Bug 97342 (CAN-2003-0279)
Summary: | CAN-2003-0279 c-client imap client | ||||||
---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 2.1 | Reporter: | Mark J. Cox <mjc> | ||||
Component: | pine | Assignee: | Mike A. Harris <mharris> | ||||
Status: | CLOSED ERRATA | QA Contact: | Ben Levenson <benl> | ||||
Severity: | low | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | 2.1 | CC: | k.georgiou | ||||
Target Milestone: | --- | Keywords: | Security | ||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
URL: | http://marc.theaimsgroup.com/?l=bugtraq&m=105294024124163 | ||||||
Whiteboard: | impact=low,public=20030514 | ||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2005-01-12 18:40:03 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | |||||||
Bug Blocks: | 132992 | ||||||
Attachments: |
|
Description
Mark J. Cox
2003-06-13 13:04:36 UTC
This affects RHEL2.1 and can allow a remote IMAP server the ability to crash Pine. Created attachment 107825 [details]
Proposed patch based on code in imap-2002c
I've attached a patch, however there is similar code in imap_parse_extension that isn't fixed that looks like it could do with the same fix at first glance (if so then we need to fix imap-2002d as in RHEL3 as well). For U7 This issue should now be resolved in pine-4.44-20, currently in QA testing. Setting bug to "MODIFIED" state. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-015.html |