Bug#415387: security issues in icedove

Alexander Sack Sun, 18 Mar 2007 20:03:13 -0800

On Sun, Mar 18, 2007 at 06:52:44PM -0700, Steve Langasek wrote:
> On Mon, Mar 19, 2007 at 01:42:28AM +0100, Alexander Sack wrote:
> > Package: icedove
> > Version: 1.5.0.9.dfsg1-1
> > Severity: critical
> 
> > icedove 1.5.0.9 has security issues which got fixed in 1.5.0.10
> 
> What security issues?
>


Yes, sorry:
   - CVE-2007-0008, MFSA 2006-06: SSLv2 Client Integer Underflow
       Vulnerability
   - CVE-2007-0009, MFSA 2006-06: SSLv2 Server Stack Overflow
       Vulnerability
   - CVE-2007-0775, CVE-2007-0776, CVE-2007-0777, MFSA 2007-01:
       Crashes with evidence of memory corruption

 - Alexander



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#415387: security issues in icedove

Reply via email to