Paketname
fetchmail
Datum
2001-07-05
Advisory ID
MDKSA-2001:063
Betroffene Versionen
8.0 i586 , SNF7.2 i586 , 7.2 i586 , 7.1 i586 , CS1.0 i586

Problembeschreibung

Wolfram Kleff reported recently that the fetchmail program would segfault when receiving emails with a very large "To:" header. This is due to a buffer overflow within the header parsing code, which can be exploited remotely.

Aktualisierte Pakete

8.0 i586

 3b1e12c828e28e9a31947bf5046a59d0  8.0/RPMS/fetchmail-5.7.4-5.1mdk.i586.rpm
d4efb43e905b1e7039b407a6649c2812  8.0/RPMS/fetchmail-daemon-5.7.4-5.1mdk.i586.rpm
18f72c84c4eeb6740ebcd71825a0605a  8.0/RPMS/fetchmailconf-5.7.4-5.1mdk.i586.rpm
94b828fda9cf2d223a81399f135c42ca  8.0/SRPMS/fetchmail-5.7.4-5.1mdk.src.rpm

SNF7.2 i586

 f9726971c69d2c305e47896fec5f1c3d  snf7.2/RPMS/fetchmail-5.5.2-5.1mdk.i586.rpm
c8ae081f14e5c7fc0007a459e81b9229  snf7.2/RPMS/fetchmail-daemon-5.5.2-5.1mdk.i586.rpm
873ce5f00faada719f061d109351fe73  snf7.2/RPMS/fetchmailconf-5.5.2-5.1mdk.i586.rpm
bacf55efa2adb11a4669afe2ade7284b  snf7.2/SRPMS/fetchmail-5.5.2-5.1mdk.src.rpm

7.2 i586

 f9726971c69d2c305e47896fec5f1c3d  7.2/RPMS/fetchmail-5.5.2-5.1mdk.i586.rpm
c8ae081f14e5c7fc0007a459e81b9229  7.2/RPMS/fetchmail-daemon-5.5.2-5.1mdk.i586.rpm
873ce5f00faada719f061d109351fe73  7.2/RPMS/fetchmailconf-5.5.2-5.1mdk.i586.rpm
bacf55efa2adb11a4669afe2ade7284b  7.2/SRPMS/fetchmail-5.5.2-5.1mdk.src.rpm

7.1 i586

 dde4353600605b2c7007e66084a2adbc  7.1/RPMS/fetchmail-5.3.8-4.1mdk.i586.rpm
799409e78645f9bace3e19bcf5e499f3  7.1/RPMS/fetchmailconf-5.3.8-4.1mdk.i586.rpm
0ec22d1bd0d69c5942e5ceb9a24a7a1e  7.1/SRPMS/fetchmail-5.3.8-4.1mdk.src.rpm

CS1.0 i586

 dde4353600605b2c7007e66084a2adbc  1.0.1/RPMS/fetchmail-5.3.8-4.1mdk.i586.rpm
799409e78645f9bace3e19bcf5e499f3  1.0.1/RPMS/fetchmailconf-5.3.8-4.1mdk.i586.rpm
0ec22d1bd0d69c5942e5ceb9a24a7a1e  1.0.1/SRPMS/fetchmail-5.3.8-4.1mdk.src.rpm

Referenzen