SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (E-mail Server)  >   Fetchmail Vendors:   Raymond, Eric S.
(Debian Releases Fix) Re: Fetchmail Can Be Crashed By Remote Users Sending E-Mail With Certain Header Contents
SecurityTracker Alert ID:  1001767
SecurityTracker URL:  http://securitytracker.com/id/1001767
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jun 16 2001
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 5.6.8-2 for Null crash; 5.7.1-2 for SPAM crash; possibly others
Description:   A vulnerability has been reported in the Fetchmail remote mail retrieval software. A remote user can send an e-mail with a long "To:" header that will cause Fetchmail to crash.

Fetchmail reportedly contains a buffer overflow in the handling of headers. It may be possible to exploit this overflow to execute arbitrary code with the privileges of the fetchmail daemon, but this was not confirmed.

If a remote user sends e-mail with a large "To:" line (greater than 25000 characters), Fetchmail will crash with a segmentation fault.

Impact:   A remote user can cause the Fetchmail daemon to crash.
Solution:   Debian has released a fix. See the Source Message for the Debian advisory.
Vendor URL:  www.tuxedo.org/~esr/fetchmail/ (Links to External Site)
Cause:   Boundary error
Underlying OS:  Linux (Debian)

Message History:   This archive entry is a follow-up to the message listed below.
Jun 15 2001 Fetchmail Can Be Crashed By Remote Users Sending E-Mail With Certain Header Contents



 Source Message Contents

Subject:  [SECURITY] [DSA-060-1] fetchmail buffer overflow


-----BEGIN PGP SIGNED MESSAGE-----

- ------------------------------------------------------------------------
Debian Security Advisory DSA-060-1                   security@debian.org
http://www.debian.org/security/                         Wichert Akkerman
June 16, 2001
- ------------------------------------------------------------------------


Package        : fetchmail
Problem type   : buffer overflow
Debian-specific: no

Wolfram Kleff found a problem in fetchmail: it would crash when
processing emails with extremely long headers. The problem was
a buffer overflow in the header parser which could be exploited.

This has been fixed in version 5.3.3-1.3, and we recommend that
you upgrade your fetchmail package immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.


Debian GNU/Linux 2.2 alias potato
- ---------------------------------

  Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

  Source archives:
    http://security.debian.org/dists/stable/updates/main/source/fetchmail_5.3.3-1.2.diff.gz
      MD5 checksum: fbf35f3be1f9d8bee5d08a4a9e4d1a23
    http://security.debian.org/dists/stable/updates/main/source/fetchmail_5.3.3-1.2.dsc
      MD5 checksum: b2d5b8e11f7943a167dddbb4b1a0ad1b
    http://security.debian.org/dists/stable/updates/main/source/fetchmail_5.3.3.orig.tar.gz
      MD5 checksum: d2cffc4594ec2d36db6681b800f25e2a

  Architecture independent archives:
    http://security.debian.org/dists/stable/updates/main/binary-all/fetchmailconf_5.3.3-1.2_all.deb
      MD5 checksum: 7501327bf217b36540a0b6288362d40a

  Alpha architecture:
    http://security.debian.org/dists/stable/updates/main/binary-alpha/fetchmail_5.3.3-1.2_alpha.deb
      MD5 checksum: 9176d223e830d64f648c8374aec45e73

  ARM architecture:
    http://security.debian.org/dists/stable/updates/main/binary-arm/fetchmail_5.3.3-1.2_arm.deb
      MD5 checksum: ca4c1e5e8aba63badb08e26459608f1a

  Intel IA-32 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-i386/fetchmail_5.3.3-1.2_i386.deb
      MD5 checksum: d985cf57911ad2b891ed6c92c50de317

  Motorola 680x0 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-m68k/fetchmail_5.3.3-1.2_m68k.deb
      MD5 checksum: 3921efe505b3eb72a1cff41a11da2d5c

  PowerPC architecture:
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/fetchmail_5.3.3-1.2_powerpc.deb
      MD5 checksum: d7828e3c6ce890e86fb65316e4b78768

  Sun Sparc architecture:
    http://security.debian.org/dists/stable/updates/main/binary-sparc/fetchmail_5.3.3-1.2_sparc.deb
      MD5 checksum: baf11fea7d050cbb5d9f00f95a16e0f7

  These packages will be moved into the stable distribution on its next
  revision.

For not yet released architectures please refer to the appropriate
directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .

- -- 
- ----------------------------------------------------------------------------
apt-get: deb http://security.debian.org/ stable/updates main
dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBOyuGIqjZR/ntlUftAQHW7AMAgngWe6rTqRKX1w4tBVFi7XrVQs5TOcHb
akEBX1ZVQ4GYYXJ3fom3TnS+hbOqn3q/1DhGhnf++hMqj98CoysyUR2EzXQRHIE7
oRSdeZwsIpMN1raVAVvqhdE6UOStxE3e
=NmIw
-----END PGP SIGNATURE-----


--  
To UNSUBSCRIBE, email to debian-security-announce-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC