lp:ubuntu/jaunty-updates/drupal6
- Get this branch:
- bzr branch lp:ubuntu/jaunty-updates/drupal6
Branch merges
Branch information
Recent revisions
- 9. By Artur Rona
-
* debian/
patches/ 22_SA-CORE- 2009-009. dpatch:
- SECURITY UPDATE due to multiple vulnerabilities
and weaknesses were discovered in Drupal (LP: #510421)
- CVE-2009-4369
- CVE-2009-4370
- CVE-2009-4371 - 8. By Artur Rona
-
* debian/
patches/ 18_SA-CORE- 2009-005. dpatch:
- Fix cross site scripting, see SA-CORE-2009-005
- CVE-2009-1576
* debian/patches/ 19_SA-CORE- 2009-006. dpatch:
- Fix cross site scripting, see SA-CORE-2009-006
* debian/patches/ 20_SA-CORE- 2009-007. dpatch:
- Fix possible password leakage via URLs.
- CVE-2009-2372
- CVE-2009-2373
- CVE-2009-2374
* debian/patches/ 21_SA-CORE- 2009-008. dpatch:
- Fix security issues (session fixation),
see SA-CORE-2009-008 (LP: #431080) - 7. By Luigi Gangitano
-
[ Luigi Gangitano ]
* New upstream release
- This version fixes two Windows-only security issues
(Ref: SA-CORE-2009-003, SA-CORE-2009-004)
Debian is not affected by this vulnerabilites - 6. By Luigi Gangitano
-
[ Luigi Gangitano ]
* New upstream release
- Removed security patch integrate upstream
+ 12_SA-2008-073
+ 13_SA-CORE-2009-001* debian/cron.sh
- Handle sites/all correctly (Closes: #513522) - 5. By Luigi Gangitano
-
[ Luigi Gangitano ]
* Urgency high due to security fixes* debian/
patches/ 13_SA-CORE- 2009-001
- Added upstream patch fixing multiple vulnerabilities
(Ref: SA-CORE-2009-001, CVE-TBD) - 4. By Luigi Gangitano
-
* debian/
patches/ 12_SA-2008- 073
- Moved NMU changes to dpatch file* debian/control
- Added dependency on ${misc:Depends} to make lintian happy* debian/
drupal6. {postinst, postrm}
- Changed apache configuration link name to drupal6.conf, to avoid
collision with drupal5 (Closes: #509769, #505146)
- Set default Postgres encoding to UTF8 (Closes: #508506)* debian/
README. Debian
- Fixed link to installation script (Closes: 507914) - 3. By Patrick Schoenfeld
-
* Non-maintainer upload.
* Urgency high because this fixes a security issue
* Include upstream patch for SA-2008-073, to fix a security issue:
The update system is vulnerable to Cross site request forgeries. Malicious
users may cause the superuser (user 1) to execute old updates that may
damage the database.
(Closes: #508473) - 2. By Luigi Gangitano
-
[ Luigi Gangitano ]
* Urgency high due to security fixes* New upstream release
- Fixes two security vulnerabilities
(Ref: SA-2008-067, CVE-TBA) (Closes: #503222)* debian/
drual6. postrm
- Fixed missing -e option to make lintian happy* debian/
patches/ 10_cronjob. dpatch
- Added patch descritpion to make lintian happy* debian/control
- Bumped Standard-Version to 3.8.0, no change needed* debian/
{control, rules,links}
- Added dependency on libjs-jquery and use jquery.js from it
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/drupal6