| | 1 | The BarnOwl 1.0.5 release announcement: |
| | 2 | |
| | 3 | {{{ |
| | 4 | From: Nelson Elhage <nelhage@mit.edu> |
| | 5 | To: barnowl-users@mit.edu |
| | 6 | Subject: BarnOwl 1.0.5 released, fixes multiple security problems (CVE-2009-0363) |
| | 7 | |
| | 8 | We have just released BarnOwl 1.0.5 to our website, into our locker |
| | 9 | for all supported Athena platforms, and into the Debathena apt |
| | 10 | repository. We strongly recommend all users upgrade immediately. |
| | 11 | |
| | 12 | BarnOwl 1.0.5 fixes CVE-2009-0363, including several vectors for |
| | 13 | potential remote code execution, including from crafted 'zcrypt' |
| | 14 | message, or in response to a 'reply' command on messages with certain |
| | 15 | Zephyr Cc: lists. |
| | 16 | |
| | 17 | - Nelson Elhage |
| | 18 | for the BarnOwl team |
| | 19 | |
| | 20 | [1] http://barnowl.mit.edu/ |
| | 21 | }}} |
