[Bug 329165] Re: CVE-2009-0363: multiple remote buffer overflows
Anders Kaseorg
andersk at mit.edu
Wed May 20 19:34:47 UTC 2009
This was fixed in Debian in owl 2.2.2-1, and synced into Karmic. I’m
not sure about the best way to handle this for Jaunty and before.
owl (2.2.2-1) unstable; urgency=low
* New upstream release. The upstream author has become active again and
has worked with the barnowl developers on security issues. (Closes: #515118)
* configure.in, debian.control: barnowl updates via Sam Hartman
eliminate retro libkrb4 and des425 dependencies. (Closes: #517019)
* Do not link against libkrb4 or libkrb5; we use none of their symbols
* Support openssl DES for zcrypt so that we continue to have zcrypt
after libdes425 goes away
Note: ditched the KerberosIV test entirely to force this version,
allowing build/test on lenny.
* zcrypt.c: use des.h again, so we get the openssl one above.
* from unreleased 2.1.11-3:
* debian/control: version debhelper depends (lintian
package-lacks-versioned-build-depends-on-debhelper.)
* debian/watch: New file.
* debian/control: add libglib2.0-dev, per configure.in
-- Mark W. Eichin <eichin at thok.org> Mon, 13 Apr 2009 00:53:12 -0400
--
CVE-2009-0363: multiple remote buffer overflows
https://bugs.launchpad.net/bugs/329165
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list