Accepted info2www 1.2.2.9-23 (all source)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 3 Feb 2005 19:15:56 +0100
Source: info2www
Binary: info2www
Architecture: source all
Version: 1.2.2.9-23
Distribution: unstable
Urgency: high
Maintainer: Uwe Hermann <uwe@debian.org>
Changed-By: Uwe Hermann <uwe@debian.org>
Description:
info2www - Read info files with a WWW browser
Closes: 281655
Changes:
info2www (1.2.2.9-23) unstable; urgency=high
.
* SECURITY FIX: This release prevents _some_ forms of Cross Site Scripting
(XSS) attacks against info2www. A more thorough security audit needs to
be done, though. It's expected that more vulnerabilities can be found.
Thanks to Nicolas Gregoire for the bug-report and Justin Pryzby for his
help with analyzing the issue and providing a first fix (Closes: #281655).
Files:
e5fb2af8e848702164800ef5c06257d0 588 doc optional info2www_1.2.2.9-23.dsc
7c955232786ec117c9a8533c6c57a981 14921 doc optional info2www_1.2.2.9-23.diff.gz
9d52f6351f1ced7242fb28a28acf1f6a 22362 doc optional info2www_1.2.2.9-23_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFCAmukXdVoV3jWIbQRAhDzAJ92S/XQsezh8OiT1xzdnKL1lSp8iQCdFAdU
QmXGo9auNJAw8vPq9Snu+4Y=
=iHxe
-----END PGP SIGNATURE-----
Accepted:
info2www_1.2.2.9-23.diff.gz
to pool/main/i/info2www/info2www_1.2.2.9-23.diff.gz
info2www_1.2.2.9-23.dsc
to pool/main/i/info2www/info2www_1.2.2.9-23.dsc
info2www_1.2.2.9-23_all.deb
to pool/main/i/info2www/info2www_1.2.2.9-23_all.deb
--
To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org