Ubuntu
websvn package

[Sync request] Sync websvn 1.61-22.2 from Debian unstable (main)

Bug #137392 reported by Michael Bienia on 2007-09-04

Affects		Status	Importance	Assigned to	Milestone
	websvn (Ubuntu)	Fix Released	Wishlist	Unassigned

Bug Description

Binary package hint: websvn

Please sync websvn 1.61-22.2 from Debian unstable (main).

The current package has no Ubuntu changes.
The package builds cleanly in a gutsy pbuilder.

Thanks.

Changelog:

websvn (1.61-22.2) unstable; urgency=high

  * Non-maintainer upload by the testing-security team
  * Include CVE-2007-3056.diff to fix Cross-site scripting (XSS)
    vulnerability in filedetails.php (Closes: #439337)
    Fixes: CVE-2007-3056

-- Steffen Joeris <email address hidden> Tue, 4 Sep 2007 09:42:32 +0200

CVE References

2007-3056

Michael Bienia (geser) on 2007-09-04

Changed in websvn:
importance:	Undecided → Wishlist
status:	New → Confirmed

Revision history for this message

Sebastien Bacher (seb128) wrote on 2007-09-05:

[Updating] websvn (1.61-22.1 [Ubuntu] < 1.61-22.2 [Debian])
* Trying to add websvn...
  - <websvn_1.61-22.2.dsc: downloading from http://ftp.debian.org/debian/>
  - <websvn_1.61.orig.tar.gz: already in distro - downloading from librarian>
  - <websvn_1.61-22.2.diff.gz: downloading from http://ftp.debian.org/debian/>
I: websvn [universe] -> websvn_1.61-22.1 [universe].

Changed in websvn:
status:	Confirmed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuwebsvn package