LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Kernel prepatch 3.9-rc6

LWN.net Weekly Edition for April 4, 2013

LWN.net Weekly Edition for March 28, 2013

A kernel change breaks GlusterFS

PyCon: Evangelizing Python

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

bogofilter: code execution

Package(s):bogofilter CVE #(s):CVE-2012-5468
Created:December 12, 2012 Updated:December 21, 2012
Description: From the Debian advisory:

A heap-based buffer overflow was discovered in bogofilter, a software package for classifying mail messages as spam or non-spam. Crafted mail messages with invalid base64 data could lead to heap corruption and, potentially, arbitrary code execution.

Alerts:
Debian DSA-2585-1 2012-12-11
SUSE SUSE-SU-2012:1652-1 2012-12-17
Ubuntu USN-1667-1 2012-12-17
Fedora FEDORA-2012-19705 2012-12-13
Fedora FEDORA-2012-19740 2012-12-13
Mageia MGASA-2012-0363 2012-12-20
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds