[Pkg-mono-svn-commits] [SCM] mono branch, master-experimental, updated. debian/2.6.3-1-16-g64f4eb9
Jo Shields
directhex at apebox.org
Tue Jun 22 11:40:54 UTC 2010
The following commit has been merged in the master-experimental branch:
commit 46acbebcb479d626e8af8782eeab098519174b08
Author: Jo Shields <directhex at apebox.org>
Date: Tue Jun 22 09:43:26 2010 +0100
changelog for debian/patches/insecure_EnableViewStateMac_XSS_CVE-2010-1459
diff --git a/debian/changelog b/debian/changelog
index 1291dd6..075cefb 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -7,6 +7,10 @@ mono (2.6.3-2) UNRELEASED; urgency=low
* git:debian/patches/fix_GetTypeDescriptor_wrapped_type_call_forwarding_r157626:
+ Backport from upstream SVN repository to fix upstream bug 603060, which
causes TypeDescriptorProvider to return false values on wrapped types
+ * git:debian/patches/insecure_EnableViewStateMac_XSS_CVE-2010-1459:
+ + Backport from upstream SVN repository to fix CVE-2010-1459, which
+ implies that the default value for EnableViewStateMac can potentially
+ allow XSS attacks against ASP.NET sites hosted on Mono
-- Jo Shields <directhex at apebox.org> Tue, 22 Jun 2010 08:53:51 +0100
--
mono
More information about the Pkg-mono-svn-commits
mailing list