This bug was fixed in the package dropbear - 2011.54-1ubuntu0.12.04.1
---------------
dropbear (2011.54-1ubuntu0.12.04.1) precise-security; urgency=low
* SECURITY UPDATE: remote execution via use after free (LP: #976360)
- debian/diff/0004-Fix-use-after-free-bug-CVE-2012-0920.diff
pulled from https://secure.ucc.asn.au/hg/dropbear/rev/818108bf7749
Thanks to Matt Johnston
- CVE-2012-0920
-- Julian Taylor <[email protected]> Tue, 24 Apr 2012 22:54:41 +0200
** Changed in: dropbear (Ubuntu Precise)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/976360
Title:
CVE-2012-0920 needs fixing, server use-after-free
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dropbear/+bug/976360/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
