian.org> Description: info2www - Read info files with a WWW browser Closes: 281655 Changes: info2www (1.2.2.9-23) unstable; urgency=high . * SECURITY FIX: This release prevents _some_ forms of Cross Site Scripting (XSS) attacks against info2www. A more thorough security audit needs to be done, though. It's expected that more vulnerabilities can be found. Thanks to Nicolas Gregoire for the bug-report and Justin Pryzby for his help with analyzing the issue and providing a first fix (Closes: #281655). Files: e5fb2af8e848702164800ef5c06257d0 588 doc optional info2www_1.2.2.9-23.dsc 7c955232786ec117c9a8533c6c57a981 14921 doc optional info2www_1.2.2.9-23.diff.gz 9d52f6351f1ced7242fb28a28acf1f6a 22362 doc optional info2www_1.2.2.9-23_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQFCAmukXdVoV3jWIbQRAhDzAJ92S/XQsezh8OiT1xzdnKL1lSp8iQCdFAdU QmXGo9auNJAw8vPq9Snu+4Y= =iHxe -----END PGP SIGNATURE----- Accepted: info2www_1.2.2.9-23.diff.gz to pool/main/i/info2www/info2www_1.2.2.9-23.diff.gz info2www_1.2.2.9-23.dsc to pool/main/i/info2www/info2www_1.2.2.9-23.dsc info2www_1.2.2.9-23_all.deb to pool/main/i/info2www/info2www_1.2.2.9-23_all.deb -- To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
