I have just read this on xforce.iss.net (http://xforce.iss.net/static/5102.php). It seems that there is a buffer overflow condition on the halidate function that a remote attacker could exploit. I am unable (yet) to check the sources and see if Debian is vulnerable, but Debian's version is 2.3.1-2, which makes it possible. Regards Javier Fern�ndez-Sanguino Pe�a Debian GNU/Linux developer
begin:vcard n:Fern�ndez-Sanguino Pe�a;Javier tel;fax:+34-91 806 46 41 tel;work:+34-918064432 x-mozilla-html:FALSE org:SGI-GMV sistemas;Seguridad L�gica adr:;;Sector Foresta 1;Tres Cantos;Madrid;E-28760;Spain version:2.1 email;internet:[EMAIL PROTECTED] x-mozilla-cpt:;32352 fn:Javier Fern�ndez-Sanguino Pe�a end:vcard
