MDKSA-2001:063
- Package name
- fetchmail
- Date
- 2001-07-05
- Advisory ID
- MDKSA-2001:063
- Affected versions
- 8.0 i586 , SNF7.2 i586 , 7.2 i586 , 7.1 i586 , CS1.0 i586
Problem description
Wolfram Kleff reported recently that the fetchmail program would segfault when receiving emails with a very large "To:" header. This is due to a buffer overflow within the header parsing code, which can be exploited remotely.
Updated packages
8.0 i586
3b1e12c828e28e9a31947bf5046a59d0 8.0/RPMS/fetchmail-5.7.4-5.1mdk.i586.rpm d4efb43e905b1e7039b407a6649c2812 8.0/RPMS/fetchmail-daemon-5.7.4-5.1mdk.i586.rpm 18f72c84c4eeb6740ebcd71825a0605a 8.0/RPMS/fetchmailconf-5.7.4-5.1mdk.i586.rpm 94b828fda9cf2d223a81399f135c42ca 8.0/SRPMS/fetchmail-5.7.4-5.1mdk.src.rpm
SNF7.2 i586
f9726971c69d2c305e47896fec5f1c3d snf7.2/RPMS/fetchmail-5.5.2-5.1mdk.i586.rpm c8ae081f14e5c7fc0007a459e81b9229 snf7.2/RPMS/fetchmail-daemon-5.5.2-5.1mdk.i586.rpm 873ce5f00faada719f061d109351fe73 snf7.2/RPMS/fetchmailconf-5.5.2-5.1mdk.i586.rpm bacf55efa2adb11a4669afe2ade7284b snf7.2/SRPMS/fetchmail-5.5.2-5.1mdk.src.rpm
7.2 i586
f9726971c69d2c305e47896fec5f1c3d 7.2/RPMS/fetchmail-5.5.2-5.1mdk.i586.rpm c8ae081f14e5c7fc0007a459e81b9229 7.2/RPMS/fetchmail-daemon-5.5.2-5.1mdk.i586.rpm 873ce5f00faada719f061d109351fe73 7.2/RPMS/fetchmailconf-5.5.2-5.1mdk.i586.rpm bacf55efa2adb11a4669afe2ade7284b 7.2/SRPMS/fetchmail-5.5.2-5.1mdk.src.rpm
7.1 i586
dde4353600605b2c7007e66084a2adbc 7.1/RPMS/fetchmail-5.3.8-4.1mdk.i586.rpm 799409e78645f9bace3e19bcf5e499f3 7.1/RPMS/fetchmailconf-5.3.8-4.1mdk.i586.rpm 0ec22d1bd0d69c5942e5ceb9a24a7a1e 7.1/SRPMS/fetchmail-5.3.8-4.1mdk.src.rpm
CS1.0 i586
dde4353600605b2c7007e66084a2adbc 1.0.1/RPMS/fetchmail-5.3.8-4.1mdk.i586.rpm 799409e78645f9bace3e19bcf5e499f3 1.0.1/RPMS/fetchmailconf-5.3.8-4.1mdk.i586.rpm 0ec22d1bd0d69c5942e5ceb9a24a7a1e 1.0.1/SRPMS/fetchmail-5.3.8-4.1mdk.src.rpm