Hi Observe recent Bugtraq - PINE can be used by remote users to take over local accounts. Probably warrants an update?
Apparently 4.20 has a hole too, so any updates should be to 4.21 as well: http://www.securityfocus.com/level2/bottom.html?go=vulnerabilities&id=810
pine-4.21-3 is in Rawhide, hopefully that will suffice. I will bug people to make an errata release of this.
*** Bug 7559 has been marked as a duplicate of this bug. ***
*** Bug 7178 has been marked as a duplicate of this bug. ***