Home    |    View Topics    |    Search    |    Contact Us    |   



Category:   Application (E-mail Server)  >   Fetchmail Vendors:   Raymond, Eric S.
(Debian Releases Fix) Re: Fetchmail Can Be Crashed By Remote Users Sending E-Mail With Certain Header Contents
SecurityTracker Alert ID:  1001767
SecurityTracker URL:
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jun 16 2001
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 5.6.8-2 for Null crash; 5.7.1-2 for SPAM crash; possibly others
Description:   A vulnerability has been reported in the Fetchmail remote mail retrieval software. A remote user can send an e-mail with a long "To:" header that will cause Fetchmail to crash.

Fetchmail reportedly contains a buffer overflow in the handling of headers. It may be possible to exploit this overflow to execute arbitrary code with the privileges of the fetchmail daemon, but this was not confirmed.

If a remote user sends e-mail with a large "To:" line (greater than 25000 characters), Fetchmail will crash with a segmentation fault.

Impact:   A remote user can cause the Fetchmail daemon to crash.
Solution:   Debian has released a fix. See the Source Message for the Debian advisory.
Vendor URL: (Links to External Site)
Cause:   Boundary error
Underlying OS:  Linux (Debian)

Message History:   This archive entry is a follow-up to the message listed below.
Jun 15 2001 Fetchmail Can Be Crashed By Remote Users Sending E-Mail With Certain Header Contents

 Source Message Contents

Subject:  [SECURITY] [DSA-060-1] fetchmail buffer overflow


- ------------------------------------------------------------------------
Debian Security Advisory DSA-060-1                                  Wichert Akkerman
June 16, 2001
- ------------------------------------------------------------------------

Package        : fetchmail
Problem type   : buffer overflow
Debian-specific: no

Wolfram Kleff found a problem in fetchmail: it would crash when
processing emails with extremely long headers. The problem was
a buffer overflow in the header parser which could be exploited.

This has been fixed in version 5.3.3-1.3, and we recommend that
you upgrade your fetchmail package immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

Debian GNU/Linux 2.2 alias potato
- ---------------------------------

  Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

  Source archives:
      MD5 checksum: fbf35f3be1f9d8bee5d08a4a9e4d1a23
      MD5 checksum: b2d5b8e11f7943a167dddbb4b1a0ad1b
      MD5 checksum: d2cffc4594ec2d36db6681b800f25e2a

  Architecture independent archives:
      MD5 checksum: 7501327bf217b36540a0b6288362d40a

  Alpha architecture:
      MD5 checksum: 9176d223e830d64f648c8374aec45e73

  ARM architecture:
      MD5 checksum: ca4c1e5e8aba63badb08e26459608f1a

  Intel IA-32 architecture:
      MD5 checksum: d985cf57911ad2b891ed6c92c50de317

  Motorola 680x0 architecture:
      MD5 checksum: 3921efe505b3eb72a1cff41a11da2d5c

  PowerPC architecture:
      MD5 checksum: d7828e3c6ce890e86fb65316e4b78768

  Sun Sparc architecture:
      MD5 checksum: baf11fea7d050cbb5d9f00f95a16e0f7

  These packages will be moved into the stable distribution on its next

For not yet released architectures please refer to the appropriate
directory$arch/ .

- -- 
- ----------------------------------------------------------------------------
apt-get: deb stable/updates main
dpkg-ftp: dists/stable/updates/main
Mailing list:

Version: 2.6.3ia
Charset: noconv


To UNSUBSCRIBE, email to
with a subject of "unsubscribe". Trouble? Contact


Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, LLC