| Revision Date: | 2005-07-25 | Version: | 502 |
| Title: | RHSA-2005:640: fetchmail security update (Important) |
| Description: | Fetchmail is a remote mail retrieval and forwarding utility.
A buffer overflow was discovered in fetchmail's POP3 client. A malicious server could cause send a carefully crafted message UID and cause fetchmail to crash or potentially execute arbitrary code as the user running fetchmail. The Common Vulnerabilities and Exposures project assigned the name CAN-2005-2335 to this issue.
Users of fetchmail should update to this erratum package which contains a backported patch to correct this issue.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | CVE-2005-2335
RHSA-2005:640-01
|
| Platform(s): | Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
| Product(s): | |
| Definition Synopsis |
| Release Information Red Hat Enterprise Linux 3 is installed
AND fetchmail is earlier than 0:6.2.0-3.el3.2
AND fetchmail is signed with Red Hat master key
OR Package Information
Red Hat Enterprise Linux 4 is installed
AND fetchmail is earlier than 0:6.2.5-6.el4.2
AND fetchmail is signed with Red Hat master key
|