http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1799 "Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384." FC5, FC6, devel have 2.1.2 at the moment.
%changelog * Tue Apr 03 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 2.1.3-1 - ktorrent-2.1.3 (#235014) - optimize %%configure
Builds queue'd for devel(finished), FC-6(building), FC-5(building).