Updates to aMule in Ubuntu 9.04 Jaunty Jackalope

amule

Versione 2.2.4-1ubuntu1.1:

* SECURITY UPDATE: Incomplete escaping in filenames allows remote attackers
to conduct argument injection attacks into a command via a crafted
filename. (LP: #396807)
- src/DownloadListCtrl.cpp sanitises the downloaded filenames but does
not escape ticks in filenames correctly.
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=525078
- Patch by Sam Hocevar
- CVE-2009-1440

* online signature, source exchange, compressed transfers, secure
identification, and IP filter support
* boolean search, which can be local, global, or in the Kad network
* checks against aggressive clients
* slot allocation, to decide the number of remote clients
* systray works well both in GNOME and KDE
* translations to many languages A daemonized version of the application that does not need a graphic environment to run is available in the amule-daemon package, and various utilities of interest can be found in the amule-utils and amule-utils-gui packages, including the ed2k link handler.

amule-common

Versione 2.2.4-1ubuntu1.1:

* SECURITY UPDATE: Incomplete escaping in filenames allows remote attackers
to conduct argument injection attacks into a command via a crafted
filename. (LP: #396807)
- src/DownloadListCtrl.cpp sanitises the downloaded filenames but does
not escape ticks in filenames correctly.
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=525078
- Patch by Sam Hocevar
- CVE-2009-1440

amule-utils

Versione 2.2.4-1ubuntu1.1:

* SECURITY UPDATE: Incomplete escaping in filenames allows remote attackers
to conduct argument injection attacks into a command via a crafted
filename. (LP: #396807)
- src/DownloadListCtrl.cpp sanitises the downloaded filenames but does
not escape ticks in filenames correctly.
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=525078
- Patch by Sam Hocevar
- CVE-2009-1440

* ed2k: handles ed2k:// links, queueing them into aMule
* cas: displays the contents of your aMule online signature
* alcc: computes ed2k:// links for the given input files
* amulecmd: text-based client to control aMule or the aMule daemon Some of these utilities have graphic versions, which can be found in the amule-utils-gui package.

This package contains localization files and webserver templates for aMule. You probably don't want to install this package alone, but amule or amule-daemon instead.

Related Post
25/05 Amarok 2.1 beta 2 released 25/05 - Abakus, calculator for KDE 20/05 - Tecnorati AdEngage versus Google AdSense 01/05 – Scenari is an open source application suite for creating professional standar multimedia documents 01/05 – Boxe, you are now free to be entertained on a laptop or connected to an HDTV 01/05 – Aptana Jaxer is a open source Ajax web server for building rich web pages and applications 28/04 – Bogofilter is a email filter that classifies mail as spam 28/04 – An overview of the Minimo Project 28/04 – Gecko is the open source browser engine used in multiple browsers including Mozilla Firefox, Sea Monkey, Camino and others 31/03 – Attention Jaunty Alpha eCriptfs Users 31/03 – Your Dell Inspiron Mini 9 in Ubuntu 9.04 31/03 – To PulseAudio or not to PulseAudio 28/03 – Ubuntu Drupal 6.3.1 released 28/03 – Portable Ubuntu (for Windows) 28/03 – Shared SSH Sessions Update for Ubuntu 9.04 Jaunty Jackalope 28/03 – An Upadte on Grub2 27/03 – Your clips are shared on clipmarks.com and can easily be sindacated to FriendFree, Facebook or others sites 24/03 – VirtualBox: advanced topics and access to entire physical hard disk
	Linux Links
	11/06 - Kernel Log: the 2.6.30 Kernel is Out 11/06 - Software Packages in Ubuntu 9.04 Jaunty Jackalope, Subsection electronics, Chapter II 21/05 - Emacs Chess is also an object-oriented library for manipulating chess objects 21/05 - Einstein puzzle is a free cross-platform open source remake of old DOS game Sherlock 21/05 - Egoboo is a 3D open source dungeon crawling action role-playing game 17/05 - Warsow, A Fast Paced First Person Shooter Game 17/05 - Uim is a multilingual input method library 17/05 - Warzone 2100 is a real-time strategy and real-time tactics hybrid computer game 10/05 - 26 Cools Applications to install on Ubuntu 9.04 Jaunty Jackalope, Chapter I 10/05 - 26 Cools Applications to install on Ubuntu 9.04 Jaunty Jackalope, Chapter II 09/05 - The fallacy of high-level languages 09/05 - Sync s60v3 phone to Google Calendar and make backups of contacts/calendar/notes (in Ubuntu/Linux) 09/05 - Medibuntu: non-free-codecs for Ubuntu 9.04 Jaunty Jackalope 27/04 - Antennavis antenna visualization software is a visualization toolkit 27/04 - ALDO Morse Code Tutor

Do you consider this article interesting? Share it on your network of Twitter contacts, on your Facebook wall or simply press "+1" to suggest this result in searches in Google, Linkedin, Instagram or Pinterest. Spreading content that you find relevant helps this blog to grow. Thank you!

Share on Facebook Share on Twitter Share on Google Plus

About Hugo

Ubuntu is a Linux distribution that offers an operating system predominantly focused on desktop computers but also provides support for servers. Based on Debian GNU / Linux, Ubuntu focuses on ease of use, freedom in usage restriction, regular releases (every 6 months) and ease of installation.