14 matches found
Slackware: Security Advisory (SSA:2006-045-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200511-06 (fetchmail)
The remote host is missing updates announced in advisory GLSA 200511-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
FreeBSD Ports: fetchmail
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD : fetchmail -- fetchmailconf local password exposure (baf74e0b-497a-11da-a4f4-0060084a00e5)
The fetchmail team reports : The fetchmailconf program before and excluding version 1.49 opened the run control file, wrote the configuration to it, and only then changed the mode to 0600 rw-------. Writing the file, which usually contains passwords, before making it unreadable to other users, ca...
[slackware-security] fetchmail
New fetchmail packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2005-3088 https://vulners.com/cve/CVE-2005-4348...
[SECURITY] [DSA 900-3] New fetchmail-ssl packages fix potential information leak
-------------------------------------------------------------------------- Debian Security Advisory DSA 900-3 [email protected] http://www.debian.org/security/ Martin Schulze November 22nd, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 900-3] New fetchmail-ssl packages fix potential information leak
-------------------------------------------------------------------------- Debian Security Advisory DSA 900-3 [email protected] http://www.debian.org/security/ Martin Schulze November 22nd, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 900-1] New fetchmail packages fix potential information leak
-------------------------------------------------------------------------- Debian Security Advisory DSA 900-1 [email protected] http://www.debian.org/security/ Martin Schulze November 18th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 900-1] New fetchmail packages fix potential information leak
-------------------------------------------------------------------------- Debian Security Advisory DSA 900-1 [email protected] http://www.debian.org/security/ Martin Schulze November 18th, 2005 http://www.debian.org/security/faq -...
fetchmail, fetchmailconf security update
CentOS Errata and Security Advisory CESA-2005:823-01 Updated fetchmail packages that fix insecure configuration file creation is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding...
RHEL 2.1 : fetchmail (RHSA-2005:823)
Updated fetchmail packages that fix insecure configuration file creation is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding utility. A bug was found in the way the fetchmailconf...
fetchmail security announcement 2005-02 (CVE-2005-3088)
fetchmail-SA-2005-02: security announcement Topic: password exposure in fetchmailconf Author: Matthias Andree Version: 1.02 Announced: 2005-10-21 Type: insecure creation of file Impact: passwords are written to a world-readable file Danger: medium Credits: Thomas Wolff, Miloslav Trmac for pointin...
CVE-2005-3088
CVE-2005-3088 affects fetchmail and its fetchmailconf component. The advisory describes that, in versions prior to the fixes noted in references, configuration files are created with insecure world-readable permissions, allowing local users to read sensitive data such as passwords. OpenVAS and di...
Low: Red Hat Security Advisory: fetchmail security update
Updated fetchmail packages that fix insecure configuration file creation is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Fetchmail is a remote mail retrieval and forwarding utility. A bug was found in the way the fetchmailconf...