http://bugzilla.novell.com/show_bug.cgi?id=547318 Summary: aria2c 1.6.2 is out fixing security issues in 1.5.x and 1.6.x Classification: openSUSE Product: openSUSE 11.2 Version: Factory Platform: x86-64 OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: jnelson-suse@jamponi.net QAContact: qa@suse.de Found By: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US; rv:1.9.0.14) Gecko/2009090900 SUSE/3.0.14-0.1.2 Firefox/3.0.14 The most recent version of aria2c available for 11.2 (as yet) appears to 1.5.2 1.6.2 is out which improves the security of aria2c and fixes a bunch of bugs. Please upgrade aria2c to 1.6.2 for factory. Also, a security issue in earlier versions of aria2c could cause a DOS or the execution of malicious code - please make sure that 11.1 is also updated to an appropriate version. Thanks! This is especially important since zypper relies on aria2c for its downloads, thus a vulnerability or security issues effects nearly every user! Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.