[Pkg-mono-svn-commits] [SCM] mono branch, master, updated. debian/2.4.4.svn151842-2-51-g38682b8
Mirco Bauer
meebey at meebey.net
Thu Jun 24 23:39:42 UTC 2010
The following commit has been merged in the master branch:
commit 97c1405a07c0d43d1f5b04abf4bf9506b1ffb44c
Author: Jo Shields <directhex at apebox.org>
Date: Tue Jun 22 09:43:26 2010 +0100
changelog for debian/patches/insecure_EnableViewStateMac_XSS_CVE-2010-1459
diff --git a/debian/changelog b/debian/changelog
index 597a402..42c52a5 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -20,6 +20,10 @@ mono (2.4.4~svn151842-3~pre1) UNRELEASED; urgency=low
debian/mono-{1,2}.0-service.install:
+ Move mono-service executables' GAC entries to mono-service packages
where they belong (Closes: #586192)
+ * git:debian/patches/insecure_EnableViewStateMac_XSS_CVE-2010-1459:
+ + Backport from upstream SVN repository to fix CVE-2010-1459, which
+ implies that the default value for EnableViewStateMac can potentially
+ allow XSS attacks against ASP.NET sites hosted on Mono
-- Mirco Bauer <meebey at debian.org> Sat, 08 May 2010 20:52:33 +0200
--
mono
More information about the Pkg-mono-svn-commits
mailing list