Ubuntu
mldonkey package

[backport] mldonkey 3.0

Bug #412733 reported by doclist on 2009-08-12

This bug report is a duplicate of: Bug #340166: MLdonkey <= 2.9.7 HTTP DOUBLE SLASH Arbitrary File Disclosure Vuln. Edit Remove

260

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	mldonkey (Ubuntu)	Confirmed	Medium	Unassigned

Bug Description

Changelog for 3.0.0 has this:
6754: Fix local file access bug in internal http server
- this is an urgent security related bug-fix and effects
all MLDonkey versions >= 2.8.4

After going through the git log I can't find any corresponding patch applied to the Ubuntu source so requesting a backport of 3.0 (or patch incorporated).

Marc Deslauriers (mdeslaur) on 2009-08-16

visibility:	private → public
Changed in mldonkey (Ubuntu):
status:	New → Confirmed
importance:	Undecided → Medium

Report a bug

This report contains Public Security information

Everyone can see this security related information.

Duplicate of bug #340166 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntumldonkey package

[backport] mldonkey 3.0

Bug Description

Other bug subscribers

Remote bug watches

Ubuntu
mldonkey package