On Thu, Sep 04, 2014 at 08:40:23AM +0200, Salvatore Bonaccorso wrote: > Source: procmail > Version: 3.22-19 > Severity: grave > Tags: security patch upstream > > Hi, > > the following vulnerability was published for procmail. > > CVE-2014-3618[0]: > Heap-overflow in procmail's formail utility when processing specially-crafted > email headers > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry. > > For further information see: > > [0] https://security-tracker.debian.org/tracker/CVE-2014-3618 > [1] http://www.openwall.com/lists/oss-security/2014/09/03/8
Seems the same bug as #704675. I'll check. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
