[Python-modules-commits] r14382 - in packages/python-cjson/trunk/debian (2 files)
bzed at users.alioth.debian.org
bzed at users.alioth.debian.org
Mon Sep 6 20:15:04 UTC 2010
Date: Monday, September 6, 2010 @ 20:14:52
Author: bzed
Revision: 14382
* debian/patches:
- New patch: 0002-fix-for-CVE-2009-4924
Fixing a xss vulnerability by handling ['/'] arguments to cjson.encode
properly.
Closes: #593302, Fxies: CVE-2009-2924
Modified:
packages/python-cjson/trunk/debian/changelog
packages/python-cjson/trunk/debian/patches/series
Modified: packages/python-cjson/trunk/debian/changelog
===================================================================
--- packages/python-cjson/trunk/debian/changelog 2010-09-06 14:27:46 UTC (rev 14381)
+++ packages/python-cjson/trunk/debian/changelog 2010-09-06 20:14:52 UTC (rev 14382)
@@ -1,3 +1,13 @@
+python-cjson (1.0.5-4) unstable; urgency=high
+
+ * debian/patches:
+ - New patch: 0002-fix-for-CVE-2009-4924
+ Fixing a xss vulnerability by handling ['/'] arguments to cjson.encode
+ properly.
+ Closes: #593302, Fxies: CVE-2009-2924
+
+ -- Bernd Zeimetz <bzed at debian.org> Mon, 06 Sep 2010 22:14:36 +0200
+
python-cjson (1.0.5-3) unstable; urgency=high
[ Christian Kastner ]
Modified: packages/python-cjson/trunk/debian/patches/series
===================================================================
--- packages/python-cjson/trunk/debian/patches/series 2010-09-06 14:27:46 UTC (rev 14381)
+++ packages/python-cjson/trunk/debian/patches/series 2010-09-06 20:14:52 UTC (rev 14382)
@@ -1 +1,2 @@
0001-fix-for-CVE-2010-1666
+0002-fix-for-CVE-2009-4924
More information about the Python-modules-commits
mailing list