-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Tue, 7 Mar 2006 10:12:58 -0500 Source: webcalendar Binary: webcalendar Architecture: source all Version: 1.0.2-1 Distribution: unstable Urgency: high Maintainer: Tim Peeler <thp@linuxforce.net> Changed-By: Tim Peeler <thp@linuxforce.net> Description: webcalendar - PHP-Based multi-user calendar Closes: 293650 333789 333991 341208 342090 351399 351401 Changes: webcalendar (1.0.2-1) unstable; urgency=high . * New upstream release (closes: #333991) - Fixed local file overwrite vulnerability (CVE-2005-3961) - Fixed multiple SQL Injection vulnerabilities (CVE-2005-3949) (closes: #341208) - Fixed CRLF injection XSS/response splitting vulnerability (CVE-2005-3982) - Reportedly fixes SQL injection through the time_range parameter (CVE-2005-3984) (closes: #342090) * Changed to gettext based templates (closes: #351399) * Switched to using dbconfig-common for database configuration (closes: #351401) * Enhanced config mechanism to support easier configuration and more flexibility (closes: #293650) * Include watch file (closes: #333789) * Many bug fixes from upstream. Files: 3e0b92dddafdf349c175a442fda57ad9 607 web optional webcalendar_1.0.2-1.dsc f7eced32f5526a1916f5d5c64b922e10 939192 web optional webcalendar_1.0.2.orig.tar.gz 1eedb1d1db5725911cc2663cfa922731 11796 web optional webcalendar_1.0.2-1.diff.gz b325767b427e0b98100158b5963cd10c 771416 web optional webcalendar_1.0.2-1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFEFwqGSYIMHOpZA44RAja5AJ4iKkvXXR7TiMSVeEVCL1MJRe0OpgCfe4Wm 6ohiNWZ9+S+/eRToGyEDwHk= =MsIB -----END PGP SIGNATURE----- Accepted: webcalendar_1.0.2-1.diff.gz to pool/main/w/webcalendar/webcalendar_1.0.2-1.diff.gz webcalendar_1.0.2-1.dsc to pool/main/w/webcalendar/webcalendar_1.0.2-1.dsc webcalendar_1.0.2-1_all.deb to pool/main/w/webcalendar/webcalendar_1.0.2-1_all.deb webcalendar_1.0.2.orig.tar.gz to pool/main/w/webcalendar/webcalendar_1.0.2.orig.tar.gz