Ubuntu
wordnet package

  1. Hardy (8.04)
  2. Bug #267067
  3. Comment #13

Comment 13 for bug 267067

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package wordnet - 1:3.0-11ubuntu0.1

---------------
wordnet (1:3.0-11ubuntu0.1) intrepid; urgency=low

  * SECURITY UPDATE: Stack overflows fed via the command line, environment
    variables or WordNet library calls can result in arbitrary code
    execution. (Closes LP: #267067)
  * 51_overflows.patch:
    - ocert patch to address additional potential security exploits.
  * 51_overflows_memcpy.patch:
    - Fix part of oCERT patch that breaks 'wordnet test -synsn'.
  * References
    http://www.ocert.org/advisories/ocert-2008-014.html
    CVE-2008-2149

 -- Stefan Lesicnik <email address hidden> Thu, 11 Sep 2008 10:45:13 +0200