-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 14 Jun 2011 14:26:57 +0200
Source: rails
Binary: rails
Architecture: source all
Version: 2.1.0-7+lenny0.2
Distribution: oldstable-security
Urgency: low
Maintainer: Adam Majer <adamm@zombino.com>
Changed-By: Ondřej Surý <ondrej@debian.org>
Description: 
 rails      - MVC ruby based framework geared for web application development
Closes: 545063 558685
Changes: 
 rails (2.1.0-7+lenny0.2) oldstable-security; urgency=low
 .
   [ Ondřej Surý ]
   * Non-maintainer upload.
 .
   [ Adam Majer ]
   * Fix timing attack vulnerability in the Cookie Store [CVE-2009-3086]
     (closes: #545063)
   * Fix Cross-site scripting (XSS) vulnerability in the strip_tags
     function [CVE-2009-4214] (closes: #558685)
   * Backport an important change to prevent unclosed CDATA section to blow
     up HTML::Node.parse.
 .
   [ Micah Anderson ]
   * Add NEWS entry about CVE-2011-0447
Checksums-Sha1: 
 db88c685dd6d48b3bb0a44b577194c09e8c70e9b 1240 rails_2.1.0-7+lenny0.2.dsc
 d355482e4a47510db485b3d9ee95cb89d5950c11 22607 rails_2.1.0-7+lenny0.2.diff.gz
 597d2dec3cacfc3e23a14d3efcee0bc1f50f356b 2422678 rails_2.1.0-7+lenny0.2_all.deb
Checksums-Sha256: 
 0028cbbe8a7fb7ed4386bbd5b4aec346c6897fbb7689e31e52cbafa7304e9eee 1240 rails_2.1.0-7+lenny0.2.dsc
 c927bf75934a045dd30b3df39b44523ab7444a3a5d15635b2550e0c7a8203031 22607 rails_2.1.0-7+lenny0.2.diff.gz
 c4f186593ffda9335c1f57054eb28d23dd171eab670fbeab858578cd92ca6e78 2422678 rails_2.1.0-7+lenny0.2_all.deb
Files: 
 531b81a3440c10c7547811f1bab10d07 1240 web optional rails_2.1.0-7+lenny0.2.dsc
 827cebe474b01955d5cd7bb137c06c52 22607 web optional rails_2.1.0-7+lenny0.2.diff.gz
 ef12f6b78dca124c3cd4a903ca126743 2422678 web optional rails_2.1.0-7+lenny0.2_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAk33idUACgkQ9OZqfMIN8nMHKACdFR3HM81q+qT1kBsrdGfJUvdo
TSYAn2dmEr1WrJNpitw0K6Rj3JaIbiMa
=DxSf
-----END PGP SIGNATURE-----