
----------------------------------------------------------------------

Bist Du interessiert an einem neuen Job in IT-Sicherheit?


Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT-
Sicherheit:
http://secunia.com/secunia_vacancies/

----------------------------------------------------------------------

TITLE:
Debian update for tdiary

SECUNIA ADVISORY ID:
SA16787

VERIFY ADVISORY:
http://secunia.com/advisories/16787/

CRITICAL:
Less critical

IMPACT:
Hijacking

WHERE:
>From remote

OPERATING SYSTEM:
Debian GNU/Linux 3.1
http://secunia.com/product/5307/
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/

DESCRIPTION:
Debian has issued an update for tdiary. This fixes a vulnerability,
which can be exploited by malicious people to conduct cross-site
request forgery attacks.

For more information:
SA16329

SOLUTION:
Apply updated packages.

-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updates/main/t/tdiary/tdiary_2.0.1-1sarge1.dsc
Size/MD5 checksum: 698 725575945a14b3ff9ff776e4254b6e54
http://security.debian.org/pool/updates/main/t/tdiary/tdiary_2.0.1-1sarge1.diff.gz
Size/MD5 checksum: 24611 df8afbbc86e0f1a9f365a1b8271e7a12
http://security.debian.org/pool/updates/main/t/tdiary/tdiary_2.0.1.orig.tar.gz
Size/MD5 checksum: 1840990 eaec0d3c00e1605d5cefad4119718183

Architecture independent components:

http://security.debian.org/pool/updates/main/t/tdiary/tdiary-contrib_2.0.1-1sarge1_all.deb
Size/MD5 checksum: 109264 b3de14edff72c292002d68b4f6c5234c
http://security.debian.org/pool/updates/main/t/tdiary/tdiary-mode_2.0.1-1sarge1_all.deb
Size/MD5 checksum: 27768 632e5ed6bb82fce0d1f787aea0b25cf4
http://security.debian.org/pool/updates/main/t/tdiary/tdiary-plugin_2.0.1-1sarge1_all.deb
Size/MD5 checksum: 155066 6100fce2dbe0a8acc5a365766b2b8b84
http://security.debian.org/pool/updates/main/t/tdiary/tdiary-theme_2.0.1-1sarge1_all.deb
Size/MD5 checksum: 1506732 6a77d569ef301bc299ee4fe8e4f929f5
http://security.debian.org/pool/updates/main/t/tdiary/tdiary_2.0.1-1sarge1_all.deb
Size/MD5 checksum: 171434 b31846dc0632acdb13787a5ec28e8bc5

-- Debian GNU/Linux unstable alias sid --

Fixed in version 2.0.2-1.

PROVIDED AND/OR DISCOVERED BY:
http://www.debian.org/security/2005/dsa-808

OTHER REFERENCES:
SA16329:
http://secunia.com/advisories/16329/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------