Accepted ktorrent 2.1-0ubuntu2 (source)
Richard A. Johnson
nixternal at ubuntu.com
Mon Mar 12 22:45:21 GMT 2007
Accepted:
OK: ktorrent_2.1-0ubuntu2.dsc
-> Component: main Section: net
OK: ktorrent_2.1-0ubuntu2.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sun, 11 Mar 2007 10:37:17 -0500
Source: ktorrent
Binary: ktorrent
Architecture: source
Version: 2.1-0ubuntu2
Distribution: feisty
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Richard A. Johnson <nixternal at ubuntu.com>
Description:
ktorrent - BitTorrent client for KDE
Changes:
ktorrent (2.1-0ubuntu2) feisty; urgency=low
.
* SECURITY UPDATE: allows .. in file name which could cause
the user to overwrite files (if ran as root, system files).
DoS or heap corruption possible if idx is to small (negative)
or to large.
* Add 'debian/patches/kubuntu_01_security_fix.diff': backported
upstream fix
* References
http://websvn.kde.org/?view=rev&revision=640661
CVE-2007-1384 CVE-2007-1385
Files:
fd559ba9a39479d40d839260a01adc7e 745 kde optional ktorrent_2.1-0ubuntu2.dsc
3203e448c6476a74ce02a41f57d2b90c 7156 kde optional ktorrent_2.1-0ubuntu2.diff.gz
Original-Maintainer: Anthony Mercatante <tonio at ubuntu.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFF9dcUH/9LqRcGPm0RAvPjAJ4qYWHqCF8PQRJZeFRVw9WKAGN3eQCdEOPx
K24WwFYCWyCQWGUGs+TJAyA=
=9Pih
-----END PGP SIGNATURE-----
More information about the feisty-changes
mailing list