Mailinglist Archive: opensuse-security (232 mails)

< Previous Next >
Re: [suse-security-announce] SUSE Security Summary Report SUSE-SR:2005:023
  • From: Marcus Meissner <meissner@xxxxxxx>
  • Date: Mon, 17 Oct 2005 10:21:53 +0200
  • Message-id: <20051017082153.GB20260@xxxxxxx>
On Mon, Oct 17, 2005 at 10:20:03AM +0200, Frank Steiner wrote:
> Marcus Meissner wrote
>
> > - imap-lib crashes in client library
> >
> > The client part of the University of Washington IMAP implementation
> > is prone to a buffer overflow while parsing mailbox names. This
> > bug can probably be exploited by a remote attacker to execute
> > arbitrary code with the privileges of the user running the affected
> > mail client. (CAN-2005-2933). The 'imapd' that is included in the
> > "imap" package itself is not affected by this problem.
> >
> > This problem affects all SUSE Linux based products.
>
> Trying to update imap-lib-2002d-61.i586.rpm for SuSE 9.0 tells me
>
> Needs Dependency: linux-gate.so.1
>
> I don't find any reference to "linux-gate.so" in ARCHIVES.gz for SuSE 9.0.
> Am I missing sth?

No, it is a buildproblem on our side.

We will be pushing out fixed packages today.

Ciao, Marcus

< Previous Next >
Follow Ups