Comment 12 for bug 1000363

Felix, thanks for the debdiff, it looks good. I adjusted it to target precise-security and also applied it back through lucid, and will publish it shortly. Also to clarify what Kees pointed out, because it was compiled with fortify source (see https://wiki.ubuntu.com/Security/Features#fortify-source), the issue is most likely limited to an information disclosure or denial of service attack.