See advisory here: http://security.e-matters.de/advisories/062004.html Debian has already issued new packages and an advisory: http://www.debian.org/security/2004/dsa-506 This bug also affects "cadaver": http://www.debian.org/security/2004/dsa-507 I'll open another bug for this. Tobias Reproducible: Always Steps to Reproduce:
This one is for pauldv too :) Waiting for a bump to 0.24.6.
I just committed 0.24.6 to testing. I'll mark it stable tomorrow if nothing turns up
0.24.6 has been made stable on major arches, so this is ready for a GLSA draft too. s390 : please mark stable to benefit from the future GLSA.
GLSA drafted
GLSA 200405-13
Stable on s390