-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 02 Feb 2009 19:09:10 +1300 Source: moodle Binary: moodle Architecture: source all Version: 1.8.2.dfsg-3 Distribution: unstable Urgency: high Maintainer: Moodle Packaging Team <moodle-packaging@catalyst.net.nz> Changed-By: Francois Marier <francois@debian.org> Description: moodle - Course Management System for Online Learning Changes: moodle (1.8.2.dfsg-3) unstable; urgency=high . * Delete unused (but vulnerable) Spellchecker plugin to htmlarea (MSA-09-0005, CVE-2008-5153) * Hide images of deleted users (MSA-09-0001) * Fix user pix disclosure (MSA-09-0002) * Fix XSS vulnerabilities in HTML blocks (MSA-09-0004) * Fix XSS vulnerabilities in logs (MSA-09-0007) * Fix CSRF vulnerability in forum code (MSA-09-0008) Checksums-Sha1: 0710b99116275cae0d64b388759446b031e2721f 1362 moodle_1.8.2.dfsg-3.dsc 8903619846e8020eafe5907cb7dc700e08656173 47218 moodle_1.8.2.dfsg-3.diff.gz dcd5bb6d576288dbfce835a5ea00fc1ca81b09e2 8712158 moodle_1.8.2.dfsg-3_all.deb Checksums-Sha256: 1c2581fde2c7e39cdbb9bff9d1818b82c1d1fb042d4b23f267a22647f6545d01 1362 moodle_1.8.2.dfsg-3.dsc 87490c8d9df6d75c535230e12b4826825e4f4570cfda6b7b2805c2b0a242f582 47218 moodle_1.8.2.dfsg-3.diff.gz ba53b85ece2ba8f3da01a433bdfb0b4e415e2b261bc180a0011dab24a8771eec 8712158 moodle_1.8.2.dfsg-3_all.deb Files: cd0a818aa9b020c41d2647f8218c3b1a 1362 web optional moodle_1.8.2.dfsg-3.dsc 3ffe12ff6432ea7a14e08adac3baefaa 47218 web optional moodle_1.8.2.dfsg-3.diff.gz 6ab92f5f425a23bae4db58ea4f97c87e 8712158 web optional moodle_1.8.2.dfsg-3_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkmGkoUACgkQScUZKBnQNIYIbwCeIXxSAu7toJcXewC0ZxaaPCRY +DgAn1IPA7OYWJpUrvPyvA20Nkz7QOuk =32qe -----END PGP SIGNATURE----- Accepted: moodle_1.8.2.dfsg-3.diff.gz to pool/main/m/moodle/moodle_1.8.2.dfsg-3.diff.gz moodle_1.8.2.dfsg-3.dsc to pool/main/m/moodle/moodle_1.8.2.dfsg-3.dsc moodle_1.8.2.dfsg-3_all.deb to pool/main/m/moodle/moodle_1.8.2.dfsg-3_all.deb