Ubuntu
torrentflux package

lp:ubuntu/edgy-updates/torrentflux

Edgy (6.10)
edgy-updates

Created by James Westby on 2009-07-20 and last modified on 2009-07-20

Get this branch:: bzr branch lp:ubuntu/edgy-updates/torrentflux

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Development

Recent revisions

4. By Cameron Dale on 2007-10-21: * SECURITY UPDATE: merge many security fixes from Debian (LP: #155491)
* Remove the old 05_sanitize_html_entities.dpatch as it's fix is
  included with many more in 06_sanitize_html_entities.dpatch
* Include many security fixes from Debian's 2.1-7
  (the following entries are taken from the Debian changelog)
* Fix minor XSS vulnerability in admin.php, issue CVE-2006-5227
  (06_sanitize_html_entities.dpatch)
* Updated 06_sanitize_html_entities.dpatch to fix the security
  issue CVE-2006-5451
* Fixed the directroy traversal vulnerability, issue CVE-2006-5609
  (09_fix_directory_traversal.dpatch)
* Sanitize file inputs, fixes: CVE-2006-6328, CVE-2006-6329,
  CVE-2006-6330, CVE-2006-6598 (10_sanitize_file_input.dpatch)
* Add more security fixes
  - some missed previously (11_missed_security_fixes.dpatch)
  - remote command execution in metaInfo.php, issue
    CVE-2006-6331 (12_metaInfo_remote_command.dpatch)
  - possible XSS vulnerability due to urldecode, fixes
    CVE-2006-6600 (13_possible_xss_vulnerability.dpatch)
  - remote command execution in maketorrent.php, fixes
    CVE-2006-6599 (14_maketorrent_remote_command.dpatch)
  - more possible fixes just to be safe, fixes CVE-2006-6604
    (15_additional_possible_fixes.dpatch)
3. By Kees Cook on 2006-10-11: * SECURITY UPDATE: Vulnerable to cross-site scripting.
* Add 'debian/patches/05_sanitize_html_entities.dpatch': sanitize User-Agent
and host display in admin.php.
* References
http://www.stevenroddis.com.au/2006/10/06/torrentflux-user-agent-xss-vulnerability/
2. By Cameron Dale on 2006-04-14: * New upstream release
* Updated dbconfig-common patch for new config file
* Remove config.php from etc as it is no longer a config file
* Add debconf note about updated config location
* Switch to docbook for man pages
* Add manpages for 2 new programs
* Update control for new release features
* Add dependency on mysql-client (temporarily avoids #353617)
* Use variable substitution in debconf templates (Closes: #360694)
* Add lintian override for postinst-uses-db-input
* Upgrade debhelper compatibility to v5
* Add comments to debhelper files
* Fix watch file to work properly
* Change installed docs
* New patch 03_remove_initial_db_insert
* New patch 04_fix_python_filename_dependence
* Add documentation of the database install
1. By Cameron Dale on 2006-04-14: Import upstream version 2.1

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/karmic/torrentflux

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntutorrentflux package