registry team mailing list archive

Thread
Date

[Bug 322196] Re: Untrusted search path vulnerability in Python and multiple other programs

To: registry@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <322196@xxxxxxxxxxxxxxxxxx>
Date: Tue, 08 Jun 2010 00:23:05 -0000
Reply-to: Bug 322196 <322196@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package xchat - 2.8.4-0ubuntu7.1

---------------
xchat (2.8.4-0ubuntu7.1) hardy-security; urgency=low

  * SECURITY UPDATE (LP: #322196)
  * debian/patches/64_CVE-2009-0315.dpatch:
    - Fix untrusted search path vulnerability in the Python module
      in xchat allows local users to execute arbitrary code via
      a Trojan horse Python file in the current working directory
    - CVE-2009-0315
 -- Artur Rona <ari-tczew@xxxxxxx>   Tue, 01 Jun 2010 21:27:28 +0200

** Changed in: xchat (Ubuntu)
       Status: Fix Committed => Fix Released

-- 
Untrusted search path vulnerability in Python and multiple other programs
https://bugs.launchpad.net/bugs/322196
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for gedit.