USN-570-1: boost vulnerabilities
16 January 2008
- boost -
Will Drewry and Tavis Ormandy discovered that the boost library
did not properly perform input validation on regular expressions.
An attacker could send a specially crafted regular expression to
an application linked against boost and cause a denial of service
via application crash.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system upgrade is sufficient to effect the