UbuntuUpdates.org

Package "kodi-data"

Name: kodi-data

Description:

Open Source Home Theatre (arch-independent data package)

Latest version: 15.2+dfsg1-3ubuntu1.1
Release: xenial (16.04)
Level: security
Repository: universe
Head package: kodi
Homepage: http://kodi.tv/

Links


Download "kodi-data"


Other versions of "kodi-data" in Xenial

Repository Area Version
base universe 15.2+dfsg1-3ubuntu1
updates universe 15.2+dfsg1-3ubuntu1.1

Changelog

Version: 15.2+dfsg1-3ubuntu1.1 2017-06-06 02:06:42 UTC

  kodi (15.2+dfsg1-3ubuntu1.1) xenial-security; urgency=high

  * Fix zip file directory traversal vulnerability (CVE-2017-8314)
    (Closes: #863230, LP: #1694249)
  * Add test for CVE-2017-8314 to autotools-based build

 -- Balint Reczey <email address hidden> Mon, 29 May 2017 16:58:26 +0200

1694249 CVE-2017-8314: malicious subtitle zip files vulnerability
863230 Dash and Launcher - As soon as a user starts draggi...
CVE-2017-8314 Directory Traversal in Zip Extraction built-in function in Kodi 17.1 and earlier allows arbitrary file write on disk via a Zip file as subtitles.



About   -   Send Feedback to @ubuntu_updates