14628 2003-01-27 11:28 0000 qt-dcgui security flaw 2003-02-05 04:28:47 0000 1 1 1 Unclassified Gentoo Linux Applications 1.4_rc2 All All RESOLVED FIXED http://dc.ketelhot.de/news.php P2 major --- 1 biggms_1701@hotmail.com security@gentoo.org vapier@gentoo.org biggms_1701@hotmail.com 2003-01-27 11:28:34 0000 As reported by the developers of qt-dcgui all versions before 0.2.2 have a security flaw that allows users to download unshared files. The fix is to update to 0.2.2 or above. Versions below 0.2.2 should be removed from portage. styx@gentoo.org 2003-01-27 14:22:57 0000 I've committed 0.2.3 of dclib and qt-dcgui now. Aliz, are you going to write a GLSA on this one? vapier@gentoo.org 2003-01-28 00:43:26 0000 you forgot to add the digest and patch files for dclib-2.3 ... ive added them now though ... styx@gentoo.org 2003-01-28 05:29:05 0000 Ah, sorry. Being a gcc3 user, that just flew right by my testing. aliz@gentoo.org 2003-02-05 04:28:47 0000 glsa sent