Slackware-10.2 ChangeLog (2005-11-08)
Mon Nov 7 19:54:57 CST 2005
Packages
Upgraded to elm2.5.8
- patches/packages/elm-2.5.8-i486-1.tgz
This fixes a buffer overflow in the parsing of the Expires header that
could be used to execute arbitrary code as the user running Elm.
Thanks to Ulf Harnhammar for finding the bug and reminding me to get
out updated packages to address the issue.
A reference to the original advisory:
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0688.html