0001-escape-user-provided-resource-name-when-outputting_CVE-2017-16908.patch
0002-prevent-xss-in-events-URL-field_CVE-2017-16906.patch
