Comment 10 for bug 336396

Jamie Strandboge (jdstrand) wrote :

wesnoth (1:1.4-1ubuntu0.1) hardy-security; urgency=low

  * Upload to fix several severe problems:
    - Compile with --disable-python because the python AI support allowed to
      break out of sandbox and allowed execution of abitrary code
      (CVE-2009-0367, Upstream Bug #13048). Don't install data/ais into
      wesnoth-data package anymore, and remove python-dev from
      Build-Dependencies.
    - Pull wesnoth-did-ai-fix patch from upstream svn r33013 to make it still
      work after above changes.
    - Pull limit-mapsize patch from upstream svn r32987 to avoid hanging of
      wesnoth/exhausting system memory (Upstream Bug #13031)

 -- Gerfried Fuchs < <email address hidden>> Sun, 01 Mar 2009 21:05:56 +0100