Advisories:rPSA-2006-0084
From rPath Wiki
rPath Security Advisory 2006-0084-1
Published: 2006-05-26
Products
- rPath Linux 1
Rating
- Minor
Exposure Level Classification
- User Non-deterministic Weakness
Updated Versions
- fetchmail=conary.rpath.com@rpl:1/6.2.5.5-0.1-1
rPath Issue Tracking System
References
Description
- Previous versions of fetchmail, when talking to a hostile (possibly
- compromised) mail server, are vulnerable to possible denial of
- service or user compromise. Because a hostile or compromised
- mail server can take other actions on the user's behalf and
- has been provided with user authentication data, this individual
- security update can provide only limited protection against hostile
- or compromised servers, and does not and cannot protect against
- attacks such as theft of authentication information or email data
- by a hostile or compromised mail server.
Copyright 2006 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html