Package: stunnel4 Version: 3:4.40-1 Severity: grave Tags: security fixed-upstream
>From http://stunnel.org/?page=sdf_ChangeLog : Version 4.42, 2011.08.18, urgency: HIGH: [...] Bugfixes Fixed a heap corruption vulnerability in versions 4.40 and 4.41. It may possibly be leveraged to perform DoS or remote code execution attacks. This has been assigned CVE-2011-2940, see http://www.openwall.com/lists/oss-security/2011/08/19/18 -- Niko Tyni nt...@debian.org -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
