drupal5: please allow transition to lenny, fixes security issues

[Luigi Gangitano <luigi@debian.org>]

Hi releasers,
I would like to ask for allowance of drupal5_5.10-2 in lenny. This  
release fixes several security issues and major breakage of a cron  
script.

This is the relevant changelog entry:

drupal5 (5.10-2) unstable; urgency=high

  [Luigi Gangitano]
  * Urgency high due to security fixes

  * debian/po/it.po
    - Updated Italian debconf translation, thanks to Luca Monducci
      (Closes: #494537)

  * debian/cron.sh
    - Fixed error when BASE_URL is not cleaned (Closes: #494208,  
#498806)

  * debian/README.Debian
    - Added a notice about cookie security and session.cookie_secure
      configuration (Ref: CVE-2008-3661) (Closes: #501063)

  * debian/patches/11-SA-2008-060
    - Added upstream patch fixing several security vulnerabilities
      (Ref: SA-2008-060, CVE-TBA) (Closes: #501635)

  * debian/etc/settings.php
    - Added exception to Debian PHP session customization allowing for
      session table rows aging and removal, thanks to Kamthorn  
Krairaksa
      and  Theppitak Karoonboonyanan. (Closes: #495027)

 -- Luigi Gangitano <luigi@debian.org>  Fri, 14 Oct 2008 15:45:38 +0200

Thanks,

L

--
Luigi Gangitano -- <luigi@debian.org> -- <gangitano@lugroma3.org>
GPG: 1024D/924C0C26: 12F8 9C03 89D3 DB4A 9972  C24A F19B A618 924C 0C26