Fedora Legacy Test Update Notification: pine
Marc Deslauriers
marcdeslauriers at videotron.ca
Thu Mar 16 01:33:30 UTC 2006
---------------------------------------------------------------------
Fedora Legacy Test Update Notification
FEDORALEGACY-2006-184074
Bugzilla https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=184074
2006-03-15
---------------------------------------------------------------------
Name : pine
Versions : rh73: pine-4.44-19.73.1.legacy
Versions : rh9: pine-4.44-19.90.1.legacy
Summary : A commonly used, MIME compliant mail and news reader.
Description :
Pine is a very popular, easy to use, full-featured email user agent
that includes a simple text editor called pico. Pine supports MIME
extensions and can also be used to read news. Pine also supports IMAP,
mail, and MH style folders.
---------------------------------------------------------------------
Update Information:
An updated Pine package is now available to fix a denial of service
attack.
Pine is an email user agent.
The c-client IMAP client library, as used in Pine 4.44 contains an
integer overflow and integer signedness flaw. An attacker could create a
malicious IMAP server in such a way that it would cause Pine to crash.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2003-0297 to this issue.
Users of Pine are advised to upgrade to these erratum packages which
contain a backported patch to correct this issue.
---------------------------------------------------------------------
Changelogs
rh73:
* Wed Mar 08 2006 Marc Deslauriers <marcdeslauriers at videotron.ca>
4.44-19.73.1.legacy
- Added patch for CVE-2003-0297
rh9:
* Wed Mar 08 2006 Marc Deslauriers <marcdeslauriers at videotron.ca>
4.44-19.90.1.legacy
- Added patch for CVE-2003-0297
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedoralegacy.org/
(sha1sums)
rh73:
2f5de5f092e8d5c2d821e3715fcc6656b19e1b54
redhat/7.3/updates-testing/i386/pine-4.44-19.73.1.legacy.i386.rpm
4fc304469e6dad1025ac0eb1c428bbc84a9ed76f
redhat/7.3/updates-testing/SRPMS/pine-4.44-19.73.1.legacy.src.rpm
rh9:
043112c55f52e5454ab01e52f7a50968016ac6a1
redhat/9/updates-testing/i386/pine-4.44-19.90.1.legacy.i386.rpm
d84320a9dbe9b1b1917e2acb8c6306c005711075
redhat/9/updates-testing/SRPMS/pine-4.44-19.90.1.legacy.src.rpm
---------------------------------------------------------------------
Please test and comment in bugzilla.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 191 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20060315/1ce65014/attachment.sig>
More information about the fedora-legacy-list
mailing list