DSA-2281-1 opie -- severalID: oval:org.secpod.oval:def:600591 | Date: (C)2011-07-22 (M)2022-10-10 |
Class: PATCH | Family: unix |
Sebastian Krahmer discovered that opie, a system that makes it simple to use One-Time passwords in applications, is prone to a privilege escalation and an off-by-one error, which can lead to the execution of arbitrary code . Adam Zabrocki and Maksymilian Arciemowicz also discovered another off-by-one error , which only affects the lenny version as the fix was already included for squeeze.
Platform: |
Debian 5.0 |
Debian 6.0 |
Product: |
opie-client |
opie-server |