Format string vulnerability
Bug #423565 reported by
4dro
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
silc-client (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Dapper |
Invalid
|
Undecided
|
Unassigned | ||
Hardy |
Invalid
|
Undecided
|
Unassigned | ||
Intrepid |
Invalid
|
Undecided
|
Unassigned | ||
Jaunty |
Invalid
|
Undecided
|
Unassigned | ||
Karmic |
Invalid
|
Undecided
|
Unassigned | ||
silc-server (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Dapper |
Invalid
|
Undecided
|
Unassigned | ||
Hardy |
Invalid
|
Undecided
|
Unassigned | ||
Intrepid |
Invalid
|
Undecided
|
Unassigned | ||
Jaunty |
Invalid
|
Undecided
|
Unassigned | ||
Karmic |
Invalid
|
Undecided
|
Unassigned | ||
silc-toolkit (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned | ||
Dapper |
Won't Fix
|
Low
|
Unassigned | ||
Hardy |
Won't Fix
|
Wishlist
|
Unassigned | ||
Intrepid |
Invalid
|
Wishlist
|
Unassigned | ||
Jaunty |
Won't Fix
|
Wishlist
|
Unassigned | ||
Karmic |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
Upstream silc client (1.1.8) fixes both a format string vulnerability (see http://
It fixes more things, for a full changelog:
http://
This applies to karmic, jaunty, intrepid and hardy.
CVE References
visibility: | private → public |
Changed in silc-server (Ubuntu Dapper): | |
status: | New → Confirmed |
Changed in silc-server (Ubuntu Hardy): | |
status: | New → Invalid |
Changed in silc-server (Ubuntu Intrepid): | |
status: | New → Invalid |
Changed in silc-server (Ubuntu Jaunty): | |
status: | New → Invalid |
Changed in silc-server (Ubuntu Karmic): | |
status: | New → Invalid |
Changed in silc-toolkit (Ubuntu Hardy): | |
status: | New → Confirmed |
Changed in silc-toolkit (Ubuntu Jaunty): | |
status: | New → Confirmed |
Changed in silc-toolkit (Ubuntu Intrepid): | |
status: | New → Confirmed |
Changed in silc-toolkit (Ubuntu Karmic): | |
status: | New → Confirmed |
Changed in silc-toolkit (Ubuntu Dapper): | |
status: | New → Confirmed |
To post a comment you must log in.
Thank you for using Ubuntu and taking the time to report a bug. This package is in universe and is community supported. If you are able, perhaps you could prepare debdiffs to fix this by following https:/ /wiki.ubuntu. com/SecurityUpd ateProcedures.