Apple Information for VU#369427

Format string vulnerability in libutil pw_error(3) function

Status

Not Affected

Vendor Statement

This notification is in regards to CERT Advisory "Input validation vulnerability in OpenBSD libutil library" (VU#369427).

Mac OS X is not vulnerable to the input validation vulnerability in the OpenBSD libutil library.

--
Eric Zelenka
ericz@apple.com
Apple Computer, Inc.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.