Mutt GECOS Field Alias Expansion Overflow

2007-05-11T12:48:50
ID OSVDB:34973
Type osvdb
Reporter OSVDB
Modified 2007-05-11T12:48:50

Description

Solution Description

Upgrade to version 1.4.2.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239890 Vendor Specific News/Changelog Entry: http://dev.mutt.org/trac/ticket/2885 Security Tracker: 1018066 Secunia Advisory ID:25408 Secunia Advisory ID:25591 Secunia Advisory ID:26415 Secunia Advisory ID:25546 Secunia Advisory ID:25529 Secunia Advisory ID:25515 RedHat RHSA: RHSA-2007:0386 Other Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:113 Other Advisory URL: http://lists.rpath.com/pipermail/security-announce/2007-June/000194.html Other Advisory URL: ftp://patches.sgi.com/support/free/security/advisories/20070601-01-P.asc Other Advisory URL: http://www.trustix.org/errata/2007/0024/ CVE-2007-2683