-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Sat, 03 Oct 2009 11:31:16 +0200 Source: mediawiki1.7 Binary: mediawiki1.7 mediawiki1.7-math Architecture: source all i386 Version: 1.7.1-9etch1 Distribution: oldstable-security Urgency: high Maintainer: Mediawiki Maintenance Team <pkg-mediawiki-devel@lists.alioth.debian.org> Changed-By: Giuseppe Iuculano <iuculano@debian.org> Description: mediawiki1.7 - website engine for collaborative work mediawiki1.7-math - math rendering plugin for MediaWiki Closes: 508868 508869 508870 514547 Changes: mediawiki1.7 (1.7.1-9etch1) oldstable-security; urgency=high . * Non-maintainer upload by the Security Team. * Fixed CVE-2008-5249: XSS vulnerability (Closes: #508868) * Fixed CVE-2008-5250: several local script injection vulnerabilities (Closes: #508869) * Fixed CVE-2008-5252: CSRF vulnerability affecting the Special:Import feature (Closes: #508870) * Fixed CVE-2009-0737: multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (Closes: #514547) Files: 7db727bfa3f6139e107af451a90df719 911 web optional mediawiki1.7_1.7.1-9etch1.dsc 50b74e2b5c86fb94c7201b72d2037662 3256428 web optional mediawiki1.7_1.7.1.orig.tar.gz f939cc99afd3ff4b330a35ce549fdd7e 46880 web optional mediawiki1.7_1.7.1-9etch1.diff.gz 4d801e5ee141c2affd080437cafa7f0f 3341486 web optional mediawiki1.7_1.7.1-9etch1_all.deb cc04873698abdbf03011336f533c2b06 122238 web optional mediawiki1.7-math_1.7.1-9etch1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkrHLQYACgkQNxpp46476apMfgCghZvTy75Oba39KJUo2HdJWeKj i7YAn3Xu0y9+ZyHxx70RhH9GNxKdCDzO =HSxY -----END PGP SIGNATURE----- Accepted: mediawiki1.7-math_1.7.1-9etch1_i386.deb to pool/main/m/mediawiki1.7/mediawiki1.7-math_1.7.1-9etch1_i386.deb mediawiki1.7_1.7.1-9etch1.diff.gz to pool/main/m/mediawiki1.7/mediawiki1.7_1.7.1-9etch1.diff.gz mediawiki1.7_1.7.1-9etch1.dsc to pool/main/m/mediawiki1.7/mediawiki1.7_1.7.1-9etch1.dsc mediawiki1.7_1.7.1-9etch1_all.deb to pool/main/m/mediawiki1.7/mediawiki1.7_1.7.1-9etch1_all.deb