This bug was fixed in the package lasso - 2.2.0-1ubuntu0.1 --------------- lasso (2.2.0-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: lasso does not properly check the return value from the OpenSSL DSA_verify function (LP: #317181). - lasso/xml/tools.c: Correctly check for signature validity. - CVE-2009-0050 -- Stefan Lesicnik <ste...@lsd.co.za> Wed, 14 Jan 2009 19:56:22 +0200 -- [CVE-2009-0050] - Lasso 2.2.1 and earlier does not properly check the return value from the OpenSSL DSA_verify function https://bugs.launchpad.net/bugs/317181 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs