[Bug 657024] Re: please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability
I don't know whether this security issue affects older releases than lucid, but it certainly affects lucid. ** Also affects: ziproxy (Ubuntu Lucid) Importance: Undecided Status: New ** Also affects: ziproxy (Ubuntu Maverick) Importance: Undecided Status: New ** Changed in: ziproxy (Ubuntu) Assignee: David Sugar (dyfet) = Loïc Minier (lool) -- Please sync ziproxy 3.1.3-1 (universe) from Debian unstable https://bugs.launchpad.net/bugs/657024 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 657024] Re: please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability
I reviewed the Ubuntu diff; Debian patched out the Nameservers support, so our fix for the build affecting this code isn't needed anymore. I wrote to upstream author Daniel Mealha Cabrita to tell him about the Ubuntu fix though. Ack for the sync to natty. ** Summary changed: - please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability + Please sync ziproxy 3.1.3-1 (universe) from Debian unstable ** Changed in: ziproxy (Ubuntu) Status: New = Fix Committed ** Changed in: ziproxy (Ubuntu Lucid) Status: New = Confirmed ** Changed in: ziproxy (Ubuntu Maverick) Status: New = Confirmed -- Please sync ziproxy 3.1.3-1 (universe) from Debian unstable https://bugs.launchpad.net/bugs/657024 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 657024] Re: please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability
** Summary changed: - please sync/merge 3.1.3-1 from debian (unstable) to Maverick (universe) - security vulnerability + please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability -- please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability https://bugs.launchpad.net/bugs/657024 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 657024] Re: please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability
** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-1513 -- please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability https://bugs.launchpad.net/bugs/657024 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 657024] Re: please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability
The change required for addressing this security issue might be isolated to a change between 3.0.0 and 3.0.1. I am going to see if that change can be backported to our 2.7.2 and if it does fully address the security issue. My initial impression from reading the upstream changelog is that perhaps other changes in other upstream releases were also relevant. ** Changed in: ziproxy (Ubuntu) Assignee: (unassigned) = David Sugar (dyfet) -- please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability https://bugs.launchpad.net/bugs/657024 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 657024] Re: please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability
** Changed in: ziproxy (Debian) Status: Unknown = Fix Released -- please sync 3.1.3-1 from debian (unstable) to replace 2.7.2-1ubuntu2 in Maverick (universe) - security vulnerability https://bugs.launchpad.net/bugs/657024 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs