Ubuntu

“moin” 1.9.3-1ubuntu2.2 source package in The Precise Pangolin

Publishing history

1.9.3-1ubuntu2.2
PUBLISHED: Precise pocket Updates in component main and section net
  • Published on 2012-12-30
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
1.9.3-1ubuntu2.2
PUBLISHED: Precise pocket Security in component main and section net
  • Published on 2012-12-30
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Jamie Strandboge

Changelog

moin (1.9.3-1ubuntu2.2) precise-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via anywikidraw/twikidraw
    - debian/patches/CVE-2012-XXXX.patch: adjust action/anywikidraw.py and
      action/twikidraw.py to use wikiutil.taintfilename()
    - CVE-2012-XXXX
  * SECURITY UPDATE: path traversal via AttachFile
    - debian/patches/CVE-2012-YYYY.patch: adjust action/AttachFile.py to use
      wikiutil.taintfilename()
    - CVE-2012-YYYY
 -- Jamie Strandboge <email address hidden>   Sat, 29 Dec 2012 18:20:21 -0600