Here is the Gutsy debdiff from the duplicate.
** Attachment added: "wesnoth_1.2.6-1ubuntu2.5.interdiff.gz"
http://launchpadlibrarian.net/24334962/wesnoth_1.2.6-1ubuntu2.5.interdiff.gz
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification because y
This bug was fixed in the package wesnoth - 1:1.4.5-1ubuntu0.2
---
wesnoth (1:1.4.5-1ubuntu0.2) intrepid-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via python AI (LP: #336396)
- debian/control: remove python-dev from Build-Dependencies
- debian/rules:
Thanks Rhonda! I'll get this out today then.
** Changed in: wesnoth (Ubuntu Intrepid)
Status: In Progress => Fix Committed
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ub
Heh, I forgot to check -proposed. Here is an updated debdiff.
** Attachment added: "wesnoth_1.4.5-1ubuntu0.2.debdiff"
http://launchpadlibrarian.net/24153391/wesnoth_1.4.5-1ubuntu0.2.debdiff
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification bec
* Jamie Strandboge [2009-03-20 15:05:44 CET]:
> I backported the fixes from Jaunty and created the following debdiff and
> am building it. It would be great if someone could take a look at it and
> make sure it is ok.
>
> ** Attachment added: "wesnoth_1.4.5-1ubuntu0.1.debdiff"
>http://launchp
I backported the fixes from Jaunty and created the following debdiff and
am building it. It would be great if someone could take a look at it and
make sure it is ok.
** Attachment added: "wesnoth_1.4.5-1ubuntu0.1.debdiff"
http://launchpadlibrarian.net/24149791/wesnoth_1.4.5-1ubuntu0.1.debdiff
** Changed in: wesnoth (Ubuntu Intrepid)
Assignee: (unassigned) => Jamie Strandboge (jdstrand)
Status: Confirmed => In Progress
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscri
wesnoth (1:1.4-1ubuntu0.1) hardy-security; urgency=low
* Upload to fix several severe problems:
- Compile with --disable-python because the python AI support allowed to
break out of sandbox and allowed execution of abitrary code
(CVE-2009-0367, Upstream Bug #13048). Don't install
wesnoth (1.2.6-1ubuntu2.5) gutsy-security; urgency=low
* Upload to fix a severe problem:
- Compile with --disable-python because the python AI support allowed to
break out of sandbox and allowed execution of abitrary code
(CVE-2009-0367, Upstream Bug #13048). Remove python-dev fr
Also, if you decide to provide a debdiff for Intrepid, please mark the
Intrepid task in this bug as 'In Progress'. Thanks.
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
-
Rhonda, no one is criticizing your work. To the contrary, you have done
great work with this. The aforementioned testing is needed to be done on
Ubuntu because Ubuntu != Debian. Granted, it will most likely work ok
but there have been quite a few times when a tested Debian patch didn't
work properl
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-0878
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ub
* Jamie Strandboge [2009-03-19 15:28:42 CET]:
> > I did like I was adviced, and I'm sorry that it doesn't please you
> enough
>
> This isn't so much about 'pleasing us enough' as about ensuring the
> patch is correct and well tested.
I can't completely follow. Is six different patched versions
Based on your feedback I am going to push the updates for Gutsy and
Hardy today. If you are able, perhaps you could prepare a debdiff to fix
both CVE-2009-0366 and CVE-2009-0367 on Intrepid. Thanks for your hard
work on this!
** Changed in: wesnoth (Ubuntu Intrepid)
Status: In Progress => C
> I did like I was adviced, and I'm sorry that it doesn't please you
enough
This isn't so much about 'pleasing us enough' as about ensuring the
patch is correct and well tested. This package is in universe and is
community supported and as such, needs caring people like yourself to
tend to it. I'm
** Changed in: wesnoth (Ubuntu Intrepid)
Status: Incomplete => In Progress
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@l
** Summary changed:
- proposed diff for hardy-security
+ Wesnoth security fixes
--
Wesnoth security fixes
https://bugs.launchpad.net/bugs/336396
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@li
17 matches
Mail list logo
