Ubuntu
cyrus-sasl2 package

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #1187001
Comment #13

Comment 13 for bug 1187001

Revision history for this message

Launchpad Janitor (janitor) wrote on 2013-10-09:

#13

This bug was fixed in the package cyrus-sasl2 - 2.1.25.dfsg1-6ubuntu0.1

---------------
cyrus-sasl2 (2.1.25.dfsg1-6ubuntu0.1) raring-security; urgency=low

  * SECURITY UPDATE: denial of service via invalid salt (LP: #1187001)
    - debian/patches/CVE-2013-4122.patch: properly handle glibc returning
      NULL on an invalid salt in pwcheck/pwcheck_getpwnam.c,
      pwcheck/pwcheck_getspnam.c, saslauthd/auth_getpwent.c,
      saslauthd/auth_shadow.c.
    - CVE-2013-4122
-- Marc Deslauriers <email address hidden> Mon, 07 Oct 2013 08:40:56 -0400

Ubuntucyrus-sasl2 package

Comment 13 for bug 1187001

Ubuntu
cyrus-sasl2 package