Nom du paquet
silc-toolkit
Date
2008-07-30
Advisory ID
MDVSA-2008:158
Affected versions
2008.0 i586 , 2008.0 x86_64

Problem description

A vulnerability was found in the SILC toolkit before version 1.1.5
that allowed a remote attacker to cause a denial of service (crash),
or possibly execute arbitrary code via long input data (CVE-2008-1227).

A vulnerability was found in the SILC toolkit before version 1.1.7
that allowed a remote attacker to execute arbitrary code via a crafted
PKCS#2 message (CVE-2008-1552).

The updated packages have been patched to correct these issues.

Updated packages

2008.0 i586

 35e5d87de2aff27596270ae9e55ca8dd  2008.0/i586/libsilc-1.1_2-1.1.2-2.1mdv2008.0.i586.rpm
 efaac773338d54d32b51b0d53e55483b  2008.0/i586/libsilcclient-1.1_2-1.1.2-2.1mdv2008.0.i586.rpm
 873726229e4b414b8c422b424edd2dcc  2008.0/i586/silc-toolkit-1.1.2-2.1mdv2008.0.i586.rpm
 a1c102dd0788cc8ef7f48aa6bea26331  2008.0/i586/silc-toolkit-devel-1.1.2-2.1mdv2008.0.i586.rpm 
 08dfd9be2c32c9ebac8da73803f62c6f  2008.0/SRPMS/silc-toolkit-1.1.2-2.1mdv2008.0.src.rpm

2008.0 x86_64

 07b24c79c06810497cf581e7eeb06a11  2008.0/x86_64/lib64silc-1.1_2-1.1.2-2.1mdv2008.0.x86_64.rpm
 29075aa71e7e63b02e54001610facfea  2008.0/x86_64/lib64silcclient-1.1_2-1.1.2-2.1mdv2008.0.x86_64.rpm
 79d595aeb0f9764d6b5563097f7e958c  2008.0/x86_64/silc-toolkit-1.1.2-2.1mdv2008.0.x86_64.rpm
 855026158877e6963e81d4d1ab95f6f6  2008.0/x86_64/silc-toolkit-devel-1.1.2-2.1mdv2008.0.x86_64.rpm 
 08dfd9be2c32c9ebac8da73803f62c6f  2008.0/SRPMS/silc-toolkit-1.1.2-2.1mdv2008.0.src.rpm

References