Secunia Security Advisory - Ubuntu has issued an update for moinmoin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
47a28d505b1c366bb543c94cf5a694b59da88e7351b288370dd7fc41dd37adb3
----------------------------------------------------------------------
Try a new way to discover vulnerabilities that ALREADY EXIST in your
IT infrastructure.
Join the FREE BETA test of the Network Software Inspector (NSI)!
http://secunia.com/network_software_inspector/
The NSI enables you to INSPECT, DISCOVER, and DOCUMENT
vulnerabilities in more than 4,000 different Windows applications.
----------------------------------------------------------------------
TITLE:
Ubuntu update for moinmoin
SECUNIA ADVISORY ID:
SA25208
VERIFY ADVISORY:
http://secunia.com/advisories/25208/
CRITICAL:
Less critical
IMPACT:
Cross Site Scripting
WHERE:
>From remote
OPERATING SYSTEM:
Ubuntu Linux 6.06
http://secunia.com/product/10611/
Ubuntu Linux 6.10
http://secunia.com/product/12470/
Ubuntu Linux 7.04
http://secunia.com/product/14068/
DESCRIPTION:
Ubuntu has issued an update for moinmoin. This fixes a vulnerability,
which can be exploited by malicious people to conduct cross-site
scripting attacks.
For more information:
SA24138
SOLUTION:
Apply updated packages.
-- Ubuntu 6.06 LTS --
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.2-1ubuntu2.3.diff.gz
Size/MD5: 39487 c3b1dfe20a3bb839def08020159321ef
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.2-1ubuntu2.3.dsc
Size/MD5: 702 584b400e32f0fae1aef2fa69ffed2bd8
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.2.orig.tar.gz
Size/MD5: 3975925 689ed7aa9619aa207398b996d68b4b87
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moinmoin-common_1.5.2-1ubuntu2.3_all.deb
Size/MD5: 1507924 c53bc6a1452309b150dc86d0884feea6
http://security.ubuntu.com/ubuntu/pool/main/m/moin/python-moinmoin_1.5.2-1ubuntu2.3_all.deb
Size/MD5: 69548 cc8dd84cef4cd95749a7f3914c55b49b
http://security.ubuntu.com/ubuntu/pool/main/m/moin/python2.4-moinmoin_1.5.2-1ubuntu2.3_all.deb
Size/MD5: 834738 950146660e787274fe0d69a8ab2bff5d
-- Ubuntu 6.10 --
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.3-1ubuntu1.3.diff.gz
Size/MD5: 40234 e232754328aa47d1f2c5be8252392bf3
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.3-1ubuntu1.3.dsc
Size/MD5: 726 86bb330aafbfb7c428950f8646fc084b
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.3.orig.tar.gz
Size/MD5: 4187091 e95ec46ee8de9527a39793108de22f7d
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moinmoin-common_1.5.3-1ubuntu1.3_all.deb
Size/MD5: 1574744 57f533196afd6198798b24eaa105d596
http://security.ubuntu.com/ubuntu/pool/main/m/moin/python-moinmoin_1.5.3-1ubuntu1.3_all.deb
Size/MD5: 73640 64019d9f0109287760bfd5b4660cdc4b
http://security.ubuntu.com/ubuntu/pool/main/m/moin/python2.4-moinmoin_1.5.3-1ubuntu1.3_all.deb
Size/MD5: 909078 f6deadb7c99624b72b08b973c0973f8f
-- Ubuntu 7.04 --
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.3-1.1ubuntu3.1.diff.gz
Size/MD5: 38905 30c1f2043f7629767530923b797026c5
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.3-1.1ubuntu3.1.dsc
Size/MD5: 671 7209cfa3f1a21c1a45dcb2ddf16cabb9
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.3.orig.tar.gz
Size/MD5: 4187091 e95ec46ee8de9527a39793108de22f7d
Architecture independent packages:
http://security.ubuntu.com/ubuntu/pool/main/m/moin/moinmoin-common_1.5.3-1.1ubuntu3.1_all.deb
Size/MD5: 1574964 e73dd559227f0712c5d453b80a08f388
http://security.ubuntu.com/ubuntu/pool/main/m/moin/python-moinmoin_1.5.3-1.1ubuntu3.1_all.deb
Size/MD5: 914232 26c1e3c3344c2666c1150a77b0ffcccc
ORIGINAL ADVISORY:
http://www.ubuntu.com/usn/usn-458-1
OTHER REFERENCES:
SA24138:
http://secunia.com/advisories/24138/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------