LWN.net Logo

Mailutils: multiple vulnerabilities in imap4d and mail

Package(s):mailutils CVE #(s):CAN-2005-1520 CAN-2005-1521 CAN-2005-1522 CAN-2005-1523
Created:May 27, 2005 Updated:June 3, 2005
Description: infamous41d discovered several vulnerabilities in GNU Mailutils. imap4d does not correctly implement formatted printing of command tags (CAN-2005-1523), fails to validate the range sequence of the "FETCH" command (CAN-2005-1522), and contains an integer overflow in the "fetch_io" routine (CAN-2005-1521). mail contains a buffer overflow in "header_get_field_name()" (CAN-2005-1520).
Alerts:
Debian DSA-732-1 2005-06-03
Gentoo 200505-20 2005-05-27

(Log in to post comments)

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds