[Pkg-drupal-commits] r1963 - in /branches/drupal-5.0/debian: changelog patches/00list patches/11_SA-2008-060.dpatch patches/12_SA-2008-067.dpatch

luigi at users.alioth.debian.org luigi at users.alioth.debian.org
Sun Nov 30 23:25:49 UTC 2008 

Author: luigi
Date: Sun Nov 30 23:25:49 2008
New Revision: 1963

URL: http://svn.debian.org/wsvn/pkg-drupal/?sc=1&rev=1963
Log:
Removed patches integrated upstream, added CVE IDs references

Removed:
    branches/drupal-5.0/debian/patches/11_SA-2008-060.dpatch
    branches/drupal-5.0/debian/patches/12_SA-2008-067.dpatch
Modified:
    branches/drupal-5.0/debian/changelog
    branches/drupal-5.0/debian/patches/00list

Modified: branches/drupal-5.0/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-drupal/branches/drupal-5.0/debian/changelog?rev=1963&op=diff
==============================================================================
--- branches/drupal-5.0/debian/changelog (original)
+++ branches/drupal-5.0/debian/changelog Sun Nov 30 23:25:49 2008
@@ -3,6 +3,9 @@
   * (NOT RELEASED YET)
 
   * New upstream release
+    - Removed security patches integrate upstream
+      + 11_SA-2008-060
+      + 12_SA-2008-067
 
  -- Luigi Gangitano <luigi at debian.org>  Mon, 01 Dec 2008 00:09:54 +0100
 
@@ -38,7 +41,8 @@
 
   * debian/patches/11-SA-2008-060
     - Added upstream patch fixing several security vulnerabilities
-      (Ref: SA-2008-060, CVE-TBA) (Closes: #501635)
+      (Ref: SA-2008-060, CVE-2008-4789, CVE-2008-4790, CVE-2008-4791,
+       CVE-2008-4792, CVE-2008-4793) (Closes: #501635)
 
   * debian/etc/settings.php
     - Added exception to Debian PHP session customization allowing for
@@ -54,7 +58,8 @@
    
   * New upstream release
     - Fixes several XSS vulnerabilities
-      (Ref: SA-2008-047, CVE-TBD) (Closes: #495122)
+      (Ref: SA-2008-047, CVE-2008-3741, CVE-2008-3742, CVE-2008-3743,
+       CVE-2008-3744, CVE-2008-3744) (Closes: #495122)
 
  -- Luigi Gangitano <luigi at debian.org>  Fri, 15 Aug 2008 01:35:50 +0200
 
@@ -198,8 +203,8 @@
   * Urgency high due to security fixes
 
   * New upstream release
-    - Fixes XSS in server variables (Ref: DRUPAL-SA-2007-018, CVE: TBD)
-    - Fixes XSRF in Forms API (Ref: DRUPAL-SA-2007-017, CVE: TBD)
+    - Fixes XSS in server variables (Ref: DRUPAL-SA-2007-018, CVE-2007-4064)
+    - Fixes XSRF in Forms API (Ref: DRUPAL-SA-2007-017, CVE-2007-4063)
 
   * debian/copyright
     - Fixed FSF address to make lintian happy

Modified: branches/drupal-5.0/debian/patches/00list
URL: http://svn.debian.org/wsvn/pkg-drupal/branches/drupal-5.0/debian/patches/00list?rev=1963&op=diff
==============================================================================
--- branches/drupal-5.0/debian/patches/00list (original)
+++ branches/drupal-5.0/debian/patches/00list Sun Nov 30 23:25:49 2008
@@ -1,3 +1,1 @@
 10_cronjob
-11_SA-2008-060
-12_SA-2008-067

More information about the Pkg-drupal-commits mailing list