Mandrake Linux Security Advisory : ktorrent (MDKSA-2007:095)
Medium Nessus Plugin ID 37741
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA directory traversal vulnerability was found in KTorrent prior to 2.1.2, due to an incomplete fix for a prior directory traversal vulnerability that was corrected in version 2.1.2. Previously, KTorrent would only check for the string .., which could permit strings such as ../.
Updated packages have been patched to correct this issue.
SolutionUpdate the affected ktorrent, lib64ktorrent2.1.2 and / or libktorrent2.1.2 packages.