This was never in impish or later.
And fixed for active releases:
1.5-2ubuntu0.1) focal-security
1.4-8ubuntu0.1) bionic-security
Those uploads are available since ~October 2021, so it was just this bug
that the security team wasn't aware of I guess.
** Also affects: libntlm (Ubuntu Focal)
Heya!
Looks like upstream got this back in april.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942145;msg=12
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2019-17455
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1847701
Title:
Buffer Overflow Write when libntlm generates NTLM request
To