Multiple Vendor BSD libutil pw_error() Format String Vulnerability

Multiple Vendor BSD libutil pw_error() Format String Vulnerability

Solution:
OpenBSD has released a patch for version 2.7.
FreeBSD users should upgrade to FreeBSD 4.1.
A fix has been committed to the NetBSD source tree and should be available via anonymous CVS.

OpenBSD OpenBSD 2.7

OpenBSD O25_pw_error.patch
OPENBSD 2.7 PATCHApply by doing: cd /usr/src patch -p0 < 025_pw_error.patchAnd then rebuild and install libutil. cd lib/libutil make depend make make install
http://www.securityfocus.com/data/vulnerabilities/patches/O25_pw_error .patch