(from 91172, now dup'd)
http://websvn.kde.org/?view=rev&revision=640661
>From a quick review, the changes to "torrent.cpp" are to stop arbitrary
path overwrites, and the other changes are to protect against heap
corruption. I haven't studied the code paths too much, but it feels like
a very dedicated attacker could manage to get arbitrary code execution.
** Changed in: ktorrent (Ubuntu)
Importance: Undecided => Medium
Status: Rejected => Confirmed
** Changed in: ktorrent (Ubuntu Edgy)
Importance: Undecided => Medium
Status: Unconfirmed => Confirmed
** Changed in: ktorrent (Ubuntu Dapper)
Importance: Undecided => Medium
Status: Unconfirmed => Confirmed
** Changed in: ktorrent (Ubuntu Breezy)
Importance: Undecided => Medium
Status: Unconfirmed => Confirmed
** This bug has been flagged as a security issue
--
KTorrent security issue with releases <2.1.2 (Breezy - Feisty)
https://launchpad.net/bugs/91174
--
kubuntu-bugs mailing list
kubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs
