I concur with Artur's second concern; while this is a serious issue with this package, I don't believe it's a security issue, as I don't see a means for an attacker to cause the deletion to occur, though I haven't examined what the actual code issue is specifically. It seems to me that the SRU process is more appropriate route for a fix for this issue. I'm unsubscribing ubuntu-security-sponsers on this basis; please resubscribe if there's an indetifiable route for an outside third party to cause the deletion to occur.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/663925 Title: ncmpcpp (version < 0. 5.4) can cause unexpected deletion of files -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
