Pine, developed at the University of Washington, is a tool for reading,
sending, and managing electronic messages (including mail and news).
A security problem was found in versions of Pine 4.44 and earlier. In these
verions, Pine does not allocate enough memory for the parsing and escaping
of the “From” header, allowing a carefully crafted email to cause a
buffer overflow on the heap. This will result in Pine crashing.
All users of Pine on Red Hat Linux Advanced Server are advised to
update to these errata packages containing a patch to version 4.44
of Pine that fixes this vulnerability.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | ia64 | pine | < 4.44-7.21AS.0 | pine-4.44-7.21AS.0.ia64.rpm |
RedHat | any | i386 | pine | < 4.44-7.21AS.0 | pine-4.44-7.21AS.0.i386.rpm |