mahara 1.4.0-1ubuntu0.1 source package in Ubuntu
Changelog
mahara (1.4.0-1ubuntu0.1) oneiric-security; urgency=low * SECURITY UPDATE: XSS in unvalidated URI attributes - Added a filter to sanitise user input urls (LP: #888358) - debian/patches/CVE-2011-2771.patch: upstream patch - CVE-2011-2771 * SECURITY UPDATE: DoS attack via invalid or excessively large images - Added a check to evaluate available memory before processing (LP: #888358) - debian/patches/CVE-2011-2772.patch: upstream patch - CVE-2011-2772 * SECURITY UPDATE: XSRF allowing attackers to trick an admin into adding them to an institution - remove unreferenced and vulnerable addtoinstitution.php (LP: #888358) - debian/patches/CVE-2011-2773.patch: upstream patch - CVE-2011-2773 * SECURITY UPDATE: Information disclosure exposing private messages - User check to ensure they are conversation participant (LP: #888358) - debian/patches/CVE-2011-2774.patch: upstream patch - CVE-2011-2774 * SECURITY UPDATE: Prevent masquerading users from jumping as others - Added a check to prevent jumping as other users. (LP: #888358) - debian/patches/mnet_masquerading.patch: upstream patch -- Melissa Draper <email address hidden> Thu, 03 Nov 2011 22:32:45 +0000
Upload details
- Uploaded by:
- Melissa Draper
- Sponsored by:
- Steve Beattie
- Uploaded to:
- Oneiric
- Original maintainer:
- Mahara Packaging
- Architectures:
- all
- Section:
- web
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
mahara_1.4.0.orig.tar.gz | 4.4 MiB | 81e46704ffa81cca03be657f8f120a09546a703f4f95cfb33d6cac2c34aebc8d |
mahara_1.4.0-1ubuntu0.1.debian.tar.gz | 28.7 KiB | f7d5951de824d4b570d330d8a2d33732d26888b084ba22d31d5facfe069ca011 |
mahara_1.4.0-1ubuntu0.1.dsc | 1.9 KiB | c804733b2ec87fe193ea5d75d87619c68713880eff58ffe2415a0fd4ac970586 |
Available diffs
Binary packages built by this source
- mahara: No summary available for mahara in ubuntu oneiric.
No description available for mahara in ubuntu oneiric.
- mahara-apache2: No summary available for mahara-apache2 in ubuntu oneiric.
No description available for mahara-apache2 in ubuntu oneiric.
- mahara-mediaplayer: No summary available for mahara-mediaplayer in ubuntu oneiric.
No description available for mahara-mediaplayer in ubuntu oneiric.