USN-561-1: pwlib vulnerability
8 January 2008
- pwlib -
Jose Miguel Esparza discovered that pwlib did not correctly handle large
string lengths. A remote attacker could send specially crafted packets to
applications linked against pwlib (e.g. Ekiga) causing them to crash, leading
to a denial of service.
The problem can be corrected by updating your system to the following package versions:
After a standard system upgrade you need to restart your session to effect
the necessary changes.