newsbeuter (0.7-1ubuntu0.1) hardy-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted item URLS.
- src/view.cpp: Escape single quotes in item URLs. Fixes arbitrary
code execution. Patch from Debian.
- References:
+ CVE-2008-3907
** Changed in: newsbeuter (Ubuntu Hardy)
Status: Fix Committed => Fix Released
--
[CVE-2008-3907] Arbitrary code execution by crafted item URLs
https://bugs.launchpad.net/bugs/275019
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
