Accepted:
OK: dircproxy_1.0.5.orig.tar.gz
OK: dircproxy_1.0.5-4ubuntu0.6.06.1.diff.gz
OK: dircproxy_1.0.5-4ubuntu0.6.06.1.dsc
-> Component: universe Section: net
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 09 Oct 2007 09:55:00 +0200
Source: dircproxy
Binary: dircproxy
Architecture: source
Version: 1.0.5-4ubuntu0.6.06.1
Distribution: dapper-security
Urgency: low
Maintainer: Alex Pennace <[EMAIL PROTECTED]>
Changed-By: Stephan Hermann <[EMAIL PROTECTED]>
Description:
dircproxy - IRC proxy for people who use IRC from different workstations
Changes:
dircproxy (1.0.5-4ubuntu0.6.06.1) dapper-security; urgency=low
.
* SECURITY UPDATE: irc_server.c in dircproxy 1.2.0 and earlier allows remote
attackers to cause a denial of service (segmentation fault) via an ACTION
command without a parameter, which triggers a NULL pointer dereference, as
demonstrated using a blank /me message from irssi.
* src/irc_server.c: Added fix by Steffen Joeris <[EMAIL PROTECTED]>
to fix CVE-2007-5226 (LP: #150848)
* References:
CVE-2007-5226
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=445883
Files:
30913f6fb41fe656dd645a78837109cd 596 net optional
dircproxy_1.0.5-4ubuntu0.6.06.1.dsc
57aa2bba9b936ec2a099a15c8a4fe267 14588 net optional
dircproxy_1.0.5-4ubuntu0.6.06.1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHDSE0H/9LqRcGPm0RAnKeAJwI4gU+otfYGjvTXytyGQXFSHMY0wCfW4ax
xyTMrixQtc9lKHBw7QiIpsA=
=R1y9
-----END PGP SIGNATURE-----
--
dapper-changes mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/dapper-changes
