The version in jaunty/intrepid is not affected by CVE-2009-2171 since that problems was introduced in the 1.1 series of Mahara.
In terms of the intrepid package, I believe that, like with previous security fixes, we can ignore it because it has never worked at all (e.g. can't login). It's only with jaunty that Ubuntu is shipping a functional Mahara.
Hi Jamie,
The version in jaunty/intrepid is not affected by CVE-2009-2171 since that problems was introduced in the 1.1 series of Mahara.
In terms of the intrepid package, I believe that, like with previous security fixes, we can ignore it because it has never worked at all (e.g. can't login). It's only with jaunty that Ubuntu is shipping a functional Mahara.
Cheers,
Francois