Arch Linux

Please read this before reporting a bug:

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#14953 - [libsasl] buffer overflow vulnerability

Attached to Project: Arch Linux
Opened by xduugu (xduugu) - Thursday, 04 June 2009, 13:11 GMT
Last edited by Tobias Powalowski (tpowa) - Tuesday, 09 June 2009, 05:10 GMT
Task Type Bug Report
Category Packages: Core
Status Closed
Assigned To Tobias Powalowski (tpowa)
Architecture All
Severity Critical
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No


There is a buffer overflow vulnerability in libsasl <= 2.1.22 [1], which has been addressed in 2.1.23 [2].


Additional info:
* libsasl 2.1.22-8
This task depends upon

Closed by  Tobias Powalowski (tpowa)
Tuesday, 09 June 2009, 05:10 GMT
Reason for closing:  Fixed
Comment by Tobias Powalowski (tpowa) - Thursday, 04 June 2009, 15:32 GMT
fixed in testing