---------------------------------------------------------------------- Do you have VARM strategy implemented? (Vulnerability Assessment Remediation Management) If not, then implement it through the most reliable vulnerability intelligence source on the market. Implement it through Secunia. For more information visit: http://secunia.com/advisories/business_solutions/ Alternatively request a call from a Secunia representative today to discuss how we can help you with our capabilities contact us at: sales@secunia.com ---------------------------------------------------------------------- TITLE: Debian update for mahara SECUNIA ADVISORY ID: SA35554 VERIFY ADVISORY: http://secunia.com/advisories/35554/ DESCRIPTION: Debian has issued an update for mahara. This fixes some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information and by malicious people to conduct cross-site scripting attacks. For more information: SA35510 SOLUTION: Apply updated packages. -- Debian GNU/Linux 5.0 alias lenny -- Source archives: http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+lenny3.diff.gz Size/MD5 checksum: 39703 37ab5bac170c01367202510b3d11c486 http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+lenny3.dsc Size/MD5 checksum: 1303 808210db6028fd5d6cbe439b666c2c84 http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4.orig.tar.gz Size/MD5 checksum: 2383079 cf1158e4fe3cdba14fb1b71657bf8cc9 Architecture independent packages: http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+lenny3_all.deb Size/MD5 checksum: 1637508 d6252dd4544dd00b798d6457dced9591 http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1.0.4-4+lenny3_all.deb Size/MD5 checksum: 7844 8489301d195fe6fa6f7e712dc2053916 ORIGINAL ADVISORY: http://www.debian.org/security/2009/dsa-1822 OTHER REFERENCES: SA35510: http://secunia.com/advisories/35510 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------