Attached is patch for 3.5.4 (edgy and dapper) ** Attachment added: "Patch for version 3.5.4 of unrar-nonfree" http://librarian.launchpad.net/6392435/fix_cve_3.5.4
** Also affects: rar (Ubuntu) Importance: Undecided Status: Unconfirmed ** Bug watch added: Debian Bug tracker #410580 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410580 ** Also affects: unrar-nonfree (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410580 Importance: Unknown Status: Unknown ** Bug watch added: Debian Bug tracker #410582 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410582 ** Also affects: rar (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=410582 Importance: Unknown Status: Unknown ** Changed in: unrar-nonfree (Ubuntu Feisty) Status: Unconfirmed => Fix Committed ** Description changed: - Binary package hint: unrar-nonfree + Packager unrar-nonfree is affected with CVE-2007-0855 - Dapper and edgy packages of unrar-nonfree need a security update + Package uploaded to feisty, changes need to be made also in dapper, + edgy, and edgy-backports -- Needs Security update https://launchpad.net/bugs/84657 -- ubuntu-backports mailing list ubuntu-backports@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-backports