hashcash -- buffer overflow

2006-07-21T00:00:00
ID DSA-1114
Type debian
Reporter Debian
Modified 2006-07-21T00:00:00

Description

Andreas Seltenreich discovered a buffer overflow in hashcash, a postage payment scheme for email that is based on hash calculations, which could allow attackers to execute arbitrary code via specially crafted entries.

For the stable distribution (sarge) this problem has been fixed in version 1.17-1sarge1.

For the unstable distribution (sid) this problem has been fixed in version 1.21-1.

We recommend that you upgrade your hashcash package.