Ubuntu
gnump3d package

Directory Traversal Attack

Bug #1765 reported by Daniel on 2005-08-13

Affects		Status	Importance	Assigned to	Milestone
	gnump3d (Ubuntu)	Fix Released	High	Martin Pitt

Bug Description

The Directory Traversal Attack (described at http://www.gnu.org/software/gnump3d/attacks.html) is present in Hoary Hedgehog's current version of GNUMP3d (gnump3d_2.8-5). The newest version 2.9.3 appears to have resolved the issue. Can the fix be backported to Hoary Hedgehog?

Daniel Robitaille (robitaille) on 2005-08-15

Changed in gnump3d:
assignee:	nobody → name100

Benjamin Montgomery (bmonty) on 2005-10-05

Changed in gnump3d:
status:	New → Fixed

Revision history for this message

Martin Pitt (pitti) wrote on 2005-10-13:

If somebody sends a tested debdiff to security-review or me, I'll upload it.

https://wiki.ubuntu.com/SecurityUpdateProcedures

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntugnump3d package

Directory Traversal Attack

Bug Description

Other bug subscribers

Remote bug watches

Ubuntu
gnump3d package