Bug#699652: tpu: owncloud/4.0.4debian2-3.3

To: Salvatore Bonaccorso <carnil@debian.org>, 699652@bugs.debian.org
Subject: Bug#699652: tpu: owncloud/4.0.4debian2-3.3
From: Julien Cristau <jcristau@debian.org>
Date: Sun, 3 Feb 2013 23:50:05 +0100
Message-id: <20130203225004.GT8837@radis.cristau.org>
Reply-to: Julien Cristau <jcristau@debian.org>, 699652@bugs.debian.org
In-reply-to: <20130202230539.6382.1875.reportbug@elende.valinor.li>
References: <20130202230539.6382.1875.reportbug@elende.valinor.li>

On Sun, Feb  3, 2013 at 00:05:39 +0100, Salvatore Bonaccorso wrote:

> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: unblock
> 
> Hi Release Team
> 
> owncloud in unstable fixes some security bugs: #698737, which are some
> XSS vulnerabilities fixed in unstable (CVE-2012-0201, CVE-2012-0202
> and CVE-2012-0203). But we have a newer version in unstable. Attached
> is the proposed debdiff against the version in unstable (practicly the
> same patch as applied in unstable).
> 
> Attached is the debdiff. Could I upload this to t-p-u?
> 
> Regards and thanks for your work!
> 
Go ahead.

> +--- a/apps/gallery/sharing.php
> ++++ b/apps/gallery/sharing.php
> +@@ -37,7 +37,7 @@
> +     <script src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js"; type="text/javascript"></script>

ick.

Cheers,
Julien

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Bug#699652: tpu: owncloud/4.0.4debian2-3.3
  - From: Salvatore Bonaccorso <carnil@debian.org>

References:
- Bug#699652: tpu: owncloud/4.0.4debian2-3.3
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Re: Please unblock*/urgent netcfg/1.105
Next by Date: Processed: tagging 699652
Previous by thread: Bug#699652: tpu: owncloud/4.0.4debian2-3.3
Next by thread: Bug#699652: tpu: owncloud/4.0.4debian2-3.3
Index(es):
- Date
- Thread