-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 06 Nov 2009 00:16:01 +0100 Source: drupal6 Binary: drupal6 Architecture: source all Version: 6.6-3lenny3 Distribution: stable-security Urgency: low Maintainer: Luigi Gangitano <luigi@debian.org> Changed-By: Luigi Gangitano <luigi@debian.org> Description: drupal6 - a fully-featured content management framework Closes: 535435 535476 547140 Changes: drupal6 (6.6-3lenny3) stable-security; urgency=low . [ Luigi Gangitano ] * debian/patches/16_SA-CORE-2009-007 - Fix cross-site scripting (XSS) issues (Closes: #535435, #535476) (Ref: SA-CORE-2009-007, CVE-2009-2372, CVE-2009-2373, CVE-2009-2374) . * debian/patches/17_SA-CORE-2009-008 - Fix XSS, OpenID impersonation and Session Fixation issues (Closes: #547140) (Ref: SA-CORE-2009-008, CVE-TBD) Checksums-Sha1: 8a2d584b3d9f153f4d8221d74f70e4feefa9bb1d 1130 drupal6_6.6-3lenny3.dsc 748eb6c6fde7570cd6c016c3ee2a5b290dd739c4 24870 drupal6_6.6-3lenny3.diff.gz 3173667f1c2ab59f8a2fd9fc76de69c240db0c45 1088258 drupal6_6.6-3lenny3_all.deb Checksums-Sha256: 9064ac243443a1613cf2c9c62bccf5eac03846155a1b47c4585ccd376ce3fdec 1130 drupal6_6.6-3lenny3.dsc ef74493edc2f1c881b8c9cb7355b2afb2223d6bad83f2e7ea6ab20818c2b2df3 24870 drupal6_6.6-3lenny3.diff.gz 931d81820b379cdd81c0c98676d787272ba0c5204a2fb951067d313f265abfd2 1088258 drupal6_6.6-3lenny3_all.deb Files: 489d56336053311b1ee24aaf17f41ffb 1130 web extra drupal6_6.6-3lenny3.dsc d70dfad8a6f211cb9dd62e071e5ddfd9 24870 web extra drupal6_6.6-3lenny3.diff.gz 6162b6933d636065c6a07e6f6199c7df 1088258 web extra drupal6_6.6-3lenny3_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (Darwin) iEYEARECAAYFAkrzq+gACgkQ8ZumGJJMDCZSrgCfVo3aerKvSk5gJ4fSOsHjVVPl CdkAnjrS42lfY5fdcULuiO4M8y+PS7ji =+DoY -----END PGP SIGNATURE----- Accepted: drupal6_6.6-3lenny3.diff.gz to main/d/drupal6/drupal6_6.6-3lenny3.diff.gz drupal6_6.6-3lenny3.dsc to main/d/drupal6/drupal6_6.6-3lenny3.dsc drupal6_6.6-3lenny3_all.deb to main/d/drupal6/drupal6_6.6-3lenny3_all.deb
