-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: request-tracker4 Binary: request-tracker4, rt4-clients, rt4-fcgi, rt4-apache2, rt4-db-postgresql, rt4-db-mysql, rt4-db-sqlite Architecture: all Version: 4.0.7-5+deb7u4 Maintainer: Debian Request Tracker Group <[email protected]> Uploaders: Niko Tyni <[email protected]>, Dominic Hargreaves <[email protected]>, Dmitry Smirnov <[email protected]> Homepage: http://bestpractical.com/rt/ Standards-Version: 3.9.3 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-request-tracker/request-tracker4.git Vcs-Git: git://anonscm.debian.org/pkg-request-tracker/request-tracker4.git Build-Depends: debhelper (>= 5), po-debconf Build-Depends-Indep: perl (>= 5.8.3) Package-List: request-tracker4 deb misc optional arch=all rt4-apache2 deb misc optional arch=all rt4-clients deb misc optional arch=all rt4-db-mysql deb misc optional arch=all rt4-db-postgresql deb misc optional arch=all rt4-db-sqlite deb misc optional arch=all rt4-fcgi deb misc optional arch=all Checksums-Sha1: a6c11cc16bc002f63225071bf7b8d7fe4f787e52 785270 request-tracker4_4.0.7.orig-third-party-source.tar.gz 4c6ba7c3311e0fc42bb99434e91d03318c24186f 5896400 request-tracker4_4.0.7.orig.tar.gz 8cb410223906e096055ee1b60f4d38a11363e185 75536 request-tracker4_4.0.7-5+deb7u4.debian.tar.xz Checksums-Sha256: 39a4dd1cbc89a0123149449c89fc8ed0c4751edff1cf16ac93a91d88ad798c9e 785270 request-tracker4_4.0.7.orig-third-party-source.tar.gz 3b382f05bededa478fbbd0b6bae2381b52eb7f6c11f1136e48c1c57de06d65ed 5896400 request-tracker4_4.0.7.orig.tar.gz c33e699ced262e471fc3b47fb3e71dee97e51d044ce65c239218f3c6e0157daa 75536 request-tracker4_4.0.7-5+deb7u4.debian.tar.xz Files: 8ada3c6dab42e62aff4480b65165e87a 785270 request-tracker4_4.0.7.orig-third-party-source.tar.gz 9536589c5403f1c18c1545a432d541d3 5896400 request-tracker4_4.0.7.orig.tar.gz 2fa25ea9a228fa7f68d3dc34ba5b0a3a 75536 request-tracker4_4.0.7-5+deb7u4.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJVy67LAAoJEAVMuPMTQ89ELVAP/A2pHsLvDYffd7bxVUK/X3gE 9DZCjSBWyT0exeYksCvYzeb3UxEHRrP6EWIw9J7gIeS3PRnYLtST5XCGPKU+fefb 3frIq2vp8l5c8YDzxeiSoha8riiFEAmOd5VO/Oq5ynUg/O4uwQM5tLlcpf4cyarh wX2YHB7q/quJuGHxCal6ADBD7QLOwKu0kdqeu4Imyw0XO+VpQWtO4Z6BYlb5dSoz MO+Q8bY0BV2bynaaQTbFJC5Gun6IocnuveG98l2nwlZcW5Gv5PfRqEtHnlA7glpu wlQ6vF4yNFoXxUqh6RyYr/Oru7peWboKvdwCbkrfv52xCQc/if7I8zhuWGQjB8go ik3wRB1w+WDOCV+oKqL9T8Bc7umRwwmeBnLZ0UyPcgO/qPnLkZ8shubMgKmKvlbb u8f0ZUQU8Kyxrgl+WH2AmBiaEBKtsEr8HyDcndkSJcb/LsugC1vj/9ncfKoToazT I5fGp+Oxya3gu3nb0VHqIjTKLsUyku61+lVSHZqvxG7cCoxKLwK9zxjeC9yk5uBw kOrukcKn85FC0ph7Ik7kSc4wgUWcW10pWx3q79vLLX0BVJoDydtlhwEQbFA21AjP uEh0jNC3LtLDJYtOA4v39fd8z836Qz/J5lHq5RNqf4gu9hfeoiHOiOTK0pZ+8LlS tYpyzT72PIKHV7L5vUjw =8msh -----END PGP SIGNATURE----- Changes: request-tracker4 (4.0.7-5+deb7u4) wheezy-security; urgency=high * Non-maintainer upload by the Security Team. * Add 73_CVE-2015-5475 patch. CVE-2015-5475: Cross-site scripting attack via the user and group rights managment pages. -- Salvatore Bonaccorso <[email protected]> Wed, 12 Aug 2015 22:17:24 +0200
