[Pkg-drupal-commits] r2034 - /branches/drupal6/debian/changelog
luigi at users.alioth.debian.org
luigi at users.alioth.debian.org
Mon May 11 18:15:39 UTC 2009
Author: luigi
Date: Mon May 11 18:15:39 2009
New Revision: 2034
URL: http://svn.debian.org/wsvn/pkg-drupal/?sc=1&rev=2034
Log:
Added CVE references
Modified:
branches/drupal6/debian/changelog
Modified: branches/drupal6/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-drupal/branches/drupal6/debian/changelog?rev=2034&op=diff
==============================================================================
--- branches/drupal6/debian/changelog (original)
+++ branches/drupal6/debian/changelog Mon May 11 18:15:39 2009
@@ -2,8 +2,8 @@
[ Luigi Gangitano ]
* New upstream release
- - Fixes XSS vulnerability (Ref: SA-CORE-2009-005, CVE-TBD)
- (Closes: #526378)
+ - Fixes XSS vulnerability (Ref: SA-CORE-2009-005, CVE-2009-1575,
+ CVE-2009-1576) (Closes: #526378)
-- Luigi Gangitano <luigi at debian.org> Mon, 04 May 2009 19:56:12 +0200
@@ -67,7 +67,7 @@
The update system is vulnerable to Cross site request forgeries. Malicious
users may cause the superuser (user 1) to execute old updates that may
damage the database.
- (Ref: SA-2008-073) (Closes: #508473)
+ (Ref: SA-2008-073, CVE-2008-6170, CVE-2008-6532, CVE-2008-6533) (Closes: #508473)
-- Patrick Schoenfeld <schoenfeld at debian.org> Fri, 12 Dec 2008 09:30:28 +0100
More information about the Pkg-drupal-commits
mailing list