Candidate: CVE-2009-4810
PublicDate: 2010-04-23 14:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4810
Description:
 The Secure Remote Password (SRP) implementation in Samhain before 2.5.4
 does not check for a certain zero value where required by the protocol,
 which allows remote attackers to bypass authentication via crafted input.
Ubuntu-Description:
Notes:
Bugs:
 http://trac.la-samhna.de/samhain/ticket/150
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_samhain:
 upstream: http://trac.la-samhna.de/samhain/changeset/225
upstream_samhain: released (2.5.4)
dapper_samhain: ignored (reached end-of-life)
hardy_samhain: ignored (reached end-of-life)
intrepid_samhain: needed (reached end-of-life)
jaunty_samhain: ignored (reached end-of-life)
karmic_samhain: ignored (reached end-of-life)
lucid_samhain: ignored (reached end-of-life)
maverick_samhain: not-affected (2.6.2-1)
natty_samhain: not-affected (2.6.2-1)
oneiric_samhain: not-affected (2.6.2-1)
precise_samhain: not-affected (2.6.2-1)
quantal_samhain: not-affected (2.6.2-1)
raring_samhain: not-affected (2.6.2-1)
saucy_samhain: not-affected (2.6.2-1)
devel_samhain: not-affected (2.6.2-1)