Debian Security Advisory 1459-1 - It was discovered that Gforge, a collaborative development tool, did not properly sanitise some CGI parameters, allowing SQL injection in scripts related to RSS exports.
46c3e291053b62c8aa599099c781e01b50fc301f5004cbe793852f1d8f556e1d