[ubuntu/jaunty-security] kdenetwork_4.2.2-0ubuntu2.3_armel_translations.tar.gz, kdenetwork_4.2.2-0ubuntu2.3_lpia_translations.tar.gz, kdenetwork_4.2.2-0ubuntu2.3_amd64_translations.tar.gz, kdenetwork_4.2.2-0ubuntu2.3_ia64_translations.tar.gz, kdenetwork_4.2.2-0ubuntu2.3_sparc_translations.tar.gz (delayed), kdenetwork_4.2.2-0ubuntu2.3_i386_translations.tar.gz, kdenetwork_4.2.2-0ubuntu2.3_powerpc_translations.tar.gz, kdenetwork 4:4.2.2-0ubuntu2.3 (Accepted)

Ubuntu Installer archive at ubuntu.com
Thu May 13 13:04:37 BST 2010 

kdenetwork (4:4.2.2-0ubuntu2.3) jaunty-security; urgency=low

  * SECURITY UPDATE: file name directory traversal attack (LP: #578856).
   - Add debian/patches/kubuntu_01_kget_CVE-2010-1000.diff
   - kget/ui/metalinkcreator/metalinker.cpp check filename is valid
   - CVE-2010-1000, SA39528

Date: Wed, 12 May 2010 10:25:53 +0100
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/kdenetwork/4:4.2.2-0ubuntu2.3
-------------- next part --------------
Format: 1.8
Date: Wed, 12 May 2010 10:25:53 +0100
Source: kdenetwork
Binary: kdenetwork kdenetwork-filesharing kdenetwork-dev kget kopete kppp krdc krfb kdenetwork-dbg kde-zeroconf kopete-plugin-otr-kde4
Architecture: source
Version: 4:4.2.2-0ubuntu2.3
Distribution: jaunty-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Description: 
 kde-zeroconf - zeroconf plugins and kio slaves for KDE 4
 kdenetwork - networking applications from the official KDE 4 release
 kdenetwork-dbg - debugging symbols for the KDE 4 networking module
 kdenetwork-dev - development files for the KDE 4 networking module
 kdenetwork-filesharing - network filesharing configuration module for KDE 4
 kget       - download manager for KDE 4
 kopete     - instant messenger for KDE 4
 kopete-plugin-otr-kde4 - Transitional package
 kppp       - modem dialer for KDE 4
 krdc       - Remote Desktop Connection client for KDE 4
 krfb       - Desktop Sharing for KDE 4
Launchpad-Bugs-Fixed: 578856
Changes: 
 kdenetwork (4:4.2.2-0ubuntu2.3) jaunty-security; urgency=low
 .
   * SECURITY UPDATE: file name directory traversal attack (LP: #578856).
    - Add debian/patches/kubuntu_01_kget_CVE-2010-1000.diff
    - kget/ui/metalinkcreator/metalinker.cpp check filename is valid
    - CVE-2010-1000, SA39528
Checksums-Sha1: 
 ec0ece57fa5eb24a5eb7ebef3fc35f1cd5dbb676 2167 kdenetwork_4.2.2-0ubuntu2.3.dsc
 0f6c677dae9a16e817bf4a3c88eb496787c2d462 36775 kdenetwork_4.2.2-0ubuntu2.3.diff.gz
Checksums-Sha256: 
 3367a132fb174c531067b4c8a7968687265c8f86e28d36decedc1d2cc646bcf3 2167 kdenetwork_4.2.2-0ubuntu2.3.dsc
 ba16f2e12a35361a7aac7b0ffd4a82398545ab0a8dd75ff3d2496be26e270062 36775 kdenetwork_4.2.2-0ubuntu2.3.diff.gz
Files: 
 217f5efe918c9406671b3f68714f27bd 2167 kde optional kdenetwork_4.2.2-0ubuntu2.3.dsc
 6a8af519ab911b42c02c83c28512df42 36775 kde optional kdenetwork_4.2.2-0ubuntu2.3.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

More information about the Jaunty-changes mailing list