231 matches found
Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size a different vulnerability than CVE-2014-3618.
...
Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header related to "unbalanced quotes."
...
SUSE: Security Advisory (SUSE-SU-2014:1137-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2017:3231-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:0173-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 33 Update: spamassassin-3.4.5-1.fc33
SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...
[SECURITY] Fedora 34 Update: spamassassin-3.4.5-1.fc34
SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...
[SECURITY] Fedora 31 Update: spamassassin-3.4.4-1.fc31
SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...
Huawei EulerOS: Security Advisory for procmail (EulerOS-SA-2017-1317)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for procmail (EulerOS-SA-2017-1316)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Photon OS 2.0: Procmail PHSA-2017-0051
An update of the procmail package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0051. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121773;...
Virtuozzo 7 : procmail (VZLSA-2017-3269)
An update for procmail is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
[SECURITY] Fedora 27 Update: spamassassin-3.4.2-2.fc27
SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...
[SECURITY] Fedora 28 Update: spamassassin-3.4.2-2.fc28
SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...
Amazon Linux AMI : procmail (ALAS-2018-1084)
A heap-based buffer overflow flaw was found in procmail's formail utility. A remote attacker could send a specially crafted email that, when processed by formail, could cause formail to crash or, possibly, execute arbitrary code as the user running formail.CVE-2017-16844 C Tenable Network Securit...
Important: procmail
Issue Overview: A heap-based buffer overflow flaw was found in procmail's formail utility. A remote attacker could send a specially crafted email that, when processed by formail, could cause formail to crash or, possibly, execute arbitrary code as the user running formail.CVE-2017-16844 Affected...
Photon OS 1.0: Binutils / Glibc / Linux / Mongodb / Openssh / Procmail / Python2 / Rsync PHSA-2017-0052 (deprecated)
An update of rsync,python2,procmail,libvirt,linux,mongodb,openssh,binutils,glibc packages for photonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory...
Security Bulletin: A vulnerability in procmail affects PowerKVM
Summary PowerKVM is affected by a vulnerability in procmail. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2017-16844 DESCRIPTION: Procmail is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the loadbuf function in the formail...
Security Bulletin: SmartCloud Provisioning - Vulnerability in procmail
Summary A flaw has been discovered in procmail that affects SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance CVE-2014-3618. Vulnerability Details CVE-ID: CVE-2014-3618 Description: procmail is vulnerable to a heap-based buffer overflow, caused by improper bounds checking wh...
SUSE SLED12 / SLES12 Security Update : procmail (SUSE-SU-2018:0173-1)
This update for procmail fixes the following issues : - CVE-2017-16844: Heap-based buffer overflow in loadbuf function could lead to remote denial of service bsc1068648 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenab...