Ubuntu
znc package

Sync znc 0.074-1 (universe) from Debian unstable (main).

Bug #411913 reported by Krzysztof Klimonda
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
znc (Ubuntu)
Fix Released
Wishlist
Unassigned

Bug Description

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

 affects ubuntu/znc
 status new
 importance wishlist
 subscribe ubuntu-universe-sponsors
 done

Please sync znc 0.074-1 (universe) from Debian unstable (main).

Changelog since current karmic version 0.070-1:

znc (0.074-1) unstable; urgency=high

  * New upstream release.
    - Bump urgency to high. This release fixes an high-impact directory
      traversal buf, where unpriviliged users can save about DCC SEND files on
      the server with the rights of the znc process. The attacker could also
      use the exploit to get a shell on the server.
      Closes: #537977
    - Use c-ares for DNS resolving, add libc-ares-dev and pkg-config as
      build-dependency.
  * Merge 0.058-2+lenny2, 0.058-2+lenny3, 0.070-1~bpo40+1 and 0.070-1~bpo50+1
    changelog.
  * Bump Standards-Version to 3.8.2 (no changes needed).

 -- Patrick Matthäi <email address hidden> Fri, 24 Jul 2009 13:46:00 +0200

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
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=y4jP
-----END PGP SIGNATURE-----

Revision history for this message
Nick Ellery (nick.ellery) wrote :

ack

Changed in znc (Ubuntu):
status: New → Confirmed
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

[Updating] znc (0.070-1 [Ubuntu] < 0.074-1 [Debian])
 * Trying to add znc...
  - <znc_0.074-1.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <znc_0.074.orig.tar.gz: downloading from http://ftp.debian.org/debian/>
  - <znc_0.074-1.dsc: downloading from http://ftp.debian.org/debian/>
I: znc [universe] -> znc_0.070-1 [universe].
I: znc [universe] -> znc-dbg_0.070-1 [universe].
I: znc [universe] -> znc-dev_0.070-1 [universe].
I: znc [universe] -> znc-perl_0.070-1 [universe].
I: znc [universe] -> znc-webadmin_0.070-1 [universe].

Changed in znc (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.