procmail vulnerability

2014-09-04T00:00:00
ID USN-2340-1
Type ubuntu
Reporter Ubuntu
Modified 2014-09-04T00:00:00

Description

Tavis Ormandy discovered that the formail tool incorrectly handled certain malformed mail headers. An attacker could use this flaw to cause formail to crash, resulting in a denial of service, or possibly execute arbitrary code.