Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -8 articles for you...
98
security advisorybuffer overflowRed Hat Enterprise LinuxRed Hat Enterprise Linux 3 RHSA-2009:0275-01 Moderate: imap Buffer Overflow
Updated imap packages to fix a security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team.. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: imap security update Advisory ID: RHSA-2009:0275-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:0275.html Issue date: 2009-02-19 CVE Names: CVE-2008-5005 ==================================================================== 1. Summary: Updated imap packages to fix a security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 3. Description: The imap package provides server daemons for both the IMAP (Internet Message Access Protocol) and POP (Post Office Protocol) mail access protocols. A buffer overflow flaw was discovered in the dmail and tmail mail delivery utilities shipped with imap. If either of these utilities were used as a mail delivery agent, a remote attacker could potentially use this flaw to run arbitrary code as the targeted user by sending a specially-crafted mail message to the victim. (CVE-2008-5005) Users of imap should upgrade to these updated packages, which contain a backported patch to resolve this issue. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update areavailable at 5. Bugs fixed (http://bugzilla.redhat.com/): 469667 - CVE-2008-5005 uw-imap: buffer overflow in dmail and tmail 6. Package List: Red Hat Enterprise Linux AS version 3: Source: i386: imap-2002d-15.i386.rpm imap-debuginfo-2002d-15.i386.rpm imap-devel-2002d-15.i386.rpm imap-utils-2002d-15.i386.rpm ia64: imap-2002d-15.ia64.rpm imap-debuginfo-2002d-15.ia64.rpm imap-devel-2002d-15.ia64.rpm imap-utils-2002d-15.ia64.rpm ppc: imap-2002d-15.ppc.rpm imap-debuginfo-2002d-15.ppc.rpm imap-devel-2002d-15.ppc.rpm imap-utils-2002d-15.ppc.rpm s390: imap-2002d-15.s390.rpm imap-debuginfo-2002d-15.s390.rpm imap-devel-2002d-15.s390.rpm imap-utils-2002d-15.s390.rpm s390x: imap-2002d-15.s390x.rpm imap-debuginfo-2002d-15.s390x.rpm imap-devel-2002d-15.s390x.rpm imap-utils-2002d-15.s390x.rpm x86_64: imap-2002d-15.x86_64.rpm imap-debuginfo-2002d-15.x86_64.rpm imap-devel-2002d-15.x86_64.rpm imap-utils-2002d-15.x86_64.rpm Red Hat Desktop version 3: Source: i386: imap-2002d-15.i386.rpm imap-debuginfo-2002d-15.i386.rpm imap-devel-2002d-15.i386.rpm imap-utils-2002d-15.i386.rpm x86_64: imap-2002d-15.x86_64.rpm imap-debuginfo-2002d-15.x86_64.rpm imap-devel-2002d-15.x86_64.rpm imap-utils-2002d-15.x86_64.rpm Red Hat Enterprise Linux ES version 3: Source: i386: imap-2002d-15.i386.rpm imap-debuginfo-2002d-15.i386.rpm imap-devel-2002d-15.i386.rpm imap-utils-2002d-15.i386.rpm ia64: imap-2002d-15.ia64.rpm imap-debuginfo-2002d-15.ia64.rpm imap-devel-2002d-15.ia64.rpm imap-utils-2002d-15.ia64.rpm x86_64: imap-2002d-15.x86_64.rpm imap-debuginfo-2002d-15.x86_64.rpm imap-devel-2002d-15.x86_64.rpm imap-utils-2002d-15.x86_64.rpm Red Hat Enterprise Linux WS version3: Source: i386: imap-2002d-15.i386.rpm imap-debuginfo-2002d-15.i386.rpm imap-devel-2002d-15.i386.rpm imap-utils-2002d-15.i386.rpm ia64: imap-2002d-15.ia64.rpm imap-debuginfo-2002d-15.ia64.rpm imap-devel-2002d-15.ia64.rpm imap-utils-2002d-15.ia64.rpm x86_64: imap-2002d-15.x86_64.rpm imap-debuginfo-2002d-15.x86_64.rpm imap-devel-2002d-15.x86_64.rpm imap-utils-2002d-15.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2008-5005 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2009 Red Hat, Inc. . Newly released imap updates address a significant security vulnerability in Red Hat Enterprise Linux 3, impacting email communication protocols.. imap Security Fix, Red Hat Updates, Enterprise Linux 3. . LinuxSecurity.com Team
Feb 19, 2009
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!