| 1 | The BarnOwl 1.0.5 release announcement: |
| 2 | |
| 3 | {{{ |
| 4 | From: Nelson Elhage <nelhage@mit.edu> |
| 5 | To: barnowl-users@mit.edu |
| 6 | Subject: BarnOwl 1.0.5 released, fixes multiple security problems (CVE-2009-0363) |
| 7 | |
| 8 | We have just released BarnOwl 1.0.5 to our website, into our locker |
| 9 | for all supported Athena platforms, and into the Debathena apt |
| 10 | repository. We strongly recommend all users upgrade immediately. |
| 11 | |
| 12 | BarnOwl 1.0.5 fixes CVE-2009-0363, including several vectors for |
| 13 | potential remote code execution, including from crafted 'zcrypt' |
| 14 | message, or in response to a 'reply' command on messages with certain |
| 15 | Zephyr Cc: lists. |
| 16 | |
| 17 | - Nelson Elhage |
| 18 | for the BarnOwl team |
| 19 | |
| 20 | [1] http://barnowl.mit.edu/ |
| 21 | }}} |