[backport] mldonkey 3.0
Bug #412733 reported by
doclist
This bug report is a duplicate of:
Bug #340166: MLdonkey <= 2.9.7 HTTP DOUBLE SLASH Arbitrary File Disclosure Vuln.
Edit
Remove
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
mldonkey (Ubuntu) |
Confirmed
|
Medium
|
Unassigned |
Bug Description
Changelog for 3.0.0 has this:
6754: Fix local file access bug in internal http server
- this is an urgent security related bug-fix and effects
all MLDonkey versions >= 2.8.4
After going through the git log I can't find any corresponding patch applied to the Ubuntu source so requesting a backport of 3.0 (or patch incorporated).
visibility: | private → public |
Changed in mldonkey (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → Medium |
To post a comment you must log in.