Bugzilla – Attachment 28462 Details for
Bug 65795
VUL-0: CVE-2005-0546: cyrus-imapd: bugfix release
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
IDP Log In
|
Forgot Password
patchinfo.cyrus-imapd
patchinfo.cyrus-imapd (text/plain), 1.01 KB, created by
Thomas Biege
on 2005-02-14 21:57:53 UTC
(
hide
)
Description:
patchinfo.cyrus-imapd
Filename:
MIME Type:
Creator:
Thomas Biege
Created:
2005-02-14 21:57:53 UTC
Size:
1.01 KB
patch
obsolete
>DISTRIBUTION: sles8-i386,sles8-ia64,sles8-ppc,sles8-s390,sles8-s390x,sles8-x86_64,sles9-i386,sles9-ia64,sles9-ppc,sles9-s390,sles9-s390x,sles9-x86_64 >PACKAGE: cyrus-imapd >PACKAGER: choeger@suse.de >BUGZILLA: 50795 >SWAMPID: 382 >CATEGORY: security >INDICATIONS: Everyone using cyrus-imapd should update. >CONTRAINDICATIONS: >CD-Produkt-Name: >CD-Produkt-Version: >REQUIRES: >DESCRIPTION: >Security Update: >This update fixes several one-byte buffer overruns in >the imap annote extension as well as in cached header >handling which can be run by an authenticated user. >Additionally bounds checking in fetchnews was improved >to avoid exploitation by a peer news admin. >Please note that one-byte buffer overflows can not be >exploited to execute arbitrary commands by manipulating >the saved registers on the stack if the compiler used (gcc >= 3) >aligns the stack space. Nevertheless the code behaviour may >be manipulated by overwriting local variables. The result is not >known but ranges between a denial-of-service condition and >privilege escalation.
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=28462">View the attachment on a separate page</a>.</b>
Actions:
View
Attachments on
bug 65795
: 28462 |
28463