[ubuntu/focal-security] mumble 1.3.0+dfsg-1ubuntu0.1 (Accepted)
Spyros Seimenis
spyros.seimenis at canonical.com
Wed Dec 15 13:51:00 UTC 2021
mumble (1.3.0+dfsg-1ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Remote code execution by navigating to crafted URLs on a
server list
- debian/patches/CVE-2021-27229.patch: Only allow "http"/"https" for URLs
in ConnectDialog
- CVE-2021-27229
Date: 2021-12-15 12:25:14.727018+00:00
Changed-By: Spyros Seimenis <spyros.seimenis at canonical.com>
https://launchpad.net/ubuntu/+source/mumble/1.3.0+dfsg-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list