============================================================================ Ubuntu Security Notice USN-2401-1 November 10, 2014 konversation vulnerability ============================================================================ A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: Konversation could be made to crash if it received specially crafted network traffic. Software Description: - konversation: Internet Relay Chat (IRC) client for KDE Details: Manuel Nickschas discovered that Konversation did not properly perform input sanitization when using Blowfish ECB encryption. A remote attacker could exploit this to cause a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: konversation 1.4-1ubuntu2.1 After a standard system update you need to restart Konversation to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-2401-1 CVE-2014-8483 Package Information: https://launchpad.net/ubuntu/+source/konversation/1.4-1ubuntu2.1