This bug was fixed in the package loggerhead - 1.18.1-1
---
loggerhead (1.18.1-1) unstable; urgency=high
* Bump python-simplejson from Recommends to Depends, as loggerhead
breaks with python-json. LP: #586611
* Switch to dh_python2. Closes: #616876
* Switch to debhelper 7, d
** Tags added: patch
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/740142
Title:
persistent xss vector in (unescaped) filenames in revision views
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubun
** Branch linked: lp:debian/loggerhead
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/740142
Title:
persistent xss vector in (unescaped) filenames in revision views
--
ubuntu-bugs mailing list
ubun
I'm unsubscribing sponsors from bug as William Grant is going to get
fixed package from Debian to natty.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/740142
Title:
persistent xss vector in (unescap
** Changed in: launchpad
Status: Triaged => Fix Released
** Changed in: launchpad
Assignee: (unassigned) => William Grant (wgrant)
** Changed in: launchpad
Milestone: None => 11.04
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed
** Branch linked: lp:ubuntu/karmic-security/loggerhead
** Branch linked: lp:ubuntu/lucid-security/loggerhead
** Branch linked: lp:ubuntu/maverick-security/loggerhead
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launch
This bug was fixed in the package loggerhead - 1.17-0ubuntu1.1
---
loggerhead (1.17-0ubuntu1.1) karmic-security; urgency=low
* SECURITY UPDATE: Cross-site scripting vulnerabilities by crafted branch
contents. (LP: #740142)
- debian/patches/bug-740142.diff: improve escaping o
This bug was fixed in the package loggerhead - 1.17+bzr400-1ubuntu0.1
---
loggerhead (1.17+bzr400-1ubuntu0.1) lucid-security; urgency=low
* SECURITY UPDATE: Cross-site scripting vulnerabilities by crafted branch
contents. (LP: #740142)
- debian/patches/bug-740142.diff: impro
This bug was fixed in the package loggerhead - 1.17+bzr424-1ubuntu1.1
---
loggerhead (1.17+bzr424-1ubuntu1.1) maverick-security; urgency=low
* SECURITY UPDATE: Cross-site scripting vulnerabilities by crafted branch
contents. (LP: #740142)
- debian/patches/bug-740142.diff: im
William, after reviewing and testing your patches, I've gone ahead and
published the loggerhead updates to the respective security pockets.
Thanks!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/74014
** Branch linked: lp:~wgrant/launchpad/new-loggerhead
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/740142
Title:
persistent xss vector in (unescaped) filenames in revision views
--
ubuntu-bugs ma
** Also affects: loggerhead (Ubuntu Karmic)
Importance: Undecided
Status: New
** Also affects: loggerhead (Ubuntu Lucid)
Importance: Undecided
Status: New
** Also affects: loggerhead (Ubuntu Maverick)
Importance: Undecided
Status: New
--
You received this bug notif
Pushed to lp:loggerhead and lp:loggerhead/1.18. I've released 1.18.1
with the fix.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/740142
Title:
persistent xss vector in (unescaped) filenames in revis
** Changed in: loggerhead
Status: In Progress => Fix Released
** Changed in: loggerhead
Milestone: None => 1.18.1
** Visibility changed to: Public
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/
14 matches
Mail list logo
