package: owl
Version: 2.1.11-2
severity: grave
Tags: security
Justification: cve-2009-0363
zwrite.c and zcrypt.c contain multiple buffer overflows in calls to sprintf
that appear to be remotely exploitable.
Please see the patch to barnowl 1.0.1-4 for a minimal set of changes that we
think addresses this vulnerability.
However there have been other related changes to barnowl and owl may well have
more vulnerabilities in this area.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
