----------------------------------------------------------------------

Secunia is pleased to announce the release of the annual Secunia
report for 2008.

Highlights from the 2008 report:
 * Vulnerability Research
 * Software Inspection Results
 * Secunia Research Highlights
 * Secunia Advisory Statistics

Request the full 2008 Report here:
http://secunia.com/advisories/try_vi/request_2008_report/

Stay Secure,

Secunia


----------------------------------------------------------------------

TITLE:
Debian update for mahara

SECUNIA ADVISORY ID:
SA34871

VERIFY ADVISORY:
http://secunia.com/advisories/34871/

DESCRIPTION:
Debian has issued an update for mahara. This fixes some
vulnerabilities, which can be exploited by malicious people to
conduct cross-site scripting attacks.

For more information:
SA34789

SOLUTION:
Apply updated packages.

-- Debian GNU/Linux 5.0 alias lenny --

Source archives:

http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+lenny2.dsc
Size/MD5 checksum: 1303 934fdf17abf7221e30fe68c925377126
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+lenny2.diff.gz
Size/MD5 checksum: 39307 3193a6e1483f1375430cc236230bc9cc

Architecture independent packages:

http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+lenny2_all.deb
Size/MD5 checksum: 1637064 9fc42b011a826509edc1fccdb9bc149e
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1.0.4-4+lenny2_all.deb
Size/MD5 checksum: 7830 30c258196ccbdddc6c4f25e1534ba96e

-- Debian GNU/Linux unstable alias sid --

Fixed in version 1.1.3-1.

ORIGINAL ADVISORY:
DSA-1778-1:
http://lists.debian.org/debian-security-announce/2009/msg00089.html

OTHER REFERENCES:
SA34789:
http://secunia.com/advisories/34789/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------