: Code : mahara package : Debian

Debian
mahara package

Name	Status	Last Modified	Last Commit
lp:debian/squeeze/mahara	1 Development	2012-12-27 10:37:23 UTC 2012-12-27	22. * SECURITY UPDATE: Fix XSS in paginat... Author: Melissa Draper Revision Date: 2012-12-27 10:37:23 UTC * SECURITY UPDATE: Fix XSS in pagination URL - debian/patches/CVE-2012-2253.patch: upstream patch * SECURITY UPDATE: Disable XML entity parsing to prevent XEE - debian/patches/CVE-2012-2239.patch: upstream patch * SECURITY UPDATE: Multiple cross-site scripting vulnerabilities - Content passed to the error message was not escaped - Escape pieform errors displayed to users - debian/patches/CVE-2012-2243-0001.patch: upstream patch - XHTML files prone to embedded javascript - Prevent uploaded xhtml files from displaying verbatim - debian/patches/CVE-2012-2243-0002.patch: upstream patch * SECURITY UPDATE: Arbitrary file execution via clam path - Remove executable bit from existing uploaded files - debian/patches/CVE-2012-2244-0001.patch: upstream patch - Ensure future files will not be executable - debian/patches/CVE-2012-2244-0002.patch: upstream patch - Remove direct path option from web configuration - debian/patches/CVE-2012-2244-0003.patch: upstream patch * SECURITY UPDATE: Prevent click-jacking attacks - Add a HTTP header of X-Frame-Options to every page - debian/patches/CVE-2012-2246.patch: upstream patch * SECURITY UPDATE: Prevent SVG images being displayed - SVG images displayed inline - Adds SVG files to the list of files to not display by default - debian/patches/CVE-2012-2247.patch: upstream patch
lp:debian/mahara	1 Development	2012-12-23 14:53:41 UTC 2012-12-23	28. * Non-maintainer upload. * SECURITY U... Author: Luca Falavigna Revision Date: 2012-12-23 14:53:41 UTC * Non-maintainer upload. * SECURITY UPDATE: Fix a cross-site scripting (XSS) vulnerability which allowed remote attackers to inject arbitrary web script or HTML via the query parameter. - debian/patches/CVE-2012-2253.patch - Closes: #695789
lp:debian/wheezy/mahara	1 Development	2012-12-23 14:53:41 UTC 2012-12-23	28. * Non-maintainer upload. * SECURITY U... Author: Luca Falavigna Revision Date: 2012-12-23 14:53:41 UTC * Non-maintainer upload. * SECURITY UPDATE: Fix a cross-site scripting (XSS) vulnerability which allowed remote attackers to inject arbitrary web script or HTML via the query parameter. - debian/patches/CVE-2012-2253.patch - Closes: #695789
lp:debian/lenny/mahara	2 Mature	2011-11-03 16:04:03 UTC 2011-11-03	14. * SECURITY UPDATE: fix unsanitised UR... Author: François Marier Revision Date: 2011-11-03 16:04:03 UTC * SECURITY UPDATE: fix unsanitised URIs in external feed block (XSS) - debian/patches/CVE-2011-2771.dpatch: upstream patch * SECURITY UPDATE: fix DoS when large or invalid images are uploaded - debian/patches/CVE-2011-2772.dpatch: upstream patch * SECURITY UPDATE: fix CSRF when adding a user to an institution - debian/patches/CVE-2011-2773.dpatch: upstream patch * SECURITY UPDATE: prevent masquerading as another user through MNet - debian/patches/mnet_masquerading.dpatch: upstream patch

Debianmahara package

Debian
mahara package