[MBT] new ticket for pkg courier-imap "Courier Multiple Remote Buffer Overflow Vulnerabilities"
bugs at pld-linux.org
bugs at pld-linux.org
Tue Mar 30 08:52:32 CEST 2004
Date: 2004-03-30 08:52:32+02 Author: Jacek Konieczny (Jajcus) <jajcus at bnet.pl>
Title: Courier Multiple Remote Buffer Overflow Vulnerabilities
Ticket ID: #870
Ticket URL: http://bugs.pld-linux.org/?bug=870
Package: courier-imap-any-older-than-3.0.0
Distribution:
Category: security problem
Current state: opened
Text:
http://www.securityfocus.com/bid/9845/discussion/
"These issues have been reported to affect Courier MTA 0.44.2 and prior, Courier-IMAP 2.2.1 and prior, and Courier SqWebMail 3.6.2 and prior. It has also been reported that the vulnerable codeset mappings may be employed by the Courier IMAP and Webmail service, however, they are not enabled by default."
Working and not affected version is already available in ac-ready. Move to main ac is highly suggested (some peple use own, older builds as courier-imap never went to Ac).
More information about the pld-bugs
mailing list