r67292 - /trunk/libcgi-pm-perl/debian/changelog
ntyni at users.alioth.debian.org
ntyni at users.alioth.debian.org
Tue Jan 11 19:47:54 UTC 2011
Author: ntyni
Date: Tue Jan 11 19:47:41 2011
New Revision: 67292
URL: http://svn.debian.org/wsvn/pkg-perl/?sc=1&rev=67292
Log:
Update debian/changelog, closing #367711 and #606370.
Modified:
trunk/libcgi-pm-perl/debian/changelog
Modified: trunk/libcgi-pm-perl/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-perl/trunk/libcgi-pm-perl/debian/changelog?rev=67292&op=diff
==============================================================================
--- trunk/libcgi-pm-perl/debian/changelog (original)
+++ trunk/libcgi-pm-perl/debian/changelog Tue Jan 11 19:47:41 2011
@@ -1,6 +1,12 @@
libcgi-pm-perl (3.51-1) UNRELEASED; urgency=low
* New upstream release.
+ + [SECURITY] CVE-2010-4411: fixes a double CR/LF injection vulnerability,
+ the last missing bit for the CVE-2010-2761 + CVE-2010-4410 issues
+ that were fixed in 3.50. (Closes: #606370)
+ + fixes writeability checks of the temporary directory for file uploads,
+ and documents supported ways to override the builtin directories.
+ (Closes: #367711)
-- Niko Tyni <ntyni at debian.org> Tue, 11 Jan 2011 21:16:29 +0200
More information about the Pkg-perl-cvs-commits
mailing list