"Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only
checks for the ".." string, which allows remote attackers to overwrite arbitrary
files via modified ".." sequences in a torrent filename, as demonstrated by
"../" sequences, due to an incomplete fix for CVE-2007-1384."
FC5, FC6, devel have 2.1.2 at the moment.
* Tue Apr 03 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 2.1.3-1
- ktorrent-2.1.3 (#235014)
- optimize %%configure
Builds queue'd for devel(finished), FC-6(building), FC-5(building).