From $URL : 2. Problem description ====================== Julius Plenz figured out that bogofilter's/bogolexer's base64 could overwrite heap memory in the character set conversion in certain pathological cases of invalid base64 code that decodes to incomplete multibyte characters. 3. Impact ========= Vulnerable bogofilter/bogolexer applications can corrupt their heap and crash. 4. Solution =========== Upgrade your bogofilter to version 1.2.3 (or a newer release). bogofilter is available from SourceForge: <https://sourceforge.net/project/showfiles.php?group_id=62265>
+*bogofilter-1.2.3 (04 Dec 2012) + + 04 Dec 2012; Eray Aslan <eras@gentoo.org> +bogofilter-1.2.3.ebuild: + Security bump - bug #445908 + Should be good for stabilization. Thank you.
Arches, please test and mark stable: =mail-filter/bogofilter-1.2.3 Target keywords : "alpha amd64 arm hppa ia64 ppc ppc64 sh sparc x86"
amd64 stable
x86 stable
ppc stable
ppc64 stable
Stable for HPPA.
stable arm
alpha/ia64/sh/sparc stable
Thanks, everyone. GLSA vote: no.
Vote: YES.
GLSA Vote: no, too. closing noglsa.