[Bug 1344854] Re: CVE-2014-3429: remote execution via cross origin websocket
This bug was fixed in the package ipython - 0.12.1+dfsg-0ubuntu1.1 --- ipython (0.12.1+dfsg-0ubuntu1.1) precise-security; urgency=medium * SECURITY UPDATE: remote execution via cross origin websocket if one has knowledge of the kernel id (LP: #1344854) - debian/patches/CVE-2014-3429.patch: check origin of connections - CVE-2014-3429 -- Julian TaylorSat, 19 Jul 2014 14:05:50 +0200 ** Changed in: ipython (Ubuntu Precise) Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1344854 Title: CVE-2014-3429: remote execution via cross origin websocket To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ipython/+bug/1344854/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1344854] Re: CVE-2014-3429: remote execution via cross origin websocket
Everything looks great. Thanks! I'm uploading this to the security ppa now and will push it out after it builds. ** Changed in: ipython (Ubuntu Precise) Status: Confirmed => In Progress -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1344854 Title: CVE-2014-3429: remote execution via cross origin websocket To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ipython/+bug/1344854/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1344854] Re: CVE-2014-3429: remote execution via cross origin websocket
Looks good to me. Leaving for security team to handle sponsorship, as I don't know the proper procedure for uploading these. ** Changed in: ipython (Ubuntu Precise) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1344854 Title: CVE-2014-3429: remote execution via cross origin websocket To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ipython/+bug/1344854/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1344854] Re: CVE-2014-3429: remote execution via cross origin websocket
** Branch linked: lp:ubuntu/precise-backports/ipython -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1344854 Title: CVE-2014-3429: remote execution via cross origin websocket To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ipython/+bug/1344854/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1344854] Re: CVE-2014-3429: remote execution via cross origin websocket
** Patch added: "ipython_0.12.1+dfsg-0ubuntu1.1.debdiff" https://bugs.launchpad.net/ubuntu/+source/ipython/+bug/1344854/+attachment/4156835/+files/ipython_0.12.1%2Bdfsg-0ubuntu1.1.debdiff -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1344854 Title: CVE-2014-3429: remote execution via cross origin websocket To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ipython/+bug/1344854/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs