package: owl
Version: 2.1.11-2
severity: grave
Tags: security
Justification: cve-2009-0363
zwrite.c and zcrypt.c contain multiple buffer overflows in calls to sprintf
that appear to be remotely exploitable.
Please see the patch to barnowl 1.0.1-4 for a minimal set of changes that we
think addresses this vulnerability.
However there have been other related changes to barnowl and owl may well have
more vulnerabilities in this area.
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]