Ubuntu
eterm package

Please Merge eterm 0.9.4.0debian1-2.1 (universe) from Debian unstable (main).

Bug #228871 reported by Emanuele Gentili on 2008-05-10

4

Affects		Status	Importance	Assigned to	Milestone
	eterm (Ubuntu)	Fix Released	Wishlist	Andrea Colangelo

Bug Description

Binary package hint: eterm

Please sync eterm 0.9.4.0debian1-2.1 (universe) from Debian unstable (main).

Explanation of the Ubuntu delta and why it can be dropped:

Debian sync to Ubuntu (debian adopted ubuntu/upstream security patch)

Changelog since current intrepid version 0.9.4.0debian1-2ubuntu3:

eterm (0.9.4.0debian1-2.1) unstable; urgency=high

  * Non-maintainer upload by the Security Team.
  * Fix opening the terminal on display :0 if no DISPLAY environment
    variable is specified to prevent local attackers from highjacking
    X11 connections in certain environments (CVE-2008-1692; Closes: #473127)

-- Nico Golde <email address hidden> Tue, 15 Apr 2008 19:15:59 +0200

Related branches

lp:ubuntu/karmic/eterm

CVE References

2008-1692

Emanuele Gentili (emgent) on 2008-05-10

Changed in eterm:
importance:	Undecided → Wishlist

Revision history for this message

Andrea Colangelo (warp10) wrote on 2008-05-10:

#1

Why can we drop the changes to src/windows.c?

Changed in eterm:
status:	New → Incomplete

Revision history for this message

Emanuele Gentili (emgent) wrote on 2008-05-10:

#2

True Andrea, attaching debdiff for merge.

Changed in eterm:
status:	Incomplete → New

Revision history for this message

Emanuele Gentili (emgent) wrote on 2008-05-10:

#3

intrepid_eterm_0.9.4.0debian1-2.1ubuntu1.debdiff Edit (3.8 KiB, text/plain)

Revision history for this message

Andrea Colangelo (warp10) wrote on 2008-05-10:

#4

Uploaded. Thanks! ;-)

Changed in eterm:
assignee:	nobody → warp10
status:	New → In Progress
status:	In Progress → Fix Committed

Revision history for this message

Launchpad Janitor (janitor) wrote on 2008-05-10:

#5

This bug was fixed in the package eterm - 0.9.4.0debian1-2.1ubuntu1

---------------
eterm (0.9.4.0debian1-2.1ubuntu1) intrepid; urgency=low

  * Merge from debian unstable, remaining changes: (LP: #228871)
   + Don't set override_redirect for KDE. It causes borderless
     Eterms to refuse focus.
   + Modify Maintainer value to match the DebianMaintainerField
     specification.
   + Add Homepage field.
   + Bump standards version to 3.7.3.

eterm (0.9.4.0debian1-2.1) unstable; urgency=high

  * Non-maintainer upload by the Security Team.
  * Fix opening the terminal on display :0 if no DISPLAY environment
    variable is specified to prevent local attackers from highjacking
    X11 connections in certain environments (CVE-2008-1692; Closes: #473127)

-- Emanuele Gentili <email address hidden> Sat, 10 May 2008 13:41:03 +0200

Changed in eterm:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Patches

intrepid_eterm_0.9.4.0debian1-2.1ubuntu1.debdiff Edit

Add patch

Remote bug watches

Bug watches keep track of this bug in other bug trackers.