← Back to team overview

mahara-packaging team mailing list archive

  1. mahara-packaging team
  2. Mailing list archive
  3. Message #00086

[Bug 958841] Re: Minor security update for Mahara

  Thread PreviousDate PreviousThread Next 
HI Melissa,

On first review, the lucid through natty patches look fine; once you
provide updated debdiffs I'll be happy to publish them for you. Thanks!

-- 
You received this bug notification because you are a member of Mahara
Packaging, which is subscribed to mahara in Ubuntu.
https://bugs.launchpad.net/bugs/958841

Title:
  Minor security update for Mahara

Status in “mahara” package in Ubuntu:
  Confirmed
Status in “mahara” source package in Lucid:
  Confirmed
Status in “mahara” source package in Maverick:
  Confirmed
Status in “mahara” source package in Natty:
  Confirmed
Status in “mahara” source package in Oneiric:
  Confirmed
Status in “mahara” source package in Precise:
  Confirmed

Bug description:
  Here are patches to fix a minor security issue in lucid, maverick,
  natty and oneiric versions of Mahara

  The issue affects both 1.2.x and 1.4.x

   * Fix default config for sites with multiple SAML instances
     - Default configuration changed to prevent impersonation
     - https://mahara.org/interaction/forum/topic.php?id=4367

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mahara/+bug/958841/+subscriptions
  Thread PreviousDate PreviousThread Next