Emmabuntus, Ubuntu, Derivate, Linux, Open Source BackTrack, Linux, distributions, Ubuntu, derivate, securuty, forensic VirtualBox, Linux, Ubuntu, Raring Ringtail synaptic, Ubuntu, Linux, software packages jwplayer, multimedia, Linux, Ubuntu, flash Meshlab, graphic, software, Ubuntu, open source, Linux Synapse, Linux, Ubuntu, raring, Quantal Gimp, Ubuntu, Linux FreeMind, Linux, open source Linux, infographic, history

Updates to aMule in Ubuntu 9.04 Jaunty Jackalope

amule

Versione 2.2.4-1ubuntu1.1:

* SECURITY UPDATE: Incomplete escaping in filenames allows remote attackers
to conduct argument injection attacks into a command via a crafted
filename. (LP: #396807)
- src/DownloadListCtrl.cpp sanitises the downloaded filenames but does
not escape ticks in filenames correctly.
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=525078
- Patch by Sam Hocevar
- CVE-2009-1440

* online signature, source exchange, compressed transfers, secure
identification, and IP filter support
* boolean search, which can be local, global, or in the Kad network
* checks against aggressive clients
* slot allocation, to decide the number of remote clients
* systray works well both in GNOME and KDE
* translations to many languages A daemonized version of the application that does not need a graphic environment to run is available in the amule-daemon package, and various utilities of interest can be found in the amule-utils and amule-utils-gui packages, including the ed2k link handler.



amule-common

Versione 2.2.4-1ubuntu1.1:

* SECURITY UPDATE: Incomplete escaping in filenames allows remote attackers
to conduct argument injection attacks into a command via a crafted
filename. (LP: #396807)
- src/DownloadListCtrl.cpp sanitises the downloaded filenames but does
not escape ticks in filenames correctly.
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=525078
- Patch by Sam Hocevar
- CVE-2009-1440

amule-utils

Versione 2.2.4-1ubuntu1.1:

* SECURITY UPDATE: Incomplete escaping in filenames allows remote attackers
to conduct argument injection attacks into a command via a crafted
filename. (LP: #396807)
- src/DownloadListCtrl.cpp sanitises the downloaded filenames but does
not escape ticks in filenames correctly.
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=525078
- Patch by Sam Hocevar
- CVE-2009-1440

* ed2k: handles ed2k:// links, queueing them into aMule
* cas: displays the contents of your aMule online signature
* alcc: computes ed2k:// links for the given input files
* amulecmd: text-based client to control aMule or the aMule daemon Some of these utilities have graphic versions, which can be found in the amule-utils-gui package.

This package contains localization files and webserver templates for aMule. You probably don't want to install this package alone, but amule or amule-daemon instead.


Related Post



Linux Links

    160x600     step



Share on Google Plus

About Hugo Repetto

Ubuntu is a Linux distribution that offers an operating system predominantly focused on desktop computers but also provides support for servers. Based on Debian GNU / Linux, Ubuntu focuses on ease of use, freedom in usage restriction, regular releases (every 6 months) and ease of installation.
    Blogger Comment
    Facebook Comment

0 comments:

Post a Comment