CVE-2009-4007 (DoS of OpenTTD < 0.7.5)
Bug #503725 reported by
Remko Bijker
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openttd (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
Hardy |
Won't Fix
|
Low
|
Unassigned | ||
Jaunty |
Won't Fix
|
Low
|
Unassigned | ||
Karmic |
Won't Fix
|
Low
|
Unassigned | ||
Lucid |
Fix Released
|
Low
|
Unassigned | ||
Maverick |
Fix Released
|
Low
|
Unassigned |
Bug Description
Binary package hint: openttd
The OpenTTD versions distributed by Ubuntu are vulnerable to CVE-2009-4007.
There are two ways to fix this:
- update to 0.7.5 (or higher)
- apply the patch of 0.6.2-1+lenny1 (from Debian)
CVE References
visibility: | private → public |
tags: | added: patch-accepted-debian patch-accepted-upstream |
Changed in openttd (Ubuntu Maverick): | |
status: | Confirmed → Fix Released |
Changed in openttd (Ubuntu Lucid): | |
importance: | Undecided → Low |
Changed in openttd (Ubuntu Hardy): | |
importance: | Undecided → Low |
Changed in openttd (Ubuntu Jaunty): | |
importance: | Undecided → Low |
Changed in openttd (Ubuntu Karmic): | |
importance: | Undecided → Low |
Changed in openttd (Ubuntu Lucid): | |
status: | New → Fix Released |
Changed in openttd (Ubuntu Hardy): | |
status: | New → Incomplete |
assignee: | nobody → Remko Bijker (rubidium) |
Changed in openttd (Ubuntu Jaunty): | |
status: | New → Incomplete |
assignee: | nobody → Remko Bijker (rubidium) |
Changed in openttd (Ubuntu Karmic): | |
status: | New → Incomplete |
assignee: | nobody → Remko Bijker (rubidium) |
To post a comment you must log in.
Thanks for taking the time to report this bug and helping to make Ubuntu better. Since the package referred to in this bug is in universe or multiverse, it is community maintained. If you are able, I suggest posting a debdiff for this issue. When a debdiff is available, members of the security team will review it and publish the package. See the following link for more information: https:/ /wiki.ubuntu. com/SecurityTea m/UpdateProcedu res