Comment 4 for bug 238089

This bug was fixed in the package pan - 0.132-2ubuntu2.1

---------------
pan (0.132-2ubuntu2.1) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    Parts batches (LP: #238089)
    - debian/patches/CVE-2008-2363.dpatch: make sure vector size always
      corresponds to the real number of found parts in
      pan/data/parts.{cc,h}.
    - CVE-2008-2363

 -- Marc Deslauriers <email address hidden> Wed, 07 Oct 2009 11:08:20 -0400