lp://staging/ubuntu/edgy-security/smarty
- Get this branch:
- bzr branch lp://staging/ubuntu/edgy-security/smarty
Branch merges
Branch information
Recent revisions
- 7. By Emanuele Gentili
-
* SECURITY UPDATE: (LP: #202422)
+ libs/plugins/modifier. regex_replace. php
- The modifier.regex_replace. php plugin in Smarty before 2.6.19, as used
by Serendipity (S9Y) and other products, allows attackers to call arbitrary
PHP functions via templates, related to a '\0' character in a search string.* References
+ http://cve.mitre. org/cgi- bin/cvename. cgi?name= CVE-2008- 1066
+ http://bugs.debian. org/cgi- bin/bugreport. cgi?bug= 469492 - 6. By dim
-
* New upstream release
* Closes: #369675 - smarty 2.6.14 released
* Closes: #372263 - fixed upstream - 5. By Igor Genibel <email address hidden>
-
* New upstream release
* Added myself to Uploaders
* Ack previous NMU (Closes: #332098) - 4. By Igor Genibel <email address hidden>
-
* Non-maintainer upload (with maintainer permission: 0-day NMU).
* Change Maintainer address - 3. By Dimitri Fontaine <email address hidden>
-
* New upstream release
* disallow variable function calls in {if} statements
* disallow variable function calls in {math} equations - 1. By Dimitri Fontaine <email address hidden>
-
* Adapted dependencies to allow running smarty with apache 2 (Closes: #241147)
* Prepared the template for i18n (Closes: #233098)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/ubuntu/karmic/smarty