libcgi-application-plugins-perl for lenny r1? (fwd)

To: debian-release@lists.debian.org
Subject: libcgi-application-plugins-perl for lenny r1? (fwd)
From: "Jaldhar H. Vyas" <jaldhar@debian.org>
Date: Sun, 1 Mar 2009 02:19:56 -0500 (EST)
Message-id: <alpine.DEB.2.00.0903010154390.17601@localhost.localdomain>
Reply-to: "Jaldhar H. Vyas" <jaldhar@debian.org>

I thought I had sent this out a couple of days ago but apparently not butin case you are seeing this twice, sorry. Oh and please Cc me on replies.

Bug #470890 reported that the CGI::Application::Plugin::ActionDispatchperl module in libcgi-application-plugins-perl 0.10 from lenny includedData::Dumper output which could potentially leak database DSNs or otherprivate information. Thus the bug submitter and I decided it would beappropriate to change the severity to grave. The problem does not existin sid or squeeze which have newer versions or in Etch which did notcontain this module.
I have prepared a fixed package which changes nothing except it removes that
Data::Dumper call.  I jumped the gun a little bit and uploaded
libcgi-application-plugins-perl_0.10+lenny1_i386.changes though I don't
seem to see it in incoming anymore. One thing about this package is itcontains tarballs within the source tarball so you can't just diff itagainst the package in lenny. Sorry about that. But if you unpack ityou will see it it is the only thing I changed.


--
Jaldhar H. Vyas <jaldhar@debian.org>

Reply to:

Follow-Ups:
- Re: libcgi-application-plugins-perl for lenny r1? (fwd)
  - From: Luk Claes <luk@debian.org>

Prev by Date: Re: Replacing defoma [was: Removing orphaned packages from testing]
Next by Date: Please give back gthumb
Previous by thread: Re: Replacing defoma [was: Removing orphaned packages from testing]
Next by thread: Re: libcgi-application-plugins-perl for lenny r1? (fwd)
Index(es):
- Date
- Thread