This bug was fixed in the package kodi - 16.1+dfsg1-2ubuntu0.1 --------------- kodi (16.1+dfsg1-2ubuntu0.1) yakkety-security; urgency=high
* Fix zip file directory traversal vulnerability (CVE-2017-8314) (Closes: #863230, LP: #1694249) * Add test for CVE-2017-8314 to autotools-based build -- Balint Reczey <rbal...@ubuntu.com> Mon, 29 May 2017 16:39:03 +0200 ** Changed in: kodi (Ubuntu) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1694249 Title: CVE-2017-8314: malicious subtitle zip files vulnerability To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/kodi/+bug/1694249/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs