** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-3617
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/848476
Title:
security flaw in Tahoe-LAFS could lead to unauthorized
@Julian: are you planning on updating your branches to add the
known_issues.rst changes? If you do, I'll release these as security
updates.
I'm subscribing ubuntu-security-sponsors so this bug gets tracked.
** Also affects: tahoe-lafs (Ubuntu Lucid)
Importance: Undecided
Status: New
I don't really see the point in documenting a known issue which does not
exist anymore, it will just confuse people in thinking the packaged version is
vurnable as it will be = 1.8.2
But feel free to add it when you are sponsoring.
as the upgrade was screwed up in debian I'll also prepare a
Updated package are currently building and will be released shortly.
Thanks!
** Changed in: tahoe-lafs (Ubuntu Lucid)
Status: Confirmed = Fix Committed
** Changed in: tahoe-lafs (Ubuntu Maverick)
Status: Confirmed = Fix Committed
** Changed in: tahoe-lafs (Ubuntu Natty)
That's a good point, Julian. I think it is important to let people know
that they *have* been vulnerable to something, in case they need to take
the opportunity to double-check whether they *were* actually exploited,
or in case it lets them know that they need to upgrade or take defensive
action
** Changed in: tahoe-lafs (Ubuntu Oneiric)
Assignee: Julian Taylor (jtaylor) = (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/848476
Title:
security flaw in Tahoe-LAFS could lead
** Branch linked: lp:~jtaylor/ubuntu/oneiric/tahoe-lafs/fix-848476
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/848476
Title:
security flaw in Tahoe-LAFS could lead to unauthorized deletion of
** Changed in: tahoe-lafs (Debian)
Status: New = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/848476
Title:
security flaw in Tahoe-LAFS could lead to unauthorized deletion of
** Changed in: tahoe-lafs (Ubuntu Oneiric)
Status: Triaged = Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/848476
Title:
security flaw in Tahoe-LAFS could lead to unauthorized
This bug was fixed in the package tahoe-lafs - 1.8.3-0ubuntu1
---
tahoe-lafs (1.8.3-0ubuntu1) oneiric; urgency=low
* New upstream release.
Fixes unauthorized deletion vulnerability (LP: #848476)
* refresh patches
-- Julian Taylor jtaylor.deb...@googlemail.com Thu, 15 Sep
This bug was fixed in the package tahoe-lafs - 1.8.2-0ubuntu1.1
---
tahoe-lafs (1.8.2-0ubuntu1.1) natty-security; urgency=high
* SECURITY UPDATE: fix unauthorized deletion (LP: #848476)
a person who knows the storage index that identifies an immutable
file can cause the
This bug was fixed in the package tahoe-lafs - 1.7.1-0ubuntu1.1
---
tahoe-lafs (1.7.1-0ubuntu1.1) maverick-security; urgency=high
* SECURITY UPDATE: fix unauthorized deletion (LP: #848476)
a person who knows the storage index that identifies an immutable
file can cause the
This bug was fixed in the package tahoe-lafs - 1.6.1-0ubuntu2.1
---
tahoe-lafs (1.6.1-0ubuntu2.1) lucid-security; urgency=high
* SECURITY UPDATE: fix unauthorized deletion (LP: #848476)
a person who knows the storage index that identifies an immutable
file can cause the
Thank you very much for your work on this, Julian Taylor, Bert Agaz,
Marc Deslauriers, and Micah Anderson!
If someone wants to update this wiki page to link to the current version
of Tahoe-LAFS in Ubuntu, that would be good:
http://tahoe-lafs.org/trac/tahoe-lafs/wiki/OSPackages
Also to add or
Here is the announcement: http://tahoe-lafs.org/pipermail/tahoe-
dev/2011-September/006675.html
** Visibility changed to: Public
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/848476
Title:
** Changed in: tahoe-lafs
Status: New = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/848476
Title:
security flaw in Tahoe-LAFS could lead to unauthorized deletion of
files
The attachment darcs patch bundle to be applied to the darcs version
1.8.2 of this bug report has been identified as being a patch. The
ubuntu-reviewers team has been subscribed to the bug report so that they
can review the patch. In the event that this is in fact not a patch you
can resolve
17 matches
Mail list logo