GNU gnump3d Directory Traversal Vulnerability

GNU gnump3d Directory Traversal Vulnerability

Solution:
Debian has released advisory DSA 877-1 and fixes to address this issue. Please see the referenced advisory for further information.

SUSE has released advisory SUSE-SR:2005:025 to address this, and other issues in various packages, in various SUSE products. The advisory states that there are pending fixes for this issue in SUSE products. Please see the referenced advisory for further information.

Gentoo has released advisory GLSA 200511-05 to address this issue. Gentoo updates may be applied by running the following commands as the superuser:

emerge --sync
emerge --ask --oneshot --verbose ">=media-sound/gnump3d-2.9.7"

SUSE has released advisory SUSE-SR:2005:027 to address this, and other issues in various packages, in various SUSE products. The advisory states that there are pending fixes for this issue in SUSE products. Please see the referenced advisory for further information.

SUSE advisory SUSE-SR:2005:028 is available to address various issues. Please see the referenced advisory for more information.

A fix is available:

GNU gnump3d 2.9

GNU gnump3d v2.9.6
http://www.gnu.org/software/gnump3d/download.html#Download

GNU gnump3d 2.9.1

GNU gnump3d v2.9.6
http://www.gnu.org/software/gnump3d/download.html#Download

GNU gnump3d 2.9.2

GNU gnump3d v2.9.6
http://www.gnu.org/software/gnump3d/download.html#Download

GNU gnump3d 2.9.3

Debian gnump3d_2.9.3-1sarge2_all.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/g/gnump3d/gnump3d_2.9.3-1 sarge2_all.deb