Branches for Karmic

Author: Artur Rona
Revision Date: 2010-12-28 01:56:09 UTC

* SECURITY UPDATE: Multiple vulnerabilities and weaknesses
  (OpenID authentication bypass, file download access bypass,
  comment unpublishing bypass, and actions cross site scripting)
  were discovered in Drupal. (LP: #539056)
  - debian/patches/21_SA-CORE-2010-002.dpatch
  - CVE-2010-3685
  - CVE-2010-3686
  - SA-CORE-2010-002
* SECURITY UPDATE: Multiple vulnerabilities and weaknesses
  (installation cross site scripting, open redirection, locale
  module cross site scripting and blocked user session regeneration)
  were discovered in Drupal. (LP: #539056)
  - debian/patches/21_SA-CORE-2010-002.dpatch
  - CVE-2010-3091
  - CVE-2010-3092
  - CVE-2010-3093
  - CVE-2010-3094
  - SA-CORE-2010-001

Author: Artur Rona
Revision Date: 2010-12-28 01:56:09 UTC

* SECURITY UPDATE: Multiple vulnerabilities and weaknesses
  (OpenID authentication bypass, file download access bypass,
  comment unpublishing bypass, and actions cross site scripting)
  were discovered in Drupal. (LP: #539056)
  - debian/patches/21_SA-CORE-2010-002.dpatch
  - CVE-2010-3685
  - CVE-2010-3686
  - SA-CORE-2010-002
* SECURITY UPDATE: Multiple vulnerabilities and weaknesses
  (installation cross site scripting, open redirection, locale
  module cross site scripting and blocked user session regeneration)
  were discovered in Drupal. (LP: #539056)
  - debian/patches/21_SA-CORE-2010-002.dpatch
  - CVE-2010-3091
  - CVE-2010-3092
  - CVE-2010-3093
  - CVE-2010-3094
  - SA-CORE-2010-001

Author: Artur Rona
Revision Date: 2009-10-10 18:42:02 UTC

* debian/patches/21_SA-CORE-2009-008.dpatch:
  - Fixed security issues (session fixation),
    see SA-CORE-2009-008 (LP: #431080).
* debian/README.source: Added for silence lintian's warning.