Fedora Legacy Test Update Notification: pine

Marc Deslauriers marcdeslauriers at videotron.ca
Thu Mar 16 01:33:30 UTC 2006 

---------------------------------------------------------------------
Fedora Legacy Test Update Notification
FEDORALEGACY-2006-184074
Bugzilla https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=184074
2006-03-15
---------------------------------------------------------------------

Name        : pine
Versions    : rh73: pine-4.44-19.73.1.legacy
Versions    : rh9: pine-4.44-19.90.1.legacy
Summary     : A commonly used, MIME compliant mail and news reader.
Description :
Pine is a very popular, easy to use, full-featured email user agent
that includes a simple text editor called pico. Pine supports MIME
extensions and can also be used to read news. Pine also supports IMAP,
mail, and MH style folders.

---------------------------------------------------------------------
Update Information:

An updated Pine package is now available to fix a denial of service
attack.

Pine is an email user agent.

The c-client IMAP client library, as used in Pine 4.44 contains an
integer overflow and integer signedness flaw. An attacker could create a
malicious IMAP server in such a way that it would cause Pine to crash.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2003-0297 to this issue.

Users of Pine are advised to upgrade to these erratum packages which
contain a backported patch to correct this issue.

---------------------------------------------------------------------
Changelogs

rh73:
* Wed Mar 08 2006 Marc Deslauriers <marcdeslauriers at videotron.ca>
4.44-19.73.1.legacy
- Added patch for CVE-2003-0297

rh9:
* Wed Mar 08 2006 Marc Deslauriers <marcdeslauriers at videotron.ca>
4.44-19.90.1.legacy
- Added patch for CVE-2003-0297

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedoralegacy.org/
(sha1sums)

rh73:
2f5de5f092e8d5c2d821e3715fcc6656b19e1b54
redhat/7.3/updates-testing/i386/pine-4.44-19.73.1.legacy.i386.rpm
4fc304469e6dad1025ac0eb1c428bbc84a9ed76f
redhat/7.3/updates-testing/SRPMS/pine-4.44-19.73.1.legacy.src.rpm

rh9:
043112c55f52e5454ab01e52f7a50968016ac6a1
redhat/9/updates-testing/i386/pine-4.44-19.90.1.legacy.i386.rpm
d84320a9dbe9b1b1917e2acb8c6306c005711075
redhat/9/updates-testing/SRPMS/pine-4.44-19.90.1.legacy.src.rpm

---------------------------------------------------------------------

Please test and comment in bugzilla.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 191 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20060315/1ce65014/attachment.sig>

More information about the fedora-legacy-list mailing list