Konversation’s Blowfish ECB encryption support assumes incoming blocks
to be the expected 12 bytes. The lack of a sanity-check for the actual
size can cause a denial of service and an information leak to the local
user.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
any | any | any | konversation | < 1.5.1-1 | UNKNOWN |