tech-security: Re: Is this known?

Subject: Re: Is this known?
To: Simas Mockevicius <symka@netbsd.vejas.lt>
From: Daniel Carosone <dan@geek.com.au>
List: tech-security
Date: 02/06/2004 18:29:43

--7JfCtLOvnd9MIVvH
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

On Fri, Feb 06, 2004 at 09:25:56AM +0200, Simas Mockevicius wrote:

> Advisory ID : PINE-CERT-20040201 (CAN-2004-0114)
> Authors : Joost Pol


Yes, it is known. A fix is in current, pullups to 1.6.2 are pending,
and a security advisory draft has been written.

It is considered quite difficult or impractical to exploit
effectively.

--
Dan.

--7JfCtLOvnd9MIVvH
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (NetBSD)

iQCVAwUBQCNCZz5Ru2/4N2IFAQHRQQQAshPngnvRWF27AnjSQDhZB0TYZl+wUotv
pV3/uzC0T8sglRUaERgEnsQ/PWeGqJV77Iwxpdwz6fHVMW3TFkia2RF/UvG89oEa
bn9EbFYezoTbjvysPkuLswvFQdAhFJC/pmAEjAjTIG8YWSHDi4NpYdHXXO02gw1t
kfkPL0WJ2mE=
=R4Ow
-----END PGP SIGNATURE-----

--7JfCtLOvnd9MIVvH--