* SECURITY UPDATE: denial of service via invalid salt (LP: #1187001)
- debian/patches/CVE-2013-4122.patch: properly handle glibc returning
NULL on an invalid salt in pwcheck/pwcheck_getpwnam.c,
pwcheck/pwcheck_getspnam.c, saslauthd/auth_getpwent.c,
saslauthd/auth_shadow.c.
- CVE-2013-4122
-- Marc Deslauriers <email address hidden> Mon, 07 Oct 2013 08:40:56 -0400
This bug was fixed in the package cyrus-sasl2 - 2.1.25. dfsg1-6ubuntu0. 1
--------------- dfsg1-6ubuntu0. 1) raring-security; urgency=low
cyrus-sasl2 (2.1.25.
* SECURITY UPDATE: denial of service via invalid salt (LP: #1187001) patches/ CVE-2013- 4122.patch: properly handle glibc returning pwcheck_ getpwnam. c, pwcheck_ getspnam. c, saslauthd/ auth_getpwent. c, /auth_shadow. c.
- debian/
NULL on an invalid salt in pwcheck/
pwcheck/
saslauthd
- CVE-2013-4122
-- Marc Deslauriers <email address hidden> Mon, 07 Oct 2013 08:40:56 -0400