Package: widelands Version: 1:15-3squeeze1 Severity: important When Widelands was patched in Debian to close a potential security issue recently, there was an addition to the patch, which from what I can see was not included in Debian. The addition was made, since the initial patch made it impossible to play games over the network. I added a comment to the original bug report earlier, but I am not sure if anyone saw it. (See http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=617960#18) I am new to the bug tracker in Debian, so it is possible I should have done something differently in my email.
Nevertheless, from what I can see of the patch applied (see the changes for src/io/filesystem/filesystem.cc) (http://svn.debian.org/viewsvn/collab-maint/deb-maint/widelands/branches/squeeze/debian/patches/secfix-617960?revision=18461&view=markup) it lacks the update which was committed to build15 here: http://bazaar.launchpad.net/~widelands-dev/widelands/build-15/revision/5022/ The same commit was also applied to trunk, and is available in build16-rc1 and later, but has a bit better description: http://bazaar.launchpad.net/~widelands-dev/widelands/trunk/revision/5887 I hope someone will look into this. Best regards, Hans Joachim Desserud -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
