From:
[email protected]
Package: courier-imap
Version: 3.0.5.20040712-1
Severity: grave
Tags: security upstream fixed-upstream sarge sid
There is an vulnerability in the authlib/debug.c's auth_debug function that
is exploitable when DEBUG_LOGIN isn't set to 0. Details are in
http://www.idefense.com/application/poi/display?id=131&type=vulnerabilities
The courier-imap version in woody does not appear to be vulnerable as it
does not have an auth_debug function.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (800, 'unstable'), (750, 'experimental'), (500, 'testing') Architecture: i386 (i686)
Kernel: Linux 2.4.27
Locale: LANG=C, LC_CTYPE=en_US.ISO8859-1
--
Obsig: developing a new sig
--
To UNSUBSCRIBE, email to
[email protected]
with a subject of "unsubscribe". Trouble? Contact
[email protected]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)