[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 863-1] deluge security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : deluge
Version        : 1.3.3-2+nmu1+deb7u1
CVE ID         : CVE-2017-7178
Debian Bug     : #857903

It was discovered that there was a cross-site request forgery vulnerability in
the WebUI component of the "deluge" Bittorrent client.

For Debian 7 "Wheezy", this issue has been fixed in deluge version
1.3.3-2+nmu1+deb7u1.

We recommend that you upgrade your deluge packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=bFZY
-----END PGP SIGNATURE-----


Reply to: