Debian 5.0: DSA-1881-1 Critical: cyrus-imapd Buffer Overflow Level Risk
debian
September 7, 2009
It was discovered that the SIEVE component of cyrus-imapd, a highly scalable enterprise mail system, is vulnerable to a buffer overflow when processing SIEVE scripts
Topics Covered
Summary
It was discovered that the SIEVE component of cyrus-imapd, a highly scalable
enterprise mail system, is vulnerable to a buffer overflow when processing
SIEVE scripts. Due to incorrect use of the sizeof() operator an attacker is
able to pass a negative length to snprintf() calls resulting in large positive
values due to integer conversion. This causes a buffer overflow which can be
used to elevate privileges to the cyrus system user. An attacker who is able
to install SIEVE scripts executed by the server is therefore able to read and
modify arbitrary email messages on the system.
For the oldstable distribution (etch), this problem has been fixed in
version 2.2.13-10+etch2.
For the stable distribution (lenny), this problem has been fixed in
version 2.2.13-14+lenny1.
For the testing (squeeze) and unstable (sid) distribution, this problem
will be fixed soon.
We recommend that you upgrade your cyrus-imapd-2.2 packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: cyrus-imapd-2.2
CVE ID: none assigned yet
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!