lp:ubuntu/gutsy-updates/ktorrent

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

38. By Marc Deslauriers on 2009-01-20

* SECURITY UPDATE: access restrictions bypass in torrent upload feature
  of web interface plugin
  - debian/patches/11_SECURITY_CVE-2008-5905.patch: redirect to login page if
    session is not valid in plugins/webinterface/httpserver.cpp.
  - CVE-2008-5905
* SECURITY UPDATE: arbitrary php code execution in web interface plugin
  - debian/patches/12_SECURITY_CVE-2008-5906.patch: check for string
    delimiters with a new containsDelimiters() function in
    plugins/webinterface/php_handler.{cpp,h}.
  - CVE-2008-5906

37. By John Dong on 2007-08-11

* Fix debdiff spacing that I screwed up.
 - Fixes LP: #130300

36. By John Dong on 2007-08-10

* Backport SVN rev 692284
  - Fixes LP: #130300

35. By Ryan Kavanagh on 2007-07-25

* New upstream release
  - Fixes LP: #128341

34. By Anthony Mercatante on 2007-07-18

Fixed homepage in debian/control. Fixes LP: #113972

33. By Anthony Mercatante on 2007-07-04

New upstream release

32. By John Dong on 2007-06-13

New upstream release

31. By John Dong on 2007-05-26

New upstream release

30. By John Dong on 2007-04-24

New upstream release

29. By Rich Johnson on 2007-03-11

* SECURITY UPDATE: allows .. in file name which could cause
  the user to overwrite files (if ran as root, system files).
  DoS or heap corruption possible if idx is to small (negative)
  or to large.
* Add 'debian/patches/kubuntu_01_security_fix.diff': backported
  upstream fix
* References
  http://websvn.kde.org/?view=rev&revision=640661
  CVE-2007-1384 CVE-2007-1385