wesnoth -- directory traversal

2007-12-06T00:00:00
ID DSA-1421
Type debian
Reporter Debian
Modified 2007-12-06T00:00:00

Description

A vulnerability has been discovered in Battle for Wesnoth that allows remote attackers to read arbitrary files the user running the client has access to on the machine running the game client.

For the old stable distribution (sarge) this problem has been fixed in version 0.9.0-7.

For the stable distribution (etch) this problem has been fixed in version 1.2-3.

For the stable backports distribution (etch-backports) this problem has been fixed in version 1.2.8-1~bpo40+1.

For the unstable distribution (sid) this problem has been fixed in version 1.2.8-1.

For the experimental distribution this problem has been fixed in version 1.3.12-1.

We recommend that you upgrade your wesnoth package.