Lucene search
RedHatRHSA-2003:312HistoryDec 10, 2003 - 12:00 a.m.
(RHSA-2003:312) pan security update
2003-12-1000:00:00
access.redhat.com
15
EPSS
0.013
Percentile
86.4%
Pan is a Gnome/GTK+ newsreader.
A bug in Pan versions prior to 0.13.4 can cause Pan to crash when parsing
an article header containing a very long author email address. This bug
causes a denial of service (crash), but cannot be exploited further. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2003-0855 to this issue.
Users of Pan are advised to upgrade to these erratum packages, which
contain a backported patch correcting this issue.
Red Hat would like to thank Kasper Dupont for alerting us to this issue and
to Charles Kerr for providing the patch.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | i386 | pan | < 0.9.7-3 | pan-0.9.7-3.i386.rpm |
| RedHat | any | ia64 | pan | < 0.9.7-3 | pan-0.9.7-3.ia64.rpm |
Related
cvelist
cvelist
CVE-2003-0855
2003-10-30 05:00:00
cve
cve
CVE-2003-0855
2003-11-03 05:00:00
securityvulns
securityvulns
[RHSA-2003:311-01] Updated Pan packages fix denial of service vulnerability
2003-11-25 00:00:00
nvd
nvd
CVE-2003-0855
2003-11-03 05:00:00
debiancve
debiancve
CVE-2003-0855
2003-11-03 05:00:00
nessus
nessus
RHEL 2.1 : pan (RHSA-2003:312)
2004-07-06 00:00:00