Описание
security update for cyrus-imapd
The cyrus-imapd package was updated to fix two security issues.
- CVE-2015-8077: Integer overflow in range checks (bnc#954200)
- CVE-2015-8078: Integer overflow in index_urlfetch (bnc#954201)
Список пакетов
openSUSE Leap 42.1
cyradm-2.4.18-3.1
cyrus-imapd-2.4.18-3.1
cyrus-imapd-devel-2.4.18-3.1
cyrus-imapd-snmp-2.4.18-3.1
cyrus-imapd-snmp-mibs-2.4.18-3.1
cyrus-imapd-utils-2.4.18-3.1
perl-Cyrus-IMAP-2.4.18-3.1
perl-Cyrus-SIEVE-managesieve-2.4.18-3.1
Ссылки
- E-Mail link for openSUSE-SU-2015:2130-1
- SUSE Security Ratings
Описание
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the start_octet variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.
Затронутые продукты
openSUSE Leap 42.1:cyradm-2.4.18-3.1
openSUSE Leap 42.1:cyrus-imapd-2.4.18-3.1
openSUSE Leap 42.1:cyrus-imapd-devel-2.4.18-3.1
openSUSE Leap 42.1:cyrus-imapd-snmp-2.4.18-3.1
Ссылки
- CVE-2015-8077
- SUSE Bug 954200
- SUSE Bug 954201
- SUSE Bug 981670
Описание
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.
Затронутые продукты
openSUSE Leap 42.1:cyradm-2.4.18-3.1
openSUSE Leap 42.1:cyrus-imapd-2.4.18-3.1
openSUSE Leap 42.1:cyrus-imapd-devel-2.4.18-3.1
openSUSE Leap 42.1:cyrus-imapd-snmp-2.4.18-3.1
Ссылки
- CVE-2015-8078
- SUSE Bug 954201
- SUSE Bug 981670