The GNU GNATS Development Team has released a new version of GNATS, the
Problem Report Management System.  This release,  4.0.1 is a patch
release to address a potential security vulnerability with string
formatting in gnats/misc.c that was described in:

  http://lists.gnu.org/archive/html/bug-gnats/2004-06/msg00028.html
  http://www.zone-h.org/advisories/read/id=4889
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0623
  http://www.debian.org/security/2004/dsa-590

Additional string formatting fixes were applied to avoid buffer
overflows in constructing formatted date strings.

You may download GNATS 4.0.1 from ftp://ftp.gnu.org/pub/gnu/gnats/ or
http://savannah.gnu.org/download/gnats (temporarily).

-- 
Chad Walstrom <chewie@wookimus.net>           http://www.wookimus.net/
           assert(expired(knowledge)); /* core dump */