CVE-2007-5740: format string vulnerability
Bug #162543 reported by
William Grant
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
perdition (Debian) |
Fix Released
|
Unknown
|
|||
perdition (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Dapper |
Fix Released
|
High
|
Stephan Rügamer | ||
Edgy |
Fix Released
|
High
|
Stephan Rügamer | ||
Feisty |
Fix Released
|
High
|
Stephan Rügamer | ||
Gutsy |
Fix Released
|
High
|
Stephan Rügamer | ||
Hardy |
Fix Released
|
High
|
Unassigned |
Bug Description
Binary package hint: perdition
Perdition IMAPD is affected by a format string bug in one of its IMAP output-string formatting functions. The bug allows the execution of arbitrary code on the affected server. A successful exploit does not require prior authentication.
Hardy already has the fix, but all other releases are affected.
Changed in perdition: | |
importance: | Undecided → High |
status: | New → Confirmed |
importance: | Undecided → High |
status: | New → Confirmed |
importance: | Undecided → High |
status: | New → Confirmed |
importance: | Undecided → High |
status: | New → Confirmed |
importance: | Undecided → High |
status: | New → Fix Released |
Changed in perdition: | |
status: | Unknown → Fix Released |
Changed in perdition: | |
assignee: | nobody → shermann |
assignee: | nobody → shermann |
Changed in perdition: | |
assignee: | nobody → shermann |
assignee: | nobody → shermann |
status: | Confirmed → In Progress |
Changed in perdition: | |
status: | Fix Committed → Fix Released |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
working on it...