This bug was fixed in the package mahara - 1.2.4-1ubuntu0.2
--------------- mahara (1.2.4-1ubuntu0.2) lucid-security; urgency=low
* SECURITY UPDATE: cross-site scripting vulnerability - debian/patches/CVE-2011-0439.dpatch: upstream patch - CVE-2011-0439 - LP: #676336
* SECURITY UPDATE: possible cross-site request forgery (deleting blogs) - debian/patches/CVE-2011-0440.dpatch: upstream patch - CVE-2011-0440 -- Francois Marier <email address hidden> Fri, 18 Mar 2011 15:51:03 +1300
This bug was fixed in the package mahara - 1.2.4-1ubuntu0.2
---------------
mahara (1.2.4-1ubuntu0.2) lucid-security; urgency=low
* SECURITY UPDATE: cross-site scripting vulnerability patches/ CVE-2011- 0439.dpatch: upstream patch
- debian/
- CVE-2011-0439
- LP: #676336
* SECURITY UPDATE: possible cross-site request forgery (deleting blogs) patches/ CVE-2011- 0440.dpatch: upstream patch
- debian/
- CVE-2011-0440
-- Francois Marier <email address hidden> Fri, 18 Mar 2011 15:51:03 +1300