-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Tue, 24 Jul 2007 16:43:47 +0300 Source: ktorrent Binary: ktorrent Architecture: source amd64 Version: 2.0.3+dfsg1-2etch1 Distribution: stable-security Urgency: high Maintainer: Joel Johnson <mrjoel@lixil.net> Changed-By: Modestas Vainius <modestas@vainius.eu> Description: ktorrent - BitTorrent client for KDE Closes: 425043 432007 Changes: ktorrent (2.0.3+dfsg1-2etch1) stable-security; urgency=high . * Non-maintainer upload. * [CVE-2007-1799] Complete fix for directory traversal vulnerability. The patch is based on upstream svn commit #651343 (Closes: #432007). * Fix frequent DHT related crashes. The crashes are caused by other bittorent clients sending specially formed DHT packets (hence remotely exploitable). See KDE bug #144416. The patch is based on upstream svn commits #655895 and #656421 (Closes: #425043). Files: ec1366a6819ce30b5891b7c4e0e51986 663 kde optional ktorrent_2.0.3+dfsg1-2etch1.dsc 3aef60283e457b7e13c1719387251612 2183095 kde optional ktorrent_2.0.3+dfsg1.orig.tar.gz 09ef4b627881d0aa29f682dbcf860ae7 12570 kde optional ktorrent_2.0.3+dfsg1-2etch1.diff.gz dea2c2add2b28f51c37838104cbacab6 1587096 kde optional ktorrent_2.0.3+dfsg1-2etch1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGtR6GwM/Gs81MDZ0RAhXhAJ4+/iaxA/tNerFj0FMDD/YZ0XEYtQCfbAkK Sz7vq6dRL8SC/H03R2Lts4Y= =YxPz -----END PGP SIGNATURE----- Accepted: ktorrent_2.0.3+dfsg1-2etch1.diff.gz to pool/main/k/ktorrent/ktorrent_2.0.3+dfsg1-2etch1.diff.gz ktorrent_2.0.3+dfsg1-2etch1.dsc to pool/main/k/ktorrent/ktorrent_2.0.3+dfsg1-2etch1.dsc ktorrent_2.0.3+dfsg1-2etch1_amd64.deb to pool/main/k/ktorrent/ktorrent_2.0.3+dfsg1-2etch1_amd64.deb
