-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 01 Jul 2010 17:00:56 +1200 Source: mahara Binary: mahara mahara-apache2 Architecture: source all Version: 1.0.4-4+lenny6 Distribution: stable-security Urgency: high Maintainer: Mahara Debian Packaging Team <pkg-debian@mahara.org> Changed-By: Francois Marier <francois@debian.org> Description: mahara - Electronic portfolio, weblog, and resume builder mahara-apache2 - Electronic portfolio, weblog, and resume builder - apache2 config Changes: mahara (1.0.4-4+lenny6) stable-security; urgency=high . * SECURITY UPDATE: multiple cross-site scripting vulnerabilities - debian/patches/CVE-2010-1667.dpatch: upstream patch - CVE-2010-1667 . * SECURITY UPDATE: multiple cross-site request forgery vulnerabilities - debian/patches/CVE-2010-1668.dpatch: upstream patch - CVE-2010-1668 . * SECURITY UPDATE: unsafe auth plugins configuration options - debian/patches/CVE-2010-1670.dpatch: upstream patch - CVE-2010-1670 . * SECURITY UPDATE: IE-only cross-site scripting bug in HTML Purifier - debian/patches/CVE-2010-2479.dpatch: upstream patch - CVE-2010-2479 Checksums-Sha1: b4f635b250fda6fac087f6008b2c0a5d4592c2a2 1943 mahara_1.0.4-4+lenny6.dsc 88b2e47839f5e6b1f7b08b060b1a22978eebd716 46220 mahara_1.0.4-4+lenny6.diff.gz 1b305b6d8dda6341e0369f38e58ced2c6c722ac1 1639192 mahara_1.0.4-4+lenny6_all.deb f41e38d4feab60eb8fe6a889f4988484609d855c 8274 mahara-apache2_1.0.4-4+lenny6_all.deb Checksums-Sha256: d12b5aa7ae2239434eeb7be2e44c1abb74bafe77801d577e124aa883264a27a0 1943 mahara_1.0.4-4+lenny6.dsc 7a0ae17bcc27b618946547e6c6bddf2d8e024e5ee68f736955484bc3fe5e70cc 46220 mahara_1.0.4-4+lenny6.diff.gz 8efb83bbe3b68e138eb8c2d8f2c0fdef2ca2244eb6d477e675f5557c6fd2699c 1639192 mahara_1.0.4-4+lenny6_all.deb db45e2df5b6f9475004d3337c8d99dd3fbc17e946a431c79738c7280856d700e 8274 mahara-apache2_1.0.4-4+lenny6_all.deb Files: 79d1fbafd665c9bfd5b9cf66a5831d4c 1943 web optional mahara_1.0.4-4+lenny6.dsc 9baa14e3e23118a908bb2beec8b4fd7f 46220 web optional mahara_1.0.4-4+lenny6.diff.gz 838dd2d7f726af2ff773f6e01ee1b330 1639192 web optional mahara_1.0.4-4+lenny6_all.deb ad3af96747d75ddc6fdff4a3c4472845 8274 web optional mahara-apache2_1.0.4-4+lenny6_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQIcBAEBCAAGBQJMLaFHAAoJEBYoHy4AfJjRhpoQAKsBBjRZsri4TMMgaJGt4/3p CxDuY0RzoC/gol+HUuKydDOvun5cLLAgfUKV4KBeWAoKH/bhMi7A6IMt7un+BKno AaXwo2BRBAQF8vpbsmRr1WrUdPdMhemD8ADU4lR+ibHNDhuDFfYyuHNPVrdS4S+n IBX2wqycdrF+AmM/f0nLieX3Gtnu9oS/j9tUHJ4RU/5EE0qVdyAf9+GNteBVNeJ2 KSPfpm7ZQRZyeh0QDRNmEFh8YSGUovX4hwv3CnX6GJrsVIHVy/I80mBnCW8NUbFV GXBy3OhpTFGgIs8aetpCod5uPy3iD0jYIZ4BqV/zJtWO7UxGKnrNdeqROYmaFZng RqcY/n2qbFIa46tsuN/7908DK69f3LX43aJSQvyqcBj49TFDeashOvBl1BsPgoQO FYRGEJ+vt0Xs6zhwKlQ3wolgWMV2lI2x7BY5Q/T9Il7Ay3E2Y7kXoC2loZ/3j4Xv pNEgm/HDLJkedMxdoW+ql3+n+mrnzFjyGSS9THpQ8ijuD3G35qccfSUQOwce0kkV ymVoeHFOKKj3fA/XdiessyXiEtPSDE/ZkV7E6hj23W7Zi7ArgwmWb2+kpdvySdzf AHp6et3Zhv8JbwSqlq+/fI/m2/bOsF2FXZF5BOFLVE5xAxbuxNnxs7Oj3TIzJ0WV i4QyRHNaf40oaPTRA+uI =olHx -----END PGP SIGNATURE----- Accepted: mahara-apache2_1.0.4-4+lenny6_all.deb to main/m/mahara/mahara-apache2_1.0.4-4+lenny6_all.deb mahara_1.0.4-4+lenny6.diff.gz to main/m/mahara/mahara_1.0.4-4+lenny6.diff.gz mahara_1.0.4-4+lenny6.dsc to main/m/mahara/mahara_1.0.4-4+lenny6.dsc mahara_1.0.4-4+lenny6_all.deb to main/m/mahara/mahara_1.0.4-4+lenny6_all.deb