Ubuntu
unrar-nonfree package

[Sync request] Sync unrar-nonfree (1:3.7.3-1.1) from Debian unstable (non-free)

Bug #137788 reported by Michael Bienia
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
unrar-nonfree (Ubuntu)
Fix Released
Wishlist
Unassigned
Nominated for Feisty by Daniel Hahler

Bug Description

Binary package hint: unrar-nonfree

Please sync unrar-nonfree (1:3.7.3-1.1) from Debian unstable (non-free).

The current package has no Ubuntu changes.
The package builds cleanly in a gutsy pbuilder.

Thanks.

Changelog:

unrar-nonfree (1:3.7.3-1.1) unstable; urgency=high

  * Non-maintainer upload by testing security team.
  * Fixed integer signedness error in SET_VALUE function in
    rarvm.cpp (CVE-2007-3726) (Closes: #437703).

 -- Nico Golde <email address hidden> Thu, 06 Sep 2007 13:30:31 +0200

CVE References

Michael Bienia (geser)
Changed in unrar-nonfree:
importance: Undecided → Wishlist
status: New → Confirmed
Revision history for this message
Sebastien Bacher (seb128) wrote :

[Updating] unrar-nonfree (1:3.7.3-1 [Ubuntu] < 1:3.7.3-1.1 [Debian])
 * Trying to add unrar-nonfree...
  - <unrar-nonfree_3.7.3-1.1.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <unrar-nonfree_3.7.3.orig.tar.gz: already in distro - downloading from librarian>
  - <unrar-nonfree_3.7.3-1.1.dsc: downloading from http://ftp.debian.org/debian/>
I: unrar-nonfree [multiverse] -> unrar_1:3.7.3-1 [multiverse].

Changed in unrar-nonfree:
status: Confirmed → Fix Released
Revision history for this message
Daniel Hahler (blueyed) wrote :

The affected version "1:3.7.3-1" is also in Feisty, which should get the same fix then probably!

Are version 1:3.6.8 (edgy) and 1:3.5.4-0.1 (Dapper) affected, too?

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.