Slackware 8.1/9.0 Security Advisory: Mutt Buffer Overflow Critical Risk
slackware
March 30, 2003
This issue may allow a remoteattacker controlling a malicious IMAP server to execute code onyour machine as the user running mutt if you connect to the IMAPserver using mutt.
Summary
Here are the details from the Slackware 9.0 ChangeLog:
Sat Mar 29 13:46:36 PST 2003
patches/packages/mutt-1.4.1i-i386-1.tgz: Upgraded to mutt-1.4.1i.
From www.mutt.org:
Mutt 1.4.1 and 1.5.4 were released on March 19, 2003. These
releases both fix a buffer overflow identified by Core Security
Technologies. The only differences between 1.4 and 1.4.1 are bug
fixes. If you are currently using 1.4, it's probably a very good
idea to update.
(* Security fix *)
WHERE TO FIND THE NEW PACKAGES:
Updated package for Slackware 8.1:
Updated package for Slackware 9.0:
MD5 SIGNATURES:
Here are the md5sums for the packages:
Slackware 8.1 package:
e39aa947e54ffe27b44f7f5a8c7d3eed mutt-1.4.1i-i386-1.tgz
Slackware 9.0 package:
cde2991aaa4d41fb82a983555b347e64 mutt-1.4.1i-i386-1.tgz
INSTALLATION INSTRUCTIONS:
Upgrade mutt using upgradepkg (as root):
upgradepkg mutt-1.4.1i-i386-1.tgz
Slackware Linux Security Team
Topics Covered
Where Find New Packages
MD5 Signatures
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!