Accepted drupal6 6.14-1~bpo50+1 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 20 Oct 2009 14:19:58 +0200
Source: drupal6
Binary: drupal6
Architecture: source all
Version: 6.14-1~bpo50+1
Distribution: lenny-backports
Urgency: high
Maintainer: Luigi Gangitano <luigi@debian.org>
Changed-By: Luigi Gangitano <luigi@debian.org>
Description:
drupal6 - a fully-featured content management framework
Closes: 513522 526378 529190 529309 530779 531386 535435 547140
Changes:
drupal6 (6.14-1~bpo50+1) lenny-backports; urgency=low
.
* Backport to Lenny
.
drupal6 (6.14-1) unstable; urgency=low
.
* New upstream release
- Removed security patches integrate upstream
+ 20_SA-CORE-2009-007
- Fixes multiple vulnerabilities (Ref: SA-CORE-2009-008)
(Closes: #547140)
.
* debian/control
- Bumped Standard-Version to 3.8.3, no change needed
.
* debian/compat
- Switch debhelper compatibility to 7
.
* debian/copyright
- Added reference to copyright file with version
.
drupal6 (6.13-1) UNRELEASED; urgency=low
.
* New upstream release
.
drupal6 (6.12-1.1) unstable; urgency=high
.
* Non-maintainer upload by the Security Team.
* Apply upstream patch to fix:
- XSS in the forum module
- Input format access bypass via signatures
- Password leakage via URLs
(no CVE id yet; SA-CORE-2009-007; Closes: #535435).
.
drupal6 (6.12-1) unstable; urgency=low
.
[ Luigi Gangitano ]
* New upstream release (Closes: #529309)
(Acknoledges NMU by Security Team) (Closes: #531386)
- Removed security patch integrate upstream
+ 20_xss
.
* debian/{control,rules,links}
- Removed dependency on libjs-jquery and use jquery.js from drupal
sources to avoid conflict with newer version of jquery
(Closes: #530779)
.
drupal6 (6.11-1.1) unstable; urgency=high
.
* Non-maintainer upload by the Security Team.
* Fix several XSS issues (SA-CORE-2009-006; Closes: #529190).
.
drupal6 (6.11-1) unstable; urgency=low
.
[ Luigi Gangitano ]
* New upstream release
- Fixes XSS vulnerability (Ref: SA-CORE-2009-005, CVE-2009-1575,
CVE-2009-1576) (Closes: #526378)
.
drupal6 (6.10-1) unstable; urgency=low
.
[ Luigi Gangitano ]
* New upstream release
- This version fixes two Windows-only security issues
(Ref: SA-CORE-2009-003, SA-CORE-2009-004)
Debian is not affected by this vulnerabilites
.
drupal6 (6.9-1) unstable; urgency=low
.
[ Luigi Gangitano ]
* New upstream release
- Removed security patch integrate upstream
+ 12_SA-2008-073
+ 13_SA-CORE-2009-001
.
* debian/cron.sh
- Handle sites/all correctly (Closes: #513522)
Checksums-Sha1:
8ad99649d13e436d855df1adc4dc60f903865064 1145 drupal6_6.14-1~bpo50+1.dsc
25d4249e91bb04041e3185be8bf79785f9d91811 1082687 drupal6_6.14.orig.tar.gz
56a050d18f09b5de442c9823cddf856f109595b1 16659 drupal6_6.14-1~bpo50+1.diff.gz
a8514b43d9b3d4d2a1d2a3c9f507fa20db56fe24 1117408 drupal6_6.14-1~bpo50+1_all.deb
Checksums-Sha256:
fa859a35ec5ad72c880871187961673758a872169a4ce11d012531cb6e06bf42 1145 drupal6_6.14-1~bpo50+1.dsc
b534244b8e5b26ab6642d9909d5f7661b7c44e029ff8a87bd41afa7e15bde0b5 1082687 drupal6_6.14.orig.tar.gz
682de06cb00abdfe18dd3cfaaad2794f648c598aad5ff6460f8b3c44b8dde7c1 16659 drupal6_6.14-1~bpo50+1.diff.gz
ff92be6ec1dc734db5dfe896be9b94c3697d8bb14ebee9288172a64711aefeab 1117408 drupal6_6.14-1~bpo50+1_all.deb
Files:
102a457770f34142d45d232d17976fbb 1145 web extra drupal6_6.14-1~bpo50+1.dsc
014bb453a8d0adb0233c763e40d63859 1082687 web extra drupal6_6.14.orig.tar.gz
9337c45783c640584496f19ae75b2188 16659 web extra drupal6_6.14-1~bpo50+1.diff.gz
40284250f301256c4a36d974de68199b 1117408 web extra drupal6_6.14-1~bpo50+1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (Darwin)
iEYEARECAAYFAkrdqMAACgkQ8ZumGJJMDCaxFgCggqThuoz8Zd3dAk2jQfgiUzar
PHYAni+cwows7QtOv27CfOlpx4YBdKas
=SKKZ
-----END PGP SIGNATURE-----
Accepted:
drupal6_6.14-1~bpo50+1.diff.gz
to pool/main/d/drupal6/drupal6_6.14-1~bpo50+1.diff.gz
drupal6_6.14-1~bpo50+1.dsc
to pool/main/d/drupal6/drupal6_6.14-1~bpo50+1.dsc
drupal6_6.14-1~bpo50+1_all.deb
to pool/main/d/drupal6/drupal6_6.14-1~bpo50+1_all.deb
drupal6_6.14.orig.tar.gz
to pool/main/d/drupal6/drupal6_6.14.orig.tar.gz
Reply to: