8 matches found
Gentoo Security Advisory GLSA 201006-12 (fetchmail)
The remote host is missing updates announced in advisory GLSA 201006-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Fedora 12 : fetchmail-6.3.11-4.fc12 (2010-3800)
The updated package fixes CVE-2010-0562. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Security fix for the ALT Linux 6 package fetchmail version 6.3.14-alt1
March 27, 2010 Andrey Rahmatullin 6.3.14-alt1 - 6.3.14 + CVE-2010-0562: heap overrun in verbose SSL cert' info display - package COPYING - remove Packager: - fix buildreqs - fix configure warnings about GSSAPI headers - fix using optflags...
Fedora Update for fetchmail FEDORA-2010-3800
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE Security Update : fetchmail (fetchmail-1996)
This update fixes a heap-based overflow in fetchmail's sdump function. It can be exploited while displaying detailed X.509 certification information to cause a crash or to probably execute arbitrary code too. CVE-2010-0562: CVSS v2 Base Score: 4.0 low AV:N/AC:H/Au:N/C:N/I:P/A:P: Buffer Errors...
FreeBSD Ports: fetchmail
The remote host is missing an update to the system as announced in the referenced advisory. VID 2a6a966f-1774-11df-b5c1-0026189baca3 OpenVAS Vulnerability Test $ Description: Auto generated from VID 2a6a966f-1774-11df-b5c1-0026189baca3 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
FreeBSD Ports: fetchmail
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2010-0562
The CVE-2010-0562 issue affects fetchmail 6.3.11–6.3.13, where the sdump() function in sdump.c can overflow a heap buffer when in verbose mode on platforms with signed char. An attacker could exploit an X.509 certificate whose non‑printable high‑bit characters trigger this overflow, potentially c...