Ubuntu
konversation package

uvf exception request konversation 0.19 --> 1.0

Bug #58270 reported by Brandon Holtsclaw on 2006-08-30

Affects		Status	Importance	Assigned to	Milestone
	konversation (Ubuntu)	Fix Released	Undecided	Brandon Holtsclaw

Bug Description

builds fine and has been tested in my private repos for many weeks, fixes nearly every malone bug thats open.

Revision history for this message

Brandon Holtsclaw (imbrandon) wrote on 2006-08-30:

changelog from 0.19 to 1.0 Edit (16.7 KiB, text/plain)

changelog attachment

Changed in konversation:
assignee:	nobody → imbrandon
status:	Unconfirmed → Confirmed

Revision history for this message

Jonathan Riddell (jr) wrote on 2006-08-30:

I support this request, the konversation developers have deliberately timed their release to be scheduled with Kubuntu.

Revision history for this message

Colin Watson (cjwatson) wrote on 2006-08-31:

The only thing I noticed that might need additional checking is:

* DCC file transfers now support file names containing spaces on send, receive
and resume. The automatic replacement of spaces with underscores in file names
can now be optionally disabled in the DCC preferences.

Could somebody make sure that Konversation will never try to spawn commands via the shell (including the system() libc function) that operate on DCC-received files, at least not without escaping any characters not in a known-good set to avoid shell metacharacter expansion?

Otherwise, this looks good, thanks.

Revision history for this message

Hein (sho) wrote on 2006-08-31:

Hi, Konversation's maintainer and release manager here.

We interact with files to be sent or received via DCC via standard KDE/Qt library functions and KDE KIO, not ever by manually running commands on a shell.

Also, note that the above feature is disabled by default.

Brandon Holtsclaw (imbrandon) on 2006-09-05