Notified: January 11, 2005 Updated: January 11, 2005
Debian GNU/Linux was vulnerable to this problem and has issued an advisory with updated packages: DSA 617. Another vulnerability has been discovered by Dmitry Levin which has been fixed in DSA 626 and has CAN-2004-1183 assigned as unique vulnerability identifier. For the stable distribution (woody) these problems have been fixed in version 3.5.5-6.woody5. For the unstable distribution (sid) these problems have been fixed in version 3.6.1-5. Links: 1. http://www.debian.org/security/2004/dsa-617
The vendor has not provided us with any further information regarding this vulnerability.