link-grammar (4.2.2-4ubuntu0.7.10.1) gutsy-security; urgency=low
* SECURITY UPDATE: Stack-based buffer overflow in the separate_word function
in tokenize.c in Link Grammar 4.1b and possibly other versions, as used in
AbiWord Link Grammar 4.2.4, allows remote attackers to execute arbitrary
code
via a long word, as reachable through the separate_sentence function.
* debian/patches/CVE-2007-5395: Added patch according to upstream.
(See: https://bugzilla.redhat.com/attachment.cgi?id=255061)
(LP: #162511)
* References:
CVE-2007-5395
https://bugzilla.redhat.com/show_bug.cgi?id=371221
-- Stephan Hermann <[EMAIL PROTECTED]> Tue, 13 Nov 2007 22:32:54 +0100
** Changed in: link-grammar (Ubuntu Gutsy)
Status: Fix Committed => Fix Released
** Changed in: link-grammar (Ubuntu Feisty)
Status: Fix Committed => Fix Released
--
[CVE-2007-5395] link-grammar is vulnerable
https://bugs.launchpad.net/bugs/162511
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
