remote denial-of-service in pine

2002-11-2511:03:55

lists.opensuse.org

EPSS

0.095

Percentile

94.8%

JSON

Pine, Program for Internet News and Email, is a well known and widely used eMail client. While parsing and escaping characters of eMail addresses pine does not allocate enough memory for storing the escaped mailbox part of an address. This results in a buffer overflow on the heap that will make pine crash. The offending eMail can just be deleted manually or by using another mail user agent.

OSVersionArchitecturePackageVersionFilename
openSUSE7.3i386pine< 4.33-266pine-4.33-266.i386.rpm
openSUSE7.2i386pine< 4.33-266pine-4.33-266.i386.rpm
openSUSE7.1ppcpine< 4.33-141pine-4.33-141.ppc.rpm
openSUSE8.0i386pine< 4.44-222pine-4.44-222.i386.rpm
openSUSE7.3ppcpine< 4.33-143pine-4.33-143.ppc.rpm
openSUSE7.1i386pine< 4.33-263pine-4.33-263.i386.rpm
openSUSE8.1i586pine< 4.44-224pine-4.44-224.i586.rpm
openSUSE7.3sparcpine< 4.33-97pine-4.33-97.sparc.rpm
openSUSE7.1alphapine< 4.33-85pine-4.33-85.alpha.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE	7.3	i386	pine	< 4.33-266	pine-4.33-266.i386.rpm
openSUSE	7.2	i386	pine	< 4.33-266	pine-4.33-266.i386.rpm
openSUSE	7.1	ppc	pine	< 4.33-141	pine-4.33-141.ppc.rpm
openSUSE	8.0	i386	pine	< 4.44-222	pine-4.44-222.i386.rpm
openSUSE	7.3	ppc	pine	< 4.33-143	pine-4.33-143.ppc.rpm
openSUSE	7.1	i386	pine	< 4.33-263	pine-4.33-263.i386.rpm
openSUSE	8.1	i586	pine	< 4.44-224	pine-4.44-224.i586.rpm
openSUSE	7.3	sparc	pine	< 4.33-97	pine-4.33-97.sparc.rpm
openSUSE	7.1	alpha	pine	< 4.33-85	pine-4.33-85.alpha.rpm

EPSS

0.095

Percentile

94.8%

JSON

Related for SUSE-SA:2002:046