This bug was fixed in the package pan - 0.132-2ubuntu2.1
---------------
pan (0.132-2ubuntu2.1) hardy-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
Parts batches (LP: #238089)
- debian/patches/CVE-2008-2363.dpatch: make sure vector size always
corresponds to the real number of found parts in
pan/data/parts.{cc,h}.
- CVE-2008-2363
-- Marc Deslauriers <email address hidden> Wed, 07 Oct 2009 11:08:20 -0400
This bug was fixed in the package pan - 0.132-2ubuntu2.1
---------------
pan (0.132-2ubuntu2.1) hardy-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via patches/ CVE-2008- 2363.dpatch: make sure vector size always data/parts. {cc,h}.
Parts batches (LP: #238089)
- debian/
corresponds to the real number of found parts in
pan/
- CVE-2008-2363
-- Marc Deslauriers <email address hidden> Wed, 07 Oct 2009 11:08:20 -0400