Attached is patch for 3.5.4 (edgy and dapper)
** Attachment added: "Patch for version 3.5.4 of unrar-nonfree"
http://librarian.launchpad.net/6392435/fix_cve_3.5.4
** Also affects: rar (Ubuntu)
Importance: Undecided
Status: Unconfirmed
** Bug watch added: Debian Bug tracker #410580
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410580
** Also affects: unrar-nonfree (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410580
Importance: Unknown
Status: Unknown
** Bug watch added: Debian Bug tracker #410582
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410582
** Also affects: rar (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410582
Importance: Unknown
Status: Unknown
** Changed in: unrar-nonfree (Ubuntu Feisty)
Status: Unconfirmed => Fix Committed
** Description changed:
- Binary package hint: unrar-nonfree
+ Packager unrar-nonfree is affected with CVE-2007-0855
- Dapper and edgy packages of unrar-nonfree need a security update
+ Package uploaded to feisty, changes need to be made also in dapper,
+ edgy, and edgy-backports
--
Needs Security update
https://launchpad.net/bugs/84657
--
ubuntu-backports mailing list
ubuntu-backports@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-backports
