Public bug reported:
silc-server 1.1.1 is a bugfix release. It includes a couple of security
fixes, including that for CVE-2008-1429. As there are no new features, a
FFe is not required.
Thu Mar 13 13:31:35 EET 2008 Pekka Riikonen <[EMAIL PROTECTED]>
* Fixed silcd crash in NEW_CLIENT packet handling when nickname
is not present in the packet. Affected files are
apps/silcd/packet_receive.c.
Fri Feb 22 16:12:27 EET 2008 Pekka Riikonen <[EMAIL PROTECTED]>
* Fixed partial encryption in CTR mode in AES. Change does not
affect interoperability in SILC due to the way CTR is used in
SILC. But, fixed anyway. Affected files are
lib/silccrypt/aes.c and rijndael_internal.h.
Tue Jan 8 09:41:57 EET 2008 Pekka Riikonen <[EMAIL PROTECTED]>
* Fixed printable fingerprint bufferoverlfow, RedHat bug 372021.
Affected file is lib/silcutil/silcutil.c.
Sun Dec 30 14:00:46 EET 2007 Pekka Riikonen <[EMAIL PROTECTED]>
* Fixed unix signal delivery in SILC scheduler. Affected file
is lib/silcutil/unix/silcunixschedule.c.
Sun Nov 18 16:43:04 CET 2007 Jochen Eisinger <[EMAIL PROTECTED]>
* Add -avoid-version and -rpath flags when compiling the plugin.
Affected file is apps/irssi/src/fe-common/silc/Makefile.in
** Affects: silc-server (Ubuntu)
Importance: Undecided
Status: Confirmed
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-1429
** Changed in: silc-server (Ubuntu)
Assignee: (unassigned) => William Grant (fujitsu)
Status: New => In Progress
--
[non-FFe] silc-server 1.1.1
https://bugs.launchpad.net/bugs/212192
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
