CVE-2009-0363 barnowl

Metadata

high
7.5
barnowl
CVE-2009-0363
2017-06-18 07:04
CVE-2009-0363 owl
CVE-2009-0363
2017-06-16 18:51
2017-04-01 19:11
2017-01-05 20:16

Description

Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b) owl 2.1.11 allow remote attackers to execute arbitrary code via vectors involving (1) a crafted zcrypt message, related to zcrypt.c; (2) a reply command on a message with a Zephyr Cc: list, related to zwrite.c; and unspecified other use of the products.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
buster barnowl 1.0.5-1
jessie barnowl 1.0.5-1
sid barnowl 1.0.5-1
stretch barnowl 1.0.5-1
wheezy barnowl 1.0.5-1