LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

cyrus-imapd: buffer overflow

Package(s):cyrus-imapd CVE #(s):CVE-2009-2632
Created:September 8, 2009 Updated:October 24, 2011
Description: From the Debian advisory: It was discovered that the SIEVE component of cyrus-imapd, a highly scalable enterprise mail system, is vulnerable to a buffer overflow when processing SIEVE scripts. Due to incorrect use of the sizeof() operator an attacker is able to pass a negative length to snprintf() calls resulting in large positive values due to integer conversion. This causes a buffer overflow which can be used to elevate privileges to the cyrus system user. An attacker who is able to install SIEVE scripts executed by the server is therefore able to read and modify arbitrary email messages on the system.
Alerts:
Gentoo 201110-16 2011-10-22
Mandriva MDVSA-2009:229-1 2009-12-05
Ubuntu USN-838-1 2009-09-28
CentOS CESA-2009:1459 2009-09-25
Debian DSA-1893-1 2009-09-23
Debian DSA-1892-1 2009-09-23
Red Hat RHSA-2009:1459-04 2009-09-23
Mandriva MDVSA-2009:242-1 2009-09-22
Mandriva MDVSA-2009:242 2009-09-22
Fedora FEDORA-2009-9559 2009-09-15
CentOS CESA-2009:1459 2009-10-30
Mandriva MDVSA-2009:229 2009-09-11
Fedora FEDORA-2009-9417 2009-09-09
Fedora FEDORA-2009-9428 2009-09-09
Debian DSA-1881-1 2009-09-07
SuSE SUSE-SR:2009:016 2009-10-13
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds