Re: [SRM] #464778 XSS issue in old tdiary version

To: Daigo Moriwaki <techml@sgtpepper.net>
Cc: debian-release@lists.debian.org
Subject: Re: [SRM] #464778 XSS issue in old tdiary version
From: Philipp Kern <pkern@debian.org>
Date: Mon, 27 Oct 2008 00:00:25 +0100
Message-id: <20081026230025.GA11447@durotan.0x539.de>
In-reply-to: <49048C36.5070200@sgtpepper.net>
References: <49048C36.5070200@sgtpepper.net>

On Sun, Oct 26, 2008 at 11:26:46AM -0400, Daigo Moriwaki wrote:
> I have prepared a patch to fix #464778 XSS issue for Etch's version of tDiary.
> Sorry for leaving the bug open for a long time.
> 
> With the permission of the release team, I would like to upload it.

The changelog diff looks bogus, but it seems that you didn't reuse 
a version number.  The indentation of the includes in tdiary.rb
is weird too, but the patch looks fine otherwise.  Please go ahead.

Kind regards,
Philipp Kern
-- 
 .''`.  Philipp Kern                        Debian Developer
: :' :  http://philkern.de                         Release Assistant
`. `'   xmpp:phil@0x539.de                         Stable Release Manager
  `-    finger pkern/key@db.debian.org

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: [SRM] #464778 XSS issue in old tdiary version
  - From: Daigo Moriwaki <techml@sgtpepper.net>

References:
- [SRM] #464778 XSS issue in old tdiary version
  - From: Daigo Moriwaki <techml@sgtpepper.net>

Prev by Date: Re: [inkscape] Impossible to change font if ttf-bitstream-vera is not installed.
Next by Date: Please accept debian-cd 3.0.5 for lenny
Previous by thread: [SRM] #464778 XSS issue in old tdiary version
Next by thread: Re: [SRM] #464778 XSS issue in old tdiary version
Index(es):
- Date
- Thread