Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian: DSA-1377-2 Critical: fetchmail Null Pointer Denial of Service

debian
Calendar Grey September 21, 2007
Debian Logo
Patch fetchmail to resolve NULL reference error leading to Denial of Service on Debian systems. Essential upgrade for safeguarding email operations.
Matthias Andree discovered that fetchmail, an SSL enabled POP3, APOP and IMAP mail gatherer/forwarder, can under certain circumstances attempt to dereference a NULL pointer and...

Summary


For the old stable distribution (sarge), this problem was not present.

For the unstable distribution (sid), this problem will be fixed soon.

We recommend that you upgrade your fetchmail package.

Upgrade instructions
- --------------------wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 4.0 alias etch

Size/MD5 checksum: 641344 2eadc43a18712b3a1763094f7c837475


These files will probably be moved into the stable distribution on
its next update.

For dpkg-ftp: dists/stable/updates/main


Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here