Ubuntu
mono package

Branches for Hardy

Name Status Last Modified Last Commit
lp://qastaging/ubuntu/hardy-security/mono bug 2 Mature 2010-01-13 03:26:28 UTC
78. * SECURITY UPDATE: Multiple cross-sit...

Author: Marc Deslauriers
Revision Date: 2009-08-19 16:04:59 UTC

* SECURITY UPDATE: Multiple cross-site scripting vulnerabilities in
  the ASP.net class libraries (LP: #282952)
  - debian/patches/security_CVE-2008-3422.dpatch: properly encode and
    escape values in mcs/class/System.Web/System.Web.UI.HtmlControls/
    {HtmlControl,HtmlForm,HtmlInputButton,HtmlInputRadioButton,
    HtmlSelect}.cs, and add tests to mcs/class/System.Web/Test/
    System.Web.UI.HtmlControls/{HtmlImageTest,HtmlInputButtonTest,
    HtmlInputRadioButtonTest,HtmlSelectTest}.cs
  - CVE-2008-3422
* SECURITY UPDATE: CRLF injection vulnerability in Sys.Web (LP: #282952)
  - debian/patches/security_CVE-2008-3906.dpatch: encode headers in
    mcs/class/System.Web/{System.Web/HttpResponseHeader.cs,
    System.Web.Configuration/HttpRuntimeConfig.cs}
  - CVE-2008-3906
* SECURITY UPDATE: XMLDsig HMAC-based signatures spoofing and
  authentication bypass (LP: #409920)
  - debian/patches/security_CVE-2009-0217.dpatch: Fix HMACOutputLength to
    match XMLDSIG erratum and add stricter checks.
  - CVE-2009-0217
lp://qastaging/ubuntu/hardy-updates/mono 2 Mature 2010-01-13 03:25:22 UTC
78. * SECURITY UPDATE: Multiple cross-sit...

Author: Marc Deslauriers
Revision Date: 2009-08-19 16:04:59 UTC

* SECURITY UPDATE: Multiple cross-site scripting vulnerabilities in
  the ASP.net class libraries (LP: #282952)
  - debian/patches/security_CVE-2008-3422.dpatch: properly encode and
    escape values in mcs/class/System.Web/System.Web.UI.HtmlControls/
    {HtmlControl,HtmlForm,HtmlInputButton,HtmlInputRadioButton,
    HtmlSelect}.cs, and add tests to mcs/class/System.Web/Test/
    System.Web.UI.HtmlControls/{HtmlImageTest,HtmlInputButtonTest,
    HtmlInputRadioButtonTest,HtmlSelectTest}.cs
  - CVE-2008-3422
* SECURITY UPDATE: CRLF injection vulnerability in Sys.Web (LP: #282952)
  - debian/patches/security_CVE-2008-3906.dpatch: encode headers in
    mcs/class/System.Web/{System.Web/HttpResponseHeader.cs,
    System.Web.Configuration/HttpRuntimeConfig.cs}
  - CVE-2008-3906
* SECURITY UPDATE: XMLDsig HMAC-based signatures spoofing and
  authentication bypass (LP: #409920)
  - debian/patches/security_CVE-2009-0217.dpatch: Fix HMACOutputLength to
    match XMLDSIG erratum and add stricter checks.
  - CVE-2009-0217
lp://qastaging/ubuntu/hardy/mono 1 Development 2009-06-26 00:16:24 UTC
77. * debian/rules: + unexport CPPFLAGS...

Author: Sebastian Dröge
Revision Date: 2008-03-22 00:57:15 UTC

* debian/rules:
  + unexport CPPFLAGS because configure relies on them being unset
    to pass custom CPPFLAGS to boehm's configure.
13 of 3 results FirstPreviousNextLast