hashcash < 1.21 is apparently vulnerable to a heap overflow
Hi kloeri, can you provide a new ebuild (-1.21) if needed and possible ? Thanks in advance.
kloeri please bump, this one is pretty late ...
1.22 in cvs now.
x86 please test and mark stable.
Rerating, feel free to correct if I'm wrong. I'm not too familiar with hashcash.
Without further details available, I'd follow you upping the rating.
I guess it is a bit like spamassassin or bogofilter.
i've just updated the severity in the draft.
Sent as GLSA 200606-25