Gentoo Overlay for Bazaar

dev-python/nautilus-python Untrusted search path vulnerability (CVE-2009-0317)

Bug #333915 reported by Christian Faulhammer on 2009-02-24

254

	Status	Importance	Assigned to
Gentoo Overlay for Bazaar	Fix Released	Critical	Mark Lee
nautilus-python	Fix Released	Medium	gnome-bugs #569272
Gentoo Linux	Fix Released	Low	gentoo-bugs #257011

I gathered some information in http://bugs.gentoo.org/show_bug.cgi?id=257011, please mask dev-python/nautilus-python for now and then try to find a fix.

Revision history for this message

Mark Lee (malept) wrote on 2009-02-24:

Fixed in r214.

Changed in bzr-gentoo-overlay:
assignee:	nobody → malept
importance:	Undecided → Critical
status:	New → Fix Released
status:	Fix Released → Fix Committed

Revision history for this message

Mark Lee (malept) wrote on 2009-02-25:

Added a patch in r216 that I have forwarded upstream.

Bug Watch Updater (bug-watch-updater) on 2009-03-10

Changed in nautilus-python:
status:	Unknown → New

Christian Faulhammer (fauli) on 2009-08-20

Changed in bzr-gentoo-overlay:
status:	Fix Committed → Fix Released

Revision history for this message

Mark Lee (malept) wrote on 2010-02-23:

FWIW, this has been fixed upstream in nautilus-python-0.6.0.

visibility:

private → public

Bug Watch Updater (bug-watch-updater) on 2010-09-15

Bug Watch Updater (bug-watch-updater) on 2011-02-04

Changed in gentoo:
importance:	Unknown → Low

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Bug watches keep track of this bug in other bug trackers.