[Spip-maintainers] Bug#736179: opu: package spip/2.1.1-3squeeze8
David Prévot
taffit at debian.org
Mon Jan 20 19:05:31 UTC 2014
Package: release.debian.org
Severity: normal
User: release.debian.org at packages.debian.org
Usertags: opu
Hi release team,
This update fixes a security issue, but the security team believes it’s
not worth a DSA, would you please accept to fix CVE-2013-7303 (#736170)
via the next stable point release?
Debdiff, and actual patch to ease the review, attached.
Regards
David
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (100, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.12-1-rt-amd64 (SMP w/1 CPU core; PREEMPT)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
-------------- next part --------------
A non-text attachment was scrubbed...
Name: spip_squeeze.diff
Type: text/x-diff
Size: 5652 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/spip-maintainers/attachments/20140120/c29e4fd8/attachment-0001.diff>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: fix_XSS_on_signature.patch
Type: text/x-diff
Size: 2785 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/spip-maintainers/attachments/20140120/c29e4fd8/attachment-0001.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/spip-maintainers/attachments/20140120/c29e4fd8/attachment-0001.sig>
More information about the Spip-maintainers
mailing list