Ubuntu
link-grammar package

  1. Dapper (6.06)
  2. Bug #162511
  3. Comment #8

Comment 8 for bug 162511

Revision history for this message
Stephan RĂ¼gamer (sruegamer) wrote :

link-grammar (4.2.2-4ubuntu0.7.04.1) feisty-security; urgency=low

  * SECURITY UPDATE: Stack-based buffer overflow in the separate_word function
    in tokenize.c in Link Grammar 4.1b and possibly other versions, as used in
    AbiWord Link Grammar 4.2.4, allows remote attackers to execute arbitrary code
    via a long word, as reachable through the separate_sentence function.
  * debian/patches/CVE-2007-5395: Added patch according to upstream.
    (See: https://bugzilla.redhat.com/attachment.cgi?id=255061)
    (LP: #162511)
  * References:
    CVE-2007-5395
    https://bugzilla.redhat.com/show_bug.cgi?id=371221

 -- Stephan Hermann <email address hidden> Tue, 13 Nov 2007 22:38:50 +0100