OPENSUSE-SU-2021:1591-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed DoS or information disclosure in some configurations bsc1188875. - CVE-2021-39272: Fixed STARTTLS session encryption bypassing fetchmail-SA-2021-02 bsc1190069. - Update to 6.4.22 bsc1152964, jscSLE-18159, jscSLE-17903,...

SUSE-SU-2021:4018-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed DoS or information disclosure in some configurations bsc1188875. - CVE-2021-39272: Fixed STARTTLS session encryption bypassing fetchmail-SA-2021-02 bsc1190069. - Update to 6.4.22 bsc1152964, jscSLE-18159, jscSLE-17903,...

OPENSUSE-SU-2021:4018-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed DoS or information disclosure in some configurations bsc1188875. - CVE-2021-39272: Fixed STARTTLS session encryption bypassing fetchmail-SA-2021-02 bsc1190069. - Update to 6.4.22 bsc1152964, jscSLE-18159, jscSLE-17903,...

MGASA-2021-0548 Updated fetchmail packages fix security vulnerability

Update to fetchmail 6.4.24 fixes STARTTLS session encryption bypassing. CVE-2021-39272...

OPENSUSE-SU-2021:1416-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-39272: Fix failure to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. bsc1190069 This update was imported from the SUSE:SLE-15:Update update project...

SUSE-SU-2021:3493-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-39272: Fix failure to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. bsc1190069...

SUSE-SU-2021:3492-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-39272: Fix failure to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. bsc1190069...

OPENSUSE-SU-2021:2791-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed a missing variable initialization that can cause read from bad memory locations. bsc1188875 - Change PASSWORDLEN from 64 to 256 bsc1188034...

SUSE-SU-2021:2771-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-36386: DoS or information disclosure in some configurations bsc1188875 - Change PASSWORDLEN from 64 to 256 bsc1188034 - Set the hostname for SNI when using TLS bsc1182807 - Allow --syslog option in daemon mode. bsc1033081 - Set the...

SUSE-SU-2016:0872-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2012-3482: A denial of service vulnerability in the base64 decoder during processing server NTLM protocol exchange was fixed bsc775988...

Debian DSA-060-1 : fetchmail - buffer overflow

Wolfram Kleff found a problem in fetchmail: it would crash when processing emails with extremely long headers. The problem was a buffer overflow in the header parser which could be exploited. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plug...

Mandrake Linux Security Advisory : fetchmail (MDKSA-2002:063)

Several buffer overflows and a boundary check error were discovered in all fetchmail versions prior to 6.1.0 by e-matters GmbH. These problems are vulnerable to crashes and/or arbitrary code execution by remote attackers if fetchmail is running in multidrop mode. The code execution would be done...

Mandrake Linux Security Advisory : fetchmail (MDKSA-2003:101)

A bug was discovered in fetchmail 6.2.4 where a specially crafted email message can cause fetchmail to crash. Thanks to Nalin Dahyabhai of Red Hat for providing the patch to fix the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...

Critical: Red Hat Security Advisory: fetchmail security update

Updated Fetchmail packages are available for Red Hat Linux Advanced Server which close a remotely-exploitable vulnerability in unpatched versions of Fetchmail prior to 6.2.0. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation Fetchmail is a remote mail retrieval and forwarding...