Hosting Provided By

CVS: cvs.openbsd.org: ports

From: Brad Smith <brad(at)cvs.openbsd.org>
Date: Mon Nov 25 2002 - 12:08:37 EST

CVSROOT:	/cvs
Module name:	ports
Changes by:	brad@cvs.openbsd.org	2002/11/25 10:08:37

Modified files:
	mail/pine      : Makefile 
Added files:
	mail/pine/patches: patch-pine_bldaddr_c

Log message:
Fix denial of service issue with Pine 4.44.

An attacker can send a fully legal email message with a crafted From-header and thus forcing pine to core dump on startup. The only way to launch pine is manually removing the bad message either directly from the spool, or from another MUA. Until the message has been removed or edited there is no way of accessing the INBOX using pine.

http://marc.theaimsgroup.com/?l=bugtraq&m=103668430620531&w=2 Received on Mon Nov 25 12:18:34 2002

This message: [ Message body ]
Next message: Brad Smith: "CVS: cvs.openbsd.org: ports"
Previous message: Brad Smith: "CVS: cvs.openbsd.org: ports"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 13:45:56 EDT