Your message dated Thu, 1 Nov 2007 22:20:18 +0900
with message-id <[EMAIL PROTECTED]>
and subject line Processed: retitle 448853 to CVE-2007-5740 format string
vulnerability
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: perdition
Severity: grave
Tags: security
Hi,
"Perdition IMAPD is affected by a format string bug in one of its IMAP
output-string formatting functions. The bug allows the execution of
arbitrary code on the affected server. A successful exploit does not
require prior authentication."
For more information see:
http://seclists.org/bugtraq/2007/Oct/0443.html
Solution: update to 0.17.1
A CVE id for this is pending.
Kind regards
Nico
--
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgpdV1idxj9OO.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Version: 1.17.1-1
Fixed in 1.17.1-1 which was uploaded earlier today.
Will also be fixed in packages that have been prepared for
stable and oldstable, 1.17-7etch1 and 1.15-5sarge1 respectively.
--
Horms
H: http://www.vergenet.net/~horms/
W: http://www.valinux.co.jp/en/
--- End Message ---
