Red Hat Bugzilla – Bug 228757
CVE-2007-0884: mimedefang 2.59, 2.60 buffer overflow
Last modified: 2007-11-30 17:11:57 EST
"Buffer overflow in Roaring Penguin MIMEDefang 2.59 and 2.60 allows remote
attackers to cause a denial of service (application crash) and possibly execute
arbitrary code via unspecified vectors."
All FE releases are currently at 2.58 - it is unclear to me if that's affected.
2.61 is available in any case.
"Please note that versions 2.58 and earlier do NOT have the vulnerability."
032011.html) - I'll update mimedefang anyway to 2.61.
27596 (mimedefang): Build on target fedora-development-extras succeeded.
27600 (mimedefang): Build on target fedora-6-extras succeeded.
27599 (mimedefang): Build on target fedora-5-extras succeeded.
Building mimedefang for EPEL isn't possible yet as a build requirement package
is missing - but checked in the update there, too.