-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 02 Jul 2007 13:10:10 -0500 Source: kvirc Binary: kvirc-dev kvirc-data kvirc Architecture: i386_translations i386 all Version: 2:3.2.4-5ubuntu1.1 Distribution: feisty-security Urgency: low Maintainer: Ubuntu/i386 Build Daemon Changed-By: Richard A. Johnson Description: kvirc - KDE based next generation IRC client with module support kvirc-data - Data files for KVIrc kvirc-dev - Development files for KVIrc Launchpad-Bugs-Fixed: 123037 Changes: kvirc (2:3.2.4-5ubuntu1.1) feisty-security; urgency=low . * SECURITY UPDATE: parseIrcUrl() do not properly sanitize parts of the URI when building the command for KVIrc's internet script system. This can be exploited to inject and execute commands for the KVIrc script system (including the "run" command, which can be leveraged to execute shell commands) by e.g. tricking a user into opening a specially crafted "irc://" or similar URI. * Add debian/patches/10_parseIrcUrl_security_fix.patch: properly sanitizes URI strings, as done in upstream SVN. (Fixes LP: #123037) * References: - http://www.kvirc.net/?id=news&story=2007.06.29.22.00.1.story&dir=latest - http://secunia.com/secunia_research/2007-56/advisory/ - http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2951 - https://svn.kvirc.de/kvirc/changeset/630/#file3 (fix to kvi_ircurl.cpp) * Add debian/control: Debian Maintainer Field Files: 7507099beb1c84fcac89452be7cff8d9 3055552 net optional kvirc-data_3.2.4-5ubuntu1.1_all.deb a1ac9f0610e73efec866cb7fdfbb6cc1 2389564 raw-translations - kvirc_3.2.4-5ubuntu1.1_i386_translations.tar.gz 9498bc0e9eb93fa53cb1d0dd00fc3521 3139798 net optional kvirc_3.2.4-5ubuntu1.1_i386.deb ae9feaf9ad2de3979cd06e6091431438 375622 devel optional kvirc-dev_3.2.4-5ubuntu1.1_i386.deb Original-Maintainer: Robin Verduijn -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFGipu50N0xjzyQZEIRAqp5AJ4t8bjIV1HL9Y3ojFhVSU+Jvu3uHQCfTaQl goTUUispGfZD4gve1/HrWg8= =XCNU -----END PGP SIGNATURE-----