[Pkg-owncloud-commits] [owncloud] 01/01: Document CVE in previous changelog entry
David Prévot
taffit at moszumanska.debian.org
Thu Apr 9 15:59:40 UTC 2015
This is an automated email from the git hooks/post-receive script.
taffit pushed a commit to branch jessie
in repository owncloud.
commit 781c2060a520c87457d57339af09f55425274bd7
Author: David Prévot <taffit at debian.org>
Date: Thu Apr 9 11:53:22 2015 -0400
Document CVE in previous changelog entry
---
debian/changelog | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/debian/changelog b/debian/changelog
index 0416dfa..faa99b2 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -3,8 +3,10 @@ owncloud (7.0.4+dfsg-3) unstable; urgency=medium
* Add gbp config file to follow the jessie branch
* Backport security fixes from 7.0.5:
- Multiple stored XSS in "contacts" application [OC-SA-2015-001]
+ [CVE-2015-3011]
- Multiple stored XSS in "documents" application [OC-SA-2015-002]
- - Bypass of file blacklist [OC-SA-2015-004]
+ [CVE-2015-3012]
+ - Bypass of file blacklist [OC-SA-2015-004] [CVE-2015-3013]
* Run upgrade script with sudo as www-data user
* Depend on php5-cli (it is actually used in postinst)
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-owncloud/owncloud.git
More information about the Pkg-owncloud-commits
mailing list